Allow rild access to the config server property and vsocket
Bug: 128842613
Test: run locally
Change-Id: I0ac8404f73fc2a51a64f70a2a27a4bdc99d0ccc5
diff --git a/shared/sepolicy/libcuttlefish_rild.te b/shared/sepolicy/libcuttlefish_rild.te
index 627dd3f..4ad7a19 100644
--- a/shared/sepolicy/libcuttlefish_rild.te
+++ b/shared/sepolicy/libcuttlefish_rild.te
@@ -1,4 +1,4 @@
-type cuttlefish_ril_prop, property_type;
+type cuttlefish_config_server_port_prop, property_type;
type libcuttlefish_rild, domain;
type libcuttlefish_rild_exec, exec_type, vendor_file_type, file_type;
@@ -11,4 +11,6 @@
# Failing to create these sockets appears to be non-fatal
net_domain(libcuttlefish_rild)
-get_prop(libcuttlefish_rild, cuttlefish_ril_prop)
+get_prop(libcuttlefish_rild, cuttlefish_config_server_port_prop)
+
+allow libcuttlefish_rild self:{ socket vsock_socket } create_socket_perms_no_ioctl;
diff --git a/shared/sepolicy/property_contexts b/shared/sepolicy/property_contexts
index 10cfec2..2f21488 100644
--- a/shared/sepolicy/property_contexts
+++ b/shared/sepolicy/property_contexts
@@ -1,7 +1,7 @@
bt.rootcanal_test_console u:object_r:hal_bluetooth_sim_prop:s0
sys.cf.ser. u:object_r:sys_cf_ser_prop:s0
vendor.ser. u:object_r:vendor_ser_prop:s0
-ro.boot.cuttlefish_ril u:object_r:cuttlefish_ril_prop:s0
+ro.boot.cuttlefish_config_server_port u:object_r:cuttlefish_config_server_port_prop:s0
ro.boot.vsock_frames_port u:object_r:vsock_frames_port_prop:s0
ro.boot.vsock_logcat_port u:object_r:vsock_logcat_port_prop:s0
ro.cdma.home.operator.alpha u:object_r:vendor_init_radio_prop:s0