diff options
| author | 2019-01-14 10:55:57 +0000 | |
|---|---|---|
| committer | 2019-01-15 10:32:32 +0000 | |
| commit | 27eedf505228d692f827ec06961a79357bedb634 (patch) | |
| tree | 1c3cb19c10cd9047e9b28cb6684f743e63b39906 /data | |
| parent | 099d53b9cbe5f056e3aaa62ceeaf4845c11b354c (diff) | |
Split out more privapp permissions
These apps are all moving to /product, so split them
out of the grant file on /system. For now, make them
required by the /system file. As part of moving the
an app to /product, the grant file will be made required
by the app itself.
Bug: 122353713
Test: make
Exempt-From-Owner-Approval: approved already
Change-Id: If207576d1e78037159051de25a733d90c1cb29c8
Diffstat (limited to 'data')
| -rw-r--r-- | data/etc/Android.bp | 42 | ||||
| -rw-r--r-- | data/etc/com.android.carrierconfig.xml | 21 | ||||
| -rw-r--r-- | data/etc/com.android.contacts.xml | 22 | ||||
| -rw-r--r-- | data/etc/com.android.launcher3.xml | 23 | ||||
| -rw-r--r-- | data/etc/com.android.provision.xml | 21 | ||||
| -rw-r--r-- | data/etc/com.android.storagemanager.xml | 26 | ||||
| -rw-r--r-- | data/etc/privapp-permissions-platform.xml | 28 |
7 files changed, 154 insertions, 29 deletions
diff --git a/data/etc/Android.bp b/data/etc/Android.bp index 0bffa387489b..91fe64bec0d1 100644 --- a/data/etc/Android.bp +++ b/data/etc/Android.bp @@ -40,8 +40,41 @@ prebuilt_etc { sub_dir: "permissions", src: "privapp-permissions-platform.xml", required: [ + "privapp_whitelist_com.android.carrierconfig", + "privapp_whitelist_com.android.contacts", + "privapp_whitelist_com.android.launcher3", + "privapp_whitelist_com.android.provision", "privapp_whitelist_com.android.settings.intelligence", - ] + "privapp_whitelist_com.android.storagemanager", + ], +} + +prebuilt_etc { + name: "privapp_whitelist_com.android.carrierconfig", + sub_dir: "permissions", + src: "com.android.carrierconfig.xml", + filename_from_src: true, +} + +prebuilt_etc { + name: "privapp_whitelist_com.android.contacts", + sub_dir: "permissions", + src: "com.android.contacts.xml", + filename_from_src: true, +} + +prebuilt_etc { + name: "privapp_whitelist_com.android.launcher3", + sub_dir: "permissions", + src: "com.android.launcher3.xml", + filename_from_src: true, +} + +prebuilt_etc { + name: "privapp_whitelist_com.android.provision", + sub_dir: "permissions", + src: "com.android.provision.xml", + filename_from_src: true, } prebuilt_etc { @@ -60,6 +93,13 @@ prebuilt_etc { } prebuilt_etc { + name: "privapp_whitelist_com.android.storagemanager", + sub_dir: "permissions", + src: "com.android.storagemanager.xml", + filename_from_src: true, +} + +prebuilt_etc { name: "privapp_whitelist_com.android.systemui", product_specific: true, sub_dir: "permissions", diff --git a/data/etc/com.android.carrierconfig.xml b/data/etc/com.android.carrierconfig.xml new file mode 100644 index 000000000000..17efb0315040 --- /dev/null +++ b/data/etc/com.android.carrierconfig.xml @@ -0,0 +1,21 @@ +<?xml version="1.0" encoding="utf-8"?> +<!-- + ~ Copyright (C) 2019 The Android Open Source Project + ~ + ~ Licensed under the Apache License, Version 2.0 (the "License"); + ~ you may not use this file except in compliance with the License. + ~ You may obtain a copy of the License at + ~ + ~ http://www.apache.org/licenses/LICENSE-2.0 + ~ + ~ Unless required by applicable law or agreed to in writing, software + ~ distributed under the License is distributed on an "AS IS" BASIS, + ~ WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. + ~ See the License for the specific language governing permissions and + ~ limitations under the License + --> +<permissions> + <privapp-permissions package="com.android.carrierconfig"> + <permission name="android.permission.READ_PRIVILEGED_PHONE_STATE"/> + </privapp-permissions> +</permissions> diff --git a/data/etc/com.android.contacts.xml b/data/etc/com.android.contacts.xml new file mode 100644 index 000000000000..78eae40348e6 --- /dev/null +++ b/data/etc/com.android.contacts.xml @@ -0,0 +1,22 @@ +<?xml version="1.0" encoding="utf-8"?