1# Grant access to Qualcomm MSM Interface (QMI) radio sockets 2qmux_socket(radio) 3 4allow radio uce_service:service_manager { add find }; 5 6r_dir_file(radio, sysfs_msm_subsys) 7 8# Access to /vendor/framework/qti-vzw-ims-internal.jar for all 9# IMS packages running with com.android.phone sharedUID 10allow radio vendor_framework_file:dir { getattr search }; 11allow radio vendor_framework_file:file { getattr open read }; 12 13# TODO(b/37164021): Remove this once radio no longer communicates with ims over sockets 14typeattribute radio socket_between_core_and_vendor_violators; 15typeattribute ims socket_between_core_and_vendor_violators; 16# communicate with ims 17unix_socket_connect(radio, ims, ims) 18 19# Allow radio to talk to rild over socket 20unix_socket_connect(radio, rild, rild) 21 22# access to /dev/diag on debug builds 23userdebug_or_eng(` 24 allow radio diag_device:chr_file rw_file_perms; 25') 26userbuild(` 27 dontaudit radio diag_device:chr_file rw_file_perms; 28') 29 30# access to /dev/avtimer 31allow radio avtimer_device:chr_file rw_file_perms; 32 33allowxperm radio self:udp_socket ioctl priv_sock_ioctls; 34 35# Needed for use .so files in /vendor/lib64 needed by ims which runs as com.android.phone (radio) 36# r_dir_file(radio, vendor_file) 37allow radio vendor_file:file rx_file_perms; 38 39# read access to sys/module/diagchar/parameters/timestamp_switch 40allow radio sysfs_timestamp_switch:file r_file_perms; 41