1 binder_call(rild, audioserver) 2 binder_call(rild, mediaserver) 3 binder_use(rild) 4 binder_service(rild) 5 6 # Grant access to Qualcomm MSM Interface (QMI) radio sockets to RILD 7 qmux_socket(rild) 8 9 # whitelist qualcomm specific ioctls 10 allow rild self:socket ioctl; 11 allowxperm rild self:socket ioctl msm_sock_ipc_ioctls; 12 allowxperm rild self:udp_socket ioctl priv_sock_ioctls; 13 14 allow rild persist_file:dir search; 15 16 # rild needs to parse through /proc to obtain pid of netmgrd 17 r_dir_file(rild, netmgrd) 18 # b/18352920 suppress denials until the procfs lookup is removed 19 dontaudit rild domain:dir r_dir_perms; 20 21 allow rild audioserver_service:service_manager find; 22 allow rild mediaserver_service:service_manager find; 23 allow rild per_mgr_service:service_manager find; 24 25 allow rild time_daemon:unix_stream_socket connectto; 26 27 # rild reads qcril.db linked to /system/etc/qcril.db 28 allow rild radio_data_file:lnk_file read; 29 30 userdebug_or_eng(` 31 allow rild ssr_device:chr_file { open read }; 32 33 allow rild sysfs_ssr:dir { open search read }; 34 allow rild sysfs_ssr:lnk_file { read open }; 35 allow rild sysfs_ssr:dir r_dir_perms; 36 allow rild sysfs_ssr:lnk_file read; 37 ') 38 39 # allow rild to use qualcomm's socket ipc ioctls 40 allow rild self:socket ioctl; 41 allowxperm rild self:socket ioctl msm_sock_ipc_ioctls; 42
