Donate to e Foundation | Murena handsets with /e/OS | Own a part of Murena! Learn more

Skip to content
Commit 724427aa authored by Sumedh Sen's avatar Sumedh Sen
Browse files

Remove the resolved path of session's APK from user confirmation intent 

Intent sent to the user for install confirmation includes the resolved
path of the session's base apk. A malicious app can modify this path, resulting in the installer activity to show a different app icon and label in the confirmation dialog.

To fix this, expose a @hide API for getting the resolved path and
permission protect it with a privileged permission.

Since @hide API is used, have PackageInstaller app depend on platform_apis

Bug: 269728874
Bug: 279028637
Test: Adding a @hide API in UDC. No CTS test required for the API. Performed manual test by installing an apk and verifying UI elements of the installation dialog.
Test: Test: atest CtsPackageInstallTestCases:SessionTest (To verify contents of user confirmation intent)

Merged-In: Ibe7fe3ab5e74e3e910d9f7bd5b6f3f2e3c0ca658
Change-Id: Ibe7fe3ab5e74e3e910d9f7bd5b6f3f2e3c0ca658
(cherry picked from commit 7623ac96)
parent 6a2dd9b9
Hide whitespace changes
Inline Side-by-side
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment