ACPR/android_system_core
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Merge "ueventd: do not reference init's sehandle"

Browse source
This commit is contained in:
Tom Cherry 2017-05-03 18:14:37 +00:00 committed by Gerrit Code Review
commit 672dd970f4
9 changed files with 36 additions and 30 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

4
init/builtins.cpp
View file

@ -205,7 +205,7 @@ static int do_mkdir(const std::vector<std::string>& args) {
mode = std::strtoul(args[2].c_str(), 0, 8); mode = std::strtoul(args[2].c_str(), 0, 8);
} }
ret = make_dir(args[1].c_str(), mode); ret = make_dir(args[1].c_str(), mode, sehandle);
/* chmod in case the directory already exists */ /* chmod in case the directory already exists */
if (ret == -1 && errno == EEXIST) { if (ret == -1 && errno == EEXIST) {
ret = fchmodat(AT_FDCWD, args[1].c_str(), mode, AT_SYMLINK_NOFOLLOW); ret = fchmodat(AT_FDCWD, args[1].c_str(), mode, AT_SYMLINK_NOFOLLOW);
@ -809,7 +809,7 @@ static int do_wait_for_prop(const std::vector<std::string>& args) {
* Callback to make a directory from the ext4 code * Callback to make a directory from the ext4 code
*/ */
static int do_installkeys_ensure_dir_exists(const char* dir) { static int do_installkeys_ensure_dir_exists(const char* dir) {
if (make_dir(dir, 0700) && errno != EEXIST) { if (make_dir(dir, 0700, sehandle) && errno != EEXIST) {
return -1; return -1;
} }

2
init/descriptors.cpp
View file

@ -80,7 +80,7 @@ int SocketInfo::Create(const std::string& context) const {
int flags = ((type() == "stream" ? SOCK_STREAM : int flags = ((type() == "stream" ? SOCK_STREAM :
(type() == "dgram" ? SOCK_DGRAM : (type() == "dgram" ? SOCK_DGRAM :
SOCK_SEQPACKET))); SOCK_SEQPACKET)));
return create_socket(name().c_str(), flags, perm(), uid(), gid(), context.c_str()); return create_socket(name().c_str(), flags, perm(), uid(), gid(), context.c_str(), sehandle);
} }
const std::string SocketInfo::key() const { const std::string SocketInfo::key() const {

12
init/devices.cpp
View file

@ -54,7 +54,11 @@
#include "ueventd.h" #include "ueventd.h"
#include "util.h" #include "util.h"
extern struct selabel_handle *sehandle; #ifdef _INIT_INIT_H
#error "Do not include init.h in files used by ueventd or watchdogd; it will expose init's globals"
#endif
static selabel_handle* sehandle;
static android::base::unique_fd device_fd; static android::base::unique_fd device_fd;
@ -554,7 +558,7 @@ std::vector<std::string> get_block_device_symlinks(uevent* uevent) {
} }
static void make_link_init(const std::string& oldpath, const std::string& newpath) { static void make_link_init(const std::string& oldpath, const std::string& newpath) {
if (mkdir_recursive(dirname(newpath.c_str()), 0755)) { if (mkdir_recursive(dirname(newpath.c_str()), 0755, sehandle)) {
PLOG(ERROR) << "Failed to create directory " << dirname(newpath.c_str()); PLOG(ERROR) << "Failed to create directory " << dirname(newpath.c_str());
} }
@ -599,7 +603,7 @@ static void handle_block_device_event(uevent* uevent) {
if (uevent->major < 0 || uevent->minor < 0) return; if (uevent->major < 0 || uevent->minor < 0) return;
const char* base = "/dev/block/"; const char* base = "/dev/block/";
make_dir(base, 0755); make_dir(base, 0755, sehandle);
std::string name = android::base::Basename(uevent->path); std::string name = android::base::Basename(uevent->path);
std::string devpath = base + name; std::string devpath = base + name;
@ -641,7 +645,7 @@ static void handle_generic_device_event(uevent* uevent) {
devpath = "/dev/" + android::base::Basename(uevent->path); devpath = "/dev/" + android::base::Basename(uevent->path);
} }
mkdir_recursive(android::base::Dirname(devpath), 0755); mkdir_recursive(android::base::Dirname(devpath), 0755, sehandle);
auto links = get_character_device_symlinks(uevent); auto links = get_character_device_symlinks(uevent);

3
init/init.h
View file

@ -19,6 +19,9 @@
#include <string> #include <string>
// Note: These globals are *only* valid in init, so they should not be used in ueventd,
// watchdogd, or any files that may be included in those, such as devices.cpp and util.cpp.
// TODO: Have an Init class and remove all globals.
extern const char *ENV[32]; extern const char *ENV[32];
extern std::string default_console; extern std::string default_console;
extern struct selabel_handle *sehandle; extern struct selabel_handle *sehandle;

