Gitiles
Code Review Sign In
gerrit-public.fairphone.software / platform / frameworks / base / 1de009645c3e315e749bae7246f9a2972c80a051
commit1de009645c3e315e749bae7246f9a2972c80a051[log] [tgz]
authorNick Kralevich <nnk@google.com>Mon Dec 17 14:41:59 2018 -0800
committerNick Kralevich <nnk@google.com>Mon Dec 17 14:48:35 2018 -0800
tree07980b8e5a9604d403397b5ebd3619d4ecf5c3cb
parentbc292422885b64d369c3420e1eb55a039dfdeeec [diff]
NativeHandle.java: dup() with O_CLOEXEC

Don't use Os.dup(), as it creates file handles which leak across exec()
boundaries. Instead, use fcntl(F_DUPFD_CLOEXEC);

O_CLOEXEC is essential for ensuring that file descriptors do not leak
across an exec() boundary. Setting O_CLOEXEC ensures that file
descriptors can't linger around unnecessarily in an exec()ed process
which doesn't use them, making more efficient use of resources.
Additionally, O_CLOEXEC is important in ensuring that untrusted
exec()ed code cannot take advantage of leaked file descriptors.

Test: Android compiles and boots
Bug: 120983106
Change-Id: I99a66834cc6b9bb25e1b4daf75384ec6a91ae9e2
1 file changed
tree: 07980b8e5a9604d403397b5ebd3619d4ecf5c3cb
  1. apct-tests/
  2. api/
  3. cmds/
  4. config/
  5. core/
  6. data/
  7. docs/
  8. drm/
  9. graphics/
  10. keystore/
  11. libs/
  12. location/
  13. lowpan/
  14. media/
  15. native/
  16. nfc-extras/
  17. obex/
  18. opengl/
  19. packages/
  20. proto/
  21. rs/
  22. samples/
  23. sax/
  24. services/
  25. startop/
  26. telecomm/
  27. telephony/
  28. test-base/
  29. test-legacy/
  30. test-mock/
  31. test-runner/
  32. tests/
  33. tools/
  34. vr/
  35. wifi/
  36. Android.bp
  37. Android.mk
  38. CleanSpec.mk
  39. MODULE_LICENSE_APACHE2
  40. NOTICE
  41. pathmap.mk
  42. PREUPLOAD.cfg