Gitiles
Code Review Sign In
gerrit-public.fairphone.software / platform / art / ccd3ba9b9038bf0d324310642c19d6d2c70a765d^1..ccd3ba9b9038bf0d324310642c19d6d2c70a765d / .
commitccd3ba9b9038bf0d324310642c19d6d2c70a765d[log] [tgz]
authorMathew Inwood <mathewi@google.com>Fri May 18 08:31:00 2018 +0000
committerAndroid (Google) Code Review <android-gerrit@google.com>Fri May 18 08:31:00 2018 +0000
treebd653f153f7b162852695cb1d3c118cdce2a3812
parent76612b1fdbf5870f75dc28f123a8cc4ec344aa28 [diff]
parent015a7ec45bf874891ae57e972531aa5e72b489ae [diff]
Merge "Hidden API: only log what we deny." into pi-dev
diff --git a/runtime/hidden_api.cc b/runtime/hidden_api.cc
index e6d1ed4..e942ad6 100644
--- a/runtime/hidden_api.cc
+++ b/runtime/hidden_api.cc

@@ -39,7 +39,7 @@
 // Note that when flipping this flag, you must also update the expectations of test 674-hiddenapi
 // as it affects whether or not we warn for light grey APIs that have been added to the exemptions
 // list.
-static constexpr bool kLogAllAccesses = true;
+static constexpr bool kLogAllAccesses = false;
 
 static inline std::ostream& operator<<(std::ostream& os, AccessMethod value) {
   switch (value) {
@@ -215,7 +215,8 @@
   // - for non-debuggable apps, there is no distinction between light grey & whitelisted APIs.
   // - we want to avoid the overhead of checking for exemptions for light greylisted APIs whenever
   //   possible.
-  if (kLogAllAccesses || action == kDeny || runtime->IsJavaDebuggable()) {
+  const bool shouldWarn = kLogAllAccesses || runtime->IsJavaDebuggable();
+  if (shouldWarn || action == kDeny) {
     if (member_signature.IsExempted(runtime->GetHiddenApiExemptions())) {
       action = kAllow;
       // Avoid re-examining the exemption list next time.
@@ -256,7 +257,8 @@
     MaybeWhitelistMember(runtime, member);
 
     // If this action requires a UI warning, set the appropriate flag.
-    if (action == kAllowButWarnAndToast || runtime->ShouldAlwaysSetHiddenApiWarningFlag()) {
+    if (shouldWarn &&
+        (action == kAllowButWarnAndToast || runtime->ShouldAlwaysSetHiddenApiWarningFlag())) {
       runtime->SetPendingHiddenApiWarning(true);
     }
   }

diff --git a/test/674-hiddenapi/src-ex/ChildClass.java b/test/674-hiddenapi/src-ex/ChildClass.java
index 0349e8f..d5966cd 100644
--- a/test/674-hiddenapi/src-ex/ChildClass.java
+++ b/test/674-hiddenapi/src-ex/ChildClass.java

@@ -91,12 +91,12 @@
     // Run meaningful combinations of access flags.
     for (Hiddenness hiddenness : Hiddenness.values()) {
       final Behaviour expected;
-      if (isSameBoot || hiddenness == Hiddenness.Whitelist || everythingWhitelisted) {
+      // Warnings are now disabled whenever access is granted, even for
+      // greylisted APIs. This is the behaviour for release builds.
+      if (isSameBoot || hiddenness != Hiddenness.Blacklist || everythingWhitelisted) {
         expected = Behaviour.Granted;
-      } else if (hiddenness == Hiddenness.Blacklist) {
-        expected = Behaviour.Denied;
       } else {
-        expected = Behaviour.Warning;
+        expected = Behaviour.Denied;
       }
 
       for (boolean isStatic : booleanValues) {