> +<!-- + ~ Copyright (C) 2019 The Android Open Source Project + ~ + ~ Licensed under the Apache License, Version 2.0 (the "License"); + ~ you may not use this file except in compliance with the License. + ~ You may obtain a copy of the License at + ~ + ~ http://www.apache.org/licenses/LICENSE-2.0 + ~ + ~ Unless required by applicable law or agreed to in writing, software + ~ distributed under the License is distributed on an "AS IS" BASIS, + ~ WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. + ~ See the License for the specific language governing permissions and + ~ limitations under the License + --> +<permissions> + <privapp-permissions package="com.android.contacts"> + <permission name="android.permission.GET_ACCOUNTS_PRIVILEGED"/> + <permission name="com.android.voicemail.permission.READ_VOICEMAIL"/> + </privapp-permissions> +</permissions> diff --git a/data/etc/com.android.launcher3.xml b/data/etc/com.android.launcher3.xml new file mode 100644 index 000000000000..337e153722ac --- /dev/null +++ b/data/etc/com.android.launcher3.xml @@ -0,0 +1,23 @@ +<?xml version="1.0" encoding="utf-8"?> +<!-- + ~ Copyright (C) 2019 The Android Open Source Project + ~ + ~ Licensed under the Apache License, Version 2.0 (the "License"); + ~ you may not use this file except in compliance with the License. + ~ You may obtain a copy of the License at + ~ + ~ http://www.apache.org/licenses/LICENSE-2.0 + ~ + ~ Unless required by applicable law or agreed to in writing, software + ~ distributed under the License is distributed on an "AS IS" BASIS, + ~ WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. + ~ See the License for the specific language governing permissions and + ~ limitations under the License + --> +<permissions> + <privapp-permissions package="com.android.launcher3"> + <permission name="android.permission.BIND_APPWIDGET"/> + <permission name="android.permission.CONTROL_REMOTE_APP_TRANSITION_ANIMATIONS"/> + <permission name="android.permission.GET_ACCOUNTS_PRIVILEGED"/> + </privapp-permissions> +</permissions> diff --git a/data/etc/com.android.provision.xml b/data/etc/com.android.provision.xml new file mode 100644 index 000000000000..05404ef73732 --- /dev/null +++ b/data/etc/com.android.provision.xml @@ -0,0 +1,21 @@ +<?xml version="1.0" encoding="utf-8"?> +<!-- + ~ Copyright (C) 2019 The Android Open Source Project + ~ + ~ Licensed under the Apache License, Version 2.0 (the "License"); + ~ you may not use this file except in compliance with the License. + ~ You may obtain a copy of the License at + ~ + ~ http://www.apache.org/licenses/LICENSE-2.0 + ~ + ~ Unless required by applicable law or agreed to in writing, software + ~ distributed under the License is distributed on an "AS IS" BASIS, + ~ WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. + ~ See the License for the specific language governing permissions and + ~ limitations under the License + --> +<permissions> + <privapp-permissions package="com.android.provision"> + <permission name="android.permission.WRITE_SECURE_SETTINGS"/> + </privapp-permissions> +</permissions> diff --git a/data/etc/com.android.storagemanager.xml b/data/etc/com.android.storagemanager.xml new file mode 100644 index 000000000000..e85a82c983df --- /dev/null +++ b/data/etc/com.android.storagemanager.xml @@ -0,0 +1,26 @@ +<?xml version="1.0" encoding="utf-8"?> +<!