system_core/libziparchive, branch replicant-6.0 system/core Fix full-eng build breakage due to dbacd826a100f2c. 2018-01-14T12:03:26+00:00 Narayan Kamath narayan@google.com 2017-09-14T09:41:28+00:00 35b8c2451b64d7b75dea066a75f09f7c412b78e9 This wasn't caught by treehugger since it doesn't build this target. Test: make Test: zip_archive_test Bug: 64211847 Change-Id: Iee6e133e236ed639f944e4b8c3c8102cf22e46bb (cherry picked from commit 6e39c88b1e4ea00e76e0d66e764a63b5d8c883fc) 
This wasn't caught by treehugger since it doesn't build this target.

Test: make
Test: zip_archive_test
Bug: 64211847

Change-Id: Iee6e133e236ed639f944e4b8c3c8102cf22e46bb
(cherry picked from commit 6e39c88b1e4ea00e76e0d66e764a63b5d8c883fc)
Fix wrong backport of commit 9dced16 2018-01-14T12:03:07+00:00 Ivan Kutepov its.kutepov@gmail.com 2018-01-13T19:33:40+00:00 6822ea3f2e4e733a38dc03892f6337f30bf75a29 * https://android.googlesource.com/platform/system/core/+/9dced1626219d47c75a9d37156ed7baeef8f6403 Change-Id: I393ae072f59548988eeae03afb7fd994545413e9 
* https://android.googlesource.com/platform/system/core/+/9dced1626219d47c75a9d37156ed7baeef8f6403

Change-Id: I393ae072f59548988eeae03afb7fd994545413e9
zip_archive: reject files that don't start with an LFH signature. 2017-12-09T18:06:15+00:00 Narayan Kamath narayan@google.com 2017-08-09T17:32:09+00:00 abdb1748ddd420d03928d7d8ddbc13babc893a6d Bug: 64211847 Test: zip_archive_test (cherry picked from commit c1a56dcab711a7ee238c0af865920ca51b1408a6) Merged-In: I275e7c4da05ceeb20401b560c72294f29ef63642 Change-Id: Ib89f0def696206ff427be27764c158fab88e4b5d CVE-2017-13156 
Bug: 64211847
Test: zip_archive_test

(cherry picked from commit c1a56dcab711a7ee238c0af865920ca51b1408a6)

Merged-In: I275e7c4da05ceeb20401b560c72294f29ef63642
Change-Id: Ib89f0def696206ff427be27764c158fab88e4b5d
CVE-2017-13156
Fix out of bound read in libziparchive 2017-06-09T13:12:12+00:00 Tianjie Xu xunchang@google.com 2017-04-05T21:46:27+00:00 4f84775fef93119cb80be7bd93b6bfaf8c02b192 We should check the boundary of central directory before checking its signature. Swap the order of these two checks. Bug: 36392138 Test: libziparchive doesn't read the signature after boundary check fails. AOSP-Change-Id: Ie89f709bb2d1ccb647116fb7ccb1e23c943e5ab8 (cherry picked from commit 74464a1361562d4042a67c5d66bfcf396ee7e59c) (cherry picked from commit d9fd1863f46d5185eaaebc0803ee9c5da3ef110b) CVE-2017-0647 Change-Id: I85baf2536b682cd91fb13b530af76dc15dd48326 
We should check the boundary of central directory before checking its
signature. Swap the order of these two checks.

Bug: 36392138
Test: libziparchive doesn't read the signature after boundary check fails.
AOSP-Change-Id: Ie89f709bb2d1ccb647116fb7ccb1e23c943e5ab8
(cherry picked from commit 74464a1361562d4042a67c5d66bfcf396ee7e59c)
(cherry picked from commit d9fd1863f46d5185eaaebc0803ee9c5da3ef110b)

CVE-2017-0647

Change-Id: I85baf2536b682cd91fb13b530af76dc15dd48326
Fix out of bound access in libziparchive 2016-12-12T19:57:28+00:00 Tianjie Xu xunchang@google.com 2016-09-21T21:58:11+00:00 420d162484acf9c30693a651702eee5864cf14a1 The boundary check of an invalid EOCD record may succeed due to the overflow of uint32_t. Fix the check. Test: Open the crash.apk and libziparchive reports the offset error as expected. CYNGNOS-3312 Bug: 31251826 Change-Id: I1d8092a19b73886a671bc9d291cfc27d65e3d236 (cherry picked from commit ae8180c06dee228cd1378c56afa6020ae98d8a24) (cherry picked from commit 1ee4892e66ba314131b7ecf17e98bb1762c4b84c) (cherry picked from commit 7f246f7fdd2f003c6f3701f599052a2040af6bfb) 
The boundary check of an invalid EOCD record may succeed due to the
overflow of uint32_t. Fix the check.

Test: Open the crash.apk and libziparchive reports the offset error as expected.

