1The policy defines multiple types and attributes for apps. This document is a 2high-level overview of these. For further details on each type, refer to their 3specific files in the public/ and private/ directories. 4 5## appdomain 6In general, all apps will have the `appdomain` attribute. You can think of 7`appdomain` as any app started by Zygote. The macro `app_domain()` should be 8used to define a type that is considered an app (see public/te_macros). 9 10## untrusted_app 11Third-party apps (for example, installed from the Play Store), targeting the 12most recent SDK version will be typed as `untrusted_app`. This is the default 13domain for apps, unless a more specific criteria applies. 14 15When an app is targeting a previous SDK version, it may have the 16`untrusted_app_xx` type where xx is the targetSdkVersion. For instance, an app 17with `targetSdkVersion = 32` in its manifest will be typed as `untrusted_app_32`. 18Not all targetSdkVersion have a specific type, some version are skipped when no 19differences were introduced (see public/untrusted_app.te for more details). 20 21The `untrusted_app_all` attribute can be used to reference all the types 22described in this section (that is, `untrusted_app`, `untrusted_app_30`, 23`untrusted_app_32`, etc.). 24 25## isolated_app 26Apps may be restricted when using isolatedProcess=true in their manifest. In 27this case, they will be assigned the `isolated_app` type. A similar type 28`isolated_compute_app` exist for some restricted services. 29 30Both types `isolated_app` and `isolated_compute_app` are grouped under the 31attribute `isolated_app_all`. 32 33## ephemeral_app 34Apps that are run without installation. These are apps deployed for example via 35Google Play Instant. These are more constrained than `untrusted_app`. 36 37## sdk_sandbox 38SDK runtime apps, installed as part of the Privacy Sandbox project. These are 39sandboxed to limit their communication channels. 40 41## platform_app 42Apps that are signed with the platform key. These are installed within the 43system or vendor image. com.android.systemui is an example of an app running 44with this type. 45 46## system_app 47Apps pre-installed on a device, signed by the platform key and running with the 48system UID. com.android.settings is an example of an app running with this 49type. 50 51## priv_app 52Apps shipped as part of the device and installed in one of the 53`/{system,vendor,product}/priv-app` directories. 54com.google.android.apps.messaging is an example of an app running as priv_app. 55Permissions for these apps need to be explicitly granted, see 56https://source.android.com/docs/core/permissions/perms-allowlist for more 57details. 58