Save environment snapshot and use at fork/exec Some applications may inadvertently or maliciously set of environment variables such as LD_LIBRARY_PATH before spawning subprocesses. To make this more difficult, save the environment at the time the runtime starts and use the saved copy anytime Exec is called. BUG: 30160149 TEST: make test-art-{host,target} Change-Id: I887b78bdb21ab20855636a96da14a74c767bbfef

commit: d106d9f871c957286ccdeb79c1c2a5ed41f859a6 [log] [tgz]
author: David Sehr <sehr@google.com> Tue Aug 16 19:22:57 2016 -0700
committer: David Sehr <sehr@google.com> Tue Aug 30 09:32:49 2016 -0700
tree: dc61a7fd80e1289777f6a991102b0fe4a2ef032d
parent: 99fd9f39f2cd74864bdc750a3444ddd776da534c [diff] [blame]
diff --git a/runtime/utils.cc b/runtime/utils.cc
index b676ae5..313190c 100644
--- a/runtime/utils.cc
+++ b/runtime/utils.cc

@@ -1155,8 +1155,15 @@
     // change process groups, so we don't get reaped by ProcessManager
     setpgid(0, 0);
 
-    execv(program, &args[0]);
-    PLOG(ERROR) << "Failed to execv(" << command_line << ")";
+    // (b/30160149): protect subprocesses from modifications to LD_LIBRARY_PATH, etc.
+    // Use the snapshot of the environment from the time the runtime was created.
+    char** envp = (Runtime::Current() == nullptr) ? nullptr : Runtime::Current()->GetEnvSnapshot();
+    if (envp == nullptr) {
+      execv(program, &args[0]);
+    } else {
+      execve(program, &args[0], envp);
+    }
+    PLOG(ERROR) << "Failed to execve(" << command_line << ")";
     // _exit to avoid atexit handlers in child.
     _exit(1);
   } else {
commit	d106d9f871c957286ccdeb79c1c2a5ed41f859a6	[log] [tgz]
author	David Sehr <sehr@google.com>	Tue Aug 16 19:22:57 2016 -0700
committer	David Sehr <sehr@google.com>	Tue Aug 30 09:32:49 2016 -0700
tree	dc61a7fd80e1289777f6a991102b0fe4a2ef032d
parent	99fd9f39f2cd74864bdc750a3444ddd776da534c [diff] [blame]