sm7250-common: Drop M4DEFS
Change-Id: I43c99687e099d029d99a807bb5384151601c9d36
This commit is contained in:
Sebastiano Barezzi
xSylla
parent
274205fbfa
commit
9b33d47fff
@ -166,24 +166,6 @@ include device/qcom/sepolicy_vndr/SEPolicy.mk
|
||||
BOARD_PLAT_PRIVATE_SEPOLICY_DIR += $(COMMON_PATH)/sepolicy/private
|
||||
BOARD_PLAT_PUBLIC_SEPOLICY_DIR += $(COMMON_PATH)/sepolicy/public
|
||||
BOARD_VENDOR_SEPOLICY_DIRS += $(COMMON_PATH)/sepolicy/vendor
|
||||
BOARD_SEPOLICY_M4DEFS += \
|
||||
debugfs_clk=vendor_debugfs_clk \
|
||||
debugfs_ipc=vendor_debugfs_ipc \
|
||||
latency_device=vendor_latency_device \
|
||||
nfc_vendor_data_file=vendor_nfc_vendor_data_file \
|
||||
persist_audio_file=vendor_persist_audio_file \
|
||||
persist_sensors_file=vendor_persist_sensors_file \
|
||||
public_vendor_default_prop=vendor_public_vendor_default_prop \
|
||||
sensors_prop=vendor_sensors_prop \
|
||||
sysfs_boot_adsp=vendor_sysfs_boot_adsp \
|
||||
sysfs_devfreq=vendor_sysfs_devfreq \
|
||||
sysfs_fingerprint=vendor_sysfs_fingerprint \
|
||||
sysfs_graphics=vendor_sysfs_graphics \
|
||||
sysfs_kgsl=vendor_sysfs_kgsl \
|
||||
sysfs_scsi_host=vendor_sysfs_scsi_host \
|
||||
sysfs_ssr=vendor_sysfs_ssr \
|
||||
wcnss_service_exec=vendor_wcnss_service_exec \
|
||||
wifi_vendor_data_file=vendor_wifi_vendor_data_file
|
||||
|
||||
# Verified Boot
|
||||
BOARD_AVB_ENABLE := true
|
||||
|
||||
@ -23,7 +23,7 @@ binder_call(devicesettings_app, hal_motor)
|
||||
|
||||
# Allow devicesettings_app to read and write to cgroup/sysfs_leds/sysfs_thermal
|
||||
allow devicesettings_app sysfs_leds:dir search;
|
||||
#allow devicesettings_app sysfs_graphics:dir search;
|
||||
#allow devicesettings_app vendor_sysfs_graphics:dir search;
|
||||
allow devicesettings_app {
|
||||
cgroup
|
||||
sysfs_leds
|
||||
|
||||
2
sepolicy/vendor/adsprpcd.te
vendored
2
sepolicy/vendor/adsprpcd.te
vendored
@ -1 +1 @@
|
||||
r_dir_file(vendor_adsprpcd, sysfs_graphics)
|
||||
r_dir_file(vendor_adsprpcd, vendor_sysfs_graphics)
|
||||
|
||||
12
sepolicy/vendor/file_contexts
vendored
12
sepolicy/vendor/file_contexts
vendored
@ -41,9 +41,9 @@
|
||||
/sys/devices/platform/soc/soc:qcom,dsi-display-primary/fod_ui u:object_r:sysfs_fod:s0
|
||||
|
||||
# Graphics nodes
|
||||
/sys/devices/platform/soc/[a-z0-9]+.qcom,mdss_mdp/drm/card([0-3])+/card([0-3])+-DSI-1/panel_info u:object_r:sysfs_graphics:s0
|
||||
/sys/devices/platform/soc/[a-z0-9]+.qcom,mdss_mdp/drm/card([0-3])+/card([0-3])+-DSI-1/disp_param u:object_r:sysfs_graphics:s0
|
||||
/sys/devices/platform/soc/[a-z0-9]+.qcom,mdss_mdp/drm/card([0-3])+/card([0-3])+-DSI-1/hbm_status u:object_r:sysfs_graphics:s0
|
||||
/sys/devices/platform/soc/[a-z0-9]+.qcom,mdss_mdp/drm/card([0-3])+/card([0-3])+-DSI-1/panel_info u:object_r:vendor_sysfs_graphics:s0
|
||||
