blob: 8d6fa235c595cdb7f37c153162b89e8e938cb218 (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
|
# Grant access to Qualcomm MSM Interface (QMI) radio sockets
qmux_socket(radio)
allow radio uce_service:service_manager { add find };
r_dir_file(radio, sysfs_msm_subsys)
# communicate with ims
unix_socket_connect(radio, ims, ims)
# access to /dev/diag on debug builds
userdebug_or_eng(`
allow radio diag_device:chr_file rw_file_perms;
')
# access to /dev/avtimer
allow radio avtimer_device:chr_file rw_file_perms;
allowxperm radio self:udp_socket ioctl priv_sock_ioctls;
# TODO scope this down. Granting these here is not granting new permissions,
# just moving existing permissions from domain_deprecated to radio as part of
# b/28760354 in order to deprivilege other processes which do not need access.
r_dir_file(radio, sysfs)
|