-- + ~ Copyright (C) 2019 The Android Open Source Project + ~ + ~ Licensed under the Apache License, Version 2.0 (the "License"); + ~ you may not use this file except in compliance with the License. + ~ You may obtain a copy of the License at + ~ + ~ http://www.apache.org/licenses/LICENSE-2.0 + ~ + ~ Unless required by applicable law or agreed to in writing, software + ~ distributed under the License is distributed on an "AS IS" BASIS, + ~ WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. + ~ See the License for the specific language governing permissions and + ~ limitations under the License + --> +<permissions> + <privapp-permissions package="com.android.storagemanager"> + <permission name="android.permission.DELETE_PACKAGES"/> + <permission name="android.permission.INTERACT_ACROSS_USERS"/> + <permission name="android.permission.MANAGE_USERS"/> + <permission name="android.permission.PACKAGE_USAGE_STATS"/> + <permission name="android.permission.USE_RESERVED_DISK"/> + <permission name="android.permission.WRITE_SECURE_SETTINGS"/> + </privapp-permissions> +</permissions> diff --git a/data/etc/privapp-permissions-platform.xml b/data/etc/privapp-permissions-platform.xml index a1a4f48fac6e..c9f0f108ab44 100644 --- a/data/etc/privapp-permissions-platform.xml +++ b/data/etc/privapp-permissions-platform.xml @@ -33,10 +33,6 @@ applications that come with the platform <permission name="android.permission.CRYPT_KEEPER"/> </privapp-permissions> - <privapp-permissions package="com.android.carrierconfig"> - <permission name="android.permission.READ_PRIVILEGED_PHONE_STATE"/> - </privapp-permissions> - <privapp-permissions package="com.android.cellbroadcastreceiver"> <permission name="android.permission.INTERACT_ACROSS_USERS"/> <permission name="android.permission.MANAGE_USERS"/> @@ -45,11 +41,6 @@ applications that come with the platform <permission name="android.permission.RECEIVE_EMERGENCY_BROADCAST"/> </privapp-permissions> - <privapp-permissions package="com.android.contacts"> - <permission name="android.permission.GET_ACCOUNTS_PRIVILEGED"/> - <permission name="com.android.voicemail.permission.READ_VOICEMAIL"/> - </privapp-permissions> - <privapp-permissions package="com.android.defcontainer"> <permission name="android.permission.ACCESS_CACHE_FILESYSTEM"/> <permission name="android.permission.ALLOCATE_AGGRESSIVE"/> @@ -79,12 +70,6 @@ applications that come with the platform <permission name="android.permission.WRITE_MEDIA_STORAGE"/> </privapp-permissions> - <privapp-permissions package="com.android.launcher3"> - <permission name="android.permission.BIND_APPWIDGET"/> - <permission name="android.permission.CONTROL_REMOTE_APP_TRANSITION_ANIMATIONS"/> - <permission name="android.permission.GET_ACCOUNTS_PRIVILEGED"/> - </privapp-permissions> - <privapp-permissions package="com.android.location.fused"> <permission name="android.permission.INSTALL_LOCATION_PROVIDER"/> </privapp-permissions> @@ -225,10 +210,6 @@ applications that come with the platform <permission name="android.permission.USE_RESERVED_DISK"/> </privapp-permissions> - <privapp-permissions package="com.android.provision"> - <permission name="android.permission.WRITE_SECURE_SETTINGS"/> - </privapp-permissions> - <privapp-permissions package="com.android.mainline.networkstack"> <permission name="android.permission.ACCESS_NETWORK_CONDITIONS"/> <permission name="android.permission.CHANGE_BACKGROUND_DATA_SETTING"/> @@ -333,15 +314,6 @@ applications that come with the platform <permission name="android.permission.INTENT_FILTER_VERIFICATION_AGENT"/> </privapp-permissions> - <privapp-permissions package="com.android.storagemanager"> - <permission name="android.permission.DELETE_PACKAGES"/> - <permission name="android.permission.INTERACT_ACROSS_USERS"/> - <permission name="android.permission.MANAGE_USERS"/> - <permission name="android.permission.PACKAGE_USAGE_STATS"/> - <permission name="android.permission.USE_RESERVED_DISK"/> - <permission name="android.permission.WRITE_SECURE_SETTINGS"/> - </privapp-permissions> - <privapp-permissions package="com.android.tv"> <permission name="android.permission.CHANGE_HDMI_CEC_ACTIVE_SOURCE"/> <permission name="android.permission.DVB_DEVICE"/> |