• R/O
  • HTTP
  • SSH
  • HTTPS

Commit

Tags
Aucun tag

Frequently used words (click to add to your profile)

javac++androidlinuxc#windowsobjective-ccocoa誰得qtpythonphprubygameguibathyscaphec計画中(planning stage)翻訳omegatframeworktwitterdomtestvb.netdirectxゲームエンジンbtronarduinopreviewer

system/corennnnn


Commit MetaInfo

Révision09cdc0ea12598651d1c074974c9b593fd1c0e4ba (tree)
l'heure2012-01-07 08:20:20
AuteurJames Dong <jdong@goog...>
CommiterJames Dong

Message de Log

Close a security hole - do not give world readable/writable access to /data/drm

o related-to-bug: 5834297

Change-Id: I8e459610b4f69999be37364c2359b2bac82d4a2a

Change Summary

Modification

--- a/rootdir/init.rc
+++ b/rootdir/init.rc
@@ -175,8 +175,9 @@ on post-fs-data
175175 # create the lost+found directories, so as to enforce our permissions
176176 mkdir /data/lost+found 0770 root root
177177
178- # create directory for DRM plug-ins
179- mkdir /data/drm 0774 drm drm
178+ # create directory for DRM plug-ins - give drm the read/write access to
179+ # the following directory.
180+ mkdir /data/drm 0770 drm drm
180181
181182 # If there is no fs-post-data action in the init.<device>.rc file, you
182183 # must uncomment this line, otherwise encrypted filesystems