summaryrefslogtreecommitdiffstats
path: root/res/values-eo
diff options
context:
space:
mode:
authorJeff Sharkey <jsharkey@android.com>2016-09-16 12:12:17 -0600
committergitbuildkicker <android-build@google.com>2016-09-27 15:59:20 -0700
commit1f66449c3bd4328116b2b2377f1a2d284e669578 (patch)
treeaeaba016557c746bbee0c176a85b9ef101287a69 /res/values-eo
parent3f2cf47caf2cb2eafcf94bf127098e1179b7325e (diff)
downloadandroid_packages_providers_DownloadProvider-1f66449c3bd4328116b2b2377f1a2d284e669578.tar.gz
android_packages_providers_DownloadProvider-1f66449c3bd4328116b2b2377f1a2d284e669578.tar.bz2
android_packages_providers_DownloadProvider-1f66449c3bd4328116b2b2377f1a2d284e669578.zip
Enforce calling identity before clearing.
When opening a downloaded file, enforce that the caller can actually see the requested download before clearing their identity to read internal columns. However, this means that we can no longer return the "my_downloads" paths: if those Uris were shared beyond the app that requested the download, access would be denied. Instead, we need to switch to using "all_downloads" Uris so that permission grants can be issued to third-party viewer apps. Since an app requesting a download doesn't normally have permission to "all_downloads" paths, we issue narrow grants toward the owner of each download, both at device boot and when new downloads are started. Bug: 30537115, 30945409 Change-Id: If944aada020878a91c363963728d0da9f6fae3ea (cherry picked from commit 7c1af8c62c8bdf6e8de5a00c1927daf9fd9c03d1)
Diffstat (limited to 'res/values-eo')
0 files changed, 0 insertions, 0 deletions