Donate to e Foundation | Murena handsets with /e/OS | Own a part of Murena! Learn more

Commit 59972218 authored by Josh Gao's avatar Josh Gao
Browse files

zygote: don't drop CAP_SYS_PTRACE from the bounding set. 

crash_dump needs to acquire CAP_SYS_PTRACE to be able to ptrace
processes with capabilities. selinux should hopefully be sufficient for
restricting ptrace to processes that should do it.

Bug: http://b/34694637
Test: debuggerd `pidof system_server`
Change-Id: If46f0b9baa54529780f7767f309f76b102a42ab4
parent 35c71533

core/jni/com_android_internal_os_Zygote.cpp

+5 −0
Original line number Diff line number Diff line
@@ -247,6 +247,11 @@ static void EnableKeepCapabilities(JNIEnv* env) { 


static void DropCapabilitiesBoundingSet(JNIEnv* env) {

  for (int i = 0; prctl(PR_CAPBSET_READ, i, 0, 0, 0) >= 0; i++) {

    // Keep CAP_SYS_PTRACE in our bounding set so crash_dump can gain it.

    if (i == CAP_SYS_PTRACE) {

      continue;

    }



    int rc = prctl(PR_CAPBSET_DROP, i, 0, 0, 0);

    if (rc == -1) {

      if (errno == EINVAL) {