1 # goldfish-setup service: runs init.goldfish.sh script 2 type goldfish_setup, domain; 3 type goldfish_setup_exec, vendor_file_type, exec_type, file_type; 4 5 init_daemon_domain(goldfish_setup) 6 7 allow goldfish_setup self:capability { net_admin net_raw }; 8 allow goldfish_setup self:udp_socket { create ioctl }; 9 allow goldfish_setup vendor_toolbox_exec:file execute_no_trans; 10 allowxperm goldfish_setup self:udp_socket ioctl priv_sock_ioctls; 11 wakelock_use(goldfish_setup); 12 allow goldfish_setup vendor_shell_exec:file { rx_file_perms }; 13
