Google Git
Sign in
android / platform / system / sepolicy / b36ecf6caacc1d9003aafe15bbf191767b87328a / . / tools / fuzzer_bindings_check.py
blob: 55859ac8c0ccc5d51d27302e04b4c63d94da8605 [file] [log] [blame]
#!/usr/bin/env python3
#
# Copyright 2022 The Android Open Source Project
#
# Licensed under the Apache License, Version 2.0 (the "License");
# you may not use this file except in compliance with the License.
# You may obtain a copy of the License at
#
# http://www.apache.org/licenses/LICENSE-2.0
#
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS,
# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
# See the License for the specific language governing permissions and
# limitations under the License.
import logging
import json
import sys
import os
import argparse
def check_file_exists(file_name):
if not os.path.exists(file_name):
sys.exit("File doesn't exist : {0}".format(file_name))
def read_bindings(binding_file):
check_file_exists(binding_file)
with open(binding_file) as jsonFile:
bindings = json.loads(jsonFile.read())
return bindings
def check_fuzzer_exists(context_file, bindings):
with open(context_file) as file:
for line in file:
# Ignore empty lines and comments
line = line.strip()
if line.startswith("#"):
logging.debug("Found a comment..skipping")
continue
tokens = line.split()
if len(tokens) == 0:
logging.debug("Skipping empty lines in service_contexts")
continue
# For a valid service_context file, there will be only two tokens
# First will be service name and second will be its label.
service_name = tokens[0]
if service_name not in bindings:
sys.exit("\nerror: Service '{0}' is being added, but we have no fuzzer on file for it. "
"Fuzzers are listed at $ANDROID_BUILD_TOP/system/sepolicy/build/soong/service_fuzzer_bindings.go \n\n"
"NOTE: automatic service fuzzers are currently not supported in Java (b/232439254) "
"and Rust (b/164122727). In this case, please ignore this for now and add an entry for your"
"new service in service_fuzzer_bindings.go \n\n"
"If you are writing a new service, it may be subject to attack from other "
"potentially malicious processes. A fuzzer can be written automatically "
"by adding these things: \n"
"- a cc_fuzz Android.bp entry \n"
"- a main file that constructs your service and calls 'fuzzService' \n\n"
"An examples can be found here: \n"
"- $ANDROID_BUILD_TOP/hardware/interfaces/vibrator/aidl/default/fuzzer.cpp \n"
"- https://source.android.com/docs/core/architecture/aidl/aidl-fuzzing \n\n"
"This is only ~30 lines of configuration. It requires dependency injection "
"for your service which is a good practice, and (in AOSP) you will get bugs "
"automatically filed on you. You will find out about issues without needing "
"to backport changes years later, and the system will automatically find ways "
"to reproduce difficult to solve issues for you. \n\n"
"This error can be bypassed by adding entry "
"for new service in $ANDROID_BUILD_TOP/system/sepolicy/build/soong/service_fuzzer_bindings.go \n\n"
"- Android Fuzzing and Security teams".format(service_name))
return
def validate_bindings(args):
bindings = read_bindings(args.bindings)
for file in args.srcs:
check_file_exists(file)
check_fuzzer_exists(file, bindings)
return
def get_args():
parser = argparse.ArgumentParser(description="Tool to check if fuzzer is "
"added for new services")
parser.add_argument('-b', help='Path to json file containing '
'"service":[fuzzers...] bindings.',
required=True, dest='bindings')
parser.add_argument('-s', '--list', nargs='+',
help='list of service_contexts files. Tool will check if '
'there is fuzzer for every service in the context '
'file.', required=True, dest='srcs')
parsed_args = parser.parse_args()
return parsed_args
if __name__ == "__main__":
args = get_args()
validate_bindings(args)