From 8faa47c3ecd0e6d0c937354c77e5964dbd8ae34e Mon Sep 17 00:00:00 2001
From: David Brazdil <dbrazdil@google.com>
Date: Sat, 8 Oct 2022 20:00:07 +0100
Subject: [PATCH] Make /dev/{kvm,vhost-vsock} accessible to all UIDs

We will continue to restrict access to /dev/kvm and /dev/vhost-vsock with SELinux.

Bug: 245727626
Test: atest -p packages/modules/Virtualization:avf-presubmit
Change-Id: Id4f3e19c18a51bc51e6363d6ffde31c1032cf967
---
 rootdir/ueventd.rc | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/rootdir/ueventd.rc b/rootdir/ueventd.rc
index 4ec59afe9..0b7ffb8ea 100644
--- a/rootdir/ueventd.rc
+++ b/rootdir/ueventd.rc
@@ -69,8 +69,8 @@ subsystem dma_heap
 # CDMA radio interface MUX
 /dev/ppp                  0660   radio      vpn
 
-/dev/kvm                  0600   system     system
-/dev/vhost-vsock          0600   system	    system
+/dev/kvm                  0666   root       root
+/dev/vhost-vsock          0666   root       root
 
 # sysfs properties
 /sys/devices/platform/trusty.*      trusty_version        0440  root   log