Commits · a0b1198e7066c70a99a24e091b06b0dc0ef22103 · Android-smartphones / realme / realme 5pro / kaderbava / evolution_frameworks_base

Feb 12, 2017
- DO NOT MERGE. Grant MMS Uri permissions as the calling UID. · a0b1198e
  Jeff Sharkey authored Feb 12, 2017
  
  am: 6f754e48 Change-Id: I2f6dd5ba1e266b3d451533e518ec7f2fe24b262c
  a0b1198e
Feb 07, 2017

DO NOT MERGE. Grant MMS Uri permissions as the calling UID. · 6f754e48

Jeff Sharkey authored Nov 30, 2016

A recent security fix prevents the system UID from handing out Uri
permission grants directly from itself.  Instead, services need to
issue grants as the original calling UID to ensure that the caller
actually has access to the Uris.

Test: builds, boots, send/recv MMS works in primary/secondary users
Bug: 33231106
Change-Id: Ia9fe19843b52977c8a94ee5349b907beda1882fc
(cherry picked from commit 7ff418d9)

6f754e48

Feb 03, 2017
- Merge "DO NOT MERGE. No direct Uri grants from system." into lmp-dev am: 3e4faac3 -s ours · d20b04a4
  Jeff Sharkey authored Feb 03, 2017
  
  am: b058dc13 Change-Id: Idd1aeb4749741aa8bae76cf43ce3f2bdceff077d
  d20b04a4
- DO NOT MERGE. No direct Uri grants from system. am: 2dfdf662 -s ours · 61e91796
  Jeff Sharkey authored Feb 03, 2017
  
  am: 4a4b6bfa Change-Id: Id479b2d27fd8396047312fe7259971c167b8d705
  61e91796
- Merge "DO NOT MERGE. No direct Uri grants from system." into lmp-mr1-dev · 5d65931a
  Jeff Sharkey authored Feb 03, 2017
  
  am: 6d3573e5 Change-Id: I501ff6230b9b5fa5d7232e52cfe326320c7edf65
  5d65931a
- DO NOT MERGE. No direct Uri grants from system. · 73f95823
  Jeff Sharkey authored Feb 03, 2017
  
  am: 6f13f73b Change-Id: I28627832c3ec765d6761afbf3fc508d1069c9582
  73f95823
- Merge "DO NOT MERGE. No direct Uri grants from system." into lmp-dev · b058dc13
  Jeff Sharkey authored Feb 03, 2017
  
  am: 3e4faac3 -s ours Change-Id: If1ea6da6679874ca13379222a28c529421c80b23
  b058dc13
- DO NOT MERGE. No direct Uri grants from system. · 4a4b6bfa
  Jeff Sharkey authored Feb 03, 2017
  
  am: 2dfdf662 -s ours Change-Id: Id06fac9dd096c1d821a1af7451db388446e9b156
  4a4b6bfa
Feb 02, 2017

Merge "DO NOT MERGE. No direct Uri grants from system." into lmp-mr1-dev · 6d3573e5
Jeff Sharkey authored Feb 02, 2017

6d3573e5
Merge "DO NOT MERGE. No direct Uri grants from system." into lmp-dev · 3e4faac3
Jeff Sharkey authored Feb 02, 2017

3e4faac3

Merge "DO NOT MERGE Do not call RecoverySystem with DPMS lock held" into... · bf1c88f3

Suprabh Shukla authored Feb 02, 2017

Merge "DO NOT MERGE Do not call RecoverySystem with DPMS lock held" into lmp-dev am: af85feef  -s ours
am: d9c81559  -s ours

Change-Id: I9dfff7471440739580e7827cdb4484fad6900048

bf1c88f3

DO NOT MERGE Do not call RecoverySystem with DPMS lock held am: 14ed6119 -s ours · a3685e4b
Suprabh Shukla authored Feb 02, 2017
```
am: 051f0170  -s ours

Change-Id: Idcf3ce991369a6e41a3c2bd3aa9cd16d909eea13
```
a3685e4b
Merge "DO NOT MERGE Do not call RecoverySystem with DPMS lock held" into lmp-dev · d9c81559
Suprabh Shukla authored Feb 02, 2017
```
am: af85feef  -s ours

Change-Id: Idf57ddf932e98dda06ac9c51f7e230d6a673882b
```
d9c81559
DO NOT MERGE Do not call RecoverySystem with DPMS lock held · 051f0170
Suprabh Shukla authored Feb 02, 2017
```
am: 14ed6119  -s ours

Change-Id: I1645d15febdfffd76cd2c592241549c507db1185
```
051f0170
Merge "DO NOT MERGE Do not call RecoverySystem with DPMS lock held" into lmp-dev · af85feef
Suprabh Shukla authored Feb 02, 2017

af85feef

DO NOT MERGE Do not call RecoverySystem with DPMS lock held am: am:... · 6e850f85