CYNGNOS-3312
Bug: 31251826
Change-Id: I1d8092a19b73886a671bc9d291cfc27d65e3d236
(cherry picked from commit ae8180c06dee228cd1378c56afa6020ae98d8a24)
(cherry picked from commit 1ee4892e66ba314131b7ecf17e98bb1762c4b84c)
(cherry picked from commit 7f246f7fdd2f003c6f3701f599052a2040af6bfb)
Add |optional_suffix| to StartIteration() 2015-06-24T00:31:16+00:00 Yusuke Sato yusukes@google.com 2015-06-20T00:04:15+00:00 a4a80693d9687982461decdcf86920b3e76bb41a so that PackageManagerService can iterate over files with a specific file extension like ".so". Bug: 21957428 Change-Id: I76ed9560d4d1e00d297a97d518ec357166be1981 
so that PackageManagerService can iterate over files with a
specific file extension like ".so".

Bug: 21957428
Change-Id: I76ed9560d4d1e00d297a97d518ec357166be1981
libziparchive: fix fallocate failures 2015-06-04T20:26:29+00:00 Badhri Jagan Sridharan Badhri@google.com 2015-06-02T21:47:57+00:00 71aebefe49d8126f522287bd35d17c432a4e6383 The objective of fallocate call seems to be to make sure that we have enough enough space left in the disk to house the uncompressed file. But, fallocate is only supported in the following file systems: btrfs, ext4, ocfs2, and xfs Return error only when fallocate fails due to lack of space. The immediate ftruncate call is going to take of the majority of other errors. Bug: http://b/21558406 Bug: 21561449 Change-Id: I7083f3c7e5d745bd6e8a190ac9020297d638d9d4 (cherry picked from commit a68d0d1fe48afc7a7a7fd0ee42df1607f21fa996) 
The objective of fallocate call seems to be to
make sure that we have enough enough space left
in the disk to house the uncompressed file.
But, fallocate is only supported in the following
file systems:
btrfs, ext4, ocfs2, and xfs

Return error only when fallocate fails due to
lack of space. The immediate ftruncate call is
going to take of the majority of other errors.

Bug: http://b/21558406
Bug: 21561449
Change-Id: I7083f3c7e5d745bd6e8a190ac9020297d638d9d4
(cherry picked from commit a68d0d1fe48afc7a7a7fd0ee42df1607f21fa996)
Use base::WriteFully in zip_archive. 2015-06-04T20:26:22+00:00 Narayan Kamath narayan@google.com 2015-04-27T15:25:53+00:00 67ab5d95058d6fe1bab71b3f69e1934728902995 We're already linking against libbase but we'll have to add a libbase dependency to every target that includes libziparchive as a STATIC_LIBRARY dependency, given that there's no way to express that what we want (except by adding a LOCAL_WHOLE_STATIC_LIBRARY dependency on libbase to libziparchive but that seems bad too) Bug: http://b/21558406 Change-Id: I294ad389a9c61a1134a7bc323da25b0004a8f1e0 (cherry picked from commit e97e66ea7c624190afa4639d6ddc60e7d013f46c) 
We're already linking against libbase but we'll have to add
a libbase dependency to every target that includes libziparchive
as a STATIC_LIBRARY dependency, given that there's no way to
express that what we want (except by adding a LOCAL_WHOLE_STATIC_LIBRARY
dependency on libbase to libziparchive but that seems bad too)

Bug: http://b/21558406
Change-Id: I294ad389a9c61a1134a7bc323da25b0004a8f1e0
(cherry picked from commit e97e66ea7c624190afa4639d6ddc60e7d013f46c)
libziparchive: fix clang build 2015-06-04T20:26:12+00:00 Greg Hackmann ghackmann@google.com 2015-04-27T17:14:32+00:00 4ba18cf3ffae39c86ef3c968871b331f1e7df914 Bug: http://b/21558406 Change-Id: I69105a9cde05b182f65c7e574282bb4b48b66e95 Signed-off-by: Greg Hackmann <ghackmann@google.com> (cherry picked from commit d6eac24aac0069cb6d00d2c723db5adab1a724c4) 
Bug: http://b/21558406
Change-Id: I69105a9cde05b182f65c7e574282bb4b48b66e95
Signed-off-by: Greg Hackmann <ghackmann@google.com>
(cherry picked from commit d6eac24aac0069cb6d00d2c723db5adab1a724c4)
Avoid mapping output to memory while writing to a file. 2015-06-04T20:25:52+00:00 Narayan Kamath narayan@google.com 2015-04-17T10:53:14+00:00 785a128aec74dc7bee7d76adafa69c94a4b268aa It's unnecessary, and causes issues when the uncompressed output is large. Bug: http://b/21558406 Change-Id: I99cfb3933b094c2826c7e6c6de9aab03478fcc53 (cherry picked from commit f899bd534b2dc51b9db8d27c76394b192fe51155) 
It's unnecessary, and causes issues when the uncompressed
output is large.

Bug: http://b/21558406
Change-Id: I99cfb3933b094c2826c7e6c6de9aab03478fcc53
(cherry picked from commit f899bd534b2dc51b9db8d27c76394b192fe51155)