Gitiles
Code Review Sign In
review.shift-gmbh.com / SHIFTPHONES / android_frameworks_native / dacdbd19f5500eda210fcde08bcfedcf9853f705
commitdacdbd19f5500eda210fcde08bcfedcf9853f705[log] [tgz]
authorYtai Ben-Tsvi <ytai@google.com>Thu Oct 22 15:40:45 2020 -0700
committerYtai Ben-Tsvi <ytai@google.com>Mon Oct 26 09:39:52 2020 -0700
tree6fbe22d53802e01b65d675fd9f21c05b7191bcc7
parent598420651aa61b619cc34f66ede84b8b7d671aca [diff]
MemoryHeapBase: Map as read-only when needed

When creating a MemoryHeapBase around a file descriptor provided by a
different process, either via an fd or a device name, the existing
code would attempt to map it with PROT_WRITE, unconditionally, which
would result in a failure to map.

With this change, we omit PROT_WRITE from the mapping whenever the
READ_ONLY flag is set, but only when accessing via one of these ctors.
The ctor that allocates a new ashmem region continues to work as
before, with the caller process having write access, but any other
process not having it.

Test: atest -p frameworks/native/libs/binder
Change-Id: Iab3583d841c3dceed1a7cb61e922a85104b4b00b
2 files changed
tree: 6fbe22d53802e01b65d675fd9f21c05b7191bcc7
  1. aidl/
  2. build/
  3. cmds/
  4. data/
  5. docs/
  6. headers/
  7. include/
  8. include_sensor/
  9. libs/
  10. opengl/
  11. services/
  12. vulkan/
  13. .clang-format
  14. .gitignore
  15. Android.bp
  16. CleanSpec.mk
  17. METADATA
  18. MODULE_LICENSE_APACHE2
  19. NOTICE
  20. PREUPLOAD.cfg
  21. TEST_MAPPING