| Andrew Scull | 6f3e5fe | 2021-07-02 12:38:21 +0000 | [diff] [blame] | 1 | ### |
| 2 | ### Neverallow rules | ||||
| 3 | ### | ||||
| 4 | |||||
| 5 | neverallow { | ||||
| 6 | domain | ||||
| 7 | -init | ||||
| 8 | -microdroid_manager | ||||
| 9 | } vmsecret_keymint_prop:property_service set; | ||||
| 10 | |||||
| 11 | neverallow { | ||||
| 12 | domain | ||||
| 13 | -init | ||||
| 14 | -microdroid_manager | ||||
| 15 | -hal_keymint_server | ||||
| 16 | } vmsecret_keymint_prop:file no_rw_file_perms; | ||||