<feed xmlns='http://www.w3.org/2005/Atom'>
<title>system_core/libziparchive, branch replicant-10</title>
<subtitle>Fork of system/core
</subtitle>
<link rel='alternate' type='text/html' href='https://git.replicant.us/replicant-next/system_core/'/>
<entry>
<title>zip_writer.cc: update powerof2 and use it unconditionally</title>
<updated>2019-03-27T17:24:44+00:00</updated>
<author>
<name>Nick Kralevich</name>
<email>nnk@google.com</email>
</author>
<published>2019-03-27T14:46:39+00:00</published>
<link rel='alternate' type='text/html' href='https://git.replicant.us/replicant-next/system_core/commit/?id=6d3c80b85a99fe5e6c76c8d6512eddf2edab3c86'/>
<id>6d3c80b85a99fe5e6c76c8d6512eddf2edab3c86</id>
<content type='text'>
Update the powerof2 macro to one that is integer overflow safe.
This definition is the same one used by bionic, but cleaned up using
clang_format.

Unconditionally use this powerof2 macro, to ensure consistency across
all the build environments.

Test: compiles and boots
Change-Id: I21bfaf2360d1f77caf96365e20490b1deadfdfe0
</content>
<content type='xhtml'>
<div xmlns='http://www.w3.org/1999/xhtml'>
<pre>
Update the powerof2 macro to one that is integer overflow safe.
This definition is the same one used by bionic, but cleaned up using
clang_format.

Unconditionally use this powerof2 macro, to ensure consistency across
all the build environments.

Test: compiles and boots
Change-Id: I21bfaf2360d1f77caf96365e20490b1deadfdfe0
</pre>
</div>
</content>
</entry>
<entry>
<title>Merge "libziparchive: add integer checks"</title>
<updated>2019-03-27T13:03:16+00:00</updated>
<author>
<name>Treehugger Robot</name>
<email>treehugger-gerrit@google.com</email>
</author>
<published>2019-03-27T13:03:16+00:00</published>
<link rel='alternate' type='text/html' href='https://git.replicant.us/replicant-next/system_core/commit/?id=80e72443d092350560d6b40fc191eb32008401b7'/>
<id>80e72443d092350560d6b40fc191eb32008401b7</id>
<content type='text'>
</content>
<content type='xhtml'>
<div xmlns='http://www.w3.org/1999/xhtml'>
<pre>
</pre>
</div>
</content>
</entry>
<entry>
<title>Merge "zip_archive.cc: delete android_errorWriteLog"</title>
<updated>2019-03-23T03:08:35+00:00</updated>
<author>
<name>Nick Kralevich</name>
<email>nnk@google.com</email>
</author>
<published>2019-03-23T03:08:35+00:00</published>
<link rel='alternate' type='text/html' href='https://git.replicant.us/replicant-next/system_core/commit/?id=832bd17a0b620a97c3166f086c529273b6c73b23'/>
<id>832bd17a0b620a97c3166f086c529273b6c73b23</id>
<content type='text'>
</content>
<content type='xhtml'>
<div xmlns='http://www.w3.org/1999/xhtml'>
<pre>
</pre>
</div>
</content>
</entry>
<entry>
<title>zip_archive.cc: delete android_errorWriteLog</title>
<updated>2019-03-21T16:58:56+00:00</updated>
<author>
<name>Nick Kralevich</name>
<email>nnk@google.com</email>
</author>
<published>2019-03-21T16:58:56+00:00</published>
<link rel='alternate' type='text/html' href='https://git.replicant.us/replicant-next/system_core/commit/?id=104771e55e56474931cbb34327e42af5e8ada665'/>
<id>104771e55e56474931cbb34327e42af5e8ada665</id>
<content type='text'>
The process of determining whether or not to emit a safetynet error
entry while processing a malformed file relies on addition overflow.
Since this is only logging, and logging which isn't used, delete the
code instead of trying to fix the logic which is causing the integer
overflow.

This change is necessary to enable integer sanitization on this code.

