ddca60058e69c5e751b217ea24610b188243944c - platform_frameworks_base

commit	ddca60058e69c5e751b217ea24610b188243944c	[log] [tgz]
author	Kweku Adams <kwekua@google.com>	Fri Jun 18 13:22:13 2021 -0700
committer	Kweku Adams <kwekua@google.com>	Thu Jul 01 10:20:44 2021 -0700
tree	76d64bc643d96dddfa22d4af44a13f4fea665f4c
parent	89bc0823deda925ffb71ccd1311a434621666591 [diff]

Prevent app check via content provider.

Pass in the calling UID when asking PackageManager to resolve the
content provider. This makes sure PM is resolving the provider based on
the calling UID's permissions and not the system server's permissions.

Bug: 189122544
Bug: 189122545
Test: atest CtsContentTestCases
Test: atest CtsJobSchedulerTestCases
Test: atest FrameworksServicesTests:UriGrantsManagerServiceTest
Change-Id: Iaa421e982fca1e29828eda43f0762893199b5ce1

services/core/java/android/content/pm/PackageManagerInternal.java[diff]
services/core/java/com/android/server/pm/PackageManagerService.java[diff]
services/core/java/com/android/server/uri/UriGrantsManagerService.java[diff]
services/tests/servicestests/src/com/android/server/uri/UriGrantsManagerServiceTest.java[diff]
services/tests/servicestests/src/com/android/server/uri/UriGrantsMockContext.java[diff]

5 files changed