Gitiles
Code Review Sign In
gerrit.omnirom.org / android_packages_modules_Connectivity / ff65257bd07c791a5bfef2f54bf96ae224c03273
commitff65257bd07c791a5bfef2f54bf96ae224c03273[log] [tgz]
authorPatrick Rohr <prohr@google.com>Fri Dec 20 09:52:33 2024 -0800
committerPatrick Rohr <prohr@google.com>Mon Jan 06 13:57:49 2025 -0800
treef3a9e78e901f702e4173143085f8222e1bd7460f
parentdcd82507688cadbde4c9d2036b244fe7304118d6 [diff]
Add missing permission check to offerNetwork

The missing permission check means that an unauthorized app could
have registered a network offer to intercept all NetworkRequests (by
trivially guessing an existing provider ID) which would have leaked
information about other apps on the system.

This adds a NETWORK_FACTORY or MAINLINE_NETWORK_STACK permission check
to offerNetwork per the API annotations in ConnectivityManager.
Test networks can be offered when holding the MANAGE_TEST_NETWORKS
permission which is consistent with similar APIs in this class.

There can be no legitimate use of this API a) offerNetwork is @hide
and only exposed via NetworkProvider, and b) it requires getting a
provider ID by calling registerNetworkProvider which correctly enforces
permissions.

unofferNetwork does not currently require any permissions. Again, this
is consistent with the API annotations in ConnectivityManager.

Test: TH
Change-Id: If71ce012f927a34c647d36b5eaf3723de2c01879
1 file changed
tree: f3a9e78e901f702e4173143085f8222e1bd7460f
  1. bpf/
  2. clatd/
  3. common/
  4. framework/
  5. framework-t/
  6. nearby/
  7. networksecurity/
  8. remoteauth/
  9. service/
  10. service-b/
  11. service-t/
  12. staticlibs/
  13. tests/
  14. Tethering/
  15. thread/
  16. tools/
  17. .gitignore
  18. OWNERS
  19. OWNERS_core_networking
  20. OWNERS_core_networking_xts
  21. PREUPLOAD.cfg
  22. TEST_MAPPING