Somewhat related to Bug: 122975762
Test: atest ziparchive-tests

Change-Id: I6b41ccf7881348cb4e5236324eaa44a05662a725
</content>
<content type='xhtml'>
<div xmlns='http://www.w3.org/1999/xhtml'>
<pre>
The process of determining whether or not to emit a safetynet error
entry while processing a malformed file relies on addition overflow.
Since this is only logging, and logging which isn't used, delete the
code instead of trying to fix the logic which is causing the integer
overflow.

This change is necessary to enable integer sanitization on this code.

Somewhat related to Bug: 122975762
Test: atest ziparchive-tests

Change-Id: I6b41ccf7881348cb4e5236324eaa44a05662a725
</pre>
</div>
</content>
</entry>
<entry>
<title>entry_name_utils-inl.h: clear top bit before shifting</title>
<updated>2019-03-21T16:29:31+00:00</updated>
<author>
<name>Nick Kralevich</name>
<email>nnk@google.com</email>
</author>
<published>2019-03-21T16:29:31+00:00</published>
<link rel='alternate' type='text/html' href='https://git.replicant.us/replicant-next/system_core/commit/?id=c5da03f448485044835046fc31f9a734060ffb99'/>
<id>c5da03f448485044835046fc31f9a734060ffb99</id>
<content type='text'>
Attempting to shift a uint8_t which has the top bit set results in a
value outside of the range allowable for a uint8_t. The process of
converting this value back to a uint8_t triggers ubsan's
implicit-conversion sanitizer.

Ensure the high order bit is stripped before shifting, so that the
shifted value fits into the allowable uint8_t range.

This change is necessary to enable integer sanitization on this code.

Somewhat related to Bug: 122975762
Test: atest ziparchive-tests

Change-Id: I940c8b2828ac88348d80f731274b990e35de6631
</content>
<content type='xhtml'>
<div xmlns='http://www.w3.org/1999/xhtml'>
<pre>
Attempting to shift a uint8_t which has the top bit set results in a
value outside of the range allowable for a uint8_t. The process of
converting this value back to a uint8_t triggers ubsan's
implicit-conversion sanitizer.

Ensure the high order bit is stripped before shifting, so that the
shifted value fits into the allowable uint8_t range.

This change is necessary to enable integer sanitization on this code.

Somewhat related to Bug: 122975762
Test: atest ziparchive-tests

Change-Id: I940c8b2828ac88348d80f731274b990e35de6631
</pre>
</div>
</content>
</entry>
<entry>
<title>libziparchive: add integer checks</title>
<updated>2019-03-20T20:04:02+00:00</updated>
<author>
<name>Nick Kralevich</name>
<email>nnk@google.com</email>
</author>
<published>2019-03-20T20:04:02+00:00</published>
<link rel='alternate' type='text/html' href='https://git.replicant.us/replicant-next/system_core/commit/?id=30dec070dd8c5193774f08098dcde7118491017b'/>
<id>30dec070dd8c5193774f08098dcde7118491017b</id>
<content type='text'>
The code in libziparchive has lots of questionable looking but not
obviously wrong integer operations. In order to shake out integer bugs
in libziparchive (for example, commit
1ee4892e66ba314131b7ecf17e98bb1762c4b84c from bug 31251826) and provide
protection against security bugs, enable some integer sanitization
options in libziparchive.

Bug: 122975762
Bug: https://bugs.chromium.org/p/chromium/issues/detail?id=941802
Test: device boots and no obvious problems.
Change-Id: I215d81892a6eff12d692648c69a03e8200b334d7
</content>
<content type='xhtml'>
<div xmlns='http://www.w3.org/1999/xhtml'>
<pre>
The code in libziparchive has lots of questionable looking but not
obviously wrong integer operations. In order to shake out integer bugs
in libziparchive (for example, commit
1ee4892e66ba314131b7ecf17e98bb1762c4b84c from bug 31251826) and provide
protection against security bugs, enable some integer sanitization
options in libziparchive.

