diff options
| author | Pinyao Ting <pinyaoting@google.com> | 2022-03-03 18:24:37 +0000 |
|---|---|---|
| committer | Pinyao Ting <pinyaoting@google.com> | 2022-03-05 05:02:49 +0000 |
| commit | 3c92d74d7d74e1d781ae1b071da97b3b2cbc6be9 (patch) | |
| tree | 7a3c462e7fbe599bd0a4aa6d32f906c0be29b3eb /rs/java/android/renderscript/ProgramFragmentFixedFunction.java | |
| parent | 4d7ca1dbce749f1173d16565170ebdd6e245ae63 (diff) | |
Verify caller before auto granting slice permission
Currently SliceManagerService#checkSlicePermission does not verify the
caller's identity. This leads to a security vulnerability because
checkSlicePermission does more than checking the permission as opposed
to simply return a boolean value -- it additionally grants slice access
under a certain condition. A malicious app can spoof the calling package
to acquire slice access.
This CL verifies the caller before granting slice access.
Bug: 208232850, 179699767
Test: manual
Change-Id: I2539c9ff5ea977c91bb58185c95280b4d533a520
Merged-In: I2539c9ff5ea977c91bb58185c95280b4d533a520
(cherry picked from commit 5bd2196c537ae42a5c1626bdc23c3c6db41fb97f)
Diffstat (limited to 'rs/java/android/renderscript/ProgramFragmentFixedFunction.java')
0 files changed, 0 insertions, 0 deletions