Fix access control isAlwaysOnVpnLockdownEnabled (26af4ae6) · Commits · e / os / android_frameworks_base

services/devicepolicy/java/com/android/server/devicepolicy/DevicePolicyManagerService.java

+3 −2

Original line number	Original line	Diff line number	Diff line
	@@ -5788,8 +5788,9 @@ public class DevicePolicyManagerService extends BaseIDevicePolicyManager {
	public boolean isAlwaysOnVpnLockdownEnabled(ComponentName admin) throws SecurityException {		public boolean isAlwaysOnVpnLockdownEnabled(ComponentName admin) throws SecurityException {
	Objects.requireNonNull(admin, "ComponentName is null");		Objects.requireNonNull(admin, "ComponentName is null");

	final CallerIdentity caller = getCallerIdentity(admin);		final CallerIdentity caller = getNonPrivilegedOrAdminCallerIdentity(admin);
	Preconditions.checkCallAuthorization(isDeviceOwner(caller) \|\| isProfileOwner(caller)		Preconditions.checkCallAuthorization((caller.hasAdminComponent()
			&& (isDeviceOwner(caller) \|\| isProfileOwner(caller)))
	\|\| hasCallingPermission(PERMISSION_MAINLINE_NETWORK_STACK));		\|\| hasCallingPermission(PERMISSION_MAINLINE_NETWORK_STACK));

	return mInjector.binderWithCleanCallingIdentity(		return mInjector.binderWithCleanCallingIdentity(