Gitiles
Code Review Sign In
gerrit.omnirom.org / android_system_sepolicy / 6bae84a53579a4c81a393e12a5e0b48558ffe11e
commit6bae84a53579a4c81a393e12a5e0b48558ffe11e[log] [tgz]
authorNick Kralevich <nnk@google.com>Sat Feb 18 08:22:54 2017 -0800
committerNick Kralevich <nnk@google.com>Sat Feb 18 08:24:13 2017 -0800
treea8457c2e31d7563f8be607ef1d341571fb97392b
parenteebb73b517fde4302b6092cc12b3292e060bed25 [diff]
dumpstate: assert no process ptrace

dumpstate has CAP_SYS_PTRACE solely for the purpose of reading sensitive
/proc/PID files, not for using ptrace attach. Add an assert to ensure
that's the case.

Test: policy compiles.
Change-Id: I975308fae3f8e9a039b9efdc0e9605192b405ce7
1 file changed
tree: a8457c2e31d7563f8be607ef1d341571fb97392b
  1. private/
  2. public/
  3. reqd_mask/
  4. tools/
  5. vendor/
  6. Android.mk
  7. CleanSpec.mk
  8. MODULE_LICENSE_PUBLIC_DOMAIN
  9. NOTICE
  10. PREUPLOAD.cfg
  11. README