vendor: whitelist privapp permissions
idea from: https://review.lineageos.org/#/c/209859/
Change-Id: Iaed7ec4960175bf837425424f96bd452c81fb298
docs: https://source.android.com/devices/tech/config/perms-whitelist
diff --git a/config/common.mk b/config/common.mk
index c1b32b8..27d856c 100644
--- a/config/common.mk
+++ b/config/common.mk
@@ -54,6 +54,10 @@
PRODUCT_COPY_FILES += \
frameworks/native/data/etc/android.software.sip.voip.xml:system/etc/permissions/android.software.sip.voip.xml
+#permissions
+PRODUCT_COPY_FILES += \
+ vendor/omni/prebuilt/etc/permissions/privapp-permissions-omni.xml:system/etc/permissions/privapp-permissions-omni.xml
+
# custom omni sounds
PRODUCT_PROPERTY_OVERRIDES += \
ro.config.ringtone=omni_ringtone1.ogg \
diff --git a/prebuilt/etc/permissions/privapp-permissions-omni.xml b/prebuilt/etc/permissions/privapp-permissions-omni.xml
new file mode 100644
index 0000000..482f67b
--- /dev/null
+++ b/prebuilt/etc/permissions/privapp-permissions-omni.xml
@@ -0,0 +1,68 @@
+<?xml version="1.0" encoding="utf-8"?>
+<permissions>
+ <privapp-permissions package="android.ext.services">
+ <permission name="android.permission.PROVIDE_RESOLVER_RANKER_SERVICE"/>
+ </privapp-permissions>
+
+ <privapp-permissions package="com.android.apps.tag">
+ <permission name="android.permission.WRITE_SECURE_SETTINGS"/>
+ </privapp-permissions>
+
+ <!-- Additional permissions on top of privapp-permissions-platform.xml -->
+ <privapp-permissions package="com.android.dialer">
+ <permission name="android.permission.STATUS_BAR"/>
+ </privapp-permissions>
+
+ <!-- Additional permissions on top of privapp-permissions-platform.xml -->
+ <privapp-permissions package="com.android.launcher3">
+ <permission name="android.permission.CHANGE_OVERLAY_PACKAGES"/>
+ </privapp-permissions>
+
+ <!-- Additional permissions on top of privapp-permissions-platform.xml -->
+ <privapp-permissions package="com.android.phone">
+ <permission name="android.permission.OVERRIDE_WIFI_CONFIG"/>
+ </privapp-permissions>
+
+ <!-- Additional permissions on top of privapp-permissions-platform.xml -->
+ <privapp-permissions package="com.android.systemui">
+ <permission name="com.android.permission.WRITE_EMBEDDED_SUBSCRIPTIONS"/>
+ </privapp-permissions>
+
+ <privapp-permissions package="com.google.android.apps.turbo">
+ <permission name="android.permission.BATTERY_STATS"/>
+ <permission name="android.permission.DUMP"/>
+ <permission name="android.permission.INTERACT_ACROSS_USERS"/>
+ <permission name="android.permission.READ_LOGS"/>
+ <permission name="android.permission.REBOOT"/>
+ </privapp-permissions>
+
+ <privapp-permissions package="eu.chainfire.opendelta">
+ <permission name="android.permission.ACCESS_CACHE_FILESYSTEM"/>
+ <permission name="android.permission.REBOOT"/>
+ <permission name="android.permission.RECOVERY"/>
+ </privapp-permissions>
+
+ <privapp-permissions package="org.omnirom.logcat">
+ <permission name="android.permission.READ_LOGS"/>
+ </privapp-permissions>
+
+ <privapp-permissions package="org.omnirom.omnistyle">
+ <permission name="android.permission.CHANGE_OVERLAY_PACKAGES"/>
+ </privapp-permissions>
+
+ <privapp-permissions package="org.omnirom.omniswitch">
+ <permission name="android.permission.CHANGE_OVERLAY_PACKAGES"/>
+ <permission name="android.permission.FORCE_STOP_PACKAGES"/>
+ <permission name="android.permission.MANAGE_ACTIVITY_STACKS"/>
+ <permission name="android.permission.MANAGE_USERS"/>
+ <permission name="android.permission.READ_FRAME_BUFFER"/>
+ <permission name="android.permission.REAL_GET_TASKS"/>
+ <permission name="android.permission.START_TASKS_FROM_RECENTS"/>
+ <permission name="android.permission.STOP_APP_SWITCHES"/>
+ </privapp-permissions>
+
+ <privapp-permissions package="org.simalliance.openmobileapi.service">
+ <permission name="android.permission.WRITE_SECURE_SETTINGS"/>
+ </privapp-permissions>
+
+</permissions>