Suprabh Shukla authored Feb 02, 2017

DO NOT MERGE Do not call RecoverySystem with DPMS lock held am: 8cdc0495 am: 21992d99 am: b278ed78 -s ours am: ec3e2b9d -s ours
am: 483b561f

Change-Id: I065ff3640f19985157cd63c529019167c135489a

6e850f85

DO NOT MERGE Do not call RecoverySystem with DPMS lock held am: am:... · 483b561f

Suprabh Shukla authored Feb 02, 2017

DO NOT MERGE Do not call RecoverySystem with DPMS lock held am: 8cdc0495 am: 21992d99 am: b278ed78  -s ours
am: ec3e2b9d  -s ours

Change-Id: I76bf4d69d98374a90da3cd4c74f0c2d892504a40

483b561f

DO NOT MERGE Do not call RecoverySystem with DPMS lock held am: 8cdc0495 am: 21992d99 · ec3e2b9d
Suprabh Shukla authored Feb 02, 2017
```
am: b278ed78  -s ours

Change-Id: Ib70440bdd1c60ed5eaa9b8c8152a4745f44cacd6
```
ec3e2b9d
DO NOT MERGE Do not call RecoverySystem with DPMS lock held am: 8cdc0495 · b278ed78
Suprabh Shukla authored Feb 02, 2017
```
am: 21992d99

Change-Id: Ib5ba5eb63227be2fbf25a79e7f8f8e42b1cc9a2b
```
b278ed78
DO NOT MERGE Do not call RecoverySystem with DPMS lock held · 21992d99
Suprabh Shukla authored Feb 02, 2017
```
am: 8cdc0495

Change-Id: I7c1b9e9f785ef99575136d9af0b062dad759c17a
```
21992d99
Merge "DO NOT MERGE Do not call RecoverySystem with DPMS lock held" into lmp-mr1-dev · aec526f7
Suprabh Shukla authored Feb 02, 2017
```
am: 3ced78bd

Change-Id: I4da6e2894de769fb028ad713290b62e38925294a
```
aec526f7
DO NOT MERGE Do not call RecoverySystem with DPMS lock held · c22e6d15
Suprabh Shukla authored Feb 02, 2017
```
am: 835c8b3d

Change-Id: I080d11d3d7d6434b832f8ecb1ee93c17a6d7cb4a
```
c22e6d15
Merge "DO NOT MERGE Do not call RecoverySystem with DPMS lock held" into lmp-mr1-dev · 3ced78bd
Suprabh Shukla authored Feb 02, 2017

3ced78bd
Fixed the logic for tethering provisioning re-evaluation · 40d0753b
Jack Yu authored Feb 02, 2017
```
am: 91a0bc95

Change-Id: I4c499b756c019d83a61e61da3065f31a4d8672f2
```
40d0753b

DO NOT MERGE. No direct Uri grants from system. · 2dfdf662

Jeff Sharkey authored Nov 21, 2016

The system should never be extending Uri permission grants from
itself, since it automatically holds all the permissions.  Instead,
the system should always be a mediator between two specific app, and
it should be using startActivityAsCaller() if it needs to extend
permissions.

Blocking at this level fixes an entire class of confused deputy
security issues.

Test: builds, normal intent resolution UI works
Bug: 33019296, 32990341, 32879915, 32879772
Change-Id: Iaa57c393a386d8068e807d0dd0caccc89d8a11db

2dfdf662

DO NOT MERGE. No direct Uri grants from system. · 6f13f73b

Jeff Sharkey authored Nov 21, 2016

The system should never be extending Uri permission grants from
itself, since it automatically holds all the permissions.  Instead,
the system should always be a mediator between two specific app, and
it should be using startActivityAsCaller() if it needs to extend
permissions.

Blocking at this level fixes an entire class of confused deputy
security issues.

Test: builds, normal intent resolution UI works
Bug: 33019296, 32990341, 32879915, 32879772
Change-Id: Iaa57c393a386d8068e807d0dd0caccc89d8a11db

6f13f73b

Jan 31, 2017

DO NOT MERGE Do not call RecoverySystem with DPMS lock held · 14ed6119

Suprabh Shukla authored Jan 30, 2017

Note DPM.wipeData() on a secondary user is now blocking, just like
it's been always blocking on the primary user.

