Gitiles
Code Review Sign In
gerrit-public.fairphone.software / platform / frameworks / base / ea196114fb9fb0a5bd76652bea781d2331d52ef9
commitea196114fb9fb0a5bd76652bea781d2331d52ef9[log] [tgz]
authorMichael Groover <mpgroover@google.com>Thu Mar 14 18:18:44 2019 -0700
committerMichael Groover <mpgroover@google.com>Thu Mar 14 18:36:37 2019 -0700
tree2bbaf74ce115114ce8313936850c9bf30889fa67
parent726e36e8c57bb50110842254ffe813b10793aae0 [diff]
When device ID access is revoked get app info as calling user

When a calling package from another user ID does not meet the new
requirements to access device identifiers its application info will
be queried to determine its target SDK. However since the permission
check for device identifiers runs as user 0 the current query would
look for the application info under user 0. This change queries for
the application info using the calling user ID to ensure the correct
info is returned and prevent any issues with an
INTERACT_ACROSS_USERS_FULL permission check.

Fixes: 128359188
Test: Manually verified app that queries Build#getSerial from work
      profile did not fail due to INTERACTS_ACROSS_USER_FULL perm.
Change-Id: Iaea4e3952bd1e329bde7de0ace004bb8478821f5
1 file changed
tree: 2bbaf74ce115114ce8313936850c9bf30889fa67
  1. apct-tests/
  2. api/
  3. cmds/
  4. config/
  5. core/
  6. data/
  7. docs/
  8. drm/
  9. graphics/
  10. keystore/
  11. libs/
  12. location/
  13. lowpan/
  14. media/
  15. native/
  16. nfc-extras/
  17. obex/
  18. opengl/
  19. packages/
  20. proto/
  21. rs/
  22. samples/
  23. sax/
  24. services/
  25. startop/
  26. telecomm/
  27. telephony/
  28. test-base/
  29. test-legacy/
  30. test-mock/
  31. test-runner/
  32. tests/
  33. tools/
  34. wifi/
  35. .gitignore
  36. Android.bp
  37. Android.mk
  38. CleanSpec.mk
  39. jarjar_rules_hidl.txt
  40. MODULE_LICENSE_APACHE2
  41. NOTICE
  42. pathmap.mk
  43. PREUPLOAD.cfg