commit a3968751099bd85f6a20673a8556b033f82357a3
author Hai Zhang <zhanghai@google.com> Tue Nov 10 11:18:26 2020 -0800
committer Hai Zhang <zhanghai@google.com> Mon Dec 07 14:05:23 2020 -0800
tree dbc118fd213fc70715b43f8bbdccc9733f02885b
parent c43d935c42a55f7498a89d52a7df8592e7f06477

Add role as a new permission protection flag.

Permissions with the role protection flag will be able to be managed
by role via grant/revokeRuntimePermission(), similar to development
permissions but only manageable by role.

Also fixed a bug that PermissionController can get any signature
permission.

Bug: 158736025
Test: presubmit
Change-Id: I49603cee91466a791be66055a922ba1a8bd08d4e