Don't enforce control permission when preparing consented VPN. If a VPN app requests to be prepared and has already obtained user consent, there is no need to additionally enforce the control permission. We only need to enforce the control permission when a VPN is first being prepared, where such a preparation would bypass user consent. Also ensure that in this case, the VPN being prepared matches the calling app. Otherwise an app could prepare another pre-consented VPN, which is not particularly dangerous but is likely unexpected. Finally, remove misleading comment in ConnectivityService#prepareVpn. This method IS called from VpnService.prepare(), not only from system-privileged apps. Bug: 18442887 Change-Id: Ic3227c6c1c74312697f0576d3811b06692a4edff

commit: ca3d8edfba3697e84d6227ee1e964a42ec6e0d5f [log] [tgz]
author: Jeff Davidson <jpd@google.com> Thu Nov 20 13:12:46 2014 -0800
committer: Jeff Davidson <jpd@google.com> Fri Nov 21 12:56:29 2014 -0800
tree: 5629e748569a4fa90e511ac8570d16a2278bbfde
parent: c52ae42e2fbce1a469dab7ed29dbf77ed4897103 [diff]
diff --git a/services/core/java/com/android/server/ConnectivityService.java b/services/core/java/com/android/server/ConnectivityService.java
index 17889ea..4bfc3ea 100644
--- a/services/core/java/com/android/server/ConnectivityService.java
+++ b/services/core/java/com/android/server/ConnectivityService.java

@@ -2813,7 +2813,7 @@
     }
 
     /**
-     * Prepare for a VPN application. This method is used by system-privileged apps.
+     * Prepare for a VPN application.
      * Permissions are checked in Vpn class.
      * @hide
      */
commit	ca3d8edfba3697e84d6227ee1e964a42ec6e0d5f	[log] [tgz]
author	Jeff Davidson <jpd@google.com>	Thu Nov 20 13:12:46 2014 -0800
committer	Jeff Davidson <jpd@google.com>	Fri Nov 21 12:56:29 2014 -0800
tree	5629e748569a4fa90e511ac8570d16a2278bbfde
parent	c52ae42e2fbce1a469dab7ed29dbf77ed4897103 [diff]