Google Git
Sign in
android/platform/packages/services/Telephony/851fc787e96189a37f88cb9eaa688087883357c3
commit
851fc787e96189a37f88cb9eaa688087883357c3
[log] [tgz]
author
Thomas Stuart <tjstuart@google.com>
Tue Jul 29 00:55:36 2025 +0000
committer
Android Build Coastguard Worker <android-build-coastguard-worker@google.com>
Fri Oct 10 14:27:06 2025 -0700
tree
0c20fa94e21bb3dd3fb8070092ec4187d61f0caa
parent
06d63c0697c3d22d030ded8b454c2d8862ccb1b6 [diff]
fix: Use permission check for contact URI validation

Changed the validation logic in onActivityResult for contact data.
Instead of comparing user IDs, the code now verifies if the caller
has explicit read permission for the returned URI using
checkContentUriPermission.

This ensures proper access control based on granted permissions.
Throws SecurityException on denial for better error reporting.

Flag: EXEMPT security fix
Bug: 337784859
Test: manual - steps for manual test
      1. sign into personal/test acct
      2. create a pin for the personal acct
      3. create a work profile via adb cmd
      4. add pin for work profile
      5. add a work profile contact
      6. open PoC app
(cherry picked from commit 522822360789507788c90c9e37edb7f1095ae5ab)
Cherrypick-From: https://googleplex-android-review.googlesource.com/q/commit:a727dc2d556d7bddb66cb289b2658cc73dba789f
Merged-In: I858041662a19a179e1fd49b3747d0fc013625015
Change-Id: I858041662a19a179e1fd49b3747d0fc013625015
1 file changed
tree: 0c20fa94e21bb3dd3fb8070092ec4187d61f0caa
  1. assets/
  2. client/
  3. ecc/
  4. res/
  5. src/
  6. testapps/
  7. tests/
  8. utils/
  9. Android.bp
  10. AndroidManifest.xml
  11. CleanSpec.mk
  12. lint.xml
  13. OWNERS
  14. PREUPLOAD.cfg
  15. proguard.flags
  16. TEST_MAPPING