public/mtp.te - LeafOS-Project/android_system_sepolicy - Gitiles

 # vpn tunneling protocol manager
 type mtp, domain, domain_deprecated;
 type mtp_exec, exec_type, file_type;

 net_domain(mtp)

 # pptp policy
 allow mtp self:socket create_socket_perms_no_ioctl;
 allow mtp self:capability net_raw;
 allow mtp ppp:process signal;
 allow mtp vpn_data_file:dir search;
	# vpn tunneling protocol manager
	type mtp, domain, domain_deprecated;
	type mtp_exec, exec_type, file_type;

	net_domain(mtp)

	# pptp policy
	allow mtp self:socket create_socket_perms_no_ioctl;
	allow mtp self:capability net_raw;
	allow mtp ppp:process signal;
	allow mtp vpn_data_file:dir search;