Skip to content
Snippets Groups Projects
Commit 4d140237 authored by Josh Gao's avatar Josh Gao
Browse files

crash_dump: don't allow CAP_SYS_PTRACE or CAP_KILL. 

Bug: http://b/34853272
Test: debuggerd -b `pidof system_server`
Change-Id: I4c08efb9dfcc8610143f722ae0674578a2ed6869
parent 542a4626
No related branches found
No related tags found
No related merge requests found
Hide whitespace changes
Inline Side-by-side
Showing
with 0 additions and 1 deletion
public/crash_dump.te
+ 0
1
View file @ 4d140237
type crash_dump, domain; type crash_dump, domain;
type crash_dump_exec, exec_type, file_type; type crash_dump_exec, exec_type, file_type;
allow crash_dump self:capability { sys_ptrace kill };
allow crash_dump { allow crash_dump {
domain domain
-init -init
......
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment