1type modem_ml_svc_sit, domain; 2type modem_ml_svc_sit_exec, vendor_file_type, exec_type, file_type; 3init_daemon_domain(modem_ml_svc_sit) 4 5binder_use(modem_ml_svc_sit) 6 7# Grant radio device access 8allow modem_ml_svc_sit radio_device:chr_file rw_file_perms; 9 10# Grant vendor radio and modem file/dir creation permission 11allow modem_ml_svc_sit radio_vendor_data_file:dir create_dir_perms; 12allow modem_ml_svc_sit radio_vendor_data_file:file create_file_perms; 13 14# Grant modem ml data file/dir creation permission 15allow modem_ml_svc_sit modem_ml_data_file:dir create_dir_perms; 16allow modem_ml_svc_sit modem_ml_data_file:file create_file_perms; 17 18# Grant modem ml models config files access 19allow modem_ml_svc_sit modem_config_file:file r_file_perms; 20 21# RIL property 22get_prop(modem_ml_svc_sit, vendor_rild_prop) 23 24# Access to NNAPI service 25hal_client_domain(modem_ml_svc_sit, hal_neuralnetworks) 26allow modem_ml_svc_sit edgetpu_nnapi_service:service_manager find; 27 28# Access to TFLite binder service 29allow modem_ml_svc_sit modemml_tflite_service:service_manager find; 30binder_call(modem_ml_svc_sit, system_server) 31