diff options
| author | Andreas Gampe <agampe@google.com> | 2014-08-19 22:31:31 -0700 |
|---|---|---|
| committer | Andreas Gampe <agampe@google.com> | 2014-08-21 14:33:44 -0700 |
| commit | cd2ef4c1af69727231b84ebc82864c170ff0e8ad (patch) | |
| tree | db2aa475689e96e3050ccfd917682f4aea97af71 /libnativebridge/tests/InvalidCharsNativeBridge_test.cpp | |
| parent | 6ba555f2ad878129cd1da9dd7b7613ab166090ab (diff) | |
| download | system_core-cd2ef4c1af69727231b84ebc82864c170ff0e8ad.zip system_core-cd2ef4c1af69727231b84ebc82864c170ff0e8ad.tar.gz system_core-cd2ef4c1af69727231b84ebc82864c170ff0e8ad.tar.bz2 | |
NativeBridge: Tighten security on libnativebridge
Do not allow arbitrary paths for the native bridge - only allow
simple names.
Do not allow re-setup of the native bridge.
Bug: 16404669
Change-Id: Ie22de356d2307fe2758f9094a85d44e61a4098a1
Diffstat (limited to 'libnativebridge/tests/InvalidCharsNativeBridge_test.cpp')
| -rw-r--r-- | libnativebridge/tests/InvalidCharsNativeBridge_test.cpp | 40 |
1 files changed, 40 insertions, 0 deletions
diff --git a/libnativebridge/tests/InvalidCharsNativeBridge_test.cpp b/libnativebridge/tests/InvalidCharsNativeBridge_test.cpp new file mode 100644 index 0000000..f37e9c1 --- /dev/null +++ b/libnativebridge/tests/InvalidCharsNativeBridge_test.cpp @@ -0,0 +1,40 @@ +/* + * Copyright (C) 2014 The Android Open Source Project + * + * Licensed under the Apache License, Version 2.0 (the "License"); + * you may not use this file except in compliance with the License. + * You may obtain a copy of the License at + * + * http://www.apache.org/licenses/LICENSE-2.0 + * + * Unless required by applicable law or agreed to in writing, software + * distributed under the License is distributed on an "AS IS" BASIS, + * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. + * See the License for the specific language governing permissions and + * limitations under the License. + */ + +#include "NativeBridgeTest.h" + +namespace android { + +static const char* kTestName = "../librandom$@-bridge_not.existing.so"; + +TEST_F(NativeBridgeTest, InvalidChars) { + // Do one test actually calling setup. + EXPECT_EQ(false, NativeBridgeError()); + SetupNativeBridge(kTestName, nullptr); + // This should lead to an error for invalid characters. + EXPECT_EQ(true, NativeBridgeError()); + + // Further tests need to use NativeBridgeNameAcceptable, as the error + // state can't be changed back. + EXPECT_EQ(false, NativeBridgeNameAcceptable(".")); + EXPECT_EQ(false, NativeBridgeNameAcceptable("..")); + EXPECT_EQ(false, NativeBridgeNameAcceptable("_")); + EXPECT_EQ(false, NativeBridgeNameAcceptable("-")); + EXPECT_EQ(false, NativeBridgeNameAcceptable("lib@.so")); + EXPECT_EQ(false, NativeBridgeNameAcceptable("lib$.so")); +} + +} // namespace android |