2
init/property_service.cpp
View file

@ -659,7 +659,7 @@ void start_property_service() {
property_set("ro.property_service.version", "2"); property_set("ro.property_service.version", "2");
property_set_fd = create_socket(PROP_SERVICE_NAME, SOCK_STREAM | SOCK_CLOEXEC | SOCK_NONBLOCK, property_set_fd = create_socket(PROP_SERVICE_NAME, SOCK_STREAM | SOCK_CLOEXEC | SOCK_NONBLOCK,
0666, 0, 0, NULL); 0666, 0, 0, nullptr, sehandle);
if (property_set_fd == -1) { if (property_set_fd == -1) {
PLOG(ERROR) << "start_property_service socket creation failed"; PLOG(ERROR) << "start_property_service socket creation failed";
exit(1); exit(1);

20
init/util.cpp
View file

@ -40,11 +40,13 @@
#include <cutils/android_reboot.h> #include <cutils/android_reboot.h>
#include <cutils/sockets.h> #include <cutils/sockets.h>
#include <selinux/android.h> #include <selinux/android.h>
#include <selinux/label.h>
#include "init.h"
#include "reboot.h" #include "reboot.h"
#ifdef _INIT_INIT_H
#error "Do not include init.h in files used by ueventd or watchdogd; it will expose init's globals"
#endif
using android::base::boot_clock; using android::base::boot_clock;
static unsigned int do_decode_uid(const char *s) static unsigned int do_decode_uid(const char *s)
@ -87,9 +89,8 @@ unsigned int decode_uid(const char *s) {
* daemon. We communicate the file descriptor's value via the environment * daemon. We communicate the file descriptor's value via the environment
* variable ANDROID_SOCKET_ENV_PREFIX<name> ("ANDROID_SOCKET_foo"). * variable ANDROID_SOCKET_ENV_PREFIX<name> ("ANDROID_SOCKET_foo").
*/ */
int create_socket(const char *name, int type, mode_t perm, uid_t uid, int create_socket(const char* name, int type, mode_t perm, uid_t uid, gid_t gid,
gid_t gid, const char *socketcon) const char* socketcon, selabel_handle* sehandle) {
{
if (socketcon) { if (socketcon) {
if (setsockcreatecon(socketcon) == -1) { if (setsockcreatecon(socketcon) == -1) {
PLOG(ERROR) << "setsockcreatecon(\"" << socketcon << "\") failed"; PLOG(ERROR) << "setsockcreatecon(\"" << socketcon << "\") failed";
@ -194,17 +195,17 @@ bool write_file(const std::string& path, const std::string& content) {
return success; return success;
} }
int mkdir_recursive(const std::string& path, mode_t mode) { int mkdir_recursive(const std::string& path, mode_t mode, selabel_handle* sehandle) {
std::string::size_type slash = 0; std::string::size_type slash = 0;
while ((slash = path.find('/', slash + 1)) != std::string::npos) { while ((slash = path.find('/', slash + 1)) != std::string::npos) {
auto directory = path.substr(0, slash); auto directory = path.substr(0, slash);
struct stat info; struct stat info;
if (stat(directory.c_str(), &info) != 0) { if (stat(directory.c_str(), &info) != 0) {
auto ret = make_dir(directory.c_str(), mode); auto ret = make_dir(directory.c_str(), mode, sehandle);
if (ret && errno != EEXIST) return ret; if (ret && errno != EEXIST) return ret;
} }
} }
auto ret = make_dir(path.c_str(), mode); auto ret = make_dir(path.c_str(), mode, sehandle);
if (ret && errno != EEXIST) return ret; if (ret && errno != EEXIST) return ret;
return 0; return 0;
} }
@ -233,8 +234,7 @@ void import_kernel_cmdline(bool in_qemu,
} }
} }
int make_dir(const char *path, mode_t mode) int make_dir(const char* path, mode_t mode, selabel_handle* sehandle) {
{
int rc; int rc;
char *secontext = NULL; char *secontext = NULL;

