diff options
| author | 2024-01-29 14:08:14 +0000 | |
|---|---|---|
| committer | 2024-01-29 14:08:14 +0000 | |
| commit | 27e5ead954c4434c38e9cc3f2a578737c48fb77d (patch) | |
| tree | f7f4c0d35068e832f7cc2eebca478888d8effe9f | |
| parent | f84ad307e6bfca369418cf331eae69075b683dcf (diff) | |
| parent | 90c0ffb7be26426152ba342fb37d2a7d43c49c77 (diff) | |
Merge "Allow sandbox sdk to query intent activities of the client app" into main
| -rw-r--r-- | services/core/java/com/android/server/pm/AppsFilterBase.java | 12 |
1 files changed, 10 insertions, 2 deletions
diff --git a/services/core/java/com/android/server/pm/AppsFilterBase.java b/services/core/java/com/android/server/pm/AppsFilterBase.java index a5bc2c36a5a8..98b7c9610295 100644 --- a/services/core/java/com/android/server/pm/AppsFilterBase.java +++ b/services/core/java/com/android/server/pm/AppsFilterBase.java @@ -24,6 +24,7 @@ import static com.android.server.pm.AppsFilterUtils.requestsQueryAllPackages; import android.annotation.NonNull; import android.annotation.Nullable; +import android.content.pm.Flags; import android.content.pm.SigningDetails; import android.os.Binder; import android.os.Handler; @@ -318,6 +319,11 @@ public abstract class AppsFilterBase implements AppsFilterSnapshot { existingSettings.untrackedStorage()); } + private static boolean isQueryableBySdkSandbox(int callingUid, int targetUid) { + return Flags.allowSdkSandboxQueryIntentActivities() + && targetUid == Process.getAppUidForSdkSandboxUid(callingUid); + } + /** * See * {@link AppsFilterSnapshot#shouldFilterApplication(PackageDataSnapshot, int, Object, @@ -338,9 +344,11 @@ public abstract class AppsFilterBase implements AppsFilterSnapshot { } else if (Process.isSdkSandboxUid(callingAppId)) { final int targetAppId = targetPkgSetting.getAppId(); final int targetUid = UserHandle.getUid(userId, targetAppId); - // we only allow sdk sandbox processes access to forcequeryable packages + // we only allow sdk sandbox processes access to forcequeryable packages or + // if the target app is the sandbox's client app return !isForceQueryable(targetPkgSetting.getAppId()) - && !isImplicitlyQueryable(callingUid, targetUid); + && !isImplicitlyQueryable(callingUid, targetUid) + && !isQueryableBySdkSandbox(callingUid, targetUid); } // use cache if (mCacheReady && mCacheEnabled) { |