/sys/devices/platform/soc/[a-z0-9]+.qcom,mdss_mdp/drm/card([0-3])+/card([0-3])+-DSI-1/disp_param u:object_r:vendor_sysfs_graphics:s0
|
||||
/sys/devices/platform/soc/[a-z0-9]+.qcom,mdss_mdp/drm/card([0-3])+/card([0-3])+-DSI-1/hbm_status u:object_r:vendor_sysfs_graphics:s0
|
||||
|
||||
# Health
|
||||
/sys/devices/platform/soc/884000.i2c/i2c-5/5-0066/power_supply/bq2597x-standalone(/.*)? u:object_r:sysfs_battery_supply:s0
|
||||
@ -78,7 +78,7 @@
|
||||
/sys/devices/platform/soc/c440000.qcom,spmi/spmi-0/spmi0-02/c440000.qcom,spmi:qcom,pm8150b@2:vadc@3100/iio:device1(/.*)? u:object_r:vendor_sysfs_iio:s0
|
||||
|
||||
# SSR
|
||||
/sys/devices(/platform)?/soc/[a-z0-9\.:]+,[a-z0-9\-\_]+/subsys[0-9]+/name u:object_r:sysfs_ssr:s0
|
||||
/sys/devices(/platform)?/soc/[a-z0-9\.:]+,[a-z0-9\-\_]+/subsys[0-9]+/name u:object_r:vendor_sysfs_ssr:s0
|
||||
|
||||
# Thermal
|
||||
/vendor/bin/mi_thermald u:object_r:mi_thermald_exec:s0
|
||||
@ -91,5 +91,5 @@
|
||||
/vendor/bin/hw/vendor\.qti\.hardware\.vibrator\.service\.xiaomi_lito u:object_r:hal_vibrator_default_exec:s0
|
||||
|
||||
# WiFi
|
||||
/vendor/bin/nv_mac u:object_r:wcnss_service_exec:s0
|
||||
/data/vendor/mac_addr(/.*)? u:object_r:wifi_vendor_data_file:s0
|
||||
/vendor/bin/nv_mac u:object_r:vendor_wcnss_service_exec:s0
|
||||
/data/vendor/mac_addr(/.*)? u:object_r:vendor_wifi_vendor_data_file:s0
|
||||
|
||||
16
sepolicy/vendor/genfs_contexts
vendored
16
sepolicy/vendor/genfs_contexts
vendored
@ -3,22 +3,22 @@ genfscon sysfs /kernel/boot_cdsp/boot
|
||||
|
||||
# Display
|
||||
genfscon sysfs /devices/platform/soc/2c00000.qcom,kgsl-3d0 u:object_r:sysfs_msm_subsys:s0
|
||||
genfscon sysfs /devices/platform/soc/ae00000.qcom,mdss_mdp/idle_state u:object_r:sysfs_graphics:s0
|
||||
genfscon sysfs /devices/platform/soc/ae00000.qcom,mdss_mdp/idle_state u:object_r:vendor_sysfs_graphics:s0
|
||||
genfscon sysfs /devices/platform/soc/ae00000.qcom,mdss_mdp/drm/card0/sde-crtc-0/early_wakeup u:object_r:sysfs_msm_subsys:s0
|
||||
genfscon sysfs /devices/platform/soc/soc:qcom,cpu-cpu-llcc-bw u:object_r:sysfs_msm_subsys:s0
|
||||
genfscon sysfs /devices/platform/soc/soc:qcom,cpu-llcc-ddr-bw u:object_r:sysfs_msm_subsys:s0
|
||||
genfscon sysfs /devices/platform/soc/soc:qcom,cpu0-cpu-l3-lat u:object_r:sysfs_msm_subsys:s0
|
||||
genfscon sysfs /devices/platform/soc/soc:qcom,cpu6-cpu-l3-lat u:object_r:sysfs_msm_subsys:s0
|
||||
genfscon sysfs /devices/platform/soc/soc:qcom,dsi-display u:object_r:sysfs_graphics:s0
|
||||
genfscon sysfs /devices/platform/soc/soc:qcom,dsi-display u:object_r:vendor_sysfs_graphics:s0
|
||||
genfscon sysfs /devices/platform/soc/soc:qcom,gpubw u:object_r:sysfs_msm_subsys:s0
|
||||
genfscon sysfs /devices/platform/soc/soc:qcom,gpubw/devfreq u:object_r:sysfs_msm_subsys:s0
|
||||
|
||||
