* Apparently hwbinder causes issues with adaptive
brightness. Going back to passthrough seems to fix
this issue.
Change-Id: I47d60d2d7fb52b5001df8a0d385acddebaa0ec84
* This is required to properly apply the changes to the boot
and recovery images, as well as generating the right
recovery-from-boot patch file to allow auto updating of recovery
Change-Id: Ifaaead6d68aae115e8fb4b01ee50d09861e5df1c
* Mounting /system partition is handled in kernel now,
however removing the entry from fstab caused issues building
the OTA. The workaround was to have a separate fstab, but turns out
that simply setting the recoveryonly flag does the trick because
those are then ignored during a normal Android boot.
Change-Id: I2944384d0a1c41bc9f9f51e2e29daff2bed0a0f4
* Limits security exposure from shims
* As a bonus, we no longer need noatsecure
to make LD_SHIM_LIBS persist through services
Change-Id: I877192422062f3e59c81a7130ad1a2b4be5d1647
The reason these files are moved to /vendor/etc/init/hw and
not /vendor/etc/init is because 'init' scans the /vendor/etc/init folder
for vendor service .rc fragments to import. That would either result
in duplicate imports or out-of-order imports of these hardware
specific .rc files and that *may* have unintended consequences.
In order to preserve the current import order for MTP, we move all
hardware specific .rc files to /vendor/etc/init/hw which is not
autoscanned by init BUT leave the init.${ro.hardware}.rc (i.e.
init.qcom.rc in this case) in root for 'init' to find.
Change-Id: I14531da05e2a3a256f734f8de96e1f1969c753f9
In order to be notified of PDR status, ril needs access to the QMI SERVREG_LOG
and QMI_SERVREG_NOTIF services
Change-Id: I99866e34994159578faa8a689b66184ca5d5d99b
Add security rule for WLPS service, which allows WLPS client to
communicate without net_raw privileges.
Change-Id: I4f382c90838f8994f3df25ee40f7769a52376be5
CRs-Fixed: 1050486
Add security rule for WLFW service, which allows WLFW client to
communicate without net_raw privileges.
Change-Id: I772f1ebf145fb810c81abe93a15adbc32f0b2bd1
CRs-Fixed: 1048891
Allow QMID service to aquire net_raw permission
for GPS to fix GTP WAA based Cell-id injection
Change-Id: Ibcbf2516d32f46fda358d9ec4db7cd68f6174a11
CRs-fixed: 2093489
Add system permission for DMS as cnss-daemon runs in system group
and uses DMS service.
Change-Id: Iffcf23afc3940a7acf28bb9c9b47648475cc9152
CRs-Fixed: 1067995
The diag node is moving to oem_2901 group permissions
instead of diag permissions. Update IPC Router security
config to allow diag communication through sockets.
Change-Id: I46411aff66a5e9fd6478924bfa92d575030305ea
There is a new value for AID_QCOM_DIAG on N builds. This change
updates the IPC security rules to use the new value.
CRs-Fixed: 1034114
Change-Id: I191be232fa9f55c2889c65f491ca2096b7f2a19b
Remove net_raw/net_admin from groups for service properties
of loc_launcher in init.qcom.rc. For accessing qmi service
16, location modules need to have the qmi socket to give
permission to gps gid rather than net_raw. Modifies sec_
config for to allow this.
Change-Id: I2c687d3e396a055212951bb3f11534af718acba5
CRs-Fixed: 1026637
Allow members of the System group, specifically the Android
System Server, and QSensorTest, to access the Sensors QMI services
Change-Id: I57d2a487269a2e7751c12f4d330c06531ec59228
