ca5699b877
And introduce a new SELinux key domain solely for use by the on-device signing daemon. Bug: 165630556 Test: no denials on boot Change-Id: If0f6797d7326e98f169639169adec6460689f5ca
15 lines
577 B
Text
15 lines
577 B
Text
# Specify keystore2_key namespaces in this file.
|
|
# Please keep the names in alphabetical order and comment each new entry.
|
|
|
|
# A keystore2_key namespace for the shell domain. Mainly used for native tests.
|
|
type shell_key, keystore2_key_type;
|
|
|
|
# A keystore2 namespace for the su domain. Mainly used for native tests.
|
|
type su_key, keystore2_key_type;
|
|
|
|
# A keystore2 namespace for vold. Vold need special permission to handle
|
|
# its own Keymint blobs.
|
|
type vold_key, keystore2_key_type;
|
|
|
|
# A keystore2 namespace for the on-device signing daemon.
|
|
type odsign_key, keystore2_key_type;
|