Loading services/core/java/com/android/server/accounts/AccountManagerService.java +15 −10 Original line number Original line Diff line number Diff line Loading @@ -2263,7 +2263,7 @@ public class AccountManagerService final int callingUid = getCallingUid(); final int callingUid = getCallingUid(); clearCallingIdentity(); clearCallingIdentity(); if (callingUid != Process.SYSTEM_UID) { if (UserHandle.getAppId(callingUid) != Process.SYSTEM_UID) { throw new SecurityException("can only call from system"); throw new SecurityException("can only call from system"); } } int userId = UserHandle.getUserId(callingUid); int userId = UserHandle.getUserId(callingUid); Loading Loading @@ -3446,7 +3446,7 @@ public class AccountManagerService @Override @Override public boolean hasAccountAccess(@NonNull Account account, @NonNull String packageName, public boolean hasAccountAccess(@NonNull Account account, @NonNull String packageName, @NonNull UserHandle userHandle) { @NonNull UserHandle userHandle) { if (Binder.getCallingUid() != Process.SYSTEM_UID) { if (UserHandle.getAppId(Binder.getCallingUid()) != Process.SYSTEM_UID) { throw new SecurityException("Can be called only by system UID"); throw new SecurityException("Can be called only by system UID"); } } Preconditions.checkNotNull(account, "account cannot be null"); Preconditions.checkNotNull(account, "account cannot be null"); Loading Loading @@ -3495,7 +3495,7 @@ public class AccountManagerService @Override @Override public IntentSender createRequestAccountAccessIntentSenderAsUser(@NonNull Account account, public IntentSender createRequestAccountAccessIntentSenderAsUser(@NonNull Account account, @NonNull String packageName, @NonNull UserHandle userHandle) { @NonNull String packageName, @NonNull UserHandle userHandle) { if (Binder.getCallingUid() != Process.SYSTEM_UID) { if (UserHandle.getAppId(Binder.getCallingUid()) != Process.SYSTEM_UID) { throw new SecurityException("Can be called only by system UID"); throw new SecurityException("Can be called only by system UID"); } } Loading @@ -3517,10 +3517,15 @@ public class AccountManagerService Intent intent = newRequestAccountAccessIntent(account, packageName, uid, null); Intent intent = newRequestAccountAccessIntent(account, packageName, uid, null); final long identity = Binder.clearCallingIdentity(); try { return PendingIntent.getActivityAsUser( return PendingIntent.getActivityAsUser( mContext, 0, intent, PendingIntent.FLAG_ONE_SHOT mContext, 0, intent, PendingIntent.FLAG_ONE_SHOT | PendingIntent.FLAG_CANCEL_CURRENT | PendingIntent.FLAG_IMMUTABLE, | PendingIntent.FLAG_CANCEL_CURRENT | PendingIntent.FLAG_IMMUTABLE, null, new UserHandle(userId)).getIntentSender(); null, new UserHandle(userId)).getIntentSender(); } finally { Binder.restoreCallingIdentity(identity); } } } private Intent newRequestAccountAccessIntent(Account account, String packageName, private Intent newRequestAccountAccessIntent(Account account, String packageName, Loading Loading @@ -5443,10 +5448,10 @@ public class AccountManagerService private boolean hasExplicitlyGrantedPermission(Account account, String authTokenType, private boolean hasExplicitlyGrantedPermission(Account account, String authTokenType, int callerUid) { int callerUid) { if (callerUid == Process.SYSTEM_UID) { if (UserHandle.getAppId(callerUid) == Process.SYSTEM_UID) { return true; return true; } } UserAccounts accounts = getUserAccountsForCaller(); UserAccounts accounts = getUserAccounts(UserHandle.getUserId(callerUid)); synchronized (accounts.cacheLock) { synchronized (accounts.cacheLock) { final SQLiteDatabase db = accounts.openHelper.getReadableDatabase(); final SQLiteDatabase db = accounts.openHelper.getReadableDatabase(); Loading Loading @@ -5561,7 +5566,7 @@ public class AccountManagerService throws RemoteException { throws RemoteException { final int callingUid = getCallingUid(); final int callingUid = getCallingUid(); if (callingUid != Process.SYSTEM_UID) { if (UserHandle.getAppId(callingUid) != Process.SYSTEM_UID) { throw new SecurityException(); throw new SecurityException(); } } Loading Loading
