gps: refine iGNSS build system - sepolicy

Bug: 318310869
Bug: 315915958
Test: build pass and GPS function works
Change-Id: I6329298f89a03a10dc9c8e1579baa4060d85c30c

caiman/file_contexts

@@ -14,14 +14,3 @@
 /dev/lwis-sensor-taotie-tele                                                u:object_r:lwis_device:s0
 /dev/lwis-sensor-taotie-uw                                                  u:object_r:lwis_device:s0
 /dev/lwis-tof-tarasque                                                      u:object_r:lwis_device:s0
-# GPS
-/dev/gnss_ipc                  u:object_r:vendor_gnss_device:s0
-/dev/gnss_boot                 u:object_r:vendor_gnss_device:s0
-/dev/gnss_dump                 u:object_r:vendor_gnss_device:s0
-
-/vendor/bin/hw/gnssd            u:object_r:gnssd_exec:s0
-/vendor/bin/hw/sctd             u:object_r:sctd_exec:s0
-/vendor/bin/hw/swcnd            u:object_r:swcnd_exec:s0
-/vendor/bin/hw/spad             u:object_r:spad_exec:s0
-/vendor/bin/hw/gnss-aidl-service_IGnssV2_ISlsiGnssV1           u:object_r:hal_gnss_default_exec:s0
-/vendor/bin/gnss_check\.sh                                     u:object_r:gnss_check_exec:s0

caiman/gnss_check.te

@@ -1,9 +0,0 @@
-type gnss_check, domain;
-type gnss_check_exec, exec_type, vendor_file_type, file_type;
-
-init_daemon_domain(gnss_check);
-
-allow gnss_check vendor_toolbox_exec:file { execute_no_trans };
-
-set_prop(gnss_check, ctl_stop_prop);
-set_prop(gnss_check, ctl_start_prop);

caiman/gnssd.te

@@ -1,23 +0,0 @@
-type gnssd, domain;
-type gnssd_exec, exec_type, vendor_file_type, file_type;
-init_daemon_domain(gnssd);
-
-# Allow gnssd to access rild
-binder_call(gnssd, rild);
-# binder_call(gnssd, hwservicemanager)
-allow gnssd hal_exynos_rild_hwservice:hwservice_manager find;
-allow gnssd radio_device:chr_file rw_file_perms;
-
-# Allow gnssd to acess gnss device
-allow gnssd vendor_gnss_device:chr_file rw_file_perms;
-allow gnssd vendor_gps_file:dir create_dir_perms;
-allow gnssd vendor_gps_file:file create_file_perms;
-allow gnssd vendor_gps_file:fifo_file create_file_perms;
-
-get_prop(gnssd, bootanim_system_prop)
-
-# Allow gnssd to obtain wakelock
-wakelock_use(gnssd)
-
-# Allow a base set of permissions required for network access.
-net_domain(gnssd);

caiman/hal_gnss_default.te

@@ -1,3 +0,0 @@
-binder_call(hal_gnss_default, gnssd);
-
-allow hal_gnss_default gnssd:unix_stream_socket connectto;

caiman/rild.te

@@ -1 +0,0 @@
-binder_call(rild, gnssd)

caiman/sctd.te

@@ -1,3 +0,0 @@
-type sctd, domain;
-type sctd_exec, exec_type, vendor_file_type, file_type;
-init_daemon_domain(sctd);

caiman/spad.te

@@ -1,3 +0,0 @@
-type spad, domain;
-type spad_exec, exec_type, vendor_file_type, file_type;
-init_daemon_domain(spad);

caiman/swcnd.te

@@ -1,3 +0,0 @@
-type swcnd, domain;
-type swcnd_exec, exec_type, vendor_file_type, file_type;
-init_daemon_domain(swcnd);

komodo/file_contexts

@@ -14,14 +14,3 @@
 /dev/lwis-sensor-taotie-tele                                                u:object_r:lwis_device:s0
 /dev/lwis-sensor-taotie-uw                                                  u:object_r:lwis_device:s0
 /dev/lwis-tof-tarasque                                                      u:object_r:lwis_device:s0
-# GPS
-/dev/gnss_ipc                  u:object_r:vendor_gnss_device:s0
-/dev/gnss_boot                 u:object_r:vendor_gnss_device:s0
-/dev/gnss_dump                 u:object_r:vendor_gnss_device:s0
-
-/vendor/bin/hw/gnssd            u:object_r:gnssd_exec:s0
-/vendor/bin/hw/sctd             u:object_r:sctd_exec:s0
-/vendor/bin/hw/swcnd            u:object_r:swcnd_exec:s0
-/vendor/bin/hw/spad             u:object_r:spad_exec:s0
-/vendor/bin/hw/gnss-aidl-service_IGnssV2_ISlsiGnssV1           u:object_r:hal_gnss_default_exec:s0
-/vendor/bin/gnss_check\.sh                                     u:object_r:gnss_check_exec:s0

