1 type ims, domain, domain_deprecated; 2 type ims_exec, exec_type, file_type; 3 4 init_daemon_domain(ims) 5 6 # Policy below to be updated per b/23784951 7 allow ims self:capability { net_admin net_raw }; 8 9 binder_use(ims) 10 set_prop(ims, qcom_ims_prop) 11 qmux_socket(ims) 12 unix_socket_connect(ims, cnd, cnd) 13 14 allow ims ims_service:service_manager add; 15 16 allow ims ims_socket:sock_file write; 17 allow ims self:socket create_socket_perms; 18 allow ims self:udp_socket create_socket_perms; 19 allow ims self:netlink_socket create_socket_perms; 20 allow ims self:netlink_route_socket { create_socket_perms nlmsg_write nlmsg_read }; 21 22 allow ims sysfs_msm_subsys:dir r_dir_perms; 23 allow ims sysfs_msm_subsys:lnk_file r_file_perms; 24
