MarcoBuster/Magisk
1
1
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity

Add built-in procfs protection on SDK 24+

Browse Source 
More information in the Medium Post:
https://medium.com/@topjohnwu/from-anime-game-to-android-system-security-vulnerability-9b955a182f20
This commit is contained in:
topjohnwu 2018-11-28 01:27:32 -05:00
parent f69a004c1c
commit f723427b8b
1 changed files with 6 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
native/jni/daemon/bootstages.cpp
View File

@ -432,6 +432,9 @@ static bool magisk_env() {
xmkdir(SECURE_DIR "/post-fs-data.d", 0755); xmkdir(SECURE_DIR "/post-fs-data.d", 0755);
xmkdir(SECURE_DIR "/service.d", 0755); xmkdir(SECURE_DIR "/service.d", 0755);
CharArray sdk_prop = getprop("ro.build.version.sdk");
int sdk = sdk_prop.empty() ? -1 : atoi(sdk_prop);
LOGI("* Mounting mirrors"); LOGI("* Mounting mirrors");
Vector<CharArray> mounts; Vector<CharArray> mounts;
file_to_vector("/proc/mounts", mounts); file_to_vector("/proc/mounts", mounts);
@ -462,6 +465,9 @@ static bool magisk_env() {
#else #else
LOGI("mount: %s\n", MIRRDIR "/vendor"); LOGI("mount: %s\n", MIRRDIR "/vendor");
#endif #endif
} else if (sdk >= 24 && line.contains(" /proc ") && !line.contains("hidepid=2")) {
// Enforce hidepid
xmount(nullptr, "/proc", nullptr, MS_REMOUNT, "hidepid=2,gid=3009");
} }
} }
if (!seperate_vendor) { if (!seperate_vendor) {