komodo/gnss_check.te

@@ -1,9 +0,0 @@
-type gnss_check, domain;
-type gnss_check_exec, exec_type, vendor_file_type, file_type;
-
-init_daemon_domain(gnss_check);
-
-allow gnss_check vendor_toolbox_exec:file { execute_no_trans };
-
-set_prop(gnss_check, ctl_stop_prop);
-set_prop(gnss_check, ctl_start_prop);

komodo/gnssd.te

@@ -1,23 +0,0 @@
-type gnssd, domain;
-type gnssd_exec, exec_type, vendor_file_type, file_type;
-init_daemon_domain(gnssd);
-
-# Allow gnssd to access rild
-binder_call(gnssd, rild);
-# binder_call(gnssd, hwservicemanager)
-allow gnssd hal_exynos_rild_hwservice:hwservice_manager find;
-allow gnssd radio_device:chr_file rw_file_perms;
-
-# Allow gnssd to acess gnss device
-allow gnssd vendor_gnss_device:chr_file rw_file_perms;
-allow gnssd vendor_gps_file:dir create_dir_perms;
-allow gnssd vendor_gps_file:file create_file_perms;
-allow gnssd vendor_gps_file:fifo_file create_file_perms;
-
-get_prop(gnssd, bootanim_system_prop)
-
-# Allow gnssd to obtain wakelock
-wakelock_use(gnssd)
-
-# Allow a base set of permissions required for network access.
-net_domain(gnssd);

komodo/hal_gnss_default.te

@@ -1,3 +0,0 @@
-binder_call(hal_gnss_default, gnssd);
-
-allow hal_gnss_default gnssd:unix_stream_socket connectto;

komodo/rild.te

@@ -1 +0,0 @@
-binder_call(rild, gnssd)

komodo/sctd.te

@@ -1,3 +0,0 @@
-type sctd, domain;
-type sctd_exec, exec_type, vendor_file_type, file_type;
-init_daemon_domain(sctd);

komodo/spad.te

@@ -1,3 +0,0 @@
-type spad, domain;
-type spad_exec, exec_type, vendor_file_type, file_type;
-init_daemon_domain(spad);

komodo/swcnd.te

@@ -1,3 +0,0 @@
-type swcnd, domain;
-type swcnd_exec, exec_type, vendor_file_type, file_type;
-init_daemon_domain(swcnd);

ripcurrent24/file_contexts

@@ -42,14 +42,3 @@
 /dev/lwis-sensor-taotie-tele                                                u:object_r:lwis_device:s0
 /dev/lwis-sensor-taotie-uw                                                  u:object_r:lwis_device:s0
 /dev/lwis-tof-tarasque                                                      u:object_r:lwis_device:s0
-# GPS
-/dev/gnss_ipc                  u:object_r:vendor_gnss_device:s0
-/dev/gnss_boot                 u:object_r:vendor_gnss_device:s0
-/dev/gnss_dump                 u:object_r:vendor_gnss_device:s0
-
-/vendor/bin/hw/gnssd            u:object_r:gnssd_exec:s0
-/vendor/bin/hw/sctd             u:object_r:sctd_exec:s0
-/vendor/bin/hw/swcnd            u:object_r:swcnd_exec:s0
-/vendor/bin/hw/spad             u:object_r:spad_exec:s0
-/vendor/bin/hw/gnss-aidl-service_IGnssV2_ISlsiGnssV1           u:object_r:hal_gnss_default_exec:s0
-/vendor/bin/gnss_check\.sh                                     u:object_r:gnss_check_exec:s0

ripcurrent24/gnss_check.te

@@ -1,9 +0,0 @@
-type gnss_check, domain;
-type gnss_check_exec, exec_type, vendor_file_type, file_type;
-
-init_daemon_domain(gnss_check);
-
-allow gnss_check vendor_toolbox_exec:file { execute_no_trans };
-
-set_prop(gnss_check, ctl_stop_prop);
-set_prop(gnss_check, ctl_start_prop);

ripcurrent24/gnssd.te

@@ -1,23 +0,0 @@
-type gnssd, domain;
-type gnssd_exec, exec_type, vendor_file_type, file_type;
-init_daemon_domain(gnssd);
-
-# Allow gnssd to access rild
-binder_call(gnssd, rild);
-# binder_call(gnssd, hwservicemanager)
-allow gnssd hal_exynos_rild_hwservice:hwservice_manager find;
-allow gnssd radio_device:chr_file rw_file_perms;
-
-# Allow gnssd to acess gnss device
-allow gnssd vendor_gnss_device:chr_file rw_file_perms;
-allow gnssd vendor_gps_file:dir create_dir_perms;
-allow gnssd vendor_gps_file:file create_file_perms;
-allow gnssd vendor_gps_file:fifo_file create_file_perms;
-
-get_prop(gnssd, bootanim_system_prop)
-
-# Allow gnssd to obtain wakelock
-wakelock_use(gnssd)
-
-# Allow a base set of permissions required for network access.
-net_domain(gnssd);