Bug 30681079

Change-Id: Ia832bed0f22396998d6307ab46e262dae9463838
Merged-In: Ia832bed0f22396998d6307ab46e262dae9463838

14ed6119

DO NOT MERGE Do not call RecoverySystem with DPMS lock held · 835c8b3d

Suprabh Shukla authored Jan 30, 2017

Note DPM.wipeData() on a secondary user is now blocking, just like
it's been always blocking on the primary user.

Bug 30681079

Change-Id: Ia832bed0f22396998d6307ab46e262dae9463838

835c8b3d

DO NOT MERGE Do not call RecoverySystem with DPMS lock held · 8cdc0495
Suprabh Shukla authored Jan 30, 2017
```
Bug 30681079

Change-Id: Ia832bed0f22396998d6307ab46e262dae9463838
```
8cdc0495

Jan 16, 2017

Fixed the logic for tethering provisioning re-evaluation · 91a0bc95

Jack Yu authored Jan 16, 2017

Previously we only re-evaluate provisioning for SIM swap case
The new logic covers both SIM swap case
(ABSENT->NOT_READY->UNKNOWN->READY->LOADED) and modem reset
case (NOT_READY->READY->LOADED)

Test: Manual
bug: 33815946

Change-Id: I9960123605b10d3fa5f3584c6c8b70b616acd6f8

91a0bc95

Dec 29, 2016
- Merge "Add @GuardedBy annotation to PersistentDataBlockService#mIsWritable." into lmp-mr1-dev · 1422a607
  Charles He authored Dec 29, 2016
  
  am: 63a27d77 Change-Id: I01d332678c1c3fe57ed36062a9ed01b5f368a55d
  1422a607
- Add @GuardedBy annotation to PersistentDataBlockService#mIsWritable. · d0339c6e
  Charles He authored Dec 29, 2016
  
  am: 71d2a41d Change-Id: Iab575b1efdd720c9cf9e32e0b056c99eff98deab
  d0339c6e
- Merge "Prevent writing to FRP partition during factory reset." into lmp-mr1-dev · a8484b4f
  Charles He authored Dec 29, 2016
  
  am: 4bd97eb8 Change-Id: I607f7ca9e160c4eed69a5baeff6b31d6db7c6b03
  a8484b4f
- Prevent writing to FRP partition during factory reset. · 2ce5c432
  Charles He authored Dec 29, 2016
  
  am: a9437bd1 Change-Id: Ib0b8db2357317dc3e680910c08f15f098baf2af9
  2ce5c432
- Merge "Add @GuardedBy annotation to PersistentDataBlockService#mIsWritable." into lmp-mr1-dev · 63a27d77
  Charles He authored Dec 29, 2016
  
  63a27d77
- Merge "Prevent writing to FRP partition during factory reset." into lmp-mr1-dev · 4bd97eb8
  Charles He authored Dec 29, 2016
  
  4bd97eb8
Dec 22, 2016
- Fix exploit where can hide the fact that a location was mocked am: a206a0f1 ... · d28eef0c
  Tom O'Neill authored Dec 22, 2016
  
  Fix exploit where can hide the fact that a location was mocked am: a206a0f1 am: d417e548 am: 3380a775 am: 0a8978f0 am: 1684e5f3 Change-Id: I0ebd2856e2e2f3793273ba952b44dc77e85b021e
  d28eef0c
- Fix exploit where can hide the fact that a location was mocked am: a206a0f1 ... · 1684e5f3
  Tom O'Neill authored Dec 22, 2016
  
  Fix exploit where can hide the fact that a location was mocked am: a206a0f1 am: d417e548 am: 3380a775 am: 0a8978f0 Change-Id: I693665a57465ec57f946fad57cda9ce48389408f
  1684e5f3
- Fix exploit where can hide the fact that a location was mocked am: a206a0f1 am: d417e548 · 0a8978f0
  Tom O'Neill authored Dec 22, 2016
  
  am: 3380a775 Change-Id: Ice61f337e1fcfd0569431538e475d94f9d205423
  0a8978f0
- Fix exploit where can hide the fact that a location was mocked am: a206a0f1 · 3380a775
  Tom O'Neill authored Dec 22, 2016
  
  am: d417e548 Change-Id: I2f47020055f962b36f095137d75c9cbfe6b1a6db
  3380a775