diff options
| author | Nicholas Ambur <nambur@google.com> | 2020-02-19 18:11:30 -0800 |
|---|---|---|
| committer | Nicholas Ambur <nambur@google.com> | 2020-02-25 01:20:05 +0000 |
| commit | 1ec50c8f2f547df3677f3fab2ee1c39ee4209063 (patch) | |
| tree | a839de82aeb8cbbca7a1ea6de18534c0da77c3e9 /tools/aidl/generate_java.cpp | |
| parent | 56d9d677e8a0f1dedce778f1ec28a590bcc56fdb (diff) | |
remove client token passing active VI service
Previous implementation relied on client to pass a token which the
service used to verify if it was the active service. This is seen to be
a security concern as there is no way to verify how the client obtained
the token. Instead, a check is done to confirm the caller's UID matches
the UID of the active service.
In the case of voice model enrollment, KeyphraseEnrollmentInfo class is
leveraged. A client is allowed to enroll if it is the active voice
interaction service or if it is a voice model enrollment application
bundled with the system image.
All previous manifest permision checks still apply.
Bug: 148159858
Test: gts-tradefed run gts-dev -m GtsAssistIntentTestCases -t \
com.google.android.assist.gts.KeyphraseModelManagerTest \
\#testShouldEnrollOnlyWhenActiveService
Merged-In: Ie2c4653d365770a9123a22bc69822518b4ccc568
Change-Id: Ie2c4653d365770a9123a22bc69822518b4ccc568
(cherry picked from commit c6f4118f9e86f666817bc10a5dbae51d0dabacb8)
Diffstat (limited to 'tools/aidl/generate_java.cpp')
0 files changed, 0 insertions, 0 deletions