Google Git
Sign in
android / platform / art / eefabd28c21e6ae02ca05e97bd22f9e23cbf98a5
commiteefabd28c21e6ae02ca05e97bd22f9e23cbf98a5[log] [tgz]
authorDavid Brazdil <dbrazdil@google.com>Thu Mar 22 16:27:18 2018 +0000
committerNicolas Geoffray <ngeoffray@google.com>Mon Mar 26 08:05:33 2018 +0000
tree58e4c2635e0d5682c3385bed639664ccfdd44f6a
parente8a4e378c5a928d5de07bee6db99150a57dabcd8 [diff]
Allow hidden API access from system libraries

Libraries like RemoteDisplay provide an APK that an app loads into
its process and which accesses internal APIs on the app's behalf,
without exposing the internals to the app. These libraries are
considered part of the platform, but were not exempt from hidden API
checks because they are not loaded with the boot strap class loader.

This patch adds a new flag to DexFile class which the constructor
sets to true of the canonical location of the newly loaded dex file
starts with "${ANDROID_ROOT}/framework/". Hidden API enforcement
then checks this flag when determining whether the caller of
a hidden class member is allowed to access it or not.

Bug: 64382372
Bug: 76138670
Bug: 76165623
Bug: 76112393
Test: art_dex_file_loader_test gtest
Test: art/test.py --gtest
Change-Id: If062bd668d7ba494bbb7b828e40932748d173b9a
12 files changed
tree: 58e4c2635e0d5682c3385bed639664ccfdd44f6a
  1. adbconnection/
  2. benchmark/
  3. build/
  4. cmdline/
  5. compiler/
  6. dalvikvm/
  7. dex2oat/
  8. dexdump/
  9. dexlayout/
  10. dexlist/
  11. dexoptanalyzer/
  12. disassembler/
  13. dt_fd_forward/
  14. imgdiag/
  15. libart_fake/
  16. libartbase/
  17. libdexfile/
  18. oatdump/
  19. openjdkjvm/
  20. openjdkjvmti/
  21. patchoat/
  22. profman/
  23. runtime/
  24. sigchainlib/
  25. simulator/
  26. test/
  27. tools/
  28. .gitignore
  29. Android.bp
  30. Android.mk
  31. CleanSpec.mk
  32. CPPLINT.cfg
  33. MODULE_LICENSE_APACHE2
  34. NOTICE
  35. OWNERS
  36. PREUPLOAD.cfg
  37. test.py