Gitiles
Code Review Sign In
gerrit.omnirom.org / android_system_sepolicy / 949e1d0a768668955e1940c3092996bf23663092^! / .
commit949e1d0a768668955e1940c3092996bf23663092[log] [tgz]
authorFlorian Mayer <fmayer@google.com>Wed Jan 19 15:19:20 2022 -0800
committerFlorian Mayer <fmayer@google.com>Wed Jan 26 10:58:47 2022 -0800
tree984c80092601fb5fe3c8f9b044039f87a124f4e6
parent4042fa5dec50b926dcdc14f874e24f35ec50bf57 [diff]
Add policy for command line tool to control MTE boot state.

Bug: 206895651

(cherry picked from commit 23173455ab48bbc1cc1e394717369e99e7175179)
(we need this cherry picked on android12-tests-dev to allow OEMs to
backport the associated feature without violating the neverallow
CTS)

Merged-In: I2e84193668dcdf24bde1c7e12b3cfd8a03954a16
Change-Id: I2e84193668dcdf24bde1c7e12b3cfd8a03954a16

diff --git a/private/compat/30.0/30.0.ignore.cil b/private/compat/30.0/30.0.ignore.cil
index 0c36aed..dd8cc7f 100644
--- a/private/compat/30.0/30.0.ignore.cil
+++ b/private/compat/30.0/30.0.ignore.cil

@@ -86,6 +86,7 @@
     memtrackproxy_service
     mm_events_config_prop
     music_recognition_service
+    mtectrl
     nfc_logs_data_file
     odrefresh
     odrefresh_exec

diff --git a/private/file_contexts b/private/file_contexts
index 351cd7c..6730c25 100644
--- a/private/file_contexts
+++ b/private/file_contexts

@@ -304,6 +304,7 @@
 /system/bin/lpdumpd        u:object_r:lpdumpd_exec:s0
 /system/bin/rss_hwm_reset	u:object_r:rss_hwm_reset_exec:s0
 /system/bin/perfetto        u:object_r:perfetto_exec:s0
+/system/bin/mtectrl         u:object_r:mtectrl_exec:s0
 /system/bin/traced        u:object_r:traced_exec:s0
 /system/bin/traced_perf        u:object_r:traced_perf_exec:s0
 /system/bin/traced_probes        u:object_r:traced_probes_exec:s0

diff --git a/private/mtectrl.te b/private/mtectrl.te
new file mode 100644
index 0000000..a89edda
--- /dev/null
+++ b/private/mtectrl.te

@@ -0,0 +1,9 @@
+# mtectrl is a tool to request MTE (Memory Tagging Extensions) from the bootloader.
+type mtectrl_exec, system_file_type, exec_type, file_type;
+
+init_daemon_domain(mtectrl)
+
+# mtectrl communicates the request to the bootloader via the misc partition.
+allow mtectrl misc_block_device:blk_file w_file_perms;
+allow mtectrl block_device:dir r_dir_perms;
+read_fstab(mtectrl)

diff --git a/public/domain.te b/public/domain.te
index 799a2f1..5c7c18c 100644
--- a/public/domain.te
+++ b/public/domain.te

@@ -627,6 +627,7 @@
   -vold
   -recovery
   -ueventd
+  -mtectrl
 } misc_block_device:blk_file { append link relabelfrom rename write open read ioctl lock };
 
 # Only (hw|vnd|)servicemanager should be able to register with binder as the context manager

diff --git a/public/mtectrl.te b/public/mtectrl.te
new file mode 100644
index 0000000..2fb8a96
--- /dev/null
+++ b/public/mtectrl.te

@@ -0,0 +1 @@
+type mtectrl, domain, coredomain;