Donate to e Foundation | Murena handsets with /e/OS | Own a part of Murena! Learn more

Commit 54e1c387 authored by Android Build Coastguard Worker's avatar Android Build Coastguard Worker
Browse files

Merge cherrypicks of ['googleplex-android-review.googlesource.com/31635384',... 

Merge cherrypicks of ['googleplex-android-review.googlesource.com/31635384', 'googleplex-android-review.googlesource.com/30470579', 'googleplex-android-review.googlesource.com/30470926'] into security-aosp-24Q3-release.

Change-Id: I9d409305d1cf8631fb32068e15b1fce9465e8858
parents 10746163 febc0a24

services/core/java/com/android/server/pm/ComputerEngine.java

+19 −31
Original line number Diff line number Diff line
@@ -71,6 +71,7 @@ import android.app.ActivityManager; 
import android.app.admin.DevicePolicyManagerInternal;

import android.companion.virtual.VirtualDeviceManager;

import android.content.ComponentName;

import android.content.ContentProvider;

import android.content.Context;

import android.content.Intent;

import android.content.IntentFilter;
@@ -649,11 +650,11 @@ public class ComputerEngine implements Computer { 
            int userId, int callingUid, int callingPid,

            boolean includeInstantApps, boolean resolveForStart) {

        if (!mUserManager.exists(userId)) return Collections.emptyList();

        enforceCrossUserOrProfilePermission(callingUid,

        enforceCrossUserOrProfilePermission(Binder.getCallingUid(),

                userId,

                false /*requireFullPermission*/,

                false /*checkShell*/,

                "query intent receivers");

                "query intent services");

        final String instantAppPkgName = getInstantAppPackageName(callingUid);

        flags = updateFlagsForResolve(flags, userId, callingUid, includeInstantApps,

                false /* isImplicitImageCaptureIntentAndNotSetByDpc */);
@@ -2207,17 +2208,11 @@ public class ComputerEngine implements Computer { 
        if (PackageManagerServiceUtils.isSystemOrRoot(callingUid)) {

            return true;

        }

        boolean permissionGranted = requireFullPermission ? hasPermission(

                Manifest.permission.INTERACT_ACROSS_USERS_FULL)

                : (hasPermission(

                        android.Manifest.permission.INTERACT_ACROSS_USERS_FULL)

                        || hasPermission(Manifest.permission.INTERACT_ACROSS_USERS));

        if (!permissionGranted) {

            if (Process.isIsolatedUid(callingUid) && isKnownIsolatedComputeApp(callingUid)) {

                return checkIsolatedOwnerHasPermission(callingUid, requireFullPermission);

            }

        if (requireFullPermission) {

            return hasPermission(Manifest.permission.INTERACT_ACROSS_USERS_FULL, callingUid);

        }

        return permissionGranted;

        return hasPermission(android.Manifest.permission.INTERACT_ACROSS_USERS_FULL, callingUid)

            || hasPermission(Manifest.permission.INTERACT_ACROSS_USERS, callingUid);

    }



    /**
@@ -2234,23 +2229,10 @@ public class ComputerEngine implements Computer { 
    }



    private boolean hasPermission(String permission, int uid) {

        return mContext.checkPermission(permission, Process.INVALID_PID, uid)

        return mContext.checkPermission(permission, /* pid= */ -1, uid)

                == PackageManager.PERMISSION_GRANTED;

    }



    /**

     * Since isolated process cannot hold permissions, we check the permissions on the owner app

     * for known isolated_compute_app cases because they belong to the same package.

     */

    private boolean checkIsolatedOwnerHasPermission(int callingUid, boolean requireFullPermission) {

        int ownerUid = getIsolatedOwner(callingUid);

        if (requireFullPermission) {

            return hasPermission(Manifest.permission.INTERACT_ACROSS_USERS_FULL, ownerUid);

        }

        return hasPermission(Manifest.permission.INTERACT_ACROSS_USERS_FULL, ownerUid)

                || hasPermission(Manifest.permission.INTERACT_ACROSS_USERS, ownerUid);

    }



    public final boolean isCallerSameApp(String packageName, int uid) {

        return isCallerSameApp(packageName, uid, false /* resolveIsolatedUid */);

    }
@@ -4669,7 +4651,7 @@ public class ComputerEngine implements Computer { 


        if (!forceAllowCrossUser) {

            enforceCrossUserPermission(

                    callingUid,

                    Binder.getCallingUid(),

                    userId,

                    false /* requireFullPermission */,

                    false /* checkShell */,
@@ -4752,8 +4734,14 @@ public class ComputerEngine implements Computer { 
            int callingUid) {

        if (!mUserManager.exists(userId)) return null;

        flags = updateFlagsForComponent(flags, userId);

        final ProviderInfo providerInfo = mComponentResolver.queryProvider(this, name, flags,

                userId);



        // Callers of this API may not always separate the userID and authority. Let's parse it

        // before resolving

        String authorityWithoutUserId = ContentProvider.getAuthorityWithoutUserId(name);

        userId = ContentProvider.getUserIdFromAuthority(name, userId);



        final ProviderInfo providerInfo = mComponentResolver.queryProvider(this,

                authorityWithoutUserId, flags, userId);

        boolean checkedGrants = false;

        if (providerInfo != null) {

            // Looking for cross-user grants before enforcing the typical cross-users permissions
@@ -4767,7 +4755,7 @@ public class ComputerEngine implements Computer { 
        if (!checkedGrants) {

            boolean enforceCrossUser = true;



            if (isAuthorityRedirectedForCloneProfile(name)) {

            if (isAuthorityRedirectedForCloneProfile(authorityWithoutUserId)) {

                final UserManagerInternal umInternal = mInjector.getUserManagerInternal();



                UserInfo userInfo = umInternal.getUserInfo(UserHandle.getUserId(callingUid));
@@ -5242,7 +5230,7 @@ public class ComputerEngine implements Computer { 
    @Override

    public int getComponentEnabledSetting(@NonNull ComponentName component, int callingUid,

            @UserIdInt int userId) {

        enforceCrossUserPermission(callingUid, userId, false /*requireFullPermission*/,

        enforceCrossUserPermission(Binder.getCallingUid(), userId, false /*requireFullPermission*/,

                false /*checkShell*/, "getComponentEnabled");

        return getComponentEnabledSettingInternal(component, callingUid, userId);

    }

services/tests/PackageManagerComponentOverrideTests/src/com/android/server/pm/test/override/PackageManagerComponentLabelIconOverrideTest.kt

+5 −0
Original line number Diff line number Diff line
@@ -57,6 +57,7 @@ import org.junit.BeforeClass 
import org.junit.Test

import org.junit.runner.RunWith

import org.junit.runners.Parameterized

import org.mockito.ArgumentMatchers.eq

import org.mockito.Mockito.any

import org.mockito.Mockito.anyInt

import org.mockito.Mockito.doReturn
@@ -383,6 +384,10 @@ class PackageManagerComponentLabelIconOverrideTest { 
                    android.Manifest.permission.INTERACT_ACROSS_USERS_FULL)) {

                PackageManager.PERMISSION_GRANTED

            }

            whenever(this.checkPermission(

                eq(android.Manifest.permission.INTERACT_ACROSS_USERS_FULL), anyInt(), anyInt())) {

                PackageManager.PERMISSION_GRANTED

            }

        }

        val mockSharedLibrariesImpl: SharedLibrariesImpl = mock {

            whenever(this.snapshot()) { this@mock }