From 53842f8a9044db84109ee84dbacef09491be15c2 Mon Sep 17 00:00:00 2001 From: Nick Kralevich Date: Thu, 13 Dec 2018 10:56:33 -0800 Subject: [PATCH] relax /system/bin directory permissions In commit f4fc922f0b863659ca8e97c1f5fa522fafc7deb6, we tightened the permissions on various bin directories. Please see https://android-review.googlesource.com/c/platform/system/core/+/822955 for details. This change causes the Chase banking app to crash. This is because the Chase app is using inotify_add_watch() on the /system/bin directory and not checking the return value. The Android Security model guarantees the immutability of files in /system/bin, so the inotify watch is unnecessary. Until the Chase app fixes their bug, we need to relax the permissions on the /system/bin directory. Conceptually, this is a partial revert of f4fc922f0b863659ca8e97c1f5fa522fafc7deb6. Bug: 119605322 Test: compiles Change-Id: Ic72dd24cb27cff677093963bdfd0ae09bf132e08 --- libcutils/fs_config.cpp | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/libcutils/fs_config.cpp b/libcutils/fs_config.cpp index db59569f8..1490fbce6 100644 --- a/libcutils/fs_config.cpp +++ b/libcutils/fs_config.cpp @@ -84,7 +84,7 @@ static const struct fs_path_config android_dirs[] = { { 00750, AID_ROOT, AID_SHELL, 0, "sbin" }, { 00777, AID_ROOT, AID_ROOT, 0, "sdcard" }, { 00751, AID_ROOT, AID_SDCARD_R, 0, "storage" }, - { 00751, AID_ROOT, AID_SHELL, 0, "system/bin" }, + { 00755, AID_ROOT, AID_SHELL, 0, "system/bin" }, { 00755, AID_ROOT, AID_ROOT, 0, "system/etc/ppp" }, { 00755, AID_ROOT, AID_SHELL, 0, "system/vendor" }, { 00751, AID_ROOT, AID_SHELL, 0, "system/xbin" },