DO NOT MERGE Randomize allocation canary A static allocation canary can be susceptible to buffer overflow exploit code bypassing, so this randomizes it on every run. Bug: 27411268 Change-Id: I81b06f89951a012c08d846042653ec957f3e9127 (cherry picked from commit 7c054350fb7da9da1fdb86e7f7b9a801cf1c39e4)

commit: 3387396e167819510c499b5a5486b499b3f4868f [log] [tgz]
author: Marie Janssen <jamuraa@google.com> Thu Mar 03 17:50:26 2016 -0800
committer: Marie Janssen <jamuraa@google.com> Thu May 26 19:26:27 2016 -0700
tree: da2d15eed46fb585fb3a4469044689bf2476b9f7
parent: e509caac6cc2bcecccac4e9d75f9df31ccd51a84 [diff]
diff --git a/osi/src/allocation_tracker.cc b/osi/src/allocation_tracker.cc
index c4f9705..1b8d5a1 100644
--- a/osi/src/allocation_tracker.cc
+++ b/osi/src/allocation_tracker.cc

@@ -37,15 +37,21 @@
   bool freed;
 } allocation_t;
 
-static const char *canary = "tinybird";
-
-static size_t canary_size;
+static const size_t canary_size = 8;
+static char canary[canary_size];
 static std::unordered_map<void*, allocation_t*> allocations;
 static pthread_mutex_t lock;
 static bool enabled = false;
 
 void allocation_tracker_init(void) {
-  canary_size = strlen(canary);
+  if (enabled)
+    return;
+
+  // randomize the canary contents
+  for (size_t i = 0; i < canary_size; i++)
+     canary[i] = (char)osi_rand();
+
+  LOG_DEBUG(LOG_TAG, "canary initialized");
 
   pthread_mutex_init(&lock, NULL);
commit	3387396e167819510c499b5a5486b499b3f4868f	[log] [tgz]
author	Marie Janssen <jamuraa@google.com>	Thu Mar 03 17:50:26 2016 -0800
committer	Marie Janssen <jamuraa@google.com>	Thu May 26 19:26:27 2016 -0700
tree	da2d15eed46fb585fb3a4469044689bf2476b9f7
parent	e509caac6cc2bcecccac4e9d75f9df31ccd51a84 [diff]