sepolicy: tequila

Change-Id: I9e54b3b70237d1e7427e45ad9dc47a0394cd82ab

atv/sepolicy.mk

@@ -5,8 +5,8 @@
 
 ifneq ($(TARGET_USES_PREBUILT_VENDOR_SEPOLICY), true)
 BOARD_SEPOLICY_DIRS += \
-    device/lineage/sepolicy/atv/vendor
+    device/tequila/sepolicy/atv/vendor
 endif
 
 PRODUCT_PRIVATE_SEPOLICY_DIRS += \
-   device/lineage/sepolicy/atv/private
+   device/tequila/sepolicy/atv/private

common/private/file_contexts

@@ -5,7 +5,7 @@
 /system/bin/mkfs\.ntfs                  u:object_r:mkfs_exec:s0
 
 # OTA packages
-/data/lineageos_updates(/.*)?           u:object_r:ota_package_file:s0
+/data/tequila_updates(/.*)?           u:object_r:ota_package_file:s0
 
 # Postinstall
 /system/bin/backuptool_ab\.functions              u:object_r:otapreopt_chroot_exec:s0

common/private/keys.conf

@@ -1,2 +1,2 @@
 [@MEDIASHELL]
-ALL : device/lineage/sepolicy/common/private/certs/mediashell/mediashell-release.x509.pem
+ALL : device/tequila/sepolicy/common/private/certs/mediashell/mediashell-release.x509.pem

common/private/property_contexts

@@ -16,3 +16,6 @@ persist.vendor.recovery_update         u:object_r:recovery_update_prop:s0
 
 # xtra-daemon control
 persist.sys.xtra-daemon.enabled        u:object_r:xtra_control_prop:s0 exact bool
+
+# Screen mirroring disablement
+persist.sysui.disable_mirroring_confirmation_dialog u:object_r:hdmi_config_prop:s0

common/sepolicy.mk

@@ -10,25 +10,22 @@ endif
 endif
 
 SYSTEM_EXT_PUBLIC_SEPOLICY_DIRS += \
-    device/lineage/sepolicy/common/public
+    device/tequila/sepolicy/common/public
 
 SYSTEM_EXT_PRIVATE_SEPOLICY_DIRS += \
-    device/lineage/sepolicy/common/private
+    device/tequila/sepolicy/common/private
 
 ifeq ($(TARGET_USES_PREBUILT_VENDOR_SEPOLICY), true)
 SYSTEM_EXT_PRIVATE_SEPOLICY_DIRS += \
-    device/lineage/sepolicy/common/dynamic \
-    device/lineage/sepolicy/common/system
+    device/tequila/sepolicy/common/dynamic \
+    device/tequila/sepolicy/common/system
 else
 BOARD_VENDOR_SEPOLICY_DIRS += \
-    device/lineage/sepolicy/common/dynamic \
-    device/lineage/sepolicy/common/vendor
+    device/tequila/sepolicy/common/dynamic \
+    device/tequila/sepolicy/common/vendor
 endif
 
-# Selectively include legacy rules defined by the products
--include device/lineage/sepolicy/legacy-common/sepolicy.mk
-
 # Include atv rules on atv product
 ifeq ($(PRODUCT_IS_ATV), true)
-include device/lineage/sepolicy/atv/sepolicy.mk
+include device/tequila/sepolicy/atv/sepolicy.mk
 endif

common/vendor/file_contexts

@@ -1,10 +1,8 @@
 # Fingerprint HAL
 /(vendor|system/vendor)/bin/hw/android\.hardware\.biometrics\.fingerprint@2\.0-service u:object_r:hal_fingerprint_default_exec:s0
 
-# GNSS HAL
-/(vendor|system/vendor)/bin/hw/android\.hardware\.gnss@1\.0-service\.legacy u:object_r:hal_gnss_default_exec:s0
-
 # Health HAL
+/(vendor|system/vendor)/bin/hw/android\.hardware\.health-service\.batteryless u:object_r:hal_health_default_exec:s0
 /(vendor|system/vendor)/bin/hw/vendor\.lineage\.health-service\.default u:object_r:hal_lineage_health_default_exec:s0
 
 # Light HAL
@@ -13,12 +11,18 @@
 # LiveDisplay HAL
 /(vendor|system/vendor)/bin/hw/vendor\.lineage\.livedisplay@2\.0-service-sysfs    u:object_r:hal_lineage_livedisplay_sysfs_exec:s0
 
-# RadioConfig HAL
-/(vendor|system/vendor)/bin/hw/android\.hardware\.radio\.config@1\.1-service\.wrapper   u:object_r:hal_radio_config_default_exec:s0
-
 # Power HAL
 /(vendor|system/vendor)/bin/hw/android\.hardware\.power-service\.lineage-libperfmgr u:object_r:hal_power_default_exec:s0
 
+# PowerShare HAL
+/(vendor|system/vendor)/bin/hw/vendor\.lineage\.powershare@1.0-service\.default u:object_r:hal_lineage_powershare_default_exec:s0
+
+# Radio HAL
+/(vendor|system/vendor)/bin/hw/android\.hardware\.radio@1\.4-service\.legacy   u:object_r:hal_radio_default_exec:s0
+
+# RadioConfig HAL
+/(vendor|system/vendor)/bin/hw/android\.hardware\.radio\.config@1\.1-service\.wrapper   u:object_r:hal_radio_config_default_exec:s0
+
 # USB HAL
 /(vendor|system/vendor)/bin/hw/android\.hardware\.usb@1\.3-service\.basic u:object_r:hal_usb_default_exec:s0
 /(vendor|system/vendor)/bin/hw/android\.hardware\.usb@1\.1-service\.typec u:object_r:hal_usb_default_exec:s0
@@ -26,6 +30,4 @@
 
