Gitiles
Code Review Sign In
gerrit-public.fairphone.software / platform / frameworks / native / 1f7c0e47948127734714cc887356fce13d3c7538
commit1f7c0e47948127734714cc887356fce13d3c7538[log] [tgz]
authorSiarhei Vishniakou <svv@google.com>Fri Nov 16 22:18:53 2018 -0800
committerSiarhei Vishniakou <svv@google.com>Wed Nov 21 10:52:39 2018 -0800
treec5b4331ff9a3a8c5cfb8a1a78035cc0ebdc29572
parent0f2f5c9327636d7bf7d8e342f7b561744ae604b1 [diff]
Sanitize InputMessage before sending

The struct InputMessage has many fields, and is force-aligned to 8-byte
boundaries. There are also some padding fields that carry no
information.

This struct is typically allocated in the stack and populated with
various values before being sent across as a stream of bytes through the
socket.

Therefore, the "unused" data portions of the struct could contain
portions of the stack, since there aren't ever writes to those memory
locations.

To avoid this information leak, forcefully sanitize the struct. Create a
new struct that is explicitly set to zero. Next, only fill the
meaningful fields manually.

Bug: 115739809
Test: atest Poc18_12, adb shell monkey 100000
Change-Id: I7e44dacf1e8fa3156c8e4d2f7784ef0c53dab507
3 files changed
tree: c5b4331ff9a3a8c5cfb8a1a78035cc0ebdc29572
  1. aidl/
  2. build/
  3. cmds/
  4. data/
  5. docs/
  6. headers/
  7. include/
  8. include_sensor/
  9. libs/
  10. opengl/
  11. services/
  12. vulkan/
  13. .clang-format
  14. Android.bp
  15. CleanSpec.mk
  16. MODULE_LICENSE_APACHE2
  17. NOTICE
  18. PREUPLOAD.cfg