[GitHub/LineageOS/android_device_samsung_universal7580-common.git] / sepolicy / rild.te

# Allow rild to change perms
allow rild self:capability chown;

# Allow additiional efs access
r_dir_file(rild, imei_efs_file);
r_dir_file(rild, app_efs_file);

# /efs/nv_data.bin
allow rild bin_nv_data_efs_file:file create_file_perms;
allowxperm rild bin_nv_data_efs_file:file ioctl { 0x6601 0x6602 };

# audioserver
r_dir_file(rild, audioserver);

# /dev/mbin0
allow rild block_device:dir r_dir_perms;
allow rild emmcblk_device:blk_file r_file_perms;

# /dev/umts_boot0, /dev/umts_ipc0
allow rild mif_device:chr_file rw_file_perms;

# /sys/devices/virtual/misc/multipdp/waketime
allow rild sysfs_multipdp:file rw_file_perms;

allow rild sysfs_input:file rw_file_perms;

# /proc/sys/net/ipv6/conf/*/accept_ra_defrtr
allow rild proc_net:file rw_file_perms;

r_dir_file(rild, gpsd);

allow rild proc_qtaguid_stat:file r_file_perms;

# rild reads /proc/pid/cmdline of mediaserver
r_dir_file(rild, mediaserver);

# /data/misc/radio/*
allow rild radio_data_file:dir rw_dir_perms;
allow rild radio_data_file:file create_file_perms;
# /data/data/com.android.providers.telephony/databases/telephony.db
allow rild radio_data_file:lnk_file r_file_perms;

# sdcard/SDET_PLMN/input/MNCMCC.txt
allow rild storage_file:dir r_dir_perms;
allow rild storage_file:lnk_file r_file_perms;
allow rild mnt_user_file:dir r_dir_perms;
allow rild mnt_user_file:lnk_file r_file_perms;

# Modem firmware download
allow rild radio_block_device:blk_file r_file_perms;

# persist.ril.modem.board
set_prop(modemloader, radio_prop)

# /dev/knox_kap
allow rild knox_device:chr_file r_file_perms;

# /data/media/0
allow rild media_rw_data_file:dir r_dir_perms;
Commit	Line	Data
c1a50488	1	# Allow rild to change perms
ee133eb7	2	allow rild self:capability chown;
c1a50488 DW	3
c1a50488 DW	4	# Allow additiional efs access
ee133eb7 JA	5	r_dir_file(rild, imei_efs_file);
ee133eb7 JA	6	r_dir_file(rild, app_efs_file);
c1a50488	7
d92a2f87 DW	8	# /efs/nv_data.bin
	9	allow rild bin_nv_data_efs_file:file create_file_perms;
	10	allowxperm rild bin_nv_data_efs_file:file ioctl { 0x6601 0x6602 };
	11
ee133eb7 JA	12	# audioserver
ee133eb7 JA	13	r_dir_file(rild, audioserver);
c1a50488 DW	14
	15	# /dev/mbin0
	16	allow rild block_device:dir r_dir_perms;
	17	allow rild emmcblk_device:blk_file r_file_perms;
	18
	19	# /dev/umts_boot0, /dev/umts_ipc0
	20	allow rild mif_device:chr_file rw_file_perms;
	21
	22	# /sys/devices/virtual/misc/multipdp/waketime
c63278d0	23	allow rild sysfs_multipdp:file rw_file_perms;
c1a50488	24
23070e73 JL	25	allow rild sysfs_input:file rw_file_perms;
23070e73 JL	26
c1a50488 DW	27	# /proc/sys/net/ipv6/conf/*/accept_ra_defrtr
	28	allow rild proc_net:file rw_file_perms;
	29
ee133eb7	30	r_dir_file(rild, gpsd);
c1a50488	31
c63278d0 DW	32	allow rild proc_qtaguid_stat:file r_file_perms;
c63278d0 DW	33
c1a50488	34	# rild reads /proc/pid/cmdline of mediaserver
ee133eb7	35	r_dir_file(rild, mediaserver);
c1a50488 DW	36
	37	# /data/misc/radio/*
	38	allow rild radio_data_file:dir rw_dir_perms;
	39	allow rild radio_data_file:file create_file_perms;
	40	# /data/data/com.android.providers.telephony/databases/telephony.db
	41	allow rild radio_data_file:lnk_file r_file_perms;
	42
	43	# sdcard/SDET_PLMN/input/MNCMCC.txt
ee133eb7 JA	44	allow rild storage_file:dir r_dir_perms;
	45	allow rild storage_file:lnk_file r_file_perms;
	46	allow rild mnt_user_file:dir r_dir_perms;
	47	allow rild mnt_user_file:lnk_file r_file_perms;
c1a50488 DW	48
	49	# Modem firmware download
	50	allow rild radio_block_device:blk_file r_file_perms;
	51
	52	# persist.ril.modem.board
	53	set_prop(modemloader, radio_prop)
	54
	55	# /dev/knox_kap
	56	allow rild knox_device:chr_file r_file_perms;
	57
	58	# /data/media/0
ee133eb7	59	allow rild media_rw_data_file:dir r_dir_perms;