Gitiles
Code Review Sign In
gerrit-public.fairphone.software / platform / frameworks / base / 9edef25ede2325aeb69c0d2d2f08313a436f0f27
commit9edef25ede2325aeb69c0d2d2f08313a436f0f27[log] [tgz]
authorJeff Sharkey <jsharkey@android.com>Mon May 20 14:00:17 2019 -0600
committerJeff Sharkey <jsharkey@android.com>Fri Jul 12 09:27:41 2019 -0600
treec4a34f77bd935f9a7b7ffdc3f10dd8646f5cb91c
parent26f2c379d0c5e6f6f37419ed06d57f252b9501e7 [diff]
Detailed ContentProvider permissions checks.

The new MediaProvider design has an internal dynamic security model
based on the value stored in OWNER_PACKAGE_NAME, so the OS always
needs to consult the provider when resolving Uri permission grants.

Blocking calls from the system process like this are typically
discouraged, but this is the best we can do with the limited time
left, and there is existing precident with getType().

For now, use "forceUriPermissions" as a proxy for determining when
we need to consult the provider directly.

Bug: 115619667
Test: atest --test-mapping packages/providers/MediaProvider
Test: atest android.appsecurity.cts.ExternalStorageHostTest
Change-Id: I1d54feeec93fbb4cf5ff55240ef4eae3a35ed068
12 files changed
tree: c4a34f77bd935f9a7b7ffdc3f10dd8646f5cb91c
  1. apct-tests/
  2. api/
  3. cmds/
  4. config/
  5. core/
  6. data/
  7. docs/
  8. drm/
  9. graphics/
  10. keystore/
  11. libs/
  12. location/
  13. lowpan/
  14. media/
  15. native/
  16. nfc-extras/
  17. obex/
  18. opengl/
  19. packages/
  20. proto/
  21. rs/
  22. samples/
  23. sax/
  24. services/
  25. startop/
  26. telecomm/
  27. telephony/
  28. test-base/
  29. test-legacy/
  30. test-mock/
  31. test-runner/
  32. tests/
  33. tools/
  34. wifi/
  35. .gitignore
  36. Android.bp
  37. Android.mk
  38. CleanSpec.mk
  39. jarjar_rules_hidl.txt
  40. MODULE_LICENSE_APACHE2
  41. NOTICE
  42. pathmap.mk
  43. PREUPLOAD.cfg