ripcurrent24/hal_gnss_default.te

@@ -1,3 +0,0 @@
-binder_call(hal_gnss_default, gnssd);
-
-allow hal_gnss_default gnssd:unix_stream_socket connectto;

ripcurrent24/rild.te

@@ -1 +0,0 @@
-binder_call(rild, gnssd)

ripcurrent24/sctd.te

@@ -1,3 +0,0 @@
-type sctd, domain;
-type sctd_exec, exec_type, vendor_file_type, file_type;
-init_daemon_domain(sctd);

ripcurrent24/spad.te

@@ -1,3 +0,0 @@
-type spad, domain;
-type spad_exec, exec_type, vendor_file_type, file_type;
-init_daemon_domain(spad);

ripcurrent24/swcnd.te

@@ -1,3 +0,0 @@
-type swcnd, domain;
-type swcnd_exec, exec_type, vendor_file_type, file_type;
-init_daemon_domain(swcnd);

tokay/file_contexts

@@ -10,14 +10,3 @@
 /dev/lwis-sensor-boitata                                                    u:object_r:lwis_device:s0
 /dev/lwis-sensor-dokkaebi                                                   u:object_r:lwis_device:s0
 /dev/lwis-sensor-taotie-uw                                                  u:object_r:lwis_device:s0
-# GPS
-/dev/gnss_ipc                  u:object_r:vendor_gnss_device:s0
-/dev/gnss_boot                 u:object_r:vendor_gnss_device:s0
-/dev/gnss_dump                 u:object_r:vendor_gnss_device:s0
-
-/vendor/bin/hw/gnssd            u:object_r:gnssd_exec:s0
-/vendor/bin/hw/sctd             u:object_r:sctd_exec:s0
-/vendor/bin/hw/swcnd            u:object_r:swcnd_exec:s0
-/vendor/bin/hw/spad             u:object_r:spad_exec:s0
-/vendor/bin/hw/gnss-aidl-service_IGnssV2_ISlsiGnssV1           u:object_r:hal_gnss_default_exec:s0
-/vendor/bin/gnss_check\.sh                                     u:object_r:gnss_check_exec:s0

tokay/gnss_check.te

@@ -1,9 +0,0 @@
-type gnss_check, domain;
-type gnss_check_exec, exec_type, vendor_file_type, file_type;
-
-init_daemon_domain(gnss_check);
-
-allow gnss_check vendor_toolbox_exec:file { execute_no_trans };
-
-set_prop(gnss_check, ctl_stop_prop);
-set_prop(gnss_check, ctl_start_prop);

tokay/gnssd.te

@@ -1,23 +0,0 @@
-type gnssd, domain;
-type gnssd_exec, exec_type, vendor_file_type, file_type;
-init_daemon_domain(gnssd);
-
-# Allow gnssd to access rild
-binder_call(gnssd, rild);
-# binder_call(gnssd, hwservicemanager)
-allow gnssd hal_exynos_rild_hwservice:hwservice_manager find;
-allow gnssd radio_device:chr_file rw_file_perms;
-
-# Allow gnssd to acess gnss device
-allow gnssd vendor_gnss_device:chr_file rw_file_perms;
-allow gnssd vendor_gps_file:dir create_dir_perms;
-allow gnssd vendor_gps_file:file create_file_perms;
-allow gnssd vendor_gps_file:fifo_file create_file_perms;
-
-get_prop(gnssd, bootanim_system_prop)
-
-# Allow gnssd to obtain wakelock
-wakelock_use(gnssd)
-
-# Allow a base set of permissions required for network access.
-net_domain(gnssd);

tokay/hal_gnss_default.te

@@ -1,3 +0,0 @@
-binder_call(hal_gnss_default, gnssd);
-
-allow hal_gnss_default gnssd:unix_stream_socket connectto;

tokay/rild.te

@@ -1 +0,0 @@
-binder_call(rild, gnssd)

tokay/sctd.te

@@ -1,3 +0,0 @@
-type sctd, domain;
-type sctd_exec, exec_type, vendor_file_type, file_type;
-init_daemon_domain(sctd);

tokay/spad.te

@@ -1,3 +0,0 @@
-type spad, domain;
-type spad_exec, exec_type, vendor_file_type, file_type;
-init_daemon_domain(spad);

tokay/swcnd.te

@@ -1,3 +0,0 @@
-type swcnd, domain;
-type swcnd_exec, exec_type, vendor_file_type, file_type;
-init_daemon_domain(swcnd);