1*e4a36f41SAndroid Build Coastguard Worker### 2*e4a36f41SAndroid Build Coastguard Worker### Domain for all zygote spawned apps 3*e4a36f41SAndroid Build Coastguard Worker### 4*e4a36f41SAndroid Build Coastguard Worker### This file is the base policy for all zygote spawned apps. 5*e4a36f41SAndroid Build Coastguard Worker### Other policy files, such as isolated_app.te, untrusted_app.te, etc 6*e4a36f41SAndroid Build Coastguard Worker### extend from this policy. Only policies which should apply to ALL 7*e4a36f41SAndroid Build Coastguard Worker### zygote spawned apps should be added here. 8*e4a36f41SAndroid Build Coastguard Worker### 9*e4a36f41SAndroid Build Coastguard Workertype appdomain_tmpfs, file_type; 10*e4a36f41SAndroid Build Coastguard Worker 11*e4a36f41SAndroid Build Coastguard Worker# system/sepolicy/public is for vendor-facing type and attribute definitions. 12*e4a36f41SAndroid Build Coastguard Worker# DO NOT ADD allow, neverallow, or dontaudit statements here. 13*e4a36f41SAndroid Build Coastguard Worker# Instead, add such policy rules to system/sepolicy/private/*.te. 14