summaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
* RESTRICT AUTOMERGE Enable stricter SQLiteQueryBuilder options.cm-14.1Jeff Sharkey2019-11-052-346/+103
| | | | | | | | | | | | | | | | | | | | | | | | | Malicious callers can leak side-channel information by using subqueries in any untrusted inputs where SQLite allows "expr" values. This change starts using setStrictColumns() and setStrictGrammar() on SQLiteQueryBuilder to block this class of attacks. This means we now need to define the projection mapping of valid columns, which consists of both the columns defined in the public API and columns read internally by DownloadInfo.Reader. We're okay growing sAppReadableColumnsSet like this, since we're relying on our trusted WHERE clause to filter away any rows that don't belong to the calling UID. Remove the legacy Lexer code, since we're now internally relying on the robust and well-tested SQLiteTokenizer logic. Bug: 135270103 Bug: 135269143 Test: atest DownloadProviderTests Test: atest CtsAppTestCases:android.app.cts.DownloadManagerTest Change-Id: I302091ceda3591785b2124575e89dad19bc97469 (cherry picked from commit d3e5c766a143853580dd6642a4a32c5d1a6f9fb1)
* Automatic translation importMichael Bestas2019-08-066-2/+68
| | | | Change-Id: Ib694ce0c340d59424783f6e87e30d1f898ba9371
* Automatic translation importMichael Bestas2019-03-11119-4763/+782
| | | | Change-Id: I1a11bb3932b612a1de55b06b0fe352ec9dd8ef4f
* DO NOT MERGE. All untrusted selections must go through builder.Jeff Sharkey2018-10-301-105/+91
| | | | | | | | | | | | | | | | | | | | | | When accepting untrusted selections, they must be passed directly to SQLiteQueryBuilder to ensure that setStrict() can be applied to check for malicious callers sending unbalanced parentheses. This means we can't mix local and remote selections; they always need to be kept separate. Use newly added SQLiteQueryBuilder functionality to apply strict detection to update() and delete() calls. Only allow the owner of a particular download to query the headers for that download. Only delete headers for a download once we've confirmed that caller can modify that download. Test: atest packages/providers/DownloadProvider/tests/ Test: atest cts/tests/app/src/android/app/cts/DownloadManagerTest.java Bug: 111085900 Change-Id: I9fd8e0d3cf80d7603bf0092f36fe449467090821 Merged-In: I9fd8e0d3cf80d7603bf0092f36fe449467090821 (cherry picked from commit 64b55ea82b1f394369237601ae1f1c78b776aabc)
* Enable search for Downloads.Ben Lin2018-10-303-5/+47
| | | | | Bug: 26524617 Change-Id: Ide23c822b97ccab29a341184f14698dc942e8e14
* Automatic translation importMichael Bestas2018-10-144-12/+10
| | | | Change-Id: I3d0d795741dd4b0461487aa263cc8f11363e07cd
* Remove "public" download feature.Jeff Sharkey2018-09-061-12/+2
| | | | | | | | | | It was never a supported API, and has been reported as causing security issues, so remove it. Bug: 111084083 Test: builds Change-Id: I26345b192ffd55216bb8c8fdb82cb5869d68d3db (cherry picked from commit 35e123117be9ec5d61dbaea60f6eac06c0e80dc4)
* Automatic translation importMichael Bestas2018-05-051-0/+9
| | | | Change-Id: I02fdb7df393e38ace55b36fd3ba66c4abdeebd19
* Automatic translation importMichael Bestas2018-03-282-0/+25
| | | | Change-Id: I91a1379d3cb5350f9156edc144bd4ab5df5e61d1
* Automatic translation importMichael Bestas2018-02-048-0/+537
| | | | Change-Id: I878bb8ff87dbe45a8f3a680637ffdb515024817a
* Automatic translation importMichael W2018-01-132-0/+8
| | | | Change-Id: Iab7a8c3276466a3c9df2346160662123f51a0ee9
* Automatic translation importAbhisek Devkota2017-12-166-0/+464