Bug: 122975762
Bug: https://bugs.chromium.org/p/chromium/issues/detail?id=941802
Test: device boots and no obvious problems.
Change-Id: I215d81892a6eff12d692648c69a03e8200b334d7
</pre>
</div>
</content>
</entry>
<entry>
<title>Revert the explicit config, see topic</title>
<updated>2019-02-20T21:29:11+00:00</updated>
<author>
<name>Julien Desprez</name>
<email>jdesprez@google.com</email>
</author>
<published>2019-02-20T21:29:11+00:00</published>
<link rel='alternate' type='text/html' href='https://git.replicant.us/replicant-next/system_core/commit/?id=f4f54b1d693dbb19870454dbb2759c02e840b175'/>
<id>f4f54b1d693dbb19870454dbb2759c02e840b175</id>
<content type='text'>
Other CL in topic address the issue of the file pusher.
The explicit config for this module will not be required
anymore.

Test: atest -v ziparchive-tests
Bug: 124515549
Change-Id: I4dad8adbce0817009158bc191c2cce86c38d9e3e
</content>
<content type='xhtml'>
<div xmlns='http://www.w3.org/1999/xhtml'>
<pre>
Other CL in topic address the issue of the file pusher.
The explicit config for this module will not be required
anymore.

Test: atest -v ziparchive-tests
Bug: 124515549
Change-Id: I4dad8adbce0817009158bc191c2cce86c38d9e3e
</pre>
</div>
</content>
</entry>
<entry>
<title>Ziparchive: Give tests a test config</title>
<updated>2019-02-15T19:53:49+00:00</updated>
<author>
<name>Andreas Gampe</name>
<email>agampe@google.com</email>
</author>
<published>2019-02-15T19:53:07+00:00</published>
<link rel='alternate' type='text/html' href='https://git.replicant.us/replicant-next/system_core/commit/?id=881e2e198b75087e292f869b05ad82b026ccb5b9'/>
<id>881e2e198b75087e292f869b05ad82b026ccb5b9</id>
<content type='text'>
To work around problems with the autogenerated one.

Bug: 117891984
Bug: 124515549
Test: atest ziparchive-tests
Change-Id: Ia4b352b7404255a4fe9e644a56ae9c5d41c79886
</content>
<content type='xhtml'>
<div xmlns='http://www.w3.org/1999/xhtml'>
<pre>
To work around problems with the autogenerated one.

Bug: 117891984
Bug: 124515549
Test: atest ziparchive-tests
Change-Id: Ia4b352b7404255a4fe9e644a56ae9c5d41c79886
</pre>
</div>
</content>
</entry>
<entry>
<title>zip_archive.cc: add O_CLOEXEC</title>
<updated>2018-12-18T20:48:06+00:00</updated>
<author>
<name>Nick Kralevich</name>
<email>nnk@google.com</email>
</author>
<published>2018-12-18T20:48:06+00:00</published>
<link rel='alternate' type='text/html' href='https://git.replicant.us/replicant-next/system_core/commit/?id=3bdf744a550b5c29c4f02a279d3376a9ebe1b053'/>
<id>3bdf744a550b5c29c4f02a279d3376a9ebe1b053</id>
<content type='text'>
Prevent file descriptors from leaking across an exec() boundary.

Bug: 120983106
Test: compiles and boots
Change-Id: I392b0767674b557b1e4404a2ba63bc48e3e37b24
</content>
<content type='xhtml'>
<div xmlns='http://www.w3.org/1999/xhtml'>
<pre>
Prevent file descriptors from leaking across an exec() boundary.

Bug: 120983106
Test: compiles and boots
Change-Id: I392b0767674b557b1e4404a2ba63bc48e3e37b24
</pre>
</div>
</content>
</entry>
<entry>
<title>Merge "TEST_MAPPING: add the rest of our actively maintained tests."</title>
<updated>2018-11-28T00:56:36+00:00</updated>
<author>
<name>Elliott Hughes</name>
<email>enh@google.com</email>
</author>
<published>2018-11-28T00:56:36+00:00</published>
<link rel='alternate' type='text/html' href='https://git.replicant.us/replicant-next/system_core/commit/?id=f2228e0cc5565cd732aa13ee4e77218535933bd0'/>
<id>f2228e0cc5565cd732aa13ee4e77218535933bd0</id>
<content type='text'>
</content>
<content type='xhtml'>
<div xmlns='http://www.w3.org/1999/xhtml'>
<pre>
</pre>
</div>
</content>
</entry>
</feed>
