summaryrefslogtreecommitdiffstats
path: root/src/com/android/messaging/util/FileUtil.java
diff options
context:
space:
mode:
Diffstat (limited to 'src/com/android/messaging/util/FileUtil.java')
-rw-r--r--src/com/android/messaging/util/FileUtil.java8
1 files changed, 8 insertions, 0 deletions
diff --git a/src/com/android/messaging/util/FileUtil.java b/src/com/android/messaging/util/FileUtil.java
index 7c47ae9..b147b25 100644
--- a/src/com/android/messaging/util/FileUtil.java
+++ b/src/com/android/messaging/util/FileUtil.java
@@ -17,6 +17,7 @@
package com.android.messaging.util;
import android.content.Context;
+import android.os.Environment;
import android.webkit.MimeTypeMap;
import com.android.messaging.Factory;
@@ -116,6 +117,13 @@ public class FileUtil {
}
}
+ // Checks if the file is in /data, and don't allow any app to send personal information.
+ // We're told it's possible to create world readable hardlinks to other apps private data
+ // so we ban all /data file uris. b/28793303
+ public static boolean isInDataDir(File file) {
+ return isSameOrSubDirectory(Environment.getDataDirectory(), file);
+ }
+
/**
* Checks, whether the child directory is the same as, or a sub-directory of the base
* directory.
generated by cgit v1.2.3 (git 2.25.1) at 2024-04-26 14:23:25 +0000