DO NOT MERGE: Propagate revoked permissions in permission review mode am: 4518d0be16

am: 1e3fd31932 Change-Id: I0bb05ec8471c8f4de55ac295650424caaa86748e
author: Svet Ganov <svetoslavganov@google.com> 2017-01-17 22:31:47 +0000
committer: android-build-merger <android-build-merger@google.com> 2017-01-17 22:31:47 +0000
commit: e77f180149231ff898f7cfe3f8c66285677dbbed (patch)
tree: 82898a4e02bdb19d6c2952fc89a58b21ef1a1a5f
parent: 3181ba522d4125af3fb9a83efb3532b6ec6f5484 (diff)
parent: 1e3fd31932c3726a577289a095cc79f97e25144b (diff)
1 files changed, 21 insertions, 3 deletions
diff --git a/services/core/java/com/android/server/pm/PackageManagerService.java b/services/core/java/com/android/server/pm/PackageManagerService.java
index f266e86afbf4..a5cf24da444c 100644
--- a/services/core/java/com/android/server/pm/PackageManagerService.java
+++ b/services/core/java/com/android/server/pm/PackageManagerService.java
@@ -10173,12 +10173,30 @@ public class PackageManagerService extends IPackageManager.Stub {
                             int flags = permissionState != null
                                     ? permissionState.getFlags() : 0;
                             if (origPermissions.hasRuntimePermission(bp.name, userId)) {
-                                if (permissionsState.grantRuntimePermission(bp, userId) ==
-                                        PermissionsState.PERMISSION_OPERATION_FAILURE) {
-                                    // If we cannot put the permission as it was, we have to write.
+                                // Don't propagate the permission in a permission review mode if
+                                // the former was revoked, i.e. marked to not propagate on upgrade.
+                                // Note that in a permission review mode install permissions are
+                                // represented as constantly granted runtime ones since we need to
+                                // keep a per user state associated with the permission. Also the
+                                // revoke on upgrade flag is no longer applicable and is reset.
+                                final boolean revokeOnUpgrade = (flags & PackageManager
+                                        .FLAG_PERMISSION_REVOKE_ON_UPGRADE) != 0;
+                                if (revokeOnUpgrade) {
+                                    flags &= ~PackageManager.FLAG_PERMISSION_REVOKE_ON_UPGRADE;
+                                    // Since we changed the flags, we have to write.
                                     changedRuntimePermissionUserIds = ArrayUtils.appendInt(
                                             changedRuntimePermissionUserIds, userId);
                                 }
+                                if (!mPermissionReviewRequired || !revokeOnUpgrade) {
+                                    if (permissionsState.grantRuntimePermission(bp, userId) ==
+                                            PermissionsState.PERMISSION_OPERATION_FAILURE) {
+                                        // If we cannot put the permission as it was,
+                                        // we have to write.
+                                        changedRuntimePermissionUserIds = ArrayUtils.appendInt(
+                                                changedRuntimePermissionUserIds, userId);
+                                    }
+                                }
+
                                 // If the app supports runtime permissions no need for a review.
                                 if ((mPermissionReviewRequired || Build.PERMISSIONS_REVIEW_REQUIRED)
                                         && appSupportsRuntimePermissions
author	Svet Ganov <svetoslavganov@google.com>	2017-01-17 22:31:47 +0000
committer	android-build-merger <android-build-merger@google.com>	2017-01-17 22:31:47 +0000
commit	e77f180149231ff898f7cfe3f8c66285677dbbed (patch)
tree	82898a4e02bdb19d6c2952fc89a58b21ef1a1a5f
parent	3181ba522d4125af3fb9a83efb3532b6ec6f5484 (diff)
parent	1e3fd31932c3726a577289a095cc79f97e25144b (diff)