Gitiles
Code Review Sign In
gerrit-public.fairphone.software / platform / frameworks / base / 6935755f432f384fe629c7ec969265f740fceb63
commit6935755f432f384fe629c7ec969265f740fceb63[log] [tgz]
authorChristopher Tate <ctate@google.com>Mon Jul 17 16:23:02 2017 -0700
committerChristopher Tate <ctate@google.com>Thu Jul 20 11:03:41 2017 -0700
treef1797f4045d2d4733894072e15a744c69cebb168
parentf99ac67bdb19c96eedc9ce274ded306e9f658371 [diff]
Ensure backup doesn't reuse ack tokens nearby in time

We've seen at least one incident in the field that suggests we
used the same identifying token in back to back operations, which
breaks certain invariants in the asynchronous-completion bookkeeping.
Harden against this by making sure that we don't reuse tokens in
nearby proximity.  This is done by making the low 8 bits a sequence
count, i.e. guaranteed unique within the last 256 operations, while
keeping the upper bits random so that apps can't guess at correct
tokens.

Fix 63691912
Fix 63553575
Test: CTS backup pass to completion plus manual inspection

Change-Id: I321c3a2b3f4203836800bb72db7332bd82e54aaf
1 file changed
tree: f1797f4045d2d4733894072e15a744c69cebb168
  1. apct-tests/
  2. api/
  3. cmds/
  4. core/
  5. data/
  6. docs/
  7. drm/
  8. graphics/
  9. keystore/
  10. legacy-test/
  11. libs/
  12. location/
  13. lowpan/
  14. media/
  15. native/
  16. nfc-extras/
  17. obex/
  18. opengl/
  19. packages/
  20. proto/
  21. rs/
  22. samples/
  23. sax/
  24. services/
  25. telecomm/
  26. telephony/
  27. test-runner/
  28. tests/
  29. tools/
  30. vr/
  31. wifi/
  32. Android.bp
  33. Android.mk
  34. CleanSpec.mk
  35. compiled-classes-phone
  36. MODULE_LICENSE_APACHE2
  37. NOTICE
  38. pathmap.mk
  39. preloaded-classes
  40. PREUPLOAD.cfg