Merge "Fix sepolicy for Gatekeeper HAL"
am: 9d5f97b381
Change-Id: Ic75010f7e11129e879a7eea1605969f2511f6fc9
This commit is contained in:
Janis Danisevskis
android-build-merger
commit
dfded77d42
2 changed files with 1 additions and 5 deletions
|
|
@ -15,7 +15,6 @@ allow gatekeeperd system_file:dir r_dir_perms;
|
|||
|
||||
### Rules needed when Gatekeeper HAL runs outside of gatekeeperd process.
|
||||
### These rules should eventually be granted only when needed.
|
||||
hwbinder_use(gatekeeperd)
|
||||
hal_client_domain(gatekeeperd, hal_gatekeeper)
|
||||
###
|
||||
|
||||
|
|
|
|||
|
|
@ -1,7 +1,4 @@
|
|||
# call into gatekeeperd process (callbacks)
|
||||
# TODO: This rules is unlikely to be needed because Gatekeeper HIDL
|
||||
# says there are no callbacks
|
||||
binder_call(hal_gatekeeper, gatekeeperd)
|
||||
binder_call(hal_gatekeeper_client, hal_gatekeeper_server)
|
||||
|
||||
# TEE access.
|
||||
allow hal_gatekeeper tee_device:chr_file rw_file_perms;
|
||||
|
|
|
|||
Loading…
Reference in a new issue