sepolicy: remove permission for vold access to tee device
BUG: b/121350843 vold need access to tee device for disk encryption use case. This permission can be removed as new cryptfshw hal is implemented in vendor which will interface vold to tee device. Change-Id: I69cba9cbd7119c2897e93c122b4946fd76773bb9 Signed-off-by: Neeraj Soni <neersoni@codeaurora.org>
This commit is contained in:
Neeraj Soni
committed by
Gerrit - the friendly Code Review server
Gerrit - the friendly Code Review server
parent
ac4425b5be
commit
da0b77d045
1
legacy/vendor/common/vold.te
vendored
1
legacy/vendor/common/vold.te
vendored
@@ -25,7 +25,6 @@
|
||||
# OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN
|
||||
# IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
|
||||
|
||||
allow vold tee_device:chr_file rw_file_perms;
|
||||
allow vold self:capability sys_boot;
|
||||
allow vold cache_file:dir w_dir_perms;
|
||||
allow vold { fscklogs cache_file }:file create_file_perms;
|
||||
|
||||
Reference in New Issue
Block a user