Merge "New user definitions for isolated sandboxes."

commit: 0b7fc8bb031d2c0a1dc0485459faa8f2ffd6a0e4 [log] [tgz]
author: Dianne Hackborn <hackbod@google.com> Thu Feb 09 18:07:23 2012 -0800
committer: Android (Google) Code Review <android-gerrit@google.com> Thu Feb 09 18:07:23 2012 -0800
tree: 0fe92271f3c1b161999e8badcc6d43574faba465
parent: 4ae77160727f8b92d61028269d1f49ae16873a08 [diff]
parent: ca185abcb58582ab58805f792eb868681ebdb55e [diff]
diff --git a/run-as/package.c b/run-as/package.c
index 8f11646..143d647 100644
--- a/run-as/package.c
+++ b/run-as/package.c

@@ -89,6 +89,16 @@
     if (ret < 0)
         goto EXIT;
 
+    /* Ensure that the file is owned by the system user */
+    if ((st.st_uid != AID_SYSTEM) || (st.st_gid != AID_SYSTEM)) {
+        goto EXIT;
+    }
+
+    /* Ensure that the file has sane permissions */
+    if ((st.st_mode & S_IWOTH) != 0) {
+        goto EXIT;
+    }
+
     /* Ensure that the size is not ridiculously large */
     length = (size_t)st.st_size;
     if ((off_t)length != st.st_size) {
commit	0b7fc8bb031d2c0a1dc0485459faa8f2ffd6a0e4	[log] [tgz]
author	Dianne Hackborn <hackbod@google.com>	Thu Feb 09 18:07:23 2012 -0800
committer	Android (Google) Code Review <android-gerrit@google.com>	Thu Feb 09 18:07:23 2012 -0800
tree	0fe92271f3c1b161999e8badcc6d43574faba465
parent	4ae77160727f8b92d61028269d1f49ae16873a08 [diff]
parent	ca185abcb58582ab58805f792eb868681ebdb55e [diff]