[MTE] allow mtectrl to sync state to property. Bug: 245624194 Change-Id: If580f3e64a839ee409b58e80300b927f6898c894

commit: 51382a3af05356a4c43978f85e376bec47a207b4 [log] [tgz]
author: Florian Mayer <fmayer@google.com> Wed Sep 21 14:53:48 2022 -0700
committer: Florian Mayer <fmayer@google.com> Tue Sep 27 15:56:33 2022 +0000
tree: 9b7adc880de71c7787f61f754c76b929a3e34295
parent: 5043c02262bdae99679fc5010a13aecbafc54f23 [diff] [blame]
diff --git a/private/mtectrl.te b/private/mtectrl.te
index 436dcae..a727b25 100644
--- a/private/mtectrl.te
+++ b/private/mtectrl.te

@@ -4,7 +4,12 @@
 
 init_daemon_domain(mtectrl)
 
+# to set the sys prop to match the bootloader message state.
+set_prop(mtectrl, arm64_memtag_prop)
+
 # mtectrl communicates the request to the bootloader via the misc partition.
-allow mtectrl misc_block_device:blk_file w_file_perms;
+# needs to write to update the request in misc partition, and read to sync
+# back to the property.
+allow mtectrl misc_block_device:blk_file rw_file_perms;
 allow mtectrl block_device:dir r_dir_perms;
 read_fstab(mtectrl)
commit	51382a3af05356a4c43978f85e376bec47a207b4	[log] [tgz]
author	Florian Mayer <fmayer@google.com>	Wed Sep 21 14:53:48 2022 -0700
committer	Florian Mayer <fmayer@google.com>	Tue Sep 27 15:56:33 2022 +0000
tree	9b7adc880de71c7787f61f754c76b929a3e34295
parent	5043c02262bdae99679fc5010a13aecbafc54f23 [diff] [blame]