Home | History | Annotate | Download | only in private 
      1 typeattribute recovery_refresh coredomain;
      2 
      3 init_daemon_domain(recovery_refresh)
      4 
      5 # recovery_refresh is not allowed to write anywhere
      6 # TODO: deal with tmpfs_domain pub/priv split properly
      7 neverallow recovery_refresh { file_type -recovery_refresh_tmpfs userdebug_or_eng(`-coredump_file') }:file write;
      8