1# app_zygote is an auxiliary zygote process that is used to spawn 2# isolated service processes for individual applications. It is 3# spawned from the regular zygote process as a "child zygote". 4type app_zygote, domain; 5type app_zygote_tmpfs, file_type; 6 7# system/sepolicy/public is for vendor-facing type and attribute definitions. 8# DO NOT ADD allow, neverallow, or dontaudit statements here. 9# Instead, add such policy rules to system/sepolicy/private/*.te. 10