Google Git
Sign in
android / platform / system / core / 46d46dc46446f14f26fbe8fb102dd36c1dfc1229
commit46d46dc46446f14f26fbe8fb102dd36c1dfc1229[log] [tgz]
authorKeith Mok <keithmok@google.com>Thu Aug 31 00:31:35 2023 +0000
committerAndroid Build Coastguard Worker <android-build-coastguard-worker@google.com>Wed Dec 06 22:45:19 2023 +0000
treeaf25a489b5706f3c78037e6f76c5ae31eb71c081
parentb8e07c25c4190f4338a6ce0394497925128d2609 [diff]
Add seal if ashmem-dev is backed by memfd

Need to seal the buffer size in align with ashmem if set to PROT_READ
only to prevent untrusted remote process to shrink the buffer size and
crash it.

Bug: 294609150
Test: build
Ignore-AOSP-First: Security
(cherry picked from commit f83c5c8fecf89d9315945368aa20350c2f235cc0)
(cherry picked from https://googleplex-android-review.googlesource.com/q/commit:61a2897733e15a12b7aa2dfd99957e83cbe59351)
Merged-In: I9288cf30b41e84ad8d3247c204e20482912bff69
Change-Id: I9288cf30b41e84ad8d3247c204e20482912bff69
1 file changed
tree: af25a489b5706f3c78037e6f76c5ae31eb71c081
  1. bootstat/
  2. cli-test/
  3. code_coverage/
  4. debuggerd/
  5. diagnose_usb/
  6. fastboot/
  7. fs_mgr/
  8. gatekeeperd/
  9. healthd/
  10. include/
  11. init/
  12. janitors/
  13. libappfuse/
  14. libasyncio/
  15. libbinderwrapper/
  16. libcrypto_utils/
  17. libcutils/
  18. libdiskconfig/
  19. libgrallocusage/
  20. libkeyutils/
  21. libmodprobe/
  22. libnetutils/
  23. libpackagelistparser/
  24. libprocessgroup/
  25. libsparse/
  26. libstats/
  27. libsuspend/
  28. libsync/
  29. libsystem/
  30. libsysutils/
  31. libusbhost/
  32. libutils/
  33. libvndksupport/
  34. llkd/
  35. mini_keyctl/
  36. mkbootfs/
  37. property_service/
  38. reboot/
  39. rootdir/
  40. run-as/
  41. sdcard/
  42. shell_and_utilities/
  43. storaged/
  44. toolbox/
  45. trusty/
  46. usbd/
  47. watchdogd/
  48. .clang-format.clang-format-4
  49. .clang-format-2 ⇨ ../../build/soong/scripts/system-clang-format-2
  50. .clang-format-4 ⇨ ../../build/soong/scripts/system-clang-format
  51. rustfmt.toml ⇨ ../../build/soong/scripts/rustfmt.toml
  52. .gitignore
  53. CleanSpec.mk
  54. METADATA
  55. MODULE_LICENSE_APACHE2
  56. OWNERS
  57. PREUPLOAD.cfg