1 type rpmb_virt_device, dev_type; 2 3 allow tee rpmb_virt_device:chr_file { open read write }; 4 allow tee self:capability { setgid setuid }; 5