# Fingerprint
|
||||
genfscon sysfs /devices/platform/soc/soc:fingerprint_fpc/device_prepare u:object_r:sysfs_fingerprint:s0
|
||||
genfscon sysfs /devices/platform/soc/soc:fingerprint_fpc/fingerdown_wait u:object_r:sysfs_fingerprint:s0
|
||||
genfscon sysfs /devices/platform/soc/soc:fingerprint_fpc/irq u:object_r:sysfs_fingerprint:s0
|
||||
genfscon sysfs /devices/platform/soc/soc:fingerprint_fpc/request_vreg u:object_r:sysfs_fingerprint:s0
|
||||
genfscon sysfs /devices/platform/soc/soc:fingerprint_fpc/wakeup_enable u:object_r:sysfs_fingerprint:s0
|
||||
genfscon sysfs /devices/platform/soc/soc:fingerprint_fpc/device_prepare u:object_r:vendor_sysfs_fingerprint:s0
|
||||
genfscon sysfs /devices/platform/soc/soc:fingerprint_fpc/fingerdown_wait u:object_r:vendor_sysfs_fingerprint:s0
|
||||
genfscon sysfs /devices/platform/soc/soc:fingerprint_fpc/irq u:object_r:vendor_sysfs_fingerprint:s0
|
||||
genfscon sysfs /devices/platform/soc/soc:fingerprint_fpc/request_vreg u:object_r:vendor_sysfs_fingerprint:s0
|
||||
genfscon sysfs /devices/platform/soc/soc:fingerprint_fpc/wakeup_enable u:object_r:vendor_sysfs_fingerprint:s0
|
||||
|
||||
# Health
|
||||
genfscon sysfs /class/power_supply/battery/capacity u:object_r:sysfs_battery_supply:s0
|
||||
@ -37,7 +37,7 @@ genfscon sysfs /devices/platform/soc/c440000.qcom,spmi/spmi-0/spmi0-05/c440000.q
|
||||
genfscon sysfs /touchpanel u:object_r:sysfs_touchpanel:s0
|
||||
|
||||
# UFS
|
||||
genfscon sysfs /devices/platform/soc/1d84000.ufshc/clkgate_enable u:object_r:sysfs_scsi_host:s0
|
||||
genfscon sysfs /devices/platform/soc/1d84000.ufshc/clkgate_enable u:object_r:vendor_sysfs_scsi_host:s0
|
||||
|
||||
# Wakeup source stats
|
||||
genfscon sysfs /devices/0306_02.01.00/wakeup u:object_r:sysfs_wakeup:s0
|
||||
|
||||
4
sepolicy/vendor/hal_audio_default.te
vendored
4
sepolicy/vendor/hal_audio_default.te
vendored
@ -1,8 +1,8 @@
|
||||
# For interfacing with PowerHAL
|
||||
hal_client_domain(hal_audio_default, hal_power)
|
||||
|
||||
# Allow hal_audio_default to read persist_audio_file
|
||||
r_dir_file(hal_audio_default, persist_audio_file)
|
||||
# Allow hal_audio_default to read vendor_persist_audio_file
|
||||
r_dir_file(hal_audio_default, vendor_persist_audio_file)
|
||||
|
||||
r_dir_file(hal_audio_default, sysfs)
|
||||
|
||||
|
||||
4
sepolicy/vendor/hal_bluetooth_default.te
vendored
4
sepolicy/vendor/hal_bluetooth_default.te
vendored
@ -1,2 +1,2 @@
|
||||
# Allow hal_bluetooth_default to read files in wifi_vendor_data_file
|
||||
r_dir_file(hal_bluetooth_default, wifi_vendor_data_file)
|
||||
# Allow hal_bluetooth_default to read files in vendor_wifi_vendor_data_file
|
||||
r_dir_file(hal_bluetooth_default, vendor_wifi_vendor_data_file)
|
||||
|
||||
6
sepolicy/vendor/hal_camera_default.te
vendored
6
