Fix bypass CALL_PRIVILEGED permission in AppRestrictionsFragment am: f57d75f127 Original change: https://googleplex-android-review.googlesource.com/c/platform/packages/apps/Settings/+/16579585 Change-Id: Icd26ee5a31e0cc7e11edaf6c542b045ab3a7ff01

commit: c0d6987e06b9f0532fddf6a88bdc3e928d31ef59 [log] [tgz]
author: Edgar Wang <edgarwang@google.com> Thu Jan 13 06:50:30 2022 +0000
committer: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com> Thu Jan 13 06:50:30 2022 +0000
tree: bd6dc05884182f6cc3726acdc7e3117e74da3199
parent: c96d9867c5dc7c20bae292e7e0be58628c65cf95 [diff]
parent: f57d75f127fe96e91250585208a339763f1a2253 [diff]
diff --git a/src/com/android/settings/users/AppRestrictionsFragment.java b/src/com/android/settings/users/AppRestrictionsFragment.java
index 7b15e8a..6780b20 100644
--- a/src/com/android/settings/users/AppRestrictionsFragment.java
+++ b/src/com/android/settings/users/AppRestrictionsFragment.java

@@ -18,6 +18,7 @@
 
 import android.app.Activity;
 import android.app.settings.SettingsEnums;
+import android.content.ActivityNotFoundException;
 import android.content.BroadcastReceiver;
 import android.content.Context;
 import android.content.Intent;
@@ -37,6 +38,7 @@
 import android.os.ServiceManager;
 import android.os.UserHandle;
 import android.os.UserManager;
+import android.util.EventLog;
 import android.util.Log;
 import android.view.View;
 import android.view.View.OnClickListener;
@@ -635,7 +637,15 @@
             } else if (restrictionsIntent != null) {
                 preference.setRestrictions(restrictions);
                 if (invokeIfCustom && AppRestrictionsFragment.this.isResumed()) {
-                    assertSafeToStartCustomActivity(restrictionsIntent);
+                    try {
+                        assertSafeToStartCustomActivity(restrictionsIntent);
+                    } catch (ActivityNotFoundException | SecurityException e) {
+                        // return without startActivity
+                        Log.e(TAG, "Cannot start restrictionsIntent " + e);
+                        EventLog.writeEvent(0x534e4554, "200688991", -1 /* UID */, "");
+                        return;
+                    }
+
                     int requestCode = generateCustomActivityRequestCode(
                             RestrictionsResultReceiver.this.preference);
                     AppRestrictionsFragment.this.startActivityForResult(
@@ -649,14 +659,14 @@
             if (intent.getPackage() != null && intent.getPackage().equals(packageName)) {
                 return;
             }
-            // Activity can be started if intent resolves to multiple activities
-            List<ResolveInfo> resolveInfos = AppRestrictionsFragment.this.mPackageManager
-                    .queryIntentActivities(intent, 0 /* no flags */);
-            if (resolveInfos.size() != 1) {
-                return;
+            ResolveInfo resolveInfo = mPackageManager.resolveActivity(
+                    intent, PackageManager.MATCH_DEFAULT_ONLY);
+
+            if (resolveInfo == null) {
+                throw new ActivityNotFoundException("No result for resolving " + intent);
             }
             // Prevent potential privilege escalation
-            ActivityInfo activityInfo = resolveInfos.get(0).activityInfo;
+            ActivityInfo activityInfo = resolveInfo.activityInfo;
             if (!packageName.equals(activityInfo.packageName)) {
                 throw new SecurityException("Application " + packageName
                         + " is not allowed to start activity " + intent);
commit	c0d6987e06b9f0532fddf6a88bdc3e928d31ef59	[log] [tgz]
author	Edgar Wang <edgarwang@google.com>	Thu Jan 13 06:50:30 2022 +0000
committer	Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>	Thu Jan 13 06:50:30 2022 +0000
tree	bd6dc05884182f6cc3726acdc7e3117e74da3199
parent	c96d9867c5dc7c20bae292e7e0be58628c65cf95 [diff]
parent	f57d75f127fe96e91250585208a339763f1a2253 [diff]