Gitiles
Code Review Sign In
gerrit.omnirom.org / android_packages_modules_Virtualization / 4333d522e91cd86b8a850c6c7a84f633bae04049^! / . / compos / src / fsverity.rs
commit4333d522e91cd86b8a850c6c7a84f633bae04049[log] [tgz]
authorVictor Hsieh <victorhsieh@google.com>Fri Aug 26 11:27:08 2022 -0700
committerVictor Hsieh <victorhsieh@google.com>Tue Aug 30 15:07:14 2022 +0000
treec4768c31b8f31f872b09254e705989e7ac40e4ca
parentd17d2f5e97ea5a3a6c2ad014db2e6559c15066d3 [diff] [blame]
compsvc: mininize the footprint of raw fd

Bug: 243500154
Test: TH
Change-Id: I1279ec1f7efbc363a16aeb4f3c2e55bf26075585

diff --git a/compos/src/fsverity.rs b/compos/src/fsverity.rs
index f5df5f7..4f0ed34 100644
--- a/compos/src/fsverity.rs
+++ b/compos/src/fsverity.rs

@@ -18,7 +18,7 @@
 use libc::getxattr;
 use std::ffi::CString;
 use std::io;
-use std::os::unix::io::RawFd;
+use std::os::unix::io::{AsRawFd, BorrowedFd};
 
 const SHA256_HASH_SIZE: usize = 32;
 
@@ -26,10 +26,10 @@
 pub type Sha256Digest = [u8; SHA256_HASH_SIZE];
 
 /// Returns the fs-verity measurement/digest. Currently only SHA256 is supported.
-pub fn measure(fd: RawFd) -> Result<Sha256Digest> {
+pub fn measure(fd: BorrowedFd) -> Result<Sha256Digest> {
     // TODO(b/196635431): Unfortunately, the FUSE API doesn't allow authfs to implement the standard
     // fs-verity ioctls. Until the kernel allows, use the alternative xattr that authfs provides.
-    let path = CString::new(format!("/proc/self/fd/{}", fd).as_str()).unwrap();
+    let path = CString::new(format!("/proc/self/fd/{}", fd.as_raw_fd()).as_str()).unwrap();
     let name = CString::new("authfs.fsverity.digest").unwrap();
     let mut buf = [0u8; SHA256_HASH_SIZE];
     // SAFETY: getxattr should not write beyond the given buffer size.