Merge "[ECM] Change default mode of ACCESS_RESTRICTED_SETTINGS" into main

        new AppOpInfo.Builder(OP_ESTABLISH_VPN_MANAGER, OPSTR_ESTABLISH_VPN_MANAGER,

                "ESTABLISH_VPN_MANAGER").setDefaultMode(AppOpsManager.MODE_ALLOWED).build(),

        new AppOpInfo.Builder(OP_ACCESS_RESTRICTED_SETTINGS, OPSTR_ACCESS_RESTRICTED_SETTINGS,

                "ACCESS_RESTRICTED_SETTINGS").setDefaultMode(AppOpsManager.MODE_ALLOWED)

                "ACCESS_RESTRICTED_SETTINGS").setDefaultMode(AppOpsManager.MODE_DEFAULT)

            .setDisableReset(true).setRestrictRead(true).build(),

        new AppOpInfo.Builder(OP_RECEIVE_AMBIENT_TRIGGER_AUDIO, OPSTR_RECEIVE_AMBIENT_TRIGGER_AUDIO,

                "RECEIVE_SOUNDTRIGGER_AUDIO").setDefaultMode(AppOpsManager.MODE_ALLOWED)

            // Set the OP_ACCESS_RESTRICTED_SETTINGS op, which is used by ECM (see {@link

            // EnhancedConfirmationManager}) as a persistent state denoting whether an app is

            // currently guarded by ECM, not guarded by ECM, or (in Android V+) that this should

            // be decided later.

            if (android.permission.flags.Flags.enhancedConfirmationModeApisEnabled()

                    && android.security.Flags.extendEcmToAllSettings()) {

                final int appId = request.getAppId();

                // TODO: b/388960315 - Implement a long-term solution to race condition

                mPm.mHandler.postDelayed(() -> {

                    for (int userId : firstUserIds) {

                        // MODE_DEFAULT means that the app's guardedness will be decided lazily

                        setAccessRestrictedSettingsMode(packageName, appId, userId,

                                AppOpsManager.MODE_DEFAULT);

                    }

                }, 1000L);

            } else {

            // currently guarded by ECM, not guarded by ECM or (in Android V+) that this should

            // be decided later. In Android B, the op's default mode was updated to the

            // "should be decided later" case, and so this step is now unnecessary.

            if (!android.permission.flags.Flags.enhancedConfirmationModeApisEnabled()

                    || !android.security.Flags.extendEcmToAllSettings()) {

                // Apply restricted settings on potentially dangerous packages. Needs to happen

                // after appOpsManager is notified of the new package

                if (request.getPackageSource() == PackageInstaller.PACKAGE_SOURCE_LOCAL_FILE

    companion object {

        private val LOG_TAG = AccessPolicy::class.java.simpleName

        internal const val VERSION_LATEST = 15

        internal const val VERSION_LATEST = 16

        private const val TAG_ACCESS = "access"

        private const val TAG_DEFAULT_PERMISSION_GRANT = "default-permission-grant"

                }

            }

        }

        if (version <= 15) {

            with(policy) {

                val appOpModes = getAppOpModes(packageState.appId, userId)

                if (

                    appOpModes != null &&

                        AppOpsManager.OPSTR_ACCESS_RESTRICTED_SETTINGS !in appOpModes

                ) {

                    setAppOpMode(

                        packageState.appId,

                        userId,

                        AppOpsManager.OPSTR_ACCESS_RESTRICTED_SETTINGS,

                        AppOpsManager.MODE_ALLOWED,

                    )

                }

            }

        }

    }

}