OSDN Git Service

(root) / android-x86 / frameworks-base.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 773f85e) | patch
DO NOT MERGE. No direct Uri grants from system.
authorJeff Sharkey <jsharkey@android.com>
Mon, 21 Nov 2016 17:33:54 +0000 (10:33 -0700)
committerJeff Sharkey <jsharkey@google.com>
Thu, 2 Feb 2017 07:10:58 +0000 (07:10 +0000)
commit3e2652a55dda0b02d12bfd3c061b86c11cfee12c
tree10bb703ed28b6673e51c8ba1ba4b327b42137149tree | snapshot
parent773f85ec60596dfd44ef348c6c275cef32836a8bcommit | diff
DO NOT MERGE. No direct Uri grants from system.

The system should never be extending Uri permission grants from
itself, since it automatically holds all the permissions.  Instead,
the system should always be a mediator between two specific app, and
it should be using startActivityAsCaller() if it needs to extend
permissions.

Blocking at this level fixes an entire class of confused deputy
security issues.

Test: builds, normal intent resolution UI works
Bug: 33019296329903413287991532879772
Change-Id: Iaa57c393a386d8068e807d0dd0caccc89d8a11db
services/core/java/com/android/server/am/ActivityManagerService.java diff | blob | history
frameworks/base
About OSDN
Find Software
Develop Software
Help