2014-02-21 10:45:29 -08:00
|
|
|
# Domain for shell processes spawned by ADB or console service.
|
2013-10-23 10:25:53 -07:00
|
|
|
type shell, domain, shelldomain, mlstrustedsubject;
|
2013-09-27 07:38:14 -07:00
|
|
|
type shell_exec, exec_type, file_type;
|
2012-01-04 09:33:27 -08:00
|
|
|
|
2014-01-07 09:47:10 -08:00
|
|
|
# Create and use network sockets.
|
|
|
|
net_domain(shell)
|
|
|
|
|
2012-01-04 09:33:27 -08:00
|
|
|
# Run app_process.
|
2013-10-23 10:25:53 -07:00
|
|
|
# XXX Transition into its own domain?
|
2012-01-04 09:33:27 -08:00
|
|
|
app_domain(shell)
|
2013-12-02 11:18:11 -08:00
|
|
|
|
2014-03-17 13:00:38 -07:00
|
|
|
# logd access
|
|
|
|
read_logd(shell)
|
|
|
|
control_logd(shell)
|
|
|
|
|
2014-06-05 13:27:44 -07:00
|
|
|
# read files in /data/anr
|
|
|
|
allow shell anr_data_file:dir r_dir_perms;
|
|
|
|
allow shell anr_data_file:file r_file_perms;
|
|
|
|
|
2013-10-23 10:25:53 -07:00
|
|
|
# inherits from shelldomain.te
|