| dcashman | cc39f63 | 2016-07-22 13:13:11 -0700 | [diff] [blame] | 1 | # type_transition must be private policy the domain_trans rules could stay |
| 2 | # public, but conceptually should go with this |
| 3 | # Define a type for tmpfs-backed ashmem regions. |
| 4 | tmpfs_domain(system_server) |
| 5 | # Create a socket for connections from debuggerd. |
| 6 | type_transition system_server system_data_file:sock_file system_ndebug_socket "ndebugsocket"; |
| dcashman | 2e00e63 | 2016-10-12 14:58:09 -0700 | [diff] [blame] | 7 | |
| 8 | allow system_server zygote_tmpfs:file read; |
| 9 | |
| 10 | # Create a socket for receiving info from wpa. |
| 11 | type_transition system_server wifi_data_file:sock_file system_wpa_socket; |
| 12 | type_transition system_server wpa_socket:sock_file system_wpa_socket; |
| 13 | |
| 14 | # TODO: deal with tmpfs_domain pub/priv split properly |
| 15 | neverallow system_server system_server_tmpfs:file execute; |