1 # File types must be defined for file_contexts. 2 type procrank_exec, exec_type, file_type; 3 4 userdebug_or_eng(` 5 type procrank, domain, mlstrustedsubject; 6 7 domain_auto_trans(shell, procrank_exec, procrank) 8 domain_auto_trans(dumpstate, procrank_exec, procrank) 9 allow procrank self:capability sys_ptrace; 10 allow procrank devpts:chr_file { read write getattr ioctl }; 11 allow procrank dumpstate:unix_stream_socket { read write getattr }; 12 r_dir_file(procrank, domain) 13 allow procrank { shell dumpstate }:fd use; 14 allow procrank adbd:process sigchld; 15 # allow procrank write to bugreport. 16 allow procrank shell_data_file:file w_file_perms; 17 ') 18