sepolicy/vendor/hal_camera_default.te
vendored
@ -1,13 +1,13 @@
|
||||
# For interfacing with PowerHAL
|
||||
hal_client_domain(hal_camera_default, hal_power)
|
||||
|
||||
# Allow hal_camera_default to read to sysfs_kgsl
|
||||
r_dir_file(hal_camera_default, sysfs_kgsl)
|
||||
# Allow hal_camera_default to read to vendor_sysfs_kgsl
|
||||
r_dir_file(hal_camera_default, vendor_sysfs_kgsl)
|
||||
|
||||
# Allow hal_camera_default to read to mnt/vendor/persist/camera
|
||||
r_dir_file(hal_camera_default, camera_persist_file)
|
||||
r_dir_file(hal_camera_default, mnt_vendor_file)
|
||||
r_dir_file(hal_camera_default, persist_sensors_file)
|
||||
r_dir_file(hal_camera_default, vendor_persist_sensors_file)
|
||||
|
||||
allow hal_camera_default remosaic_daemon_service:service_manager find;
|
||||
|
||||
|
||||
6
sepolicy/vendor/hal_fingerprint_default.te
vendored
6
sepolicy/vendor/hal_fingerprint_default.te
vendored
@ -22,13 +22,13 @@ allow hal_fingerprint_default self:netlink_socket create_socket_perms_no_ioctl;
|
||||
|
||||
allow hal_fingerprint_default {
|
||||
input_device
|
||||
sysfs_graphics
|
||||
vendor_sysfs_graphics
|
||||
sysfs_msm_subsys
|
||||
}: dir r_dir_perms;
|
||||
|
||||
allow hal_fingerprint_default {
|
||||
sysfs_fingerprint
|
||||
sysfs_graphics
|
||||
vendor_sysfs_fingerprint
|
||||
vendor_sysfs_graphics
|
||||
sysfs_msm_subsys
|
||||
}: file rw_file_perms;
|
||||
|
||||
|
||||
4
sepolicy/vendor/hal_lineage_fod_lito.te
vendored
4
sepolicy/vendor/hal_lineage_fod_lito.te
vendored
@ -10,7 +10,7 @@ hal_client_domain(hal_lineage_fod_lito, hal_fingerprint)
|
||||
# Allow binder communication with hal_fingerprint_lito
|
||||
binder_call(hal_lineage_fod_lito, hal_fingerprint_default)
|
||||
|
||||
allow hal_lineage_fod_lito sysfs_graphics:dir r_dir_perms;
|
||||
allow hal_lineage_fod_lito sysfs_graphics:file rw_file_perms;
|
||||
allow hal_lineage_fod_lito vendor_sysfs_graphics:dir r_dir_perms;
|
||||
allow hal_lineage_fod_lito vendor_sysfs_graphics:file rw_file_perms;
|
||||
|
||||
allow hal_lineage_fod_lito sysfs_fod:file rw_file_perms;
|
||||
|
||||
6
sepolicy/vendor/hal_motor_default.te
vendored
6
sepolicy/vendor/hal_motor_default.te
vendored
@ -19,13 +19,13 @@ allow hal_motor_default {
|
||||
motor_device
|
||||
}:chr_file rw_file_perms;
|
||||
|
||||
# Allow hal_motor_default to read and write to { mnt_vendor_file persist_sensors_file }
|
||||
# Allow hal_motor_default to read and write to { mnt_vendor_file vendor_persist_sensors_file }
|
||||
allow hal_motor_default {
|
||||
mnt_vendor_file
|
||||
persist_sensors_file
|
||||
vendor_persist_sensors_file
|
||||
}:dir rw_dir_perms;
|
||||
|
||||
allow hal_motor_default {
|
||||
mnt_vendor_file
|
||||
persist_sensors_file
|
||||
vendor_persist_sensors_file
|
||||
}:file rw_file_perms;
