1# 2# /system/bin/auditctl executed for logd 3# 4# Performs maintenance of the kernel auditing system, including 5# setting rate limits on SELinux denials. 6# 7 8type auditctl, domain, coredomain; 9type auditctl_exec, file_type, system_file_type, exec_type; 10 11# Uncomment the line below to put this domain into permissive 12# mode. This helps speed SELinux policy development. 13# userdebug_or_eng(`permissive auditctl;') 14 15init_daemon_domain(auditctl) 16 17allow auditctl self:global_capability_class_set audit_control; 18allow auditctl self:netlink_audit_socket { create_socket_perms_no_ioctl nlmsg_write }; 19