blob: 5993c0be390b590df8171b88b0e6ab6b2d98f5e0 [file] [log] [blame]
###
### Ephemeral apps.
###
### This file defines the security policy for apps with the ephemeral
### feature.
###
### The ephemeral_app domain is a reduced permissions sandbox allowing
### ephemeral applications to be safely installed and run. Non ephemeral
### applications may also opt-in to ephemeral to take advantage of the
### additional security features.
###
### PackageManager flags an app as ephemeral at install time.
type ephemeral_app, domain;
type ephemeral_app_tmpfs, file_type;