From fa5afa2afd131fb88614725d04bb10c40ad93e5f Mon Sep 17 00:00:00 2001
From: Yifan Hong <elsk@google.com>
Date: Fri, 10 Aug 2018 13:52:59 -0700
Subject: [PATCH] vold uses health filesystem HAL

Bug: 111655771
Test: builds
Change-Id: I67850d910770109005b2243c628282ad638c88fb
---
 public/vold.te | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/public/vold.te b/public/vold.te
index f85e2c984..a2ddb05e8 100644
--- a/public/vold.te
+++ b/public/vold.te
@@ -166,6 +166,9 @@ binder_call(vold, healthd)
 # talk to keymaster
 hal_client_domain(vold, hal_keymaster)
 
+# talk to health filesystem HAL
+hal_client_domain(vold, hal_health_filesystem)
+
 # Access userdata block device.
 allow vold userdata_block_device:blk_file rw_file_perms;
 
@@ -266,6 +269,7 @@ neverallow { domain -system_server -vdc -vold } vold_service:service_manager fin
 neverallow vold {
   domain
   -hal_keymaster_server
+  -hal_health_filesystem_server
   -healthd
   -hwservicemanager
   -servicemanager
-- 
GitLab