9
init/util.h
View file

@ -26,6 +26,7 @@
#include <string> #include <string>
#include <android-base/chrono_utils.h> #include <android-base/chrono_utils.h>
#include <selinux/label.h>
#define COLDBOOT_DONE "/dev/.coldboot_done" #define COLDBOOT_DONE "/dev/.coldboot_done"
@ -34,8 +35,8 @@ const std::string kAndroidDtDir("/proc/device-tree/firmware/android/");
using android::base::boot_clock; using android::base::boot_clock;
using namespace std::chrono_literals; using namespace std::chrono_literals;
int create_socket(const char *name, int type, mode_t perm, int create_socket(const char* name, int type, mode_t perm, uid_t uid, gid_t gid,
uid_t uid, gid_t gid, const char *socketcon); const char* socketcon, selabel_handle* sehandle);
bool read_file(const std::string& path, std::string* content); bool read_file(const std::string& path, std::string* content);
bool write_file(const std::string& path, const std::string& content); bool write_file(const std::string& path, const std::string& content);
@ -62,11 +63,11 @@ std::ostream& operator<<(std::ostream& os, const Timer& t);
unsigned int decode_uid(const char *s); unsigned int decode_uid(const char *s);
int mkdir_recursive(const std::string& pathname, mode_t mode); int mkdir_recursive(const std::string& pathname, mode_t mode, selabel_handle* sehandle);
int wait_for_file(const char *filename, std::chrono::nanoseconds timeout); int wait_for_file(const char *filename, std::chrono::nanoseconds timeout);
void import_kernel_cmdline(bool in_qemu, void import_kernel_cmdline(bool in_qemu,
const std::function<void(const std::string&, const std::string&, bool)>&); const std::function<void(const std::string&, const std::string&, bool)>&);
int make_dir(const char *path, mode_t mode); int make_dir(const char* path, mode_t mode, selabel_handle* sehandle);
int restorecon(const char *pathname, int flags = 0); int restorecon(const char *pathname, int flags = 0);
std::string bytes_to_hex(const uint8_t *bytes, size_t bytes_len); std::string bytes_to_hex(const uint8_t *bytes, size_t bytes_len);
bool is_dir(const char* pathname); bool is_dir(const char* pathname);

9
init/util_test.cpp
View file

@ -128,15 +128,10 @@ TEST(util, is_dir) {
EXPECT_FALSE(is_dir(tf.path)); EXPECT_FALSE(is_dir(tf.path));
} }
// sehandle is needed for make_dir()
// TODO: Remove once sehandle is encapsulated
#include <selinux/label.h>
selabel_handle* sehandle;
TEST(util, mkdir_recursive) { TEST(util, mkdir_recursive) {
TemporaryDir test_dir; TemporaryDir test_dir;
std::string path = android::base::StringPrintf("%s/three/directories/deep", test_dir.path); std::string path = android::base::StringPrintf("%s/three/directories/deep", test_dir.path);
EXPECT_EQ(0, mkdir_recursive(path, 0755)); EXPECT_EQ(0, mkdir_recursive(path, 0755, nullptr));
std::string path1 = android::base::StringPrintf("%s/three", test_dir.path); std::string path1 = android::base::StringPrintf("%s/three", test_dir.path);
EXPECT_TRUE(is_dir(path1.c_str())); EXPECT_TRUE(is_dir(path1.c_str()));
std::string path2 = android::base::StringPrintf("%s/three/directories", test_dir.path); std::string path2 = android::base::StringPrintf("%s/three/directories", test_dir.path);
@ -148,7 +143,7 @@ TEST(util, mkdir_recursive) {
TEST(util, mkdir_recursive_extra_slashes) { TEST(util, mkdir_recursive_extra_slashes) {
TemporaryDir test_dir; TemporaryDir test_dir;
std::string path = android::base::StringPrintf("%s/three////directories/deep//", test_dir.path); std::string path = android::base::StringPrintf("%s/three////directories/deep//", test_dir.path);
EXPECT_EQ(0, mkdir_recursive(path, 0755)); EXPECT_EQ(0, mkdir_recursive(path, 0755, nullptr));
std::string path1 = android::base::StringPrintf("%s/three", test_dir.path); std::string path1 = android::base::StringPrintf("%s/three", test_dir.path);
EXPECT_TRUE(is_dir(path1.c_str())); EXPECT_TRUE(is_dir(path1.c_str()));
std::string path2 = android::base::StringPrintf("%s/three/directories", test_dir.path); std::string path2 = android::base::StringPrintf("%s/three/directories", test_dir.path);

5
init/watchdogd.cpp
View file

@ -24,7 +24,10 @@
#include <android-base/logging.h> #include <android-base/logging.h>
#include "log.h" #include "log.h"
#include "util.h"
#ifdef _INIT_INIT_H
#error "Do not include init.h in files used by ueventd or watchdogd; it will expose init's globals"
#endif
#define DEV_NAME "/dev/watchdog" #define DEV_NAME "/dev/watchdog"