android13/hardware/google/pixel-sepolicy/mm/init-mm-logging.sh.te

type init-mm-logging-sh, domain;
type init-mm-logging-sh_exec, exec_type, vendor_file_type, file_type;

init_daemon_domain(init-mm-logging-sh)

dontaudit init-mm-logging-sh { domain -kernel }:{ file dir } *;
dontaudit init-mm-logging-sh self:capability sys_ptrace;

userdebug_or_eng(`
  allow init-mm-logging-sh vendor_toolbox_exec:file rx_file_perms;
  allow init-mm-logging-sh proc_vmstat:file r_file_perms;
  allow init-mm-logging-sh mm_logd_vendor_data_file:dir create_dir_perms;
  allow init-mm-logging-sh mm_logd_vendor_data_file:file create_file_perms;
  # Allow /proc/<pid>/stat
  allow init-mm-logging-sh kernel:dir r_dir_perms;
  allow init-mm-logging-sh kernel:file r_file_perms;
  allow init-mm-logging-sh proc_stat:file r_file_perms;
')