diff --git a/bcmbt/bluetooth.mk b/bcmbt/bluetooth.mk
index fd41363..6615878 100644
--- a/bcmbt/bluetooth.mk
+++ b/bcmbt/bluetooth.mk
@@ -1,7 +1,11 @@
 PRODUCT_SOONG_NAMESPACES += vendor/broadcom/bluetooth
 PRODUCT_PACKAGES += \
        android.hardware.bluetooth@1.1-service.bcmbtlinux \
-       bt_vendor.conf
+       bt_vendor.conf \
+       android.hardware.bluetooth.prebuilt.xml \
+       android.hardware.bluetooth_le.prebuilt.xml
+
+
 BOARD_SEPOLICY_DIRS += device/google/gs-common/bcmbt/sepolicy
 
 DEVICE_MANIFEST_FILE += device/google/gs-common/bcmbt/manifest_bluetooth.xml
diff --git a/dauntless/gsc.mk b/dauntless/gsc.mk
index a26644a..6770acb 100644
--- a/dauntless/gsc.mk
+++ b/dauntless/gsc.mk
@@ -6,6 +6,7 @@ PRODUCT_PACKAGES += \
     citadeld \
     citadel_updater \
     android.hardware.weaver@1.0-service.citadel \
+    android.hardware.authsecret-service.citadel \
     android.hardware.identity@1.0-service.citadel \
     init_citadel \
     android.hardware.strongbox_keystore.xml \
diff --git a/dauntless/sepolicy/file_contexts b/dauntless/sepolicy/file_contexts
index 80ff2ae..a1d382b 100644
--- a/dauntless/sepolicy/file_contexts
+++ b/dauntless/sepolicy/file_contexts
@@ -4,6 +4,7 @@
 /vendor/bin/hw/android\.hardware\.security\.keymint-service\.citadel        u:object_r:hal_keymint_citadel_exec:s0
 /vendor/bin/hw/android\.hardware\.weaver@1\.0-service\.citadel              u:object_r:hal_weaver_citadel_exec:s0
 /vendor/bin/hw/android\.hardware\.identity@1\.0-service\.citadel            u:object_r:hal_identity_citadel_exec:s0
+/vendor/bin/hw/android\.hardware\.authsecret-service\.citadel               u:object_r:hal_authsecret_citadel_exec:s0
 /vendor/bin/hw/citadel_updater                                              u:object_r:citadel_updater:s0
 /vendor/bin/hw/citadeld                                                     u:object_r:citadeld_exec:s0
 
diff --git a/dauntless/sepolicy/hal_authsecret_citadel.te b/dauntless/sepolicy/hal_authsecret_citadel.te
new file mode 100644
index 0000000..029d957
--- /dev/null
+++ b/dauntless/sepolicy/hal_authsecret_citadel.te
@@ -0,0 +1,9 @@
+type hal_authsecret_citadel, domain;
+type hal_authsecret_citadel_exec, exec_type, vendor_file_type, file_type;
+
+vndbinder_use(hal_authsecret_citadel)
+binder_call(hal_authsecret_citadel, citadeld)
+allow hal_authsecret_citadel citadeld_service:service_manager find;
+
+hal_server_domain(hal_authsecret_citadel, hal_authsecret)
+init_daemon_domain(hal_authsecret_citadel)