| Ashwini Oruganti | 9bc8112 | 2019-10-21 15:28:00 -0700 | [diff] [blame] | 1 | ### |
| 2 | ### A domain for further sandboxing the GooglePermissionController app. |
| 3 | ### |
| 4 | type permissioncontroller_app, domain; |
| 5 | |
| Ashwini Oruganti | 9bc8112 | 2019-10-21 15:28:00 -0700 | [diff] [blame] | 6 | app_domain(permissioncontroller_app) |
| 7 | |
| 8 | # Allow interaction with gpuservice |
| 9 | binder_call(permissioncontroller_app, gpuservice) |
| 10 | allow permissioncontroller_app gpu_service:service_manager find; |
| 11 | |
| 12 | # Allow interaction with role_service |
| 13 | allow permissioncontroller_app role_service:service_manager find; |
| 14 | |
| 15 | # Allow interaction with usagestats_service |
| 16 | allow permissioncontroller_app usagestats_service:service_manager find; |
| 17 | |
| 18 | # Allow interaction with activity_service |
| 19 | allow permissioncontroller_app activity_service:service_manager find; |
| Ashwini Oruganti | c557ca6 | 2019-11-04 16:03:54 -0800 | [diff] [blame] | 20 | |
| 21 | allow permissioncontroller_app activity_task_service:service_manager find; |
| 22 | allow permissioncontroller_app audio_service:service_manager find; |
| 23 | allow permissioncontroller_app autofill_service:service_manager find; |
| 24 | allow permissioncontroller_app device_policy_service:service_manager find; |
| 25 | allow permissioncontroller_app location_service:service_manager find; |
| 26 | allow permissioncontroller_app surfaceflinger_service:service_manager find; |
| 27 | allow permissioncontroller_app trust_service:service_manager find; |