5131ff6544
This prebuilt is based on the AOSP policy, but slightly manipulated so that the set of types and attributes are identical with R policy. Following types are removed. boot_status_prop dalvik_config_prop gnss_device surfaceflinger_color_prop surfaceflinger_prop systemsound_config_prop vold_config_prop vold_status_prop Following type is renamed. wificond_service -> wifinl80211_service Bug: 153661471 Test: N/A Change-Id: I018d5e43f53c2bf721db1d13f5f4be42b9782b29
14 lines
719 B
Text
14 lines
719 B
Text
typeattribute incident_helper coredomain;
|
|
|
|
type incident_helper_exec, system_file_type, exec_type, file_type;
|
|
|
|
# switch to incident_helper domain for incident_helper command
|
|
domain_auto_trans(incidentd, incident_helper_exec, incident_helper)
|
|
|
|
# use pipe to transmit data from/to incidentd/incident_helper for parsing
|
|
allow incident_helper { shell incident incidentd dumpstate }:fd use;
|
|
allow incident_helper { shell incident incidentd dumpstate }:fifo_file { getattr read write };
|
|
allow incident_helper incidentd:unix_stream_socket { read write };
|
|
|
|
# only allow incidentd and shell to call incident_helper
|
|
neverallow { domain -incidentd -incident_helper -shell } incident_helper_exec:file { execute execute_no_trans };
|