diff options
| author | Bernardo Rufino <brufino@google.com> | 2020-11-11 20:01:10 +0000 |
|---|---|---|
| committer | Bernardo Rufino <brufino@google.com> | 2020-11-12 14:41:03 +0000 |
| commit | 7d0992ce4ff33b12867abcafadca28f650b36835 (patch) | |
| tree | f93a39bb04b0821ffcecbe76bca0361756c2a744 /rs/java/android/renderscript/ProgramFragmentFixedFunction.java | |
| parent | a0e5a733c8004ef636a33f58bf7b16abd1819693 (diff) | |
Require signature|privileged STATUS_BAR for collapsePanels()
For apps targeting S+. This API was being exploited by malware to
prevent the user from accessing critical notifications
(go/collapse-status-bar, b/137274359).
This API was hidden and never intended to be used by 3p apps, so putting
it behind proper permission after targetSdk S. Since it's
@UnsupportedAppUsage trying to steer apps to the
Intent.ACTION_CLOSE_SYSTEM_DIALOGS (Intent.ACSD), which produces the
same effect and has been part of the API surface (as opposed to this
one). However, to fix the vulnerability (b/137274359) that intent will
be subjected to further restrictions based on privilege (who) and
circumstance (what), for more details see go/close-system-dialogs.
To lock down the abuse vector, similar restrictions to the ones applied
to Intent.ACSD will be applied to collapsePanels() NOT gated on
targetSdk, but these will be in future CLs.
Test: CTS coming
Bug: 173031413
Bug: 159105552
Bug: 137274359
Change-Id: I05f05ff6a2052820a132c2284101480448d18b77
Diffstat (limited to 'rs/java/android/renderscript/ProgramFragmentFixedFunction.java')
0 files changed, 0 insertions, 0 deletions