Google Git
Sign in
android/platform/packages/apps/PackageInstaller/refs/heads/android10-dev^!/.
commit
7887f34d1e15c7528205f6d5c49a86c292ba59ab
[log] [tgz]
author
Hai Zhang <zhanghai@google.com>
Wed Jul 03 14:03:38 2019 -0700
committer
Hai Zhang <zhanghai@google.com>
Wed Jul 03 21:09:15 2019 +0000
tree
699eb16a3b695917cd5e90f6aa2fd38733217382
parent
29ed7908265f3e947b7d790930288d6e0cb19e88 [diff]
Fix RoleSearchIndexablesProvider.

By clearing the calling identity before determining whether a role is
available, to avoid the SecurityException.

Bug: 135665821
Test: manual
Change-Id: Ibee46949c65a5cd068a5453ca053025108da2096

diff --git a/src/com/android/packageinstaller/role/service/RoleSearchIndexablesProvider.java b/src/com/android/packageinstaller/role/service/RoleSearchIndexablesProvider.java
index 5507627..4d5341c 100644
--- a/src/com/android/packageinstaller/role/service/RoleSearchIndexablesProvider.java
+++ b/src/com/android/packageinstaller/role/service/RoleSearchIndexablesProvider.java

@@ -19,6 +19,7 @@
 import android.content.Context;
 import android.database.Cursor;
 import android.database.MatrixCursor;
+import android.os.Binder;
 import android.provider.SearchIndexablesContract;
 import android.util.ArrayMap;
 
@@ -50,8 +51,13 @@
         for (int i = 0; i < rolesSize; i++) {
             Role role = roles.valueAt(i);
 
-            if (!role.isAvailable(context) || !role.isVisible(context)) {
-                continue;
+            long token = Binder.clearCallingIdentity();
+            try {
+                if (!role.isAvailable(context) || !role.isVisible(context)) {
+                    continue;
+                }
+            } finally {
+                Binder.restoreCallingIdentity(token);
             }
 
             String label = context.getString(role.getLabelResource());