Evolution-x-devices/device_xiaomi_sapphire
2
0
Fork 0
mirror of https://github.com/Evolution-X-Devices/device_xiaomi_sapphire synced 2026-01-27 18:16:34 +00:00
Code Issues Packages Projects Releases Wiki Activity

sapphire: rootdir: Restrict apps access to /proc/net/unix

Browse Source 
* Banking apps read the file /proc/net/unix to
  check system modifications, (in our case, custom rom)
  Let's avoid this by chmod it 440.

Test: Install a banking app as of Brazilian Nubank or PicPay, login.
Observed no side effects on any other proccess or apps

Change-Id: I12a356b7fe827ee005848108e2075534c7ec91bc
Signed-off-by: chrisl7 <wandersonrodriguesf1@gmail.com>
This commit is contained in:
Jeferson Oliveira
2023-08-16 19:36:59 +02:00
committed by kibria5
parent 10f5e380e3
commit ab43925309
1 changed files with 4 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
rootdir/etc/init.xiaomi.rc
View File

@@ -59,6 +59,10 @@ on boot
start nfc_hal_service
on property:sys.boot_completed=1
# Only owner can acces this node
chmod 440 /proc/net/unix
service stflashtool /vendor/bin/STFlashTool
class late_start
group nfc