Revert "Fix security vulnerability allowing apps to start from background" (805b488c) · Commits · e / os / android_frameworks_base

services/core/java/com/android/server/media/MediaSessionRecord.java

+6 −12

Original line number	Diff line number	Diff line
		@@ -1457,15 +1457,9 @@ public class MediaSessionRecord extends MediaSessionRecordImpl implements IBinde

		@Override
		public IBinder getBinderForSetQueue() throws RemoteException {
		return new ParcelableListBinder<QueueItem>(
		(list) -> {
		// Checking list items are instanceof QueueItem to validate against
		// malicious apps calling it directly via reflection with non compilable
		// items. See b/317048338 for more details
		List<QueueItem> sanitizedQueue =
		list.stream().filter(it -> it instanceof QueueItem).toList();
		return new ParcelableListBinder<QueueItem>((list) -> {
		synchronized (mLock) {
		mQueue = sanitizedQueue;
		mQueue = list;
		}
		mHandler.post(MessageHandler.MSG_UPDATE_QUEUE);
		});