public/toolbox.te - platform/system/sepolicy - Git at Google

 # Any toolbox command run by init.
 # Do NOT use this domain for toolbox when run by any other domain.
 type toolbox, domain;
 type toolbox_exec, system_file_type, exec_type, file_type;

 # system/sepolicy/public is for vendor-facing type and attribute definitions.
 # DO NOT ADD allow, neverallow, or dontaudit statements here.
 # Instead, add such policy rules to system/sepolicy/private/*.te.
	# Any toolbox command run by init.
	# Do NOT use this domain for toolbox when run by any other domain.
	type toolbox, domain;
	type toolbox_exec, system_file_type, exec_type, file_type;

	# system/sepolicy/public is for vendor-facing type and attribute definitions.
	# DO NOT ADD allow, neverallow, or dontaudit statements here.
	# Instead, add such policy rules to system/sepolicy/private/*.te.