1# Domain where the postinstall program runs during the update. 2# Extend the permissions in this domain to allow this program to access other 3# files needed by the specific device on your device's sepolicy directory. 4type postinstall, domain; 5 6# system/sepolicy/public is for vendor-facing type and attribute definitions. 7# DO NOT ADD allow, neverallow, or dontaudit statements here. 8# Instead, add such policy rules to system/sepolicy/private/*.te. 9