Blame - prebuilts/api/29.0/public/vdc.te - android_system_sepolicy

blob: e638e50a635778652f326d90bbc3b93fc72d480a [file] [log] [blame]

Tri Vo	bc8dc3a	2019-05-26 13:17:08 -0700	[diff] [blame^]	1	# vdc spawned from init for the following services:
				2	# defaultcrypto
				3	# encrypt
				4	#
				5	# We also transition into this domain from dumpstate, when
				6	# collecting bug reports.
				7
				8	type vdc, domain;
				9	type vdc_exec, system_file_type, exec_type, file_type;
				10
				11	# vdc can be invoked with logwrapper, so let it write to pty
				12	allow vdc devpts:chr_file rw_file_perms;
				13
				14	# vdc writes directly to kmsg during the boot process
				15	allow vdc kmsg_device:chr_file { getattr w_file_perms };
				16
				17	# vdc talks to vold over Binder
				18	binder_use(vdc)
				19	binder_call(vdc, vold)
				20	allow vdc vold_service:service_manager find;