Gitiles
Code Review Sign In
LeafOS / LeafOS-Project / android_art / 90040194a1b5c441dde5c8a8b6d637c23972e0f3^! / .
commit90040194a1b5c441dde5c8a8b6d637c23972e0f3[log] [tgz]
authorIan Rogers <irogers@google.com>Fri Dec 16 08:54:29 2011 -0800
committerIan Rogers <irogers@google.com>Fri Dec 16 09:29:04 2011 -0800
tree729962d80228061d6f186c579440893c8eacd2b1
parent6b0870dfaaa2e69a900ad7ed88e4e1d3697445aa [diff]
Fixes for verifier access checks.

Class::CanAccessMember ignores the class we're checking access for,
except for protected fields. Document this behavior.
When getting static and instance fields perform the same class access
checks we already perform for methods.

Change-Id: I00719de2e346e9f3faa199e1976151493708fff7

diff --git a/src/dex_verifier.cc b/src/dex_verifier.cc
index 4f22448..e463f47 100644
--- a/src/dex_verifier.cc
+++ b/src/dex_verifier.cc

@@ -3028,15 +3028,19 @@
 }
 
 Method* DexVerifier::ResolveMethodAndCheckAccess(uint32_t method_idx, bool is_direct) {
+  const DexFile::MethodId& method_id = dex_file_->GetMethodId(method_idx);
+  const RegType& klass_type = ResolveClassAndCheckAccess(method_id.class_idx_);
+  if (failure_ != VERIFY_ERROR_NONE) {
+    fail_messages_ << " in attempt to access method " << dex_file_->GetMethodName(method_id);
+    return NULL;
+  }
+  if(klass_type.IsUnresolvedTypes()) {
+    return NULL;  // Can't resolve Class so no more to do here
+  }
   Class* referrer = method_->GetDeclaringClass();
   DexCache* dex_cache = referrer->GetDexCache();
   Method* res_method = dex_cache->GetResolvedMethod(method_idx);
   if (res_method == NULL) {
-    const DexFile::MethodId& method_id = dex_file_->GetMethodId(method_idx);
-    const RegType& klass_type = ResolveClassAndCheckAccess(method_id.class_idx_);
-    if(klass_type.IsUnresolvedTypes() || klass_type.IsUnknown()) {
-      return NULL;  // Can't resolve Class so no more to do here
-    }
     Class* klass = klass_type.GetClass();
     const char* name = dex_file_->GetMethodName(method_id);
     std::string signature(dex_file_->CreateMethodSignature(method_id.proto_idx_, NULL));
@@ -3306,9 +3310,20 @@
 }
 
 Field* DexVerifier::GetStaticField(int field_idx) {
+  const DexFile::FieldId& field_id = dex_file_->GetFieldId(field_idx);
+  // Check access to class
+  const RegType& klass_type = ResolveClassAndCheckAccess(field_id.class_idx_);
+  if (failure_ != VERIFY_ERROR_NONE) {
+    fail_messages_ << " in attempt to access static field " << field_idx << " ("
+              << dex_file_->GetFieldName(field_id) << ") in "
+              << dex_file_->GetFieldDeclaringClassDescriptor(field_id);
+    return NULL;
+  }
+  if(klass_type.IsUnresolvedTypes()) {
+    return NULL;  // Can't resolve Class so no more to do here
+  }
   Field* field = Runtime::Current()->GetClassLinker()->ResolveFieldJLS(field_idx, method_);
   if (field == NULL) {
-    const DexFile::FieldId& field_id = dex_file_->GetFieldId(field_idx);
     LOG(INFO) << "unable to resolve static field " << field_idx << " ("
               << dex_file_->GetFieldName(field_id) << ") in "
               << dex_file_->GetFieldDeclaringClassDescriptor(field_id);
@@ -3329,9 +3344,20 @@
 }
 
 Field* DexVerifier::GetInstanceField(const RegType& obj_type, int field_idx) {
+  const DexFile::FieldId& field_id = dex_file_->GetFieldId(field_idx);
+  // Check access to class
+  const RegType& klass_type = ResolveClassAndCheckAccess(field_id.class_idx_);
+  if (failure_ != VERIFY_ERROR_NONE) {
+    fail_messages_ << " in attempt to access instance field " << field_idx << " ("
+              << dex_file_->GetFieldName(field_id) << ") in "
+              << dex_file_->GetFieldDeclaringClassDescriptor(field_id);
+    return NULL;
+  }
+  if(klass_type.IsUnresolvedTypes()) {
+    return NULL;  // Can't resolve Class so no more to do here
+  }
   Field* field = Runtime::Current()->GetClassLinker()->ResolveFieldJLS(field_idx, method_);
   if (field == NULL) {
-    const DexFile::FieldId& field_id = dex_file_->GetFieldId(field_idx);
     LOG(INFO) << "unable to resolve instance field " << field_idx << " ("
               << dex_file_->GetFieldName(field_id) << ") in "
               << dex_file_->GetFieldDeclaringClassDescriptor(field_id);

diff --git a/src/object.h b/src/object.h
index 8c6e660..9f87015 100644
--- a/src/object.h
+++ b/src/object.h

@@ -1322,10 +1322,6 @@
     if (this == access_to) {
       return true;
     }
-    // Check we have access to the class
-    if (!CanAccess(access_to)) {
-      return false;
-    }
     // Public members are trivially accessible
     if (member_flags & kAccPublic) {
       return true;