Merge "Update INTERNET perm state cache to use uids instead of appIds."

author: Sudheer Shanka <sudheersai@google.com> 2020-10-01 23:51:08 +0000
committer: Android (Google) Code Review <android-gerrit@google.com> 2020-10-01 23:51:08 +0000
commit: db696aed18936b2de940d4ebc8b201cc9b33d629 (patch)
tree: 8de86c98276bdbfebb623f7a40f61cddf32f62f5
parent: 87ce51b8edef60270b8089d880bc023cff5f1a7a (diff)
parent: fa8340654b3f24b4ac1f95e7a9d52a1b105b81a3 (diff)
1 files changed, 9 insertions, 11 deletions
diff --git a/services/core/java/com/android/server/net/NetworkPolicyManagerService.java b/services/core/java/com/android/server/net/NetworkPolicyManagerService.java
index 0450e5bfd011..29928771e73d 100644
--- a/services/core/java/com/android/server/net/NetworkPolicyManagerService.java
+++ b/services/core/java/com/android/server/net/NetworkPolicyManagerService.java
@@ -587,7 +587,7 @@ public class NetworkPolicyManagerService extends INetworkPolicyManager.Stub {
 
     private final NetworkPolicyLogger mLogger = new NetworkPolicyLogger();
 
-    /** List of apps indexed by appId and whether they have the internet permission */
+    /** List of apps indexed by uid and whether they have the internet permission */
     @GuardedBy("mUidRulesFirstLock")
     private final SparseBooleanArray mInternetPermissionMap = new SparseBooleanArray();
 
@@ -973,7 +973,7 @@ public class NetworkPolicyManagerService extends INetworkPolicyManager.Stub {
                 if (LOGV) Slog.v(TAG, "ACTION_PACKAGE_ADDED for uid=" + uid);
                 // Clear the cache for the app
                 synchronized (mUidRulesFirstLock) {
-                    mInternetPermissionMap.delete(UserHandle.getAppId(uid));
+                    mInternetPermissionMap.delete(uid);
                     updateRestrictionRulesForUidUL(uid);
                 }
             }
@@ -4203,16 +4203,14 @@ public class NetworkPolicyManagerService extends INetworkPolicyManager.Stub {
     @GuardedBy("mUidRulesFirstLock")
     private boolean hasInternetPermissionUL(int uid) {
         try {
-            final int appId = UserHandle.getAppId(uid);
-            final boolean hasPermission;
-            if (mInternetPermissionMap.indexOfKey(appId) < 0) {
-                hasPermission =
-                        mIPm.checkUidPermission(Manifest.permission.INTERNET, uid)
-                                == PackageManager.PERMISSION_GRANTED;
-                mInternetPermissionMap.put(appId, hasPermission);
-            } else {
-                hasPermission = mInternetPermissionMap.get(appId);
+            if (mInternetPermissionMap.get(uid)) {
+                return true;
             }
+            // If the cache shows that uid doesn't have internet permission,
+            // then always re-check with PackageManager just to be safe.
+            final boolean hasPermission = mIPm.checkUidPermission(Manifest.permission.INTERNET,
+                    uid) == PackageManager.PERMISSION_GRANTED;
+            mInternetPermissionMap.put(uid, hasPermission);
             return hasPermission;
         } catch (RemoteException e) {
         }
author	Sudheer Shanka <sudheersai@google.com>	2020-10-01 23:51:08 +0000
committer	Android (Google) Code Review <android-gerrit@google.com>	2020-10-01 23:51:08 +0000
commit	db696aed18936b2de940d4ebc8b201cc9b33d629 (patch)
tree	8de86c98276bdbfebb623f7a40f61cddf32f62f5
parent	87ce51b8edef60270b8089d880bc023cff5f1a7a (diff)
parent	fa8340654b3f24b4ac1f95e7a9d52a1b105b81a3 (diff)