From 216245497b0ad1915ed8cbe31de5a91c11ec96aa Mon Sep 17 00:00:00 2001
From: Shawn Willden <swillden@google.com>
Date: Thu, 29 Apr 2021 21:12:47 -0600
Subject: [PATCH] Allow keymint to access tee-device

Bug: 177729159
Test: build & boot w/keymint
Merged-In: I16a291d04c5dd951fede0ed9136af94718cac41f
Change-Id: I16a291d04c5dd951fede0ed9136af94718cac41f
---
 public/hal_keymint.te | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/public/hal_keymint.te b/public/hal_keymint.te
index e56ab995a..9c65e22df 100644
--- a/public/hal_keymint.te
+++ b/public/hal_keymint.te
@@ -3,3 +3,6 @@ binder_call(hal_keymint_client, hal_keymint_server)
 hal_attribute_service(hal_keymint, hal_keymint_service)
 hal_attribute_service(hal_keymint, hal_remotelyprovisionedcomponent_service)
 binder_call(hal_keymint_server, servicemanager)
+
+allow hal_keymint tee_device:chr_file rw_file_perms;
+allow hal_keymint ion_device:chr_file r_file_perms;