commit | 97d1f86901c0a5b6bc5e210fc5933d76d4e03804 | [log] [tgz] |
---|---|---|
author | Dmitry Dementyev <dementyev@google.com> | Tue Feb 14 13:15:36 2017 -0800 |
committer | JP Sugarbroad <jpsugar@google.com> | Thu Apr 13 19:58:08 2017 +0000 |
tree | 5d33a24d9ceef57681a2ee76a59b4ee39645cb4d | |
parent | 738acd5baef36000d66985ccdde89f450ef34194 [diff] |
Add permission check to Intents used by Authenticator Settings. Setting shares system uid and can be used to bypass different security checks. We add proper handling for intents which resolve toexported=true activities with permission filed. Added nested preferences filtering. Bug: 33123882 Test: manual tests Change-Id: Ib5bab7989fc44b4391f9050c6b18f81c58c09cf6 (cherry picked from commit e95f0fca72b4b231ca67b81ea214a943180fd54d)