use native lib dir instead of assets to pack rclone executables #241
Conversation
on android q, calling exec() on writable application files is a W^X (https://en.wikipedia.org/wiki/W%5EX) violation and represents an unsafe application practice. this commit, makes executable code to load from (read-only) native library directory also used for jni.
|
The cited reddit thread also links to https://stackoverflow.com/questions/16179062/using-exec-with-ndk, hinting at the possibility of exec beeing removed completely at some point - this would require refactoring rclone as a proper jni library, correct? |
i doubt that will ever happen. it will break a lot apps. the whole point of this change is security. i.e. to avoid running code which is not shipped with the APK (downloading unchecked code etc.), not to prevent shipping any executable at all. |
|
I agree, but there seems to be quite a panic around this, e.g. in this reddit thread. At least for rclone, this is not the catastrophe like it is for termux and creating a jni frontend would actually be feasible. |
android Q includes the following security change.
more info:
https://developer.android.com/preview/behavior-changes-all#execute-permission
https://www.reddit.com/r/androiddev/comments/b2inbu/psa_android_q_blocks_executing_binaries_in_your/
this is to avoid running malicious code by apps which download native code from internet, which is direct violation of play store policy.
even though this app doesn't download native code from other sources and ships executables within apk, this commit updates the method used. binaries are moved to native library directory and extraction is done by android during app installation, making the process a lot cleaner. this doesn't affect any behavior on older android versions and also makes the app initialization process faster.