diff options
| author | Michael Groover <mpgroover@google.com> | 2020-04-19 18:15:23 -0700 |
|---|---|---|
| committer | Michael Groover <mpgroover@google.com> | 2020-04-20 01:34:59 -0700 |
| commit | 999901aaf1565c43147d1e40ad8f8d8f22b4997b (patch) | |
| tree | 6d612fa8ec50318b7b13e53b95ad10ff185d1025 /tools/aapt2/java/JavaClassGenerator_test.cpp | |
| parent | a4a01127d80821340da9b18217c60d7ee7217fd7 (diff) | |
Revert READ_PHONE_STATE from an install to runtime permission
After all of the sensitive APIs were moved out of READ_PHONE_STATE for
apps targeting R+ READ_PHONE_STATE was downgraded to an install
permission. However this granted apps targeting pre-R access to the
device phone number without user consent. This commit reverts
READ_PHONE_STATE to a runtime permission which will require apps
targeting pre-R to still obtain user consent to access the device
phone number while still preventing access to the phone group and
the other sensitive APIs exposed there.
Bug: 154368168
Test: Manually installed app requesting READ_PHONE_STATE and invoking
getLine1Number; verified without permission granted the method
threw a SecurityException.
Change-Id: I410aa9f287f8fa2b076910e531d833bd87923ccb
Diffstat (limited to 'tools/aapt2/java/JavaClassGenerator_test.cpp')
0 files changed, 0 insertions, 0 deletions