commit 596969b84d101cb494ec5faeb6cdd277e51c165c
author Kelvin Zhang <zhangkelvin@google.com> Thu Oct 05 10:21:13 2023 -0700
committer Kelvin Zhang <zhangkelvin@google.com> Thu Oct 05 10:21:13 2023 -0700
tree 815b8f82c9f9cda4dc6eba96ddafb1c9b329f840
parent 80ba2feaeabfc3468c59bbaef91ab21d48337bec

Add UID permission check to update_engine

Test: th
Bug: 302761914
Change-Id: I72a4169b79c70210ae8573abad2e8e181597cfe3

aosp/binder_service_android.cc

diff --git a/aosp/binder_service_android.cc b/aosp/binder_service_android.cc
index 37df9a5..a89655f 100644
--- a/aosp/binder_service_android.cc
+++ b/aosp/binder_service_android.cc
@@ -22,8 +22,10 @@
 #include <base/logging.h>
 #include <binderwrapper/binder_wrapper.h>
 #include <utils/String8.h>
+#include <android-base/stringprintf.h>
 
 #include "update_engine/aosp/binder_service_android_common.h"
+#include "update_engine/aosp/permission.h"
 
 using android::binder::Status;
 using android::os::IUpdateEngineCallback;
@@ -34,6 +36,7 @@
 
 namespace chromeos_update_engine {
 
+
 BinderUpdateEngineAndroidService::BinderUpdateEngineAndroidService(
     ServiceDelegateAndroidInterface* service_delegate)
     : service_delegate_(service_delegate) {}
@@ -56,6 +59,9 @@
 
 Status BinderUpdateEngineAndroidService::bind(
     const android::sp<IUpdateEngineCallback>& callback, bool* return_value) {
+  if (const auto status = CheckCallingUid(); !status.isOk()) {
+    return status;
+  }
   // Send an status update on connection (except when no update sent so far).
   // Even though the status update is oneway, it still returns an erroneous
   // status in case of a selinux denial. We should at least check this status
@@ -85,6 +91,9 @@
 
 Status BinderUpdateEngineAndroidService::unbind(
     const android::sp<IUpdateEngineCallback>& callback, bool* return_value) {
+  if (const auto status = CheckCallingUid(); !status.isOk()) {
+    return status;
+  }
   const android::sp<IBinder>& callback_binder =
       IUpdateEngineCallback::asBinder(callback);
   auto binder_wrapper = android::BinderWrapper::Get();
@@ -99,6 +108,9 @@
     int64_t payload_offset,
     int64_t payload_size,
     const vector<android::String16>& header_kv_pairs) {
+  if (const auto status = CheckCallingUid(); !status.isOk()) {
+    return status;
+  }
   const string payload_url{android::String8{url}.c_str()};
   vector<string> str_headers = ToVecString(header_kv_pairs);
 
@@ -115,6 +127,9 @@
     int64_t payload_offset,
     int64_t payload_size,
     const vector<android::String16>& header_kv_pairs) {
+  if (const auto status = CheckCallingUid(); !status.isOk()) {
+    return status;
+  }
   vector<string> str_headers = ToVecString(header_kv_pairs);
 
   Error error;
@@ -126,6 +141,9 @@
 }
 
 Status BinderUpdateEngineAndroidService::suspend() {
+  if (const auto status = CheckCallingUid(); !status.isOk()) {
+    return status;
+  }
   Error error;
   if (!service_delegate_->SuspendUpdate(&error))
     return ErrorPtrToStatus(error);
@@ -133,6 +151,9 @@
 }
 
 Status BinderUpdateEngineAndroidService::resume() {
+  if (const auto status = CheckCallingUid(); !status.isOk()) {
+    return status;
+  }
   Error error;
   if (!service_delegate_->ResumeUpdate(&error))
     return ErrorPtrToStatus(error);
@@ -140,6 +161,9 @@
 }
 
 Status BinderUpdateEngineAndroidService::cancel() {
+  if (const auto status = CheckCallingUid(); !status.isOk()) {
+    return status;
+  }
   Error error;
   if (!service_delegate_->CancelUpdate(&error))
     return ErrorPtrToStatus(error);
@@ -147,6 +171,9 @@
 }
 
 Status BinderUpdateEngineAndroidService::resetStatus() {
+  if (const auto status = CheckCallingUid(); !status.isOk()) {
+    return status;
+  }
   Error error;
   if (!service_delegate_->ResetStatus(&error))
     return ErrorPtrToStatus(error);
@@ -155,6 +182,9 @@
 
 Status BinderUpdateEngineAndroidService::setShouldSwitchSlotOnReboot(
     const android::String16& metadata_filename) {
+  if (const auto status = CheckCallingUid(); !status.isOk()) {
+    return status;
+  }
   Error error;
   if (!service_delegate_->setShouldSwitchSlotOnReboot(
           android::String8(metadata_filename).c_str(), &error)) {
@@ -164,6 +194,9 @@
 }
 
 Status BinderUpdateEngineAndroidService::resetShouldSwitchSlotOnReboot() {
+  if (const auto status = CheckCallingUid(); !status.isOk()) {
+    return status;
+  }
   Error error;
   if (!service_delegate_->resetShouldSwitchSlotOnReboot(&error)) {
     return ErrorPtrToStatus(error);
@@ -173,6 +206,9 @@
 
 Status BinderUpdateEngineAndroidService::verifyPayloadApplicable(
     const android::String16& metadata_filename, bool* return_value) {
+  if (const auto status = CheckCallingUid(); !status.isOk()) {
+    return status;
+  }
   const std::string payload_metadata{
       android::String8{metadata_filename}.c_str()};
   LOG(INFO) << "Received a request of verifying payload metadata in "
@@ -204,6 +240,9 @@
     const android::String16& metadata_filename,
     const vector<android::String16>& header_kv_pairs,
     int64_t* return_value) {
+  if (const auto status = CheckCallingUid(); !status.isOk()) {
+    return status;
+  }
   const std::string payload_metadata{
       android::String8{metadata_filename}.c_str()};
   vector<string> str_headers = ToVecString(header_kv_pairs);
@@ -246,6 +285,9 @@
 
 Status BinderUpdateEngineAndroidService::cleanupSuccessfulUpdate(
     const android::sp<IUpdateEngineCallback>& callback) {
+  if (const auto status = CheckCallingUid(); !status.isOk()) {
+    return status;
+  }
   Error error;
   service_delegate_->CleanupSuccessfulUpdate(
       std::make_unique<CleanupSuccessfulUpdateCallback>(callback), &error);