-
-
Notifications
You must be signed in to change notification settings - Fork 2.9k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
[Bug]: Dynamically loaded apk/dex files like termux-am package am.apk file must be read only on Android 14 #16255
Comments
It looks like dalvik simply checks if file is writable. Source. Does apt set permissions on files after unpacking them? I mean on termux, not upstream. |
Yeah, I already checked.
It shouldn't. |
Problem description
Android 14 requires that all dynamically loaded dex files are read-only to prevent security issues.
Running
am
triggers following exception andSIGABRT
. This wold affect other apk files being loaded by users. Maybetermux-x11
starter apk or something too if being used @twaik.https://developer.android.com/about/versions/14/behavior-changes-14#safer-dynamic-code-loading
https://github.com/termux/TermuxAm/
The
/data/data/com.termux/files/usr/libexec/termux-am/am.apk
files needs to have400
(r-- --- ---
) permission. Setting permissions intermux_step_make_install
should probably work. If someone fixes it and provides a build, I can test.termux-packages/packages/termux-am/build.sh
Lines 33 to 37 in da430bd
What steps will reproduce the bug?
Any
$PREFIX/bin/am
command.What is the expected behavior?
No response
System information
termux-info:
The text was updated successfully, but these errors were encountered: