Donate to e Foundation | Murena handsets with /e/OS | Own a part of Murena! Learn more

Commit 209f21d2 authored Jun 08, 2021 by Kholoud Mohamed Committed by Android (Google) Code Review Jun 08, 2021

Merge "Fix security vulnerability in DPMS" into sc-dev

parents 1e5e988d 54dc06ab

core/java/android/app/admin/DevicePolicyManager.java

+4 −0

Original line number	Diff line number	Diff line
		@@ -13112,6 +13112,10 @@ public class DevicePolicyManager {
		* @see #getCrossProfileCalendarPackages(ComponentName)
		* @hide
		*/
		@RequiresPermission(anyOf = {
		permission.INTERACT_ACROSS_USERS_FULL,
		permission.INTERACT_ACROSS_USERS
		})
		public @Nullable Set<String> getCrossProfileCalendarPackages() {
		throwIfParentInstance("getCrossProfileCalendarPackages");
		if (mService != null) {

services/devicepolicy/java/com/android/server/devicepolicy/DevicePolicyManagerService.java

+3 −3

Original line number	Diff line number	Diff line
		@@ -16016,9 +16016,9 @@ public class DevicePolicyManagerService extends BaseIDevicePolicyManager {
		return Collections.emptyList();
		}
		Preconditions.checkArgumentNonnegative(userHandle, "Invalid userId");

		final CallerIdentity caller = getCallerIdentity();
		Preconditions.checkCallAuthorization(hasCrossUsersPermission(caller, userHandle));
		Preconditions.checkCallAuthorization(
		hasCallingOrSelfPermission(permission.INTERACT_ACROSS_USERS)
		\|\| hasCallingOrSelfPermission(permission.INTERACT_ACROSS_USERS_FULL));

		synchronized (getLockObject()) {
		final ActiveAdmin admin = getProfileOwnerAdminLocked(userHandle);