tequilaOS/platform_system_sepolicy
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity
platform_system_sepolicy/public/traceur_app.te
Igor Murashkin 72a88b194c iorapd: Add new binder service iorapd. 
This daemon is very locked down. Only system_server can access it.

Bug: 72170747
Change-Id: I7b72b9191cb192be96001d84d067c28292c9688f
2018-10-08 15:00:34 -07:00

26 lines
677 B
Text
Raw Blame History

type traceur_app, domain;
allow traceur_app servicemanager:service_manager list;
allow traceur_app hwservicemanager:hwservice_manager list;
set_prop(traceur_app, debug_prop)
allow traceur_app {
service_manager_type
-apex_service
-gatekeeper_service
-incident_service
-installd_service
-iorapd_service
-netd_service
-virtual_touchpad_service
-vold_service
-vr_hwc_service
}:service_manager find;
# Allow traceur_app to use atrace HAL
hal_client_domain(traceur_app, hal_atrace)
dontaudit traceur_app service_manager_type:service_manager find;
dontaudit traceur_app hwservice_manager_type:hwservice_manager find;
dontaudit traceur_app domain:binder call;
Reference in a new issue View git blame Copy permalink