Gitiles
Code Review Sign In
gerrit.omnirom.org / android_system_core / 26d2e158e988eb6633a4ea9171b7a7e49fb015ae^1..26d2e158e988eb6633a4ea9171b7a7e49fb015ae / .
commit26d2e158e988eb6633a4ea9171b7a7e49fb015ae[log] [tgz]
authorPete Bentley <prb@google.com>Mon Sep 26 22:07:43 2022 +0000
committerAutomerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>Mon Sep 26 22:07:43 2022 +0000
tree3be3b584f6ac9feb44cd17a2121c9376bc7e6102
parent88d54b018a8e0455de3fdba969351524f5cc5d90 [diff]
parent560adf7a165b8ec6aab79342050764c7d7910942 [diff]
Merge "Add AID for PRNG seeder daemon." am: 751cdc9489 am: 1c801c2168 am: 560adf7a16

Original change: https://android-review.googlesource.com/c/platform/system/core/+/2229337

Change-Id: I40f2a5afcd13192de59180efb6e3c97652749c06
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>

diff --git a/libcutils/include/private/android_filesystem_config.h b/libcutils/include/private/android_filesystem_config.h
index da5005c..1e035bb 100644
--- a/libcutils/include/private/android_filesystem_config.h
+++ b/libcutils/include/private/android_filesystem_config.h

@@ -140,6 +140,7 @@
 #define AID_JC_IDENTITYCRED 1089  /* Javacard Identity Cred HAL - to manage omapi ARA rules */
 #define AID_SDK_SANDBOX 1090      /* SDK sandbox virtual UID */
 #define AID_SECURITY_LOG_WRITER 1091 /* write to security log */
+#define AID_PRNG_SEEDER 1092         /* PRNG seeder daemon */
 /* Changes to this file must be made in AOSP, *not* in internal branches. */
 
 #define AID_SHELL 2000 /* adb and debug shell user */

diff --git a/rootdir/ueventd.rc b/rootdir/ueventd.rc
index a140c8c..4ec59af 100644
--- a/rootdir/ueventd.rc
+++ b/rootdir/ueventd.rc

@@ -37,6 +37,8 @@
 /dev/tty                  0666   root       root
 /dev/random               0666   root       root
 /dev/urandom              0666   root       root
+# Aside from kernel threads, only prng_seeder needs access to HW RNG
+/dev/hw_random            0400   prng_seeder prng_seeder
 /dev/ashmem*              0666   root       root
 /dev/binder               0666   root       root
 /dev/hwbinder             0666   root       root