Skip to content
Commit e6459431 authored by Victor Hsieh's avatar Victor Hsieh
Browse files

When suid_dumpable == 2, set dumpable to 0 for apps 

Core dumps for zygote children are expected to be disabled in CTS, but
on system like Chrome OS, suid_dumpable is 2, thus not compliant with
CTS.  This patch sets dumpable to 0 for apps when suid_dumpable is 2.

Test: atest \
      android.permission.cts.FileSystemPermissionTest#testAllBlockDevicesAreSecure \
      android.os.cts.SecurityFeaturesTest#testPrctlDumpable \
      android.seccomp.cts.SeccompHostJUnit4DeviceTest#testCTSSyscallBlocked
Bug: 62379607
Bug: 79094505

Change-Id: Ida43b16590dca1e85a0f9549c779e38c00bc6a0c
parent 391d9196
Hide whitespace changes
Inline Side-by-side
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment