commit | ef4f067c03543d8c8f2f8218bc69af12692ba000 | [log] [tgz] |
---|---|---|
author | Max Bires <jbires@google.com> | Wed Nov 29 14:38:48 2017 -0800 |
committer | Max Bires <jbires@google.com> | Wed Nov 29 23:13:24 2017 +0000 |
tree | 5561792c0d2a6f6dfb97c54a814d940917145d4a | |
parent | 3ad103c523869e06767b0dd33d6d7ae142b564d7 [diff] |
Fixing security vuln by tightening race condition window. A proper fix for this feature requires reworking binder permission checking to take the selinux context and not the pid. This is feature work that should be done for P to properly fix these race conditions that occur elsewhere in the code. Bug: 68217699 Test: KeyStore keygen permissions cannot be bypassed through PID cycling Change-Id: I1ba5210010d6c413c9b1dbde3df0cc566400bfac