1type virtmanager, domain, coredomain; 2type virtmanager_exec, system_file_type, exec_type, file_type; 3 4# When init runs a file labelled with virtmanager_exec, run it in the virtmanager domain. 5init_daemon_domain(virtmanager) 6 7# Let the virtmanager domain use Binder. 8binder_use(virtmanager) 9 10# Let the virtmanager domain register the virtualization_service with ServiceManager. 11add_service(virtmanager, virtualization_service) 12 13# When virtmanager execs a file with the crosvm_exec label, run it in the crosvm domain. 14domain_auto_trans(virtmanager, crosvm_exec, crosvm) 15 16# Let virtmanager kill crosvm. 17allow virtmanager crosvm:process sigkill; 18