From 34e4da5fa9fd4dd57660863d3dbe1af4be5c3ea0 Mon Sep 17 00:00:00 2001
From: Bertrand SIMONNET <bsimonnet@google.com>
Date: Thu, 7 Jan 2016 15:14:00 -0800
Subject: [PATCH] Allows init to send signals.

This will allow init to terminate services cleanly (SIGTERM, wait,
SIGKILL) when needed.

Bug: 26216447
Test: manual: init is able to send a SIGTERM signal without denials.

Change-Id: Id2471ca08c0b011be64a36956628e965bc999bc6
---
 init.te | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/init.te b/init.te
index 24fdee867..7346d9a34 100644
--- a/init.te
+++ b/init.te
@@ -177,7 +177,7 @@ userdebug_or_eng(`
 
 # Support "adb shell stop"
 allow init self:capability kill;
-allow init domain:process sigkill;
+allow init domain:process { sigkill signal };
 
 # Init creates keystore's directory on boot, and walks through
 # the directory as part of a recursive restorecon.
-- 
GitLab