summaryrefslogtreecommitdiff
path: root/sepolicy/tee.te
diff options
context:
space:
mode:
Diffstat (limited to 'sepolicy/tee.te')
-rw-r--r--sepolicy/tee.te12
1 files changed, 6 insertions, 6 deletions
diff --git a/sepolicy/tee.te b/sepolicy/tee.te
index 85c98a8..0a124bc 100644
--- a/sepolicy/tee.te
+++ b/sepolicy/tee.te
@@ -1,6 +1,6 @@
-# /data/goodix labeling
-type_transition tee system_data_file:{ dir file } fingerprint_data_file;
-
-allow tee fingerprint_data_file:dir create_dir_perms;
-allow tee fingerprint_data_file:file create_file_perms;
-allow tee system_data_file:dir create_dir_perms;
+# TODO(b/36644492): Remove data_between_core_and_vendor_violators once
+# tee no longer directly accesses /data owned by the frameworks.
+typeattribute tee data_between_core_and_vendor_violators;
+allow tee system_data_file:dir r_dir_perms;
+allow tee fingerprintd_data_file:dir rw_dir_perms;
+allow tee fingerprintd_data_file:file create_file_perms;
generated by cgit v1.2.3 (git 2.25.1) at 2024-11-21 17:14:54 +0000