Gitiles
Code Review Sign In
review.blissroms.org / platform_frameworks_base / f30bd8b693c675362edb513b3ecb4edeb026c0ca
commitf30bd8b693c675362edb513b3ecb4edeb026c0ca[log] [tgz]
authorEric Biggers <ebiggers@google.com>Mon Jun 26 23:11:07 2023 +0000
committerEric Biggers <ebiggers@google.com>Fri Oct 06 17:03:21 2023 +0000
treebbd3a96a9d279b211c48c99ae562c302f94b56e2
parent220d6a284ebe18675e9b017474c3b07e65be55ba [diff]
DPMS: allow getPasswordMinimumMetrics() to anyone who can set LSKF

Everyone who sets a new LSKF is supposed to first validate it against
the minimum password metrics.  Yet, the
SET_AND_VERIFY_LOCKSCREEN_CREDENTIALS or ACCESS_KEYGUARD_SECURE_STORAGE
permission is sufficient to set a new LSKF but isn't necessarily
sufficient to get the minimum password metrics.  This is preventing
'KeyguardManager#setLock(int, byte[], int, byte[])' from being fixed to
properly validate the new LSKF.

To fix this, make DevicePolicyManagerService#getPasswordMinimumMetrics()
accept these permissions.

Bug: 219511761
Bug: 232900169
Bug: 243881358
Test: see I46d8bf920526a00d6e6d2145d06c8e39f8047ea8
Change-Id: Ic69fd01dadf95ab49b025295711fa020180690ff
Merged-In: Ic69fd01dadf95ab49b025295711fa020180690ff
(cherry picked from commit 62dbf2533080e2332f71757a7e3a55227946835f)
1 file changed
tree: bbd3a96a9d279b211c48c99ae562c302f94b56e2
  1. .prebuilt_info/
  2. apct-tests/
  3. apex/
  4. api/
  5. boot/
  6. cmds/
  7. config/
  8. core/
  9. data/
  10. docs/
  11. drm/
  12. errorprone/
  13. graphics/
  14. identity/
  15. keystore/
  16. libs/
  17. location/
  18. media/
  19. mime/
  20. mms/
  21. native/
  22. nfc-extras/
  23. obex/
  24. omapi/
  25. opengl/
  26. packages/
  27. proto/
  28. rs/
  29. samples/
  30. sax/
  31. services/
  32. startop/
  33. telecomm/
  34. telephony/
  35. test-base/
  36. test-legacy/
  37. test-mock/
  38. test-runner/
  39. tests/
  40. tools/
  41. wifi/
  42. .clang-format
  43. .gitignore
  44. .mailmap
  45. AconfigFlags.bp
  46. ADPF_OWNERS
  47. Android.bp
  48. Android.mk
  49. BATTERY_STATS_OWNERS
  50. BROADCASTS_OWNERS
  51. CleanSpec.mk
  52. framework-jarjar-rules.txt
  53. GAME_MANAGER_OWNERS
  54. INPUT_OWNERS
  55. INTENT_OWNERS
  56. lint-baseline.xml
  57. METADATA
  58. MODULE_LICENSE_APACHE2
  59. MULTIUSER_OWNERS
  60. NOTICE
  61. OWNERS
  62. OWNERS.md
  63. PACKAGE_MANAGER_OWNERS
  64. pathmap.mk
  65. PERFORMANCE_OWNERS
  66. PREUPLOAD.cfg
  67. ProtoLibraries.bp
  68. SQLITE_OWNERS
  69. TEST_MAPPING
  70. TestProtoLibraries.bp
  71. TRACE_OWNERS
  72. WEAR_OWNERS
  73. ZYGOTE_OWNERS