|
||||
|
||||
4
sepolicy/vendor/hal_nfc_default.te
vendored
4
sepolicy/vendor/hal_nfc_default.te
vendored
@ -1,3 +1,3 @@
|
||||
# Data file accesses.
|
||||
allow hal_nfc_default nfc_vendor_data_file:dir create_dir_perms;
|
||||
allow hal_nfc_default nfc_vendor_data_file:file create_file_perms;
|
||||
allow hal_nfc_default vendor_nfc_vendor_data_file:dir create_dir_perms;
|
||||
allow hal_nfc_default vendor_nfc_vendor_data_file:file create_file_perms;
|
||||
|
||||
12
sepolicy/vendor/hal_power_default.te
vendored
12
sepolicy/vendor/hal_power_default.te
vendored
@ -5,7 +5,7 @@ allow hal_power_default input_device:chr_file rw_file_perms;
|
||||
r_dir_file(hal_power_default, input_device)
|
||||
|
||||
allow hal_power_default {
|
||||
sysfs_devfreq
|
||||
vendor_sysfs_devfreq
|
||||
sysfs_msm_subsys
|
||||
sysfs_touchpanel
|
||||
}:dir search;
|
||||
@ -13,19 +13,19 @@ allow hal_power_default {
|
||||
allow hal_power_default {
|
||||
cgroup
|
||||
proc
|
||||
sysfs_devfreq
|
||||
vendor_sysfs_devfreq
|
||||
sysfs_devices_system_cpu
|
||||
sysfs_graphics
|
||||
sysfs_kgsl
|
||||
vendor_sysfs_graphics
|
||||
vendor_sysfs_kgsl
|
||||
sysfs_msm_subsys
|
||||
sysfs_scsi_host
|
||||
vendor_sysfs_scsi_host
|
||||
sysfs_touchpanel
|
||||
}:{
|
||||
file
|
||||
lnk_file
|
||||
} rw_file_perms;
|
||||
|
||||
allow hal_power_default latency_device:chr_file rw_file_perms;
|
||||
allow hal_power_default vendor_latency_device:chr_file rw_file_perms;
|
||||
|
||||
# Rule for hal_power_default to access graphics composer process
|
||||
unix_socket_connect(hal_power_default, vendor_pps, hal_graphics_composer_default);
|
||||
|
||||
6
sepolicy/vendor/mi_thermald.te
vendored
6
sepolicy/vendor/mi_thermald.te
vendored
@ -14,8 +14,8 @@ allow mi_thermald sysfs:file write;
|
||||
r_dir_file(mi_thermald, sysfs)
|
||||
r_dir_file(mi_thermald, sysfs_battery_supply)
|
||||
r_dir_file(mi_thermald, sysfs_devices_system_cpu)
|
||||
r_dir_file(mi_thermald, sysfs_graphics)
|
||||
r_dir_file(mi_thermald, sysfs_kgsl)
|
||||
r_dir_file(mi_thermald, vendor_sysfs_graphics)
|
||||
r_dir_file(mi_thermald, vendor_sysfs_kgsl)
|
||||
r_dir_file(mi_thermald, sysfs_leds)
|
||||
r_dir_file(mi_thermald, sysfs_thermal)
|
||||
|
||||
@ -23,7 +23,7 @@ r_dir_file(mi_thermald, sysfs_thermal)
|
||||
allow mi_thermald {
|
||||
sysfs_battery_supply
|
||||
sysfs_devices_system_cpu
|
||||
sysfs_kgsl
|
||||
vendor_sysfs_kgsl
|
||||
sysfs_thermal
|
||||
}:{
|
||||
file
|
||||
|
||||
14
sepolicy/vendor/property_contexts
vendored
14
sepolicy/vendor/property_contexts
