Gitiles
Code Review Sign In
gerrit.omnirom.org / android_frameworks_native / c4cff3d621bccda5ef91b44ad8c289be36958867
commitc4cff3d621bccda5ef91b44ad8c289be36958867[log] [tgz]
authorVictor Hsieh <victorhsieh@google.com>Wed Jan 17 09:02:47 2024 -0800
committerVictor Hsieh <victorhsieh@google.com>Thu Jan 18 10:57:48 2024 -0800
treed8b360b976e3f264252067cafe099cbcd2271523
parentc72e4d75db2b1a521ba4cf4c681cd29d6d9cb7e0 [diff]
Only open a path that is a regular file

... and return a fixed errno before the file path is authenticated.

To avoid a malicious client blocking installd with a path to FIFO,
check the file type before opening it. A corresponding test isn't added
because it's hard to test that the FIFO has never been opened by path.

Bug: 320682896
Bug: 319284987
Test: atest FsVerityTest installd_service_test
Change-Id: Icd30cca809a45447444842ec277b2ac536f26d88
2 files changed
tree: d8b360b976e3f264252067cafe099cbcd2271523
  1. aidl/
  2. build/
  3. cmds/
  4. data/
  5. docs/
  6. headers/
  7. include/
  8. include_sensor/
  9. libs/
  10. opengl/
  11. services/
  12. vulkan/
  13. rustfmt.toml ⇨ ../../build/soong/scripts/rustfmt.toml
  14. .clang-format
  15. .gitignore
  16. Android.bp
  17. CleanSpec.mk
  18. METADATA
  19. MODULE_LICENSE_APACHE2
  20. NOTICE
  21. PREUPLOAD.cfg
  22. TEST_MAPPING