Merge 60e9ed2236c1346f4fffe7e69b027751f8708f38 on remote branch
Change-Id: Iacffa7e6f7ca8d74b25a1ca0a1c31c4cd64c5b0d
diff --git a/generic/vendor/common/bootanim.te b/generic/vendor/common/bootanim.te
index 21172a6..a24d925 100644
--- a/generic/vendor/common/bootanim.te
+++ b/generic/vendor/common/bootanim.te
@@ -24,6 +24,10 @@
# WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE
# OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN
# IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
+#
+# Changes from Qualcomm Innovation Center are provided under the following license:
+# Copyright (c) 2024 Qualcomm Innovation Center, Inc. All rights reserved.
+# SPDX-License-Identifier: BSD-3-Clause-Clear
allow bootanim hwservicemanager:binder call;
# TODO(b/62954877). On Android Wear, bootanim reads the time
@@ -32,4 +36,7 @@
# this denial on phones since this functionality is not used.
dontaudit bootanim system_data_file:dir read;
-dontaudit bootanim vendor_hal_qspmhal_hwservice:hwservice_manager find;
\ No newline at end of file
+dontaudit bootanim vendor_hal_qspmhal_hwservice:hwservice_manager find;
+
+#Allow read access to vendor_display_prop
+get_prop(bootanim, vendor_display_prop)
\ No newline at end of file
diff --git a/generic/vendor/common/hal_graphics_composer_default.te b/generic/vendor/common/hal_graphics_composer_default.te
index 7f2aae6..36d5854 100644
--- a/generic/vendor/common/hal_graphics_composer_default.te
+++ b/generic/vendor/common/hal_graphics_composer_default.te
@@ -107,6 +107,9 @@
#allow composer to find hal_thermal
hal_client_domain(hal_graphics_composer_default, hal_thermal);
+#allow composer to find hal_qspmhal
+hal_client_domain(hal_graphics_composer_default, vendor_hal_qspmhal);
+
# Allow access to qipcrtr_socket
# Remove this when QMI service moves to pfmd
allow hal_graphics_composer self: qipcrtr_socket create_socket_perms_no_ioctl;
diff --git a/qva/vendor/bengal/hal_gnss_qti.te b/qva/vendor/bengal/hal_gnss_qti.te
new file mode 100644
index 0000000..3d3e293
--- /dev/null
+++ b/qva/vendor/bengal/hal_gnss_qti.te
@@ -0,0 +1,5 @@
+#Copyright (c) 2024 Qualcomm Innovation Center, Inc. All rights reserved.
+#SPDX-License-Identifier: BSD-3-Clause-Clear
+
+# allow to read aon related properties
+get_prop(vendor_hal_gnss_qti, vendor_qc_aon_prop)
diff --git a/qva/vendor/bengal/init_shell.te b/qva/vendor/bengal/init_shell.te
new file mode 100644
index 0000000..5dc71c0
--- /dev/null
+++ b/qva/vendor/bengal/init_shell.te
@@ -0,0 +1,5 @@
+#Copyright (c) 2024 Qualcomm Innovation Center, Inc. All rights reserved.
+#SPDX-License-Identifier: BSD-3-Clause-Clear
+
+# allow to read aon related properties
+get_prop(vendor_qti_init_shell, vendor_qc_aon_prop)
diff --git a/qva/vendor/common/location_engine_service.te b/qva/vendor/common/location_engine_service.te
index e29f7ef..cc192bd 100644
--- a/qva/vendor/common/location_engine_service.te
+++ b/qva/vendor/common/location_engine_service.te
@@ -34,9 +34,6 @@
domain_auto_trans(vendor_location, vendor_location_engine_service_exec, vendor_location_engine_service)
allow vendor_location_engine_service vendor_location:fd use;
-# allows read/write file access in /dev/smcinvoke
-allow vendor_location_engine_service tee_device:chr_file rw_file_perms;
-
# allows file access in /data/vendor/location
allow vendor_location_engine_service vendor_location_data_file:dir create_dir_perms;
allow vendor_location_engine_service vendor_location_data_file:file create_file_perms;