platform_system_sepolicy/ueventd.te
repo sync 77d4731e9d Make all domains unconfined.
This prevents denials from being generated by the base policy.
Over time, these rules will be incrementally tightened to improve
security.

Change-Id: I4be1c987a5d69ac784a56d42fc2c9063c402de11
2013-05-20 11:08:05 -07:00

7 lines
232 B
Text

# ueventd seclabel is specified in init.rc since
# it lives in the rootfs and has no unique file type.
type ueventd, domain;
permissive ueventd;
tmpfs_domain(ueventd)
unconfined_domain(ueventd)
allow ueventd rootfs:file entrypoint;