Enforce package visibility filter rules to the isTrusted api - platform/frameworks/base

diff options

author	Rhed Jao <rhedjao@google.com>	2022-12-06 15:43:24 +0800
committer	Rhed Jao <rhedjao@google.com>	2022-12-08 12:55:52 +0800
commit	289e1b7813b872493fb945cbf8677ece38df6894 (patch)
tree	d78cdca5ed378c1021be7ae220576da768713369 /libs/androidfw/StringPool.cpp
parent	90d4a5a5d7a585760d43a2a7d3aa54a21db557a0 (diff)

Enforce package visibility filter rules to the isTrusted api

The api leaks packages that hold media control permission or notification listener enabled on the device. This cl uses package visibility rules to filter the caller and the package name. In normal cases, the package name passed to the api is the caller itself or an app that binds to the caller's session service. Both are legitimate to the package visibility rules. For caller passing arbitrary package names to the api declares package visibility in the manifest is necessary. Bug: 238862819 Test: atest MediaSessionManagerHostTest Test: atest MediaSessionManagerTest Test: atest CtsAppEnumerationTestCases Change-Id: I33579cb8203c8a9658372ba9ed12bb0cbb1155c6

Diffstat (limited to 'libs/androidfw/StringPool.cpp')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: