From 97ba504c061287bbc421802e410f58cdd5df0ee2 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Thi=C3=A9baud=20Weksteen?= Date: Fri, 21 May 2021 09:18:08 +0200 Subject: [PATCH] Add transfer permission to wait_for_keymaster Bug: 188809569 Test: m sepolicy Change-Id: I79ead2fdf258f824ef9b0bf13c8179a6b819ccd7 Merged-In: I79ead2fdf258f824ef9b0bf13c8179a6b819ccd7 (cherry picked from commit eb353bc2285ec3883d2cf9b505ac629da484e357) --- private/wait_for_keymaster.te | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/private/wait_for_keymaster.te b/private/wait_for_keymaster.te index 8878acf3e..da98e2e07 100644 --- a/private/wait_for_keymaster.te +++ b/private/wait_for_keymaster.te @@ -10,6 +10,6 @@ allow wait_for_keymaster kmsg_device:chr_file w_file_perms; # wait_for_keymaster needs to find keystore and call methods with the returned # binder reference. -allow wait_for_keymaster servicemanager:binder call; +binder_use(wait_for_keymaster) allow wait_for_keymaster keystore_service:service_manager find; -allow wait_for_keymaster keystore:binder call; +binder_call(wait_for_keymaster, keystore)