diff options
| author | Alex Klyubin <klyubin@google.com> | 2015-06-11 13:27:34 -0700 |
|---|---|---|
| committer | Alex Klyubin <klyubin@google.com> | 2015-06-11 13:41:04 -0700 |
| commit | a99b8b5e3fe456b74b9f86e12bebebb5e418f58e (patch) | |
| tree | f0d63f11cf4443531abc30effc3c4d9b9e8a0193 /tools/aapt2/java/JavaClassGenerator_test.cpp | |
| parent | 8a26514687ccf651eb73d5acdd3ae7c62d247d97 (diff) | |
Do not require USE_FINGERPRINT for getAuthenticatorId.
This removes the requirement to hold the USE_FINGERPRINT permission
to successfully invoke FingerprintManager.getAuthenticatorId().
This is needed because Android Keystore classes which run inside app
processes occasionally need to access this authenticator ID. The
access however is not necessarily triggered by the developer using
APIs to do with fingerprints. Thus, if an app does not hold the
USE_FINGERPRINT permission and uses Android Keystore API, it may
unexpectedly encounter a SecurityException.
It's OK to provide access to authenticator ID without requiring
USE_FINGERPRINT permission because there are other ways to access
this ID without holding that permission, such as though hidden
KeyStore API.
Once Android Keystore code is restructured to no longer require
access to authenticator ID, this CL can be reverted.
Bug: 21030147
Change-Id: I9af29830abce34c46e29e5c1682cc3ab88c95c00
Diffstat (limited to 'tools/aapt2/java/JavaClassGenerator_test.cpp')
0 files changed, 0 insertions, 0 deletions