Merge "Allow vendor_init to fix permissions of TEE data file" into udc-d1-dev am: 9fc92bdb28
Original change: https://googleplex-android-review.googlesource.com/c/device/google/zuma-sepolicy/+/23413076 Change-Id: I16f8ebe09908fb8f648e903a2f052783f5eb4040 Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
This commit is contained in:
Donnie Pollitz
Automerger Merge Worker
commit
5bf2864bf3
1 changed files with 3 additions and 0 deletions
3
vendor/vendor_init.te
vendored
3
vendor/vendor_init.te
vendored
|
|
@ -11,6 +11,9 @@ allow vendor_init sg_device:chr_file r_file_perms;
|
|||
allow vendor_init bootdevice_sysdev:file create_file_perms;
|
||||
allow vendor_init modem_img_file:filesystem { getattr };
|
||||
|
||||
# Allow for checking NSP permissions
|
||||
allow vendor_init tee_data_file:lnk_file read;
|
||||
|
||||
userdebug_or_eng(`
|
||||
allow vendor_init vendor_init:lockdown { integrity };
|
||||
')
|
||||
|
|
|
|||
Loading…
Add table
Add a link
Reference in a new issue