Move dauntless settings to gs-common

Bug: 242479757 Test: build pass on all Gchip devices Change-Id: I4b6c011015f6b94b5329650eb82ec5b95bbe2040
2022-08-30 13:32:02 +08:00 · 2022-08-30 13:32:02 +08:00 · d13d0aaf56
commit d13d0aaf56
parent 8d9dc3aa30
13 changed files with 0 additions and 82 deletions
--- a/dauntless/citadel_provision.te
+++ b/dauntless/citadel_provision.te
@ -1,6 +0,0 @@
 type citadel_provision, domain;
 type citadel_provision_exec, exec_type, vendor_file_type, file_type;
 userdebug_or_eng(`
  init_daemon_domain(citadel_provision)
 ')
--- a/dauntless/citadeld.te
+++ b/dauntless/citadeld.te
@ -1,13 +0,0 @@
 type citadeld, domain;
 type citadeld_exec, exec_type, vendor_file_type, file_type;
 init_daemon_domain(citadeld)
 add_service(citadeld, citadeld_service)
 binder_use(citadeld)
 vndbinder_use(citadeld)
 binder_call(citadeld, system_server)
 allow citadeld citadel_device:chr_file rw_file_perms;
 allow citadeld fwk_stats_service:service_manager find;
 allow citadeld hal_power_stats_vendor_service:service_manager find;
--- a/dauntless/device.te
+++ b/dauntless/device.te
@ -1 +0,0 @@
 type citadel_device, dev_type;
--- a/dauntless/file.te
+++ b/dauntless/file.te
@ -1 +0,0 @@
 type citadel_updater, vendor_file_type, file_type;
--- a/dauntless/file_contexts
+++ b/dauntless/file_contexts
@ -1,9 +0,0 @@
 /vendor/bin/CitadelProvision                                                u:object_r:citadel_provision_exec:s0
 /vendor/bin/hw/init_citadel                                                 u:object_r:init_citadel_exec:s0
 /vendor/bin/hw/android\.hardware\.security\.keymint-service\.citadel        u:object_r:hal_keymint_citadel_exec:s0
 /vendor/bin/hw/android\.hardware\.weaver@1\.0-service\.citadel              u:object_r:hal_weaver_citadel_exec:s0
 /vendor/bin/hw/android\.hardware\.identity@1\.0-service\.citadel            u:object_r:hal_identity_citadel_exec:s0
 /vendor/bin/hw/citadel_updater                                              u:object_r:citadel_updater:s0
 /vendor/bin/hw/citadeld                                                     u:object_r:citadeld_exec:s0
 /dev/gsc0                                                                   u:object_r:citadel_device:s0
--- a/dauntless/hal_identity_citadel.te
+++ b/dauntless/hal_identity_citadel.te
@ -1,11 +0,0 @@
 type hal_identity_citadel, domain;
 type hal_identity_citadel_exec, exec_type, vendor_file_type, file_type;
 vndbinder_use(hal_identity_citadel)
 binder_call(hal_identity_citadel, citadeld)
 allow hal_identity_citadel citadeld_service:service_manager find;
 allow hal_identity_citadel hal_keymint_citadel:binder call;
 hal_server_domain(hal_identity_citadel, hal_identity)
 hal_server_domain(hal_identity_citadel, hal_keymint)
 init_daemon_domain(hal_identity_citadel)
--- a/dauntless/hal_keymint_citadel.te
+++ b/dauntless/hal_keymint_citadel.te
@ -1,9 +0,0 @@
 type hal_keymint_citadel, domain;
 type hal_keymint_citadel_exec, exec_type, vendor_file_type, file_type;
 hal_server_domain(hal_keymint_citadel, hal_keymint)
 init_daemon_domain(hal_keymint_citadel)
 vndbinder_use(hal_keymint_citadel)
 get_prop(hal_keymint_citadel, vendor_security_patch_level_prop)
 allow hal_keymint_citadel citadeld_service:service_manager find;
 binder_call(hal_keymint_citadel, citadeld)
--- a/dauntless/hal_weaver_citadel.te
+++ b/dauntless/hal_weaver_citadel.te
@ -1,11 +0,0 @@
 type hal_weaver_citadel, domain;
 type hal_weaver_citadel_exec, exec_type, vendor_file_type, file_type;
 init_daemon_domain(hal_weaver_citadel)
 hal_server_domain(hal_weaver_citadel, hal_weaver)
 hal_server_domain(hal_weaver_citadel, hal_oemlock)
 hal_server_domain(hal_weaver_citadel, hal_authsecret)
 vndbinder_use(hal_weaver_citadel)
 binder_call(hal_weaver_citadel, citadeld)
 allow hal_weaver_citadel citadeld_service:service_manager find;
--- a/dauntless/init_citadel.te
+++ b/dauntless/init_citadel.te
@ -1,15 +0,0 @@
 type init_citadel, domain;
 type init_citadel_exec, exec_type, vendor_file_type, file_type;
 init_daemon_domain(init_citadel)
 # Citadel communication must be via citadeld
 vndbinder_use(init_citadel)
 binder_call(init_citadel, citadeld)
 allow init_citadel citadeld_service:service_manager find;
 # Many standard utils are actually vendor_toolbox (like xxd)
 allow init_citadel vendor_toolbox_exec:file rx_file_perms;
 # init_citadel needs to invoke citadel_updater
 allow init_citadel citadel_updater:file rx_file_perms;
--- a/dauntless/service_contexts
+++ b/dauntless/service_contexts
@ -1,3 +0,0 @@
 android.hardware.security.keymint.IKeyMintDevice/strongbox      u:object_r:hal_keymint_service:s0
 android.hardware.security.sharedsecret.ISharedSecret/strongbox  u:object_r:hal_sharedsecret_service:s0
 android.hardware.security.keymint.IRemotelyProvisionedComponent/strongbox  u:object_r:hal_remotelyprovisionedcomponent_service:s0
--- a/dauntless/vndservice.te
+++ b/dauntless/vndservice.te
@ -1 +0,0 @@
 type citadeld_service, vndservice_manager_type;
--- a/dauntless/vndservice_contexts
+++ b/dauntless/vndservice_contexts
@ -1 +0,0 @@
 android.hardware.citadel.ICitadeld  u:object_r:citadeld_service:s0
--- a/whitechapel_pro/vndservice.te
+++ b/whitechapel_pro/vndservice.te
@ -1,4 +1,3 @@
 type hal_power_stats_vendor_service, vndservice_manager_type;
 type rls_service, vndservice_manager_type;
 type vendor_displaycolor_service, vndservice_manager_type;
 type vendor_surfaceflinger_vndservice, vndservice_manager_type;
		`@ -1 +0,0 @@`
			`type citadel_updater, vendor_file_type, file_type;`
		`@ -1 +0,0 @@`
			`type citadeld_service, vndservice_manager_type;`
		`@ -1 +0,0 @@`
			`android.hardware.citadel.ICitadeld u:object_r:citadeld_service:s0`