ACPR/android_system_core
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

logd: clear DUMPABLE

Browse source 
Do not allow anyone to see logd memory.

Test: gTest logd-unit-tests, liblog-unit-tests and logcat-unit-tests
Bug: 32450474
Change-Id: Ic7377efcb7e1d3cd91b50741061037a0fb589045
This commit is contained in:
Mark Salyzyn 2016-10-28 14:49:53 -07:00
parent 3a724a8f5d
commit 6a70ded7bf
1 changed files with 5 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

5
logd/main.cpp
View file

@ -106,6 +106,11 @@ static int drop_privs() {
return -1; return -1;
} }
if (prctl(PR_SET_DUMPABLE, 0) < 0) {
android::prdebug("failed to clear PR_SET_DUMPABLE");
return -1;
}
gid_t groups[] = { AID_READPROC }; gid_t groups[] = { AID_READPROC };
ScopedMinijail j(minijail_new()); ScopedMinijail j(minijail_new());
minijail_set_supplementary_gids(j.get(), arraysize(groups), groups); minijail_set_supplementary_gids(j.get(), arraysize(groups), groups);