vendored
@ -29,11 +29,11 @@ vendor.fps_hal. u:object_r:vendor_fp_prop:s0
|
||||
ro.boot.fpsensor u:object_r:vendor_fp_prop:s0
|
||||
|
||||
# Global
|
||||
ro.boot.factorybuild u:object_r:public_vendor_default_prop:s0
|
||||
ro.boot.hwversion u:object_r:public_vendor_default_prop:s0
|
||||
ro.carrier.name u:object_r:public_vendor_default_prop:s0
|
||||
ro.miui.cust_variant u:object_r:public_vendor_default_prop:s0
|
||||
ro.product.marketname u:object_r:public_vendor_default_prop:s0
|
||||
ro.boot.factorybuild u:object_r:vendor_public_vendor_default_prop:s0
|
||||
ro.boot.hwversion u:object_r:vendor_public_vendor_default_prop:s0
|
||||
ro.carrier.name u:object_r:vendor_public_vendor_default_prop:s0
|
||||
ro.miui.cust_variant u:object_r:vendor_public_vendor_default_prop:s0
|
||||
ro.product.marketname u:object_r:vendor_public_vendor_default_prop:s0
|
||||
|
||||
# Graphics
|
||||
ro.gfx.driver.1 u:object_r:exported3_default_prop:s0
|
||||
@ -52,10 +52,10 @@ persist.vendor.sys.pay u:object_r:vendor_tee_listener_prop:s0
|
||||
ro.build.expect. u:object_r:exported_default_prop:s0
|
||||
|
||||
# RIL
|
||||
ro.vendor.ril u:object_r:public_vendor_default_prop:s0
|
||||
ro.vendor.ril u:object_r:vendor_public_vendor_default_prop:s0
|
||||
|
||||
# Sensor
|
||||
persist.sensor. u:object_r:sensors_prop:s0
|
||||
persist.sensor. u:object_r:vendor_sensors_prop:s0
|
||||
invn.hal.data. u:object_r:vendor_sensors_prop:s0
|
||||
invn.hal.entry. u:object_r:vendor_sensors_prop:s0
|
||||
invn.hal.debug. u:object_r:vendor_sensors_prop:s0
|
||||
|
||||
4
sepolicy/vendor/thermal-engine.te
vendored
4
sepolicy/vendor/thermal-engine.te
vendored
@ -1,10 +1,10 @@
|
||||
allow vendor_thermal-engine {
|
||||
sysfs_devfreq
|
||||
vendor_sysfs_devfreq
|
||||
sysfs_msm_subsys
|
||||
thermal_data_file
|
||||
}:dir r_dir_perms;
|
||||
|
||||
allow vendor_thermal-engine sysfs_devfreq:file rw_file_perms;
|
||||
allow vendor_thermal-engine vendor_sysfs_devfreq:file rw_file_perms;
|
||||
|
||||
# Rule for vendor_thermal-engine to access init process
|
||||
unix_socket_connect(vendor_thermal-engine, property, init);
|
||||
|
||||
2
sepolicy/vendor/vendor_init.te
vendored
2
sepolicy/vendor/vendor_init.te
vendored
@ -3,7 +3,7 @@ set_prop(vendor_init, vendor_alarm_boot_prop)
|
||||
set_prop(vendor_init, vendor_video_prop)
|
||||
|
||||
allow vendor_init {
|
||||
debugfs_clk
|
||||
vendor_debugfs_clk
|
||||
proc_dirty
|
||||
proc
|
||||
}:file w_file_perms;
|
||||
|
||||
Loading…
Reference in New Issue
Block a user