 # Vibrator HAL
 /(vendor|system/vendor)/bin/hw/android\.hardware\.vibrator@1\.0-service\.lineage u:object_r:hal_vibrator_default_exec:s0
-
-# Wi-Fi HAL
-/(vendor|system/vendor)/bin/hw/android\.hardware\.wifi@1\.0-service\.legacy u:object_r:hal_wifi_default_exec:s0
+/(vendor|system/vendor)/bin/hw/android\.hardware\.vibrator-service\.legacy       u:object_r:hal_vibrator_default_exec:s0

common/vendor/hal_radio_default.te

@@ -0,0 +1 @@
+allow hal_radio_default hal_lineage_backend_radio_hwservice:hwservice_manager find;

common/vendor/hwservice.te

@@ -1 +1,3 @@
+type hal_lineage_backend_radio_hwservice, hwservice_manager_type;
+
 type hal_lineage_backend_radio_config_hwservice, hwservice_manager_type;

common/vendor/hwservice_contexts

@@ -1,2 +1,3 @@
 # The following hwservices are supposed to be registered by blobs through hexedit; Keep string length the same.
+lineage.hardware.radio::IRadio                                          u:object_r:hal_lineage_backend_radio_hwservice:s0
 lineage.hardware.radio.config::IRadioConfig                             u:object_r:hal_lineage_backend_radio_config_hwservice:s0

common/vendor/rild.te

@@ -1 +1,2 @@
+add_hwservice(rild, hal_lineage_backend_radio_hwservice)
 add_hwservice(rild, hal_lineage_backend_radio_config_hwservice)

exynos/sepolicy.mk

@@ -10,14 +10,14 @@ endif
 endif
 
 SYSTEM_EXT_PRIVATE_SEPOLICY_DIRS += \
-    device/lineage/sepolicy/exynos/private
+    device/tequila/sepolicy/exynos/private
 
 ifeq ($(TARGET_USES_PREBUILT_VENDOR_SEPOLICY), true)
 SYSTEM_EXT_PRIVATE_SEPOLICY_DIRS += \
-    device/lineage/sepolicy/exynos/dynamic \
-    device/lineage/sepolicy/exynos/system
+    device/tequila/sepolicy/exynos/dynamic \
+    device/tequila/sepolicy/exynos/system
 else
 BOARD_VENDOR_SEPOLICY_DIRS += \
-    device/lineage/sepolicy/exynos/dynamic \
-    device/lineage/sepolicy/exynos/vendor
+    device/tequila/sepolicy/exynos/dynamic \
+    device/tequila/sepolicy/exynos/vendor
 endif

libperfmgr/sepolicy.mk

@@ -1,2 +1,2 @@
 BOARD_VENDOR_SEPOLICY_DIRS += \
-    device/lineage/sepolicy/libperfmgr/vendor
+    device/tequila/sepolicy/libperfmgr/vendor

qcom/sepolicy.mk

@@ -10,16 +10,16 @@ endif
 endif
 
 SYSTEM_EXT_PRIVATE_SEPOLICY_DIRS += \
-    device/lineage/sepolicy/qcom/private
+    device/tequila/sepolicy/qcom/private
 
 ifeq ($(TARGET_USES_PREBUILT_VENDOR_SEPOLICY), true)
 SYSTEM_EXT_PRIVATE_SEPOLICY_DIRS += \
-    device/lineage/sepolicy/qcom/dynamic \
-    device/lineage/sepolicy/qcom/system
+    device/tequila/sepolicy/qcom/dynamic \
+    device/tequila/sepolicy/qcom/system
 else
 BOARD_VENDOR_SEPOLICY_DIRS += \
-    device/lineage/sepolicy/qcom/dynamic \
-    device/lineage/sepolicy/qcom/vendor
+    device/tequila/sepolicy/qcom/dynamic \
+    device/tequila/sepolicy/qcom/vendor
 endif
 
 ifeq (,$(filter msm8937 msm8953 msm8996 msm8998 sdm660 sdm710 sdm845, $(TARGET_BOARD_PLATFORM)))

qcom/vendor/file.te

@@ -1,2 +1 @@
-type proc_sched_energy_aware, proc_type, fs_type;
 type sysfs_socinfo_sensitive, fs_type, sysfs_type;

qcom/vendor/genfs_contexts

@@ -1,2 +1,2 @@
-genfscon proc /sys/kernel/sched_energy_aware             u:object_r:proc_sched_energy_aware:s0
+genfscon proc /sys/kernel/sched_energy_aware             u:object_r:proc_sched:s0
 genfscon sysfs /devices/soc0/serial_number               u:object_r:sysfs_socinfo_sensitive:s0

qcom/vendor/hal_power_default.te

@@ -1,5 +1,5 @@
 # To do powerhint on nodes defined in powerhint.json
-rw_dir_file(hal_power_default, proc_sched_energy_aware)
+rw_dir_file(hal_power_default, proc_sched)
 rw_dir_file(hal_power_default, sysfs_devfreq)
 rw_dir_file(hal_power_default, sysfs_graphics)
 rw_dir_file(hal_power_default, sysfs_kgsl)