Gitiles
Code Review Sign In
review.blissroms.org / platform_prebuilts_clang_host_linux-x86_clang-r416183b1 / accdabf457d122f058d643c7eb459ec5dd38a012
commitaccdabf457d122f058d643c7eb459ec5dd38a012[log] [tgz]
authorRambo Wang <rambowang@google.com>Thu Oct 20 16:52:29 2022 +0000
committerRambo Wang <rambowang@google.com>Mon Oct 24 17:22:17 2022 +0000
tree10e6e316a111f09ffca8866dfcc862a2d35486d4
parentb87bed67b70d1caa0aea0b44e7cac57e9eed3fcd [diff]
Location renounced network scan request always throw SecureException

Root cause:
In the implementation of requestNetworkScan, when trying to check
if the caller app has carrier privileges, it calls method
checkCarrierPrivilegesForPackage which requires
READ_PRIVILEGED_PHONE_STATE permission.

Solution:
While callers have no READ_PRIVILEGED_PHONE_STATE permission, we should
check caller's carrier privileges status in the name of Phone
instead of caller.

Note, commit 1c11dba2c18b5c25900e3c55c9a9cecf81fac229 once fixed a similar issue in history. But a later security fix commit 1adf4562e2990eff2d092ffb93d65594fe5c09a0 broke the case again.

Bug: 252969494
Test: atest android.carrierapi.cts.NetworkScanApiTestatest
Change-Id: Ic8a0145a801162d961e69ec7240a01081e058ffa
Merged-In: Ic8a0145a801162d961e69ec7240a01081e058ffa
(cherry picked from commit 3dee30a517e0d59d7b58d17e1c88ee9d50d9fae6)
1 file changed
tree: 10e6e316a111f09ffca8866dfcc862a2d35486d4
  1. assets/
  2. client/
  3. ecc/
  4. res/
  5. src/
  6. testapps/
  7. tests/
  8. Android.bp
  9. AndroidManifest.xml
  10. CleanSpec.mk
  11. lint.xml
  12. OWNERS
  13. PREUPLOAD.cfg
  14. proguard.flags
  15. TEST_MAPPING