11a751c29313ca1a84d8cdd6e614c955c5c096fb - platform_frameworks_base

commit	11a751c29313ca1a84d8cdd6e614c955c5c096fb	[log] [tgz]
author	Sandeep Bandaru <sandeepbandaru@google.com>	Mon Jun 24 19:45:01 2024 +0000
committer	Sandeep Bandaru <sandeepbandaru@google.com>	Tue Jun 25 20:56:57 2024 +0000
tree	cb12553bdd1bd4b9378700c8a8dcbe28a742d60d
parent	d1e049c406f85f3be8c0544fc5b79cb28951df8d [diff]

Check IsolatedOwner permissions for known isolated_compute_apps

AICore implementation requires to query caller package-name and signing certificates as part of caller auth which is currently performed in an isolated_compute_app.
Since isolated apps cannot hold permission, this change adds logic to check for permission on the isolated owner instead.

Flag: EXEMPT bugfix
Bug: 348634518
Test: local, cts needs more setup for multi-user device, will add in followup
Change-Id: I8a8ac09f9cad7ebe9580792eead25e4b8d6aaa81

services/core/java/com/android/server/pm/ComputerEngine.java[diff]

1 file changed

tree: cb12553bdd1bd4b9378700c8a8dcbe28a742d60d

.prebuilt_info/
apct-tests/
apex/
api/
boot/
cmds/
config/
core/
data/
docs/
drm/
errorprone/
graphics/
identity/
keystore/
libs/
location/
media/
mime/
mms/
native/
nfc/
nfc-extras/
obex/
omapi/
opengl/
packages/
proto/
ravenwood/
rs/
samples/
sax/
services/
startop/
telecomm/
telephony/
test-base/
test-junit/
test-legacy/
test-mock/
test-runner/
tests/
tools/
wifi/
.clang-format
.gitignore
.mailmap
AconfigFlags.bp
ADPF_OWNERS
Android.bp
BAL_OWNERS
BATTERY_STATS_OWNERS
BROADCASTS_OWNERS
CleanSpec.mk
framework-jarjar-rules.txt
GAME_MANAGER_OWNERS
INPUT_OWNERS
INTENT_OWNERS
lint-baseline.xml
LSE_APP_COMPAT_OWNERS
MEMORY_OWNERS
METADATA
MODULE_LICENSE_APACHE2
MULTIUSER_OWNERS
NOTICE
OWNERS
OWNERS.md
PACKAGE_MANAGER_OWNERS
pathmap.mk
PERFORMANCE_OWNERS
PREUPLOAD.cfg
ProtoLibraries.bp
Ravenwood.bp
SECURITY_STATE_OWNERS
SQLITE_OWNERS
TEST_MAPPING
TestProtoLibraries.bp
THERMAL_OWNERS
TRACE_OWNERS
WEAR_OWNERS
ZYGOTE_OWNERS