032bee6dc118ce1cc3fde92463b2954c1450f2e8 - platform/frameworks/base

commit	032bee6dc118ce1cc3fde92463b2954c1450f2e8	[log] [tgz]
author	Tetiana Meronyk <tetianameronyk@google.com>	Wed Jan 10 16:25:13 2024 +0000
committer	Android Build Coastguard Worker <android-build-coastguard-worker@google.com>	Thu Feb 08 05:19:44 2024 +0000
tree	2a7a2587f2e7098d4806d39107190b46a3081d33
parent	b733655a3596b0d271e3a78cc8ba4d3b8d668bc8 [diff]

Fix security vulnerability that creates user with no restrictions when accountOptions are too long.

Bug: 293602970
Test: atest UserManagerTest#testAddUserAccountData_validStringValuesAreSaved_validBundleIsSaved && atest UserManagerTest#testAddUserAccountData_invalidStringValuesAreTruncated_invalidBundleIsDropped
(cherry picked from https://googleplex-android-review.googlesource.com/q/commit:944ea959ab8464c39a8f6a4fc391fb6953e1df89)
Merged-In: I23c971f671546ac085060add89485cfac6691ca3
Change-Id: I23c971f671546ac085060add89485cfac6691ca3

core/java/android/os/PersistableBundle.java[diff]
core/java/android/os/UserManager.java[diff]
core/java/com/android/internal/app/ConfirmUserCreationActivity.java[diff]
services/core/java/com/android/server/pm/UserManagerService.java[diff]
services/tests/servicestests/src/com/android/server/pm/UserManagerTest.java[diff]

5 files changed