Gitiles
Code Review Sign In
review.blissroms.org / platform_frameworks_base / c6f4ebf799a25028e5f0deff4d370a6f0b30db8e
commitc6f4ebf799a25028e5f0deff4d370a6f0b30db8e[log] [tgz]
authorRubin Xu <rubinxu@google.com>Thu Jun 25 17:54:20 2020 +0100
committerRubin Xu <rubinxu@google.com>Fri Jun 26 16:22:13 2020 +0100
tree327b70eec51373f15cefd1591b02c2f5e149c330
parente658c76b5c1cdc67cf593ad000c5b862e31764fd [diff]
Force garbage collection after credential verification

This is to sanitize memory containing sensitive user
lockscreen credentials. Most of LockSettingsService
already sanitizes credentials when needed, but there
is one copy of the credential unmarshalled from the
binder transaction and passed into LSS as argument
which is not easily sanitiziable manually except
by forcing a garbage collection.

Bug: 144537463
Test: atest com.android.server.locksettings
Test: go through Settings password change flow,
      then take a heapdump of system_server and
      verifies no password shard exists in the dump.
Change-Id: I3b0a2dab5766c40bc3ba9b38311c039337c408d3
1 file changed
tree: 327b70eec51373f15cefd1591b02c2f5e149c330
  1. .prebuilt_info/
  2. apct-tests/
  3. apex/
  4. api/
  5. cmds/
  6. config/
  7. core/
  8. data/
  9. docs/
  10. drm/
  11. errorprone/
  12. graphics/
  13. identity/
  14. keystore/
  15. libs/
  16. location/
  17. lowpan/
  18. media/
  19. mime/
  20. mms/
  21. native/
  22. nfc-extras/
  23. non-updatable-api/
  24. obex/
  25. opengl/
  26. packages/
  27. proto/
  28. rs/
  29. samples/
  30. sax/
  31. services/
  32. startop/
  33. telecomm/
  34. telephony/
  35. test-base/
  36. test-legacy/
  37. test-mock/
  38. test-runner/
  39. tests/
  40. tools/
  41. wifi/
  42. .clang-format
  43. .gitignore
  44. .mailmap
  45. Android.bp
  46. Android.mk
  47. ApiDocs.bp
  48. CleanSpec.mk
  49. framework-jarjar-rules.txt
  50. MODULE_LICENSE_APACHE2
  51. NOTICE
  52. pathmap.mk
  53. PREUPLOAD.cfg
  54. StubLibraries.bp
  55. TEST_MAPPING