Android/frameworks_base
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Merge "Harden against invalid paths." into pi-dev

Browse Source
This commit is contained in:
Daniel Sandler
2019-01-10 15:42:31 +00:00
committed by Android (Google) Code Review
parent b262dd1b15 98267b36b7
commit b9596e5feb
3 changed files with 46 additions and 6 deletions
Download Patch File Download Diff File Expand all files Collapse all files

9
services/core/java/com/android/server/slice/SliceClientPermissions.java
View File

@@ -282,9 +282,12 @@ public class SliceClientPermissions implements DirtyTracker, Persistable {
public synchronized void writeTo(XmlSerializer out) throws IOException { public synchronized void writeTo(XmlSerializer out) throws IOException {
final int N = mPaths.size(); final int N = mPaths.size();
for (int i = 0; i < N; i++) { for (int i = 0; i < N; i++) {
out.startTag(NAMESPACE, TAG_PATH); final String[] segments = mPaths.valueAt(i);
out.text(encodeSegments(mPaths.valueAt(i))); if (segments != null) {
out.endTag(NAMESPACE, TAG_PATH); out.startTag(NAMESPACE, TAG_PATH);
out.text(encodeSegments(segments));
out.endTag(NAMESPACE, TAG_PATH);
}
} }
} }

11
services/core/java/com/android/server/slice/SlicePermissionManager.java
View File

@@ -315,7 +315,8 @@ public class SlicePermissionManager implements DirtyTracker {
return new AtomicFile(new File(mSliceDir, fileName)); return new AtomicFile(new File(mSliceDir, fileName));
} }
private void handlePersist() { @VisibleForTesting
void handlePersist() {
synchronized (this) { synchronized (this) {
for (Persistable persistable : mDirty) { for (Persistable persistable : mDirty) {
AtomicFile file = getFile(persistable.getFileName()); AtomicFile file = getFile(persistable.getFileName());
@@ -335,7 +336,7 @@ public class SlicePermissionManager implements DirtyTracker {
out.flush(); out.flush();
file.finishWrite(stream); file.finishWrite(stream);
} catch (IOException | XmlPullParserException e) { } catch (IOException | XmlPullParserException | RuntimeException e) {
Slog.w(TAG, "Failed to save access file, restoring backup", e); Slog.w(TAG, "Failed to save access file, restoring backup", e);
file.failWrite(stream); file.failWrite(stream);
} }
@@ -344,6 +345,12 @@ public class SlicePermissionManager implements DirtyTracker {
} }
} }
// use addPersistableDirty(); this is just for tests
@VisibleForTesting
void addDirtyImmediate(Persistable obj) {
mDirty.add(obj);
}
private void handleRemove(PkgUser pkgUser) { private void handleRemove(PkgUser pkgUser) {
getFile(SliceClientPermissions.getFileName(pkgUser)).delete(); getFile(SliceClientPermissions.getFileName(pkgUser)).delete();
getFile(SliceProviderPermissions.getFileName(pkgUser)).delete(); getFile(SliceProviderPermissions.getFileName(pkgUser)).delete();

32
services/tests/uiservicestests/src/com/android/server/slice/SlicePermissionManagerTest.java
View File

@@ -101,4 +101,34 @@ public class SlicePermissionManagerTest extends UiServiceTestCase {
assertTrue(FileUtils.deleteContentsAndDir(sliceDir)); assertTrue(FileUtils.deleteContentsAndDir(sliceDir));
} }
} @Test
public void testInvalid() throws Exception {
File sliceDir = new File(mContext.getCacheDir(), "slices-test");
if (!sliceDir.exists()) {
sliceDir.mkdir();
}
SlicePermissionManager permissions = new SlicePermissionManager(mContext,
TestableLooper.get(this).getLooper(), sliceDir);
DirtyTracker.Persistable junk = new DirtyTracker.Persistable() {
@Override
public String getFileName() {
return "invalidData";
}
@Override
public void writeTo(XmlSerializer out) throws IOException {
throw new RuntimeException("this doesn't work");
}
};
// let's put something bad in here
permissions.addDirtyImmediate(junk);
// force a persist. if this throws, it would take down system_server
permissions.handlePersist();
// Cleanup.
assertTrue(FileUtils.deleteContentsAndDir(sliceDir));
}
}