Gitiles
Code Review Sign In
gerrit.omnirom.org / android_system_core / 61a2897733e15a12b7aa2dfd99957e83cbe59351
commit61a2897733e15a12b7aa2dfd99957e83cbe59351[log] [tgz]
authorKeith Mok <keithmok@google.com>Thu Aug 31 00:31:35 2023 +0000
committerKeith Mok <keithmok@google.com>Fri Sep 15 21:58:29 2023 +0000
tree99902c4f0074d5690ad7c12d58b9128cf7a88835
parent0c652fa345606617dbbe12853d0f49e95eca78bf [diff]
Add seal if ashmem-dev is backed by memfd

Need to seal the buffer size in align with ashmem if set to PROT_READ
only to prevent untrusted remote process to shrink the buffer size and
crash it.

Bug: 294609150
Test: build
Ignore-AOSP-First: Security
Change-Id: I9288cf30b41e84ad8d3247c204e20482912bff69
Merged-In: I9288cf30b41e84ad8d3247c204e20482912bff69
(cherry picked from commit f83c5c8fecf89d9315945368aa20350c2f235cc0)
1 file changed
tree: 99902c4f0074d5690ad7c12d58b9128cf7a88835
  1. adb/
  2. base/
  3. bootstat/
  4. cli-test/
  5. code_coverage/
  6. cpio/
  7. debuggerd/
  8. deprecated-adf/
  9. diagnose_usb/
  10. fastboot/
  11. fs_mgr/
  12. gatekeeperd/
  13. healthd/
  14. include/
  15. init/
  16. janitors/
  17. libappfuse/
  18. libasyncio/
  19. libbacktrace/
  20. libbinderwrapper/
  21. libcrypto_utils/
  22. libcutils/
  23. libdiskconfig/
  24. libgrallocusage/
  25. libkeyutils/
  26. liblog/
  27. libmodprobe/
  28. libnetutils/
  29. libpackagelistparser/
  30. libprocessgroup/
  31. libprocinfo/
  32. libqtaguid/
  33. libsparse/
  34. libstats/
  35. libsuspend/
  36. libsync/
  37. libsystem/
  38. libsysutils/
  39. libunwindstack/
  40. libusbhost/
  41. libutils/
  42. libvndksupport/
  43. libziparchive/
  44. llkd/
  45. logcat/
  46. logd/
  47. logwrapper/
  48. property_service/
  49. qemu_pipe/
  50. reboot/
  51. rootdir/
  52. run-as/
  53. sdcard/
  54. set-verity-state/
  55. shell_and_utilities/
  56. storaged/
  57. toolbox/
  58. trusty/
  59. usbd/
  60. watchdogd/
  61. .clang-format.clang-format-4
  62. .clang-format-2 ⇨ ../../build/soong/scripts/system-clang-format-2
  63. .clang-format-4 ⇨ ../../build/soong/scripts/system-clang-format
  64. .gitignore
  65. Android.bp
  66. CleanSpec.mk
  67. MODULE_LICENSE_APACHE2
  68. NOTICE
  69. OWNERS
  70. PREUPLOAD.cfg
  71. TEST_MAPPING