1 # HwBinder IPC from client to server, and callbacks 2 binder_call(hal_telephony_client, hal_telephony_server) 3 binder_call(hal_telephony_server, hal_telephony_client) 4 5 add_hwservice(hal_telephony_server, hal_telephony_hwservice) 6 allow hal_telephony_client hal_telephony_hwservice:hwservice_manager find; 7 8 allowxperm hal_telephony_server self:udp_socket ioctl priv_sock_ioctls; 9 10 allow hal_telephony_server self:netlink_route_socket nlmsg_write; 11 allow hal_telephony_server kernel:system module_request; 12 allow hal_telephony_server self:global_capability_class_set { setpcap setgid setuid net_admin net_raw }; 13 allow hal_telephony_server alarm_device:chr_file rw_file_perms; 14 allow hal_telephony_server cgroup:dir create_dir_perms; 15 allow hal_telephony_server cgroup:{ file lnk_file } r_file_perms; 16 allow hal_telephony_server radio_device:chr_file rw_file_perms; 17 allow hal_telephony_server radio_device:blk_file r_file_perms; 18 allow hal_telephony_server mtd_device:dir search; 19 allow hal_telephony_server efs_file:dir create_dir_perms; 20 allow hal_telephony_server efs_file:file create_file_perms; 21 allow hal_telephony_server vendor_shell_exec:file rx_file_perms; 22 allow hal_telephony_server bluetooth_efs_file:file r_file_perms; 23 allow hal_telephony_server bluetooth_efs_file:dir r_dir_perms; 24 25 # property service 26 set_prop(hal_telephony_server, radio_prop) 27 set_prop(hal_telephony_server, exported_radio_prop) 28 set_prop(hal_telephony_server, exported2_radio_prop) 29 set_prop(hal_telephony_server, exported3_radio_prop) 30 31 allow hal_telephony_server tty_device:chr_file rw_file_perms; 32 33 # Allow hal_telephony_server to create and use netlink sockets. 34 allow hal_telephony_server self:netlink_socket create_socket_perms_no_ioctl; 35 allow hal_telephony_server self:netlink_generic_socket create_socket_perms_no_ioctl; 36 allow hal_telephony_server self:netlink_kobject_uevent_socket create_socket_perms_no_ioctl; 37 38 # Access to wake locks 39 wakelock_use(hal_telephony_server) 40 41 r_dir_file(hal_telephony_server, proc_net) 42 r_dir_file(hal_telephony_server, sysfs_type) 43 r_dir_file(hal_telephony_server, system_file) 44 45 # granting the ioctl permission for hal_telephony_server should be device specific 46 allow hal_telephony_server self:socket create_socket_perms_no_ioctl; 47
