Gitiles
Code Review Sign In
review.shift-gmbh.com / SHIFTPHONES / android_system_core / 91782706c5887922c4ae17c3633c7697ab7a0bcf
commit91782706c5887922c4ae17c3633c7697ab7a0bcf[log] [tgz]
authorKeith Mok <keithmok@google.com>Thu Aug 31 00:31:35 2023 +0000
committerAndroid Build Coastguard Worker <android-build-coastguard-worker@google.com>Wed Dec 06 22:44:57 2023 +0000
tree6e83c148d005d1faa8757a558c39a31ba3b06eb4
parent83366e7e7a1556ab6cff117673bb9f17b973de99 [diff]
Add seal if ashmem-dev is backed by memfd

Need to seal the buffer size in align with ashmem if set to PROT_READ
only to prevent untrusted remote process to shrink the buffer size and
crash it.

Bug: 294609150
Test: build
Ignore-AOSP-First: Security
(cherry picked from commit f83c5c8fecf89d9315945368aa20350c2f235cc0)
(cherry picked from https://googleplex-android-review.googlesource.com/q/commit:61a2897733e15a12b7aa2dfd99957e83cbe59351)
Merged-In: I9288cf30b41e84ad8d3247c204e20482912bff69
Change-Id: I9288cf30b41e84ad8d3247c204e20482912bff69
1 file changed
tree: 6e83c148d005d1faa8757a558c39a31ba3b06eb4
  1. bootstat/
  2. cli-test/
  3. code_coverage/
  4. debuggerd/
  5. diagnose_usb/
  6. fastboot/
  7. fs_mgr/
  8. gatekeeperd/
  9. healthd/
  10. include/
  11. init/
  12. janitors/
  13. libappfuse/
  14. libasyncio/
  15. libbinderwrapper/
  16. libcrypto_utils/
  17. libcutils/
  18. libdiskconfig/
  19. libgrallocusage/
  20. libkeyutils/
  21. libmodprobe/
  22. libnetutils/
  23. libpackagelistparser/
  24. libprocessgroup/
  25. libsparse/
  26. libstats/
  27. libsuspend/
  28. libsync/
  29. libsystem/
  30. libsysutils/
  31. libusbhost/
  32. libutils/
  33. libvndksupport/
  34. llkd/
  35. mini_keyctl/
  36. mkbootfs/
  37. property_service/
  38. reboot/
  39. rootdir/
  40. run-as/
  41. sdcard/
  42. set-verity-state/
  43. shell_and_utilities/
  44. storaged/
  45. toolbox/
  46. trusty/
  47. usbd/
  48. watchdogd/
  49. .clang-format.clang-format-4
  50. .clang-format-2 ⇨ ../../build/soong/scripts/system-clang-format-2
  51. .clang-format-4 ⇨ ../../build/soong/scripts/system-clang-format
  52. rustfmt.toml ⇨ ../../build/soong/scripts/rustfmt.toml
  53. .gitignore
  54. CleanSpec.mk
  55. METADATA
  56. MODULE_LICENSE_APACHE2
  57. OWNERS
  58. PREUPLOAD.cfg