• Home
  • Line#
  • Scopes#
  • Navigate#
  • Raw
  • Download
1# ==============================================
2# Policy File of /vendor/bin/rilproxy Executable File
3
4
5# ==============================================
6# Type Declaration
7# ==============================================
8
9# ==============================================
10# MTK Policy Rule
11# ==============================================
12
13# Access to wake locks
14wakelock_use(rild)
15
16# rild Bringup Policy
17allow rild mtkrild:unix_stream_socket connectto;
18allow rild self:capability setuid;
19set_prop(rild, radio_prop)
20set_prop(rild, vendor_mtk_ril_mux_report_case_prop)
21allow rild mtk_agpsd:unix_stream_socket connectto;
22allow servicemanager rild:dir search;
23allow servicemanager rild:file { read open };
24allow servicemanager rild:process getattr;
25
26# Allow the socket read/write of netd for rild
27allow rild netd_socket:sock_file write;
28allow rild netd_socket:sock_file read;
29
30#Date : W17.13
31#Purpose: Treble SEpolicy denied clean up
32get_prop(rild, hwservicemanager_prop)
33
34#Date : W17.18
35#Purpose: Treble SEpolicy denied clean up
36add_hwservice(hal_telephony_server, mtk_hal_rild_hwservice)
37allow hal_telephony_client mtk_hal_rild_hwservice:hwservice_manager find;
38
39#Date : W17.21
40#Purpose: Grant permission to access binder dev node
41vndbinder_use(rild)
42
43#Date : W17.20
44#Purpose: allow access to audio hal
45binder_call(rild, mtk_hal_audio)
46hal_client_domain(rild, hal_audio)
47
48#Date : W18.15
49#Purpose: allow rild access to vendor.ril.ipo system property
50set_prop(mtkrild, vendor_mtk_ril_ipo_prop)
51
52# Date : WK18.26
53# Operation: P migration
54# Purpose: Allow carrier express HIDL to set vendor property
55set_prop(mtkrild, vendor_mtk_cxp_vendor_prop)
56allow mtkrild mnt_vendor_file:dir search;
57allow mtkrild mnt_vendor_file:file create_file_perms;
58allow mtkrild nvdata_file:dir create_dir_perms;
59allow mtkrild nvdata_file:file create_file_perms;
60
61# Date : WK18.31
62# Operation: P migration
63# Purpose: Allow supplementary service HIDL to set vendor property
64set_prop(mtkrild, vendor_mtk_ss_vendor_prop)
65
66# Date : W19.16
67# Operation: Q migration
68# Purpose: Allow rild access to send SUPL INIT to mnld
69allow rild mnld:unix_dgram_socket sendto;
70allow mtkrild mnld:unix_dgram_socket sendto;
71
72# Date : W19.35
73# Operation: Q migration
74# Purpose: Fix rilproxy SeLinux warning of pre-defined socket
75allow rild gsmrild_socket:sock_file write;
76
77