Google Git
Sign in
android / platform / frameworks / base / 79211e094a7363f28a06cea2737aa815339911ad
commit79211e094a7363f28a06cea2737aa815339911ad[log] [tgz]
authorNate Myren <ntmyren@google.com>Thu Jan 09 10:09:56 2025 -0800
committerAndroid Build Coastguard Worker <android-build-coastguard-worker@google.com>Wed Feb 05 21:20:27 2025 -0800
treebd555ffc981268107cff9407a8e26b9ccd300fe6
parent4ec1792148a5d31a890dbe86bde40946404199e8 [diff]
Do not allow non-system apps to provide unverified attributions

Some apps (the shell, system server, etc) are exempt from the
requirement that attribution tags be registered. However, in the proxy
case, the tag provied by the proxy app is trusted if the proxied app is
one of these exemptions. We should only trust these tags if the proxy
app is a system app.

This CL also adds a second restriction check when a restriction is
removed, to verify that an op is free of all restrictions, before
resuming a started op

Bug: 375623125
Test: upcoming
Flag: EXEMPT: See bug
(cherry picked from https://googleplex-android-review.googlesource.com/q/commit:5ee32ac478e514d8275567e7c50ea8a33438dc75)
Merged-In: I6a7b0a24359097c0ea2f52cc69637d929a931b4f
Change-Id: I6a7b0a24359097c0ea2f52cc69637d929a931b4f
1 file changed
tree: bd555ffc981268107cff9407a8e26b9ccd300fe6
  1. .prebuilt_info/
  2. apct-tests/
  3. apex/
  4. api/
  5. boot/
  6. cmds/
  7. config/
  8. core/
  9. data/
  10. docs/
  11. drm/
  12. errorprone/
  13. graphics/
  14. identity/
  15. keystore/
  16. libs/
  17. location/
  18. media/
  19. mime/
  20. mms/
  21. native/
  22. nfc-extras/
  23. obex/
  24. omapi/
  25. opengl/
  26. packages/
  27. proto/
  28. rs/
  29. samples/
  30. sax/
  31. services/
  32. startop/
  33. telecomm/
  34. telephony/
  35. test-base/
  36. test-legacy/
  37. test-mock/
  38. test-runner/
  39. tests/
  40. tools/
  41. wifi/
  42. .clang-format
  43. .gitignore
  44. .mailmap
  45. Android.bp
  46. Android.mk
  47. BATTERY_STATS_OWNERS
  48. BROADCASTS_OWNERS
  49. CleanSpec.mk
  50. framework-jarjar-rules.txt
  51. GAME_MANAGER_OWNERS
  52. INPUT_OWNERS
  53. lint-baseline.xml
  54. METADATA
  55. MODULE_LICENSE_APACHE2
  56. MULTIUSER_OWNERS
  57. NOTICE
  58. OWNERS
  59. OWNERS.md
  60. PACKAGE_MANAGER_OWNERS
  61. pathmap.mk
  62. PERFORMANCE_OWNERS
  63. PREUPLOAD.cfg
  64. ProtoLibraries.bp
  65. TEST_MAPPING
  66. TestProtoLibraries.bp
  67. TRACE_OWNERS
  68. WEAR_OWNERS
  69. ZYGOTE_OWNERS