Enforce MediaButtonReceiver ComponentName belongs to app (1b2fa248) · Commits · e / os / android_frameworks_base

services/core/java/com/android/server/media/MediaSessionRecord.java

+10 −0

Original line number	Diff line number	Diff line
		@@ -50,6 +50,8 @@ import android.os.Process;
		import android.os.RemoteException;
		import android.os.ResultReceiver;
		import android.os.SystemClock;
		import android.text.TextUtils;
		import android.util.EventLog;
		import android.util.Log;
		import android.view.KeyEvent;

		@@ -932,6 +934,14 @@ public class MediaSessionRecord implements IBinder.DeathRecipient, MediaSessionR
		public void setMediaButtonBroadcastReceiver(ComponentName receiver) throws RemoteException {
		final long token = Binder.clearCallingIdentity();
		try {
		//mPackageName has been verified in MediaSessionService.enforcePackageName().
		if (receiver != null && !TextUtils.equals(
		mPackageName, receiver.getPackageName())) {
		EventLog.writeEvent(0x534e4554, "238177121", -1, ""); // SafetyNet logging.
		throw new IllegalArgumentException("receiver does not belong to "
		+ "package name provided to MediaSessionRecord. Pkg = " + mPackageName
		+ ", Receiver Pkg = " + receiver.getPackageName());
		}
		if ((mPolicies & MediaSessionPolicyProvider.SESSION_POLICY_IGNORE_BUTTON_RECEIVER)
		!= 0) {
		return;