| Stephen Smalley | 2dd4e51 | 2012-01-04 12:33:27 -0500 | [diff] [blame] | 1 | # servicemanager - the Binder context manager |
| 2 | type servicemanager, domain; |
| Stephen Smalley | cfb2e99 | 2013-10-29 14:42:39 -0400 | [diff] [blame^] | 3 | permissive servicemanager; |
| Stephen Smalley | 2dd4e51 | 2012-01-04 12:33:27 -0500 | [diff] [blame] | 4 | type servicemanager_exec, exec_type, file_type; |
| 5 | |
| 6 | init_daemon_domain(servicemanager) |
| Stephen Smalley | cfb2e99 | 2013-10-29 14:42:39 -0400 | [diff] [blame^] | 7 | |
| 8 | # Note that we do not use the binder_* macros here. |
| 9 | # servicemanager is unique in that it only provides |
| 10 | # name service (aka context manager) for Binder. |
| 11 | # As such, it only ever receives and transfers other references |
| 12 | # created by other domains. It never passes its own references |
| 13 | # or initiates a Binder IPC. |
| 14 | allow servicemanager self:binder set_context_mgr; |
| 15 | allow servicemanager domain:binder transfer; |