commit ad4c94e86be3970f8f834ab88998c992892cd5e7
author Prashantsinh Parmar <prashantsinh.parmar@fairphone.partners> Fri Jul 28 00:37:04 2023 +0530
committer Maarten Derks <maarten@fairphone.com> Wed Aug 02 14:37:20 2023 +0200
tree a1022f906286262fbd8242b8a993c09f50a54322
parent 3c9faee78014540eaedf2a3498e1ed202b8f1fbe
parent 801661118954f9e9886a2977125c81803ccfceda

Merge branch 'dev/11/fp3/security-aosp-rvc-release' into int/11/fp3

* dev/11/fp3/security-aosp-rvc-release:
  Update file permissions using canonical path

Change-Id: Id6614db08056cc12ee46fb83d5bdb7973294cdac

src/com/android/providers/telephony/MmsProvider.java

diff --git a/src/com/android/providers/telephony/MmsProvider.java b/src/com/android/providers/telephony/MmsProvider.java
index b1462ae..cda84fd 100644
--- a/src/com/android/providers/telephony/MmsProvider.java
+++ b/src/com/android/providers/telephony/MmsProvider.java
@@ -1051,15 +1051,16 @@
                         uri.getPathSegments().get(1);
 
                 try {
+                    File canonicalFile = new File(path).getCanonicalFile();
                     String partsDirPath = getContext().getDir(PARTS_DIR_NAME, 0).getCanonicalPath();
-                    if (!new File(path).getCanonicalPath().startsWith(partsDirPath)) {
+                    if (!canonicalFile.getPath().startsWith(partsDirPath + '/')) {
                         EventLog.writeEvent(0x534e4554, "240685104",
                                 Binder.getCallingUid(), (TAG + " update: path " + path +
                                         " does not start with " + partsDirPath));
                         return 0;
                     }
                     // Reset the file permission back to read for everyone but me.
-                    Os.chmod(path, 0644);
+                    Os.chmod(canonicalFile.getPath(), 0644);
                     if (LOCAL_LOGV) {
                         Log.d(TAG, "MmsProvider.update chmod is successful for path: " + path);
                     }