sepolicy/sysinit.te - android_vendor_omni - Gitiles

 ###########################
 # OmniROM common sepolicy
 #

 type sysinit, domain;
 type sysinit_exec, exec_type, file_type;

 init_daemon_domain(sysinit)

 allow sysinit devpts:chr_file rw_file_perms;
 allow sysinit shell_exec:file rx_file_perms;
 allow sysinit system_file:file rx_file_perms;
 allow sysinit system_file:dir { read open };
 allow sysinit self:process { setcurrent setsched };
 allow sysinit userinit_exec:file { rx_file_perms };
 allow sysinit rootfs:lnk_file getattr;
	###########################
	# OmniROM common sepolicy
	#

	type sysinit, domain;
	type sysinit_exec, exec_type, file_type;

	init_daemon_domain(sysinit)

	allow sysinit devpts:chr_file rw_file_perms;
	allow sysinit shell_exec:file rx_file_perms;
	allow sysinit system_file:file rx_file_perms;
	allow sysinit system_file:dir { read open };
	allow sysinit self:process { setcurrent setsched };
	allow sysinit userinit_exec:file { rx_file_perms };
	allow sysinit rootfs:lnk_file getattr;