diff options
| author | 2025-01-02 13:46:59 -0800 | |
|---|---|---|
| committer | 2025-01-02 13:46:59 -0800 | |
| commit | d8c71d286b885a19acfa52bca1803622e2b84192 (patch) | |
| tree | 3597d930f2edb57bc9b472a139d3c8d30f80b057 | |
| parent | 4514061228f8b93994377d60df6de99e3a29cf9d (diff) | |
| parent | ab1a7193a071a5e6fb78bc8d76e1e717f7fc9c37 (diff) | |
Merge "Move permission-by-UID check earlier" into main
| -rw-r--r-- | core/java/android/permission/PermissionManager.java | 18 |
1 files changed, 6 insertions, 12 deletions
diff --git a/core/java/android/permission/PermissionManager.java b/core/java/android/permission/PermissionManager.java index e98397d104d6..cc6ec08c15ff 100644 --- a/core/java/android/permission/PermissionManager.java +++ b/core/java/android/permission/PermissionManager.java @@ -1716,20 +1716,14 @@ public final class PermissionManager { private static int checkPermissionUncached(@Nullable String permission, int pid, int uid, int deviceId) { + final int appId = UserHandle.getAppId(uid); + if (appId == Process.ROOT_UID || appId == Process.SYSTEM_UID) { + return PackageManager.PERMISSION_GRANTED; + } final IActivityManager am = ActivityManager.getService(); if (am == null) { - // Well this is super awkward; we somehow don't have an active ActivityManager - // instance. If we're testing a root or system UID, then they totally have whatever - // permission this is. - final int appId = UserHandle.getAppId(uid); - if (appId == Process.ROOT_UID || appId == Process.SYSTEM_UID) { - if (sShouldWarnMissingActivityManager) { - Slog.w(LOG_TAG, "Missing ActivityManager; assuming " + uid + " holds " - + permission); - sShouldWarnMissingActivityManager = false; - } - return PackageManager.PERMISSION_GRANTED; - } + // We don't have an active ActivityManager instance and the calling UID is not root or + // system, so we don't grant this permission. Slog.w(LOG_TAG, "Missing ActivityManager; assuming " + uid + " does not hold " + permission); return PackageManager.PERMISSION_DENIED; |