1 typeattribute incident coredomain; 2 3 type incident_exec, exec_type, file_type; 4 5 # switch to incident domain for incident command 6 domain_auto_trans(shell, incident_exec, incident) 7 8 # allow incident access to stdout from its parent shell. 9 allow incident shell:fd use; 10 11 # allow incident to communicate use, read and write over the adb 12 # connection. 13 allow incident adbd:fd use; 14 allow incident adbd:unix_stream_socket { read write }; 15 16 # allow adbd to reap incident 17 allow incident adbd:process { sigchld }; 18 19 # Allow the incident command to talk to the incidentd over the binder, and get 20 # back the incident report data from a ParcelFileDescriptor. 21 binder_use(incident) 22 allow incident incident_service:service_manager find; 23 binder_call(incident, incidentd) 24 allow incident incidentd:fifo_file write; 25 26
