Loading services/camera/libcameraservice/CameraService.cpp +26 −12 Original line number Diff line number Diff line Loading @@ -864,17 +864,6 @@ status_t CameraService::validateConnectLocked(const String8& cameraId, /*inout*/ int callingPid = getCallingPid(); if (clientUid == USE_CALLING_UID) { clientUid = getCallingUid(); } else { // We only trust our own process to forward client UIDs if (callingPid != getpid()) { ALOGE("CameraService::connect X (PID %d) rejected (don't trust clientUid %d)", callingPid, clientUid); return PERMISSION_DENIED; } } if (!mModule) { ALOGE("CameraService::connect X (PID %d) rejected (camera HAL module not loaded)", callingPid); Loading @@ -887,6 +876,31 @@ status_t CameraService::validateConnectLocked(const String8& cameraId, /*inout*/ return -ENODEV; } #if !defined(__BRILLO__) status_t allowed = validateClientPermissionsLocked(cameraId, clientUid); if (allowed != OK) { return allowed; } #endif // defined(__BRILLO__) return checkIfDeviceIsUsable(cameraId); } status_t CameraService::validateClientPermissionsLocked(const String8& cameraId, int& clientUid) const { int callingPid = getCallingPid(); if (clientUid == USE_CALLING_UID) { clientUid = getCallingUid(); } else { // We only trust our own process to forward client UIDs if (callingPid != getpid()) { ALOGE("CameraService::connect X (PID %d) rejected (don't trust clientUid %d)", callingPid, clientUid); return PERMISSION_DENIED; } } // Check device policy for this camera char value[PROPERTY_VALUE_MAX]; char key[PROPERTY_KEY_MAX]; Loading @@ -909,7 +923,7 @@ status_t CameraService::validateConnectLocked(const String8& cameraId, /*inout*/ return PERMISSION_DENIED; } return checkIfDeviceIsUsable(cameraId); return OK; } status_t CameraService::checkIfDeviceIsUsable(const String8& cameraId) const { Loading services/camera/libcameraservice/CameraService.h +1 −0 Original line number Diff line number Diff line Loading @@ -482,6 +482,7 @@ private: // Check if we can connect, before we acquire the service lock. status_t validateConnectLocked(const String8& cameraId, /*inout*/int& clientUid) const; status_t validateClientPermissionsLocked(const String8& cameraId, /*inout*/int& clientUid) const; // Handle active client evictions, and update service state. // Only call with with mServiceLock held. Loading Loading
services/camera/libcameraservice/CameraService.cpp +26 −12 Original line number Diff line number Diff line Loading @@ -864,17 +864,6 @@ status_t CameraService::validateConnectLocked(const String8& cameraId, /*inout*/ int callingPid = getCallingPid(); if (clientUid == USE_CALLING_UID) { clientUid = getCallingUid(); } else { // We only trust our own process to forward client UIDs if (callingPid != getpid()) { ALOGE("CameraService::connect X (PID %d) rejected (don't trust clientUid %d)", callingPid, clientUid); return PERMISSION_DENIED; } } if (!mModule) { ALOGE("CameraService::connect X (PID %d) rejected (camera HAL module not loaded)", callingPid); Loading @@ -887,6 +876,31 @@ status_t CameraService::validateConnectLocked(const String8& cameraId, /*inout*/ return -ENODEV; } #if !defined(__BRILLO__) status_t allowed = validateClientPermissionsLocked(cameraId, clientUid); if (allowed != OK) { return allowed; } #endif // defined(__BRILLO__) return checkIfDeviceIsUsable(cameraId); } status_t CameraService::validateClientPermissionsLocked(const String8& cameraId, int& clientUid) const { int callingPid = getCallingPid(); if (clientUid == USE_CALLING_UID) { clientUid = getCallingUid(); } else { // We only trust our own process to forward client UIDs if (callingPid != getpid()) { ALOGE("CameraService::connect X (PID %d) rejected (don't trust clientUid %d)", callingPid, clientUid); return PERMISSION_DENIED; } } // Check device policy for this camera char value[PROPERTY_VALUE_MAX]; char key[PROPERTY_KEY_MAX]; Loading @@ -909,7 +923,7 @@ status_t CameraService::validateConnectLocked(const String8& cameraId, /*inout*/ return PERMISSION_DENIED; } return checkIfDeviceIsUsable(cameraId); return OK; } status_t CameraService::checkIfDeviceIsUsable(const String8& cameraId) const { Loading
services/camera/libcameraservice/CameraService.h +1 −0 Original line number Diff line number Diff line Loading @@ -482,6 +482,7 @@ private: // Check if we can connect, before we acquire the service lock. status_t validateConnectLocked(const String8& cameraId, /*inout*/int& clientUid) const; status_t validateClientPermissionsLocked(const String8& cameraId, /*inout*/int& clientUid) const; // Handle active client evictions, and update service state. // Only call with with mServiceLock held. Loading