services/core/java/com/android/server/accounts/AccountManagerService.java +15 −10 Original line number Original line Diff line number Diff line Loading @@ -2263,7 +2263,7 @@ public class AccountManagerService final int callingUid = getCallingUid(); final int callingUid = getCallingUid(); clearCallingIdentity(); clearCallingIdentity(); if (callingUid != Process.SYSTEM_UID) { if (UserHandle.getAppId(callingUid) != Process.SYSTEM_UID) { throw new SecurityException("can only call from system"); throw new SecurityException("can only call from system"); } } int userId = UserHandle.getUserId(callingUid); int userId = UserHandle.getUserId(callingUid); Loading Loading @@ -3446,7 +3446,7 @@ public class AccountManagerService @Override @Override public boolean hasAccountAccess(@NonNull Account account, @NonNull String packageName, public boolean hasAccountAccess(@NonNull Account account, @NonNull String packageName, @NonNull UserHandle userHandle) { @NonNull UserHandle userHandle) { if (Binder.getCallingUid() != Process.SYSTEM_UID) { if (UserHandle.getAppId(Binder.getCallingUid()) != Process.SYSTEM_UID) { throw new SecurityException("Can be called only by system UID"); throw new SecurityException("Can be called only by system UID"); } } Preconditions.checkNotNull(account, "account cannot be null"); Preconditions.checkNotNull(account, "account cannot be null"); Loading Loading @@ -3495,7 +3495,7 @@ public class AccountManagerService @Override @Override public IntentSender createRequestAccountAccessIntentSenderAsUser(@NonNull Account account, public IntentSender createRequestAccountAccessIntentSenderAsUser(@NonNull Account account, @NonNull String packageName, @NonNull UserHandle userHandle) { @NonNull String packageName, @NonNull UserHandle userHandle) { if (Binder.getCallingUid() != Process.SYSTEM_UID) { if (UserHandle.getAppId(Binder.getCallingUid()) != Process.SYSTEM_UID) { throw new SecurityException("Can be called only by system UID"); throw new SecurityException("Can be called only by system UID"); } } Loading @@ -3517,10 +3517,15 @@ public class AccountManagerService Intent intent = newRequestAccountAccessIntent(account, packageName, uid, null); Intent intent = newRequestAccountAccessIntent(account, packageName, uid, null); final long identity = Binder.clearCallingIdentity(); try { return PendingIntent.getActivityAsUser( return PendingIntent.getActivityAsUser( mContext, 0, intent, PendingIntent.FLAG_ONE_SHOT mContext, 0, intent, PendingIntent.FLAG_ONE_SHOT | PendingIntent.FLAG_CANCEL_CURRENT | PendingIntent.FLAG_IMMUTABLE, | PendingIntent.FLAG_CANCEL_CURRENT | PendingIntent.FLAG_IMMUTABLE, null, new UserHandle(userId)).getIntentSender(); null, new UserHandle(userId)).getIntentSender(); } finally { Binder.restoreCallingIdentity(identity); } } } private Intent newRequestAccountAccessIntent(Account account, String packageName, private Intent newRequestAccountAccessIntent(Account account, String packageName, Loading Loading @@ -5443,10 +5448,10 @@ public class AccountManagerService private boolean hasExplicitlyGrantedPermission(Account account, String authTokenType, private boolean hasExplicitlyGrantedPermission(Account account, String authTokenType, int callerUid) { int callerUid) { if (callerUid == Process.SYSTEM_UID) { if (UserHandle.getAppId(callerUid) == Process.SYSTEM_UID) { return true; return true; } } UserAccounts accounts = getUserAccountsForCaller(); UserAccounts accounts = getUserAccounts(UserHandle.getUserId(callerUid)); synchronized (accounts.cacheLock) { synchronized (accounts.cacheLock) { final SQLiteDatabase db = accounts.openHelper.getReadableDatabase(); final SQLiteDatabase db = accounts.openHelper.getReadableDatabase(); Loading Loading @@ -5561,7 +5566,7 @@ public class AccountManagerService throws RemoteException { throws RemoteException { final int callingUid = getCallingUid(); final int callingUid = getCallingUid(); if (callingUid != Process.SYSTEM_UID) { if (UserHandle.getAppId(callingUid) != Process.SYSTEM_UID) { throw new SecurityException(); throw new SecurityException(); } } Loading
