device_google_zuma/vendor/hal_bootctl_default.te at f33940a050f73b84196e13c9f6d05413986aa55a - Evolution-X-Tensor/device_google_zuma - Forgejo: Beyond coding. We Forge.

Evolution-X-Tensor/device_google_zuma

Donnie Pollitz 74e0bf60c2 Allow bootctl to access trusty device

Background:
* Boot Control needs to be able to blow AR fuses, which requires access
  to the OTP port on trusty.

Bug: 267714941
Test: AVC denial doesn't show up in log
Change-Id: I5635f2358b379ae0ffe882ca9ee162a455f554f0
Signed-off-by: Donnie Pollitz <donpollitz@google.com>

2023-03-28 09:58:16 +02:00

4 lines

255 B

Text

Raw Blame History

 allow hal_bootctl_default devinfo_block_device:blk_file rw_file_perms;
 allow hal_bootctl_default sda_block_device:blk_file rw_file_perms;
 allow hal_bootctl_default sysfs_ota:file rw_file_perms;
 allow hal_bootctl_default tee_device:chr_file rw_file_perms;