Allow persist.arm64.memtag.* sysprops to be changed on user devices.

Looks like we missed this, and so non-rooted locked devices can't override the persistent sysprops. On Pixel 8 for example, we ship with 'persist.arm64.memtag.system_server=off' by default (from some droidfood carry-overs), and this can't be edited (https://googleprojectzero.blogspot.com/2023/11/first-handset-with-mte-on-market.html). We should allow these advanced users to set all the MTE properties on the device that they own, and they can already control the non-persistent properties. Change-Id: Ie495f6f9ad43146a0bfcd5bb291fca3760467370 Test: N/A Bug: N/A
2023-11-10 13:02:00 +00:00 · 2023-11-10 13:02:00 +00:00 · 980c33614e
commit 980c33614e
parent 2341903b87
1 changed files with 2 additions and 3 deletions
--- a/private/property_contexts
+++ b/private/property_contexts
@ -862,9 +862,8 @@ libc.debug.gwp_asan.          u:object_r:gwp_asan_prop:s0 prefix string
 persist.libc.debug.gwp_asan.  u:object_r:gwp_asan_prop:s0 prefix string

 # shell-only props for ARM memory tagging (MTE).
-arm64.memtag. u:object_r:arm64_memtag_prop:s0 prefix string
-persist.arm64.memtag.default u:object_r:arm64_memtag_prop:s0 exact string
-persist.arm64.memtag.app_default u:object_r:arm64_memtag_prop:s0 exact string
+arm64.memtag.         u:object_r:arm64_memtag_prop:s0 prefix string
+persist.arm64.memtag. u:object_r:arm64_memtag_prop:s0 prefix string

 net.redirect_socket_calls.hooked u:object_r:socket_hook_prop:s0 exact bool