1type aocd, domain; 2type aocd_exec, vendor_file_type, exec_type, file_type; 3init_daemon_domain(aocd) 4 5# access persist files 6allow aocd mnt_vendor_file:dir search; 7allow aocd persist_file:dir search; 8r_dir_file(aocd, persist_aoc_file); 9 10# sysfs operations 11allow aocd sysfs_aoc:dir search; 12allow aocd sysfs_aoc_firmware:file w_file_perms; 13allow aocd sysfs_aoc_notifytimeout:file r_file_perms; 14 15# dev operations 16allow aocd aoc_device:chr_file rw_file_perms; 17 18# allow inotify to watch for additions/removals from /dev 19allow aocd device:dir r_dir_perms; 20 21# set properties 22set_prop(aocd, vendor_aoc_prop) 23set_prop(aocd, vendor_timeout_aoc_prop) 24get_prop(aocd, vendor_volte_mif_off)