Gitiles
Code Review Sign In
gerrit.omnirom.org / android_frameworks_base / b327a1806f57f7c4984fc651987b5133a84b4580^! / .
commitb327a1806f57f7c4984fc651987b5133a84b4580[log] [tgz]
authorPatrick Plunkett <patplunkett@google.com>Fri Nov 01 21:16:27 2024 +0000
committerPatrick Plunkett <patplunkett@google.com>Fri Nov 01 21:16:27 2024 +0000
tree3180e170a58238e3edcf0a460615f7cb07a4b317
parent22bc51363004200b17f8a3a086668df91da94555 [diff]
Allow ALLOCATE_AGGRESSIVE permission for StorageManagerService.getInternalStorageRemainingLifetime

The getInternalStorageRemainingLifetime API is used to get the remaining lifetime of the internal storage. This information can be used to make decisions about how to use the storage, especially around making many allocations. The ALLOCATE_AGGRESSIVE permission is a good fit for this API because it is a privileged system permission that relates to making many allocations in storage. A system/privileged app should only need to use the getInternalStorageRemainingLifetime API only when deciding to make a large/frequent number of allocations.

This change updates just the set of permissions for StorageManagerService. The API permission changes are in subsequent commit.

Bug: 373891491
Flag: EXEMPT small localized change
Change-Id: I31d3fed9b47024d8ffdc8c05646c7b08812dab99

diff --git a/core/java/android/os/storage/IStorageManager.aidl b/core/java/android/os/storage/IStorageManager.aidl
index 1ab48a2..09b96da 100644
--- a/core/java/android/os/storage/IStorageManager.aidl
+++ b/core/java/android/os/storage/IStorageManager.aidl

@@ -181,6 +181,5 @@
      * device's useful lifetime remains. If no information is available, -1
      * is returned.
      */
-    @EnforcePermission("READ_PRIVILEGED_PHONE_STATE")
     int getInternalStorageRemainingLifetime() = 99;
 }

diff --git a/services/core/java/com/android/server/StorageManagerService.java b/services/core/java/com/android/server/StorageManagerService.java
index 9d27731..b7bc4e4 100644
--- a/services/core/java/com/android/server/StorageManagerService.java
+++ b/services/core/java/com/android/server/StorageManagerService.java

@@ -96,6 +96,7 @@
 import android.os.Message;
 import android.os.ParcelFileDescriptor;
 import android.os.ParcelableException;
+import android.os.PermissionEnforcer;
 import android.os.PersistableBundle;
 import android.os.Process;
 import android.os.RemoteCallbackList;
@@ -3653,10 +3654,16 @@
         return mInternalStorageSize;
     }
 
-    @EnforcePermission(android.Manifest.permission.READ_PRIVILEGED_PHONE_STATE)
     @Override
     public int getInternalStorageRemainingLifetime() throws RemoteException {
-        super.getInternalStorageRemainingLifetime_enforcePermission();
+        PermissionEnforcer.fromContext(mContext)
+            .enforcePermissionAnyOf(
+                new String[] {
+                    android.Manifest.permission.READ_PRIVILEGED_PHONE_STATE,
+                    android.Manifest.permission.ALLOCATE_AGGRESSIVE
+                },
+                getCallingPid(),
+                getCallingUid());
         return mVold.getStorageRemainingLifetime();
     }