1 typeattribute init coredomain; 2 3 tmpfs_domain(init) 4 5 # Transitions to seclabel processes in init.rc 6 domain_trans(init, rootfs, charger) 7 domain_trans(init, rootfs, healthd) 8 domain_trans(init, rootfs, slideshow) 9 domain_auto_trans(init, e2fs_exec, e2fs) 10 recovery_only(` 11 domain_trans(init, rootfs, adbd) 12 domain_trans(init, rootfs, recovery) 13 ') 14 domain_trans(init, shell_exec, shell) 15 domain_trans(init, init_exec, ueventd) 16 domain_trans(init, init_exec, watchdogd) 17 domain_trans(init, { rootfs toolbox_exec }, modprobe) 18 # case where logpersistd is actually logcat -f in logd context (nee: logcatd) 19 userdebug_or_eng(` 20 domain_auto_trans(init, logcat_exec, logpersist) 21 ') 22 23 # Creating files on sysfs is impossible so this isn't a threat 24 # Sometimes we have to write to non-existent files to avoid conditional 25 # init behavior. See b/35303861 for an example. 26 dontaudit init sysfs:dir write; 27
