Re: [kernel-hardening] Re: [PATCHv3 2/2] extract early boot entropy from the passed cmdline

From: Nick Kralevich
Date: Wed Aug 30 2017 - 09:27:49 EST

Next message: Christian Brauner: "Re: [lxc-devel] [RFC PATCH] cgroup, cpuset: add cpuset.remap_cpus"
Previous message: Joe Lawrence: "Re: [PATCH v4 1/3] livepatch: add (un)patch callbacks"
In reply to: Pavel Machek: "Re: [PATCHv3 2/2] extract early boot entropy from the passed cmdline"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Wed, Aug 30, 2017 at 2:57 AM, Pavel Machek <pavel@xxxxxx> wrote:
> The command line is visible to unpriviledged userspace (/proc/cmdline,
> dmesg). Is that a problem?

These files are not exposed to untrusted processes on Android.

--
Nick Kralevich | Android Security | nnk@xxxxxxxxxx | 650.214.4037

Next message: Christian Brauner: "Re: [lxc-devel] [RFC PATCH] cgroup, cpuset: add cpuset.remap_cpus"
Previous message: Joe Lawrence: "Re: [PATCH v4 1/3] livepatch: add (un)patch callbacks"
In reply to: Pavel Machek: "Re: [PATCHv3 2/2] extract early boot entropy from the passed cmdline"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]