Gitiles
Code Review Sign In
review.blissroms.org / platform_packages_apps_Settings / 8950a9002402de6e1218bab3da52868a51104a95
commit8950a9002402de6e1218bab3da52868a51104a95[log] [tgz]
authorOli Lan <olilan@google.com>Fri Feb 25 15:22:27 2022 +0000
committerOli Lan <olilan@google.com>Thu Mar 03 13:18:16 2022 +0000
tree388cbcd7a618288cc1d200b37271835fdedc6284
parent4e543a38f6037cee6f6237c755d9fdc00270d6e2 [diff]
Prevent exfiltration of system files via user image settings.

This is a backport of ag/17005706.

This adds mitigations to prevent system files being exfiltrated
via the settings content provider when a content URI is provided
as a chosen user image.

The mitigations are:

1) Copy the image to a new URI rather than the existing takePictureUri
prior to cropping.

2) Only allow a system handler to respond to the CROP intent.

Bug: 187702830
Test: build and check functionality
Change-Id: Ia6314b6810afb5efa0329f3eeaee9ccfff791966
Merged-In: I15e15ad88b768a5b679de32c5429d921d850a3cb
1 file changed
tree: 388cbcd7a618288cc1d200b37271835fdedc6284
  1. libs/
  2. protos/
  3. res/
  4. src/
  5. tests/
  6. .gitignore
  7. Android.mk
  8. AndroidManifest.xml
  9. CleanSpec.mk
  10. color-check-baseline.xml
  11. MODULE_LICENSE_APACHE2
  12. NOTICE
  13. OWNERS
  14. PREUPLOAD.cfg
  15. proguard.flags
  16. wrap_alpha.py