summaryrefslogtreecommitdiff
diff options
context:
space:
mode:
author Philip P. Moltmann <moltmann@google.com> 2020-11-03 15:12:44 -0800
committer Philip P. Moltmann <moltmann@google.com> 2020-11-04 10:06:01 -0800
commitdd41b25a831144b1f65dd54d9e64b523b76c7594 (patch)
treea84efe052a9408e17e1d5834b3a97d8b4fb0c161
parentbc71724034e5879557d3b05d2efb548e4db470be (diff)
Revoke permission on non-runtime -> runtime upgrade
Not only on normal -> runtime. Test: atest android.appsecurity.cts.PermissionsHostTest#testNoPermissionEscalationAfterReboot Bug: 154505240, 168319670 Change-Id: If3b420067b4d7111dcf67ae6f98e42176158b679 Merged-In: If3b420067b4d7111dcf67ae6f98e42176158b679
Diffstat
-rw-r--r--services/core/java/com/android/server/pm/permission/BasePermission.java4
1 files changed, 2 insertions, 2 deletions
diff --git a/services/core/java/com/android/server/pm/permission/BasePermission.java b/services/core/java/com/android/server/pm/permission/BasePermission.java
index 63753baa2539..1f029000f8a5 100644
--- a/services/core/java/com/android/server/pm/permission/BasePermission.java
+++ b/services/core/java/com/android/server/pm/permission/BasePermission.java
@@ -365,7 +365,7 @@ public final class BasePermission {
if (bp == null) {
bp = new BasePermission(p.info.name, p.info.packageName, TYPE_NORMAL);
}
- boolean wasNormal = bp.isNormal();
+ boolean wasNonRuntime = !bp.isRuntime();
StringBuilder r = null;
if (bp.perm == null) {
if (bp.sourcePackageName == null
@@ -409,7 +409,7 @@ public final class BasePermission {
if (bp.perm == p) {
bp.protectionLevel = p.info.protectionLevel;
}
- if (bp.isRuntime() && (ownerChanged || wasNormal)) {
+ if (bp.isRuntime() && (ownerChanged || wasNonRuntime)) {
// If this is a runtime permission and the owner has changed, or this was a normal
// permission, then permission state should be cleaned up
bp.mPermissionDefinitionChanged = true;
generated by cgit v1.2.3-59-g8ed1b (git 2.39.0) at 2025-11-02 14:46:47 +0000