1# adbd seclabel is specified in init.rc since 2# it lives in the rootfs and has no unique file type. 3type adbd, domain; 4type adbd_exec, exec_type, file_type, system_file_type; 5 6# Only init is allowed to enter the adbd domain via exec() 7neverallow { domain -init } adbd:process transition; 8neverallow * adbd:process dyntransition; 9 10# Access /data/local/tests. 11allow adbd shell_test_data_file:dir create_dir_perms; 12allow adbd shell_test_data_file:file create_file_perms; 13allow adbd shell_test_data_file:lnk_file create_file_perms; 14