From 580ae4e9b8f1e36c73451e4c4068a2bbaadc1091 Mon Sep 17 00:00:00 2001
From: "A. Cody Schuffelen" <schuffelen@google.com>
Date: Thu, 17 Oct 2024 14:01:23 -0700
Subject: [PATCH] Use platform security domains in keymint/gatekeeper sepolicy

... rather than Cuttlefish sepolicy.

Issue reported by rkir@.

Bug: b/374158137
Test: cvd create
Change-Id: I7522187100e4c8ec94aade5f3cb791087900f7e0
---
 gatekeeper/aidl/software/file_contexts      | 2 +-
 security/keymint/aidl/default/file_contexts | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/gatekeeper/aidl/software/file_contexts b/gatekeeper/aidl/software/file_contexts
index 23a62ea9df..cc4180e33e 100644
--- a/gatekeeper/aidl/software/file_contexts
+++ b/gatekeeper/aidl/software/file_contexts
@@ -1,3 +1,3 @@
 (/.*)?                                                          u:object_r:vendor_file:s0
 /etc(/.*)?                                                      u:object_r:vendor_configs_file:s0
-/bin/hw/android\.hardware\.gatekeeper-service\.nonsecure        u:object_r:hal_gatekeeper_remote_exec:s0
+/bin/hw/android\.hardware\.gatekeeper-service\.nonsecure        u:object_r:hal_gatekeeper_default_exec:s0
diff --git a/security/keymint/aidl/default/file_contexts b/security/keymint/aidl/default/file_contexts
index dce7e3cff1..41b02d5817 100644
--- a/security/keymint/aidl/default/file_contexts
+++ b/security/keymint/aidl/default/file_contexts
@@ -1,3 +1,3 @@
 (/.*)?                                                           u:object_r:vendor_file:s0
 /etc(/.*)?                                                       u:object_r:vendor_configs_file:s0
-/bin/hw/android\.hardware\.security\.keymint-service\.nonsecure  u:object_r:hal_keymint_rust_exec:s0
+/bin/hw/android\.hardware\.security\.keymint-service\.nonsecure  u:object_r:hal_keymint_default_exec:s0