| commit | f00e88b648b3b998298216329764157760617496 | [log] [tgz] |
|---|---|---|
| author | Mitch Phillips <mitchp@google.com> | Fri Nov 10 13:02:00 2023 +0000 |
| committer | Android Build Cherrypicker Worker <android-build-cherrypicker-worker@google.com> | Wed Jan 03 10:43:58 2024 +0000 |
| tree | 023b64baaff4a76e595ed0e48dfe6cd43f715790 | |
| parent | 7b73ec260565aa5e63778bfeb8a92acd9f8a55af [diff] |
Allow persist.arm64.memtag.* sysprops to be changed on user devices. Looks like we missed this, and so non-rooted locked devices can't override the persistent sysprops. On Pixel 8 for example, we ship with 'persist.arm64.memtag.system_server=off' by default (from some droidfood carry-overs), and this can't be edited (https://googleprojectzero.blogspot.com/2023/11/first-handset-with-mte-on-market.html). We should allow these advanced users to set all the MTE properties on the device that they own, and they can already control the non-persistent properties. Test: N/A Bug: N/A (cherry picked from https://android-review.googlesource.com/q/commit:980c33614e691dde070b59bc746bd252b6edb189) Merged-In: Ie495f6f9ad43146a0bfcd5bb291fca3760467370 Change-Id: Ie495f6f9ad43146a0bfcd5bb291fca3760467370 Bug: 309888546
diff --git a/private/property_contexts b/private/property_contexts index 7a17035..c50e400 100644 --- a/private/property_contexts +++ b/private/property_contexts
@@ -847,9 +847,8 @@ persist.libc.debug.gwp_asan. u:object_r:gwp_asan_prop:s0 prefix string # shell-only props for ARM memory tagging (MTE). -arm64.memtag. u:object_r:arm64_memtag_prop:s0 prefix string -persist.arm64.memtag.default u:object_r:arm64_memtag_prop:s0 exact string -persist.arm64.memtag.app_default u:object_r:arm64_memtag_prop:s0 exact string +arm64.memtag. u:object_r:arm64_memtag_prop:s0 prefix string +persist.arm64.memtag. u:object_r:arm64_memtag_prop:s0 prefix string net.redirect_socket_calls.hooked u:object_r:socket_hook_prop:s0 exact bool