| | | | Change-Id: Ia38a5ff64bfee6fcb079b6cd4a6ab2832f78ad5e
* Automatic translation importAbhisek Devkota2017-12-113-0/+232
| | | | Change-Id: Ie931b7cd9c207333d719f4ec875157ae0d6147f3
* Automatic translation importAbhisek Devkota2017-09-182-18/+1
| | | | Change-Id: I609ec81d4e216c08d72e506a2d78935e1ce27e49
* Automatic translation importAbhisek Devkota2017-08-031-0/+2
| | | | Change-Id: I6e006c99a574b1ee4741ddc92a81cd399340095d
* Merge tag 'android-7.1.2_r24' into cm-14.1Dan Pasanen2017-07-051-10/+45
|\ | | | | | | | | | | | | | | Android 7.1.2 release 24 # gpg: Signature made Fri 30 Jun 2017 01:19:42 PM CDT # gpg: using DSA key E8AD3F819AB10E78 # gpg: Can't check signature: No public key
| * Merge cherrypicks of [2307556, 2307630, 2307631, 2307557, 2307632, 2307656, ↵android-build-team Robot2017-05-241-10/+45
| |\ | | | | | | | | | | | | | | | 2307743, 2307635, 2307799, 2307577, 2307800, 2307707, 2307803, 2307781, 2307773, 2307637, 2307804, 2307618, 2307734, 2307708, 2307805, 2307709, 2307806, 2307820, 2307746, 2307774, 2307839, 2307735, 2307782, 2307808, 2307840, 2307738, 2307783, 2307749, 2307775, 2307860, 2307899, 2307822, 2307823, 2307880, 2307778, 2307825, 2307882, 2307787, 2307919, 2307844, 2307905, 2307883, 2307829, 2307907, 2307832, 2307944, 2307945, 2307911] into nyc-mr2-pixel-monthly-release Change-Id: I1eec7022b29c74eef753343df3331f7cf1c11eae
| | * DO NOT MERGE Deleting downloads for removed uids on downloadprovider startSuprabh Shukla2017-05-241-10/+45
| |/ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | After uninstalling an app, if the system was shutdown before the download provider received the broadcast for UID_REMOVED, another app installed later in the same uid might be able to gain access to the files downloaded by this app. Removing any such hanging downloads at the start up of the download provider should fix this issue. Test: Manually tested by uninstalling an app and killing and restarting the process android.process.media, to check that the downloaded files of the uninstalled app were deleted. Bug:22011579 Merged in: I7382c4846f99035b40412a01715aee5873efa9e6 Change-Id: I7382c4846f99035b40412a01715aee5873efa9e6 (cherry picked from commit 2ab9a2d15c63cd567805adb8fa4b9c524afc5ceb) (cherry picked from commit 3b15466b3cb6207660a73d1cea44a2d018ada23f)
* | Automatic translation importAbhisek Devkota2017-06-221-6/+6
| | | | | | | | Change-Id: I0bc9aacfe260c702eabcf59a032c519bbd41facb
* | Automatic translation importAbhisek Devkota2017-04-204-0/+28
| | | | | | | | Change-Id: I5cd082c9c5d092ac9aaea2cc78835fe2f9b5e20f
* | Merge tag 'android-7.1.2_r2' into cm-14.1staging/cm-14.1_android-7.1.2_r2Dan Pasanen2017-04-058-47/+47
|\| | | | | | | | | | | | | | | Android 7.1.2 Release 2 (N2G47E) # gpg: Signature made Mon 03 Apr 2017 01:41:50 AM CDT # gpg: using DSA key E8AD3F819AB10E78 # gpg: Can't check signature: No public key
| * Import translations. DO NOT MERGEBill Yi2017-02-024-42/+42
| | | | | | | | | | Change-Id: Ibfbbdc553978241cc89fc30e47e6c61be202c1c1 Auto-generated-cl: translation import
| * Import translations. DO NOT MERGEBill Yi2016-11-044-5/+5
| | | | | | | | | | Change-Id: I4f06fe6072b402f47b67616e90de02108b46cb78 Auto-generated-cl: translation import
| * Only send DOWNLOAD_COMPLETE broadcast once.Jeff Sharkey2016-10-142-15/+25
| |\ | | | | | | | | | | | | | | | am: f96f51e8d7 Change-Id: I3a234d02ebf1a2bbdb52af82530d554417849d68
| * \ Launch APKs using content:// Uri with grant.Jeff Sharkey2016-10-041-13/+4
| |\ \ | | | | | | | | | | | | | | | | | | | | am: 968b2f2ca3 Change-Id: I7bf9d5aab0eb94550ce32be9615c6eaea01e6506
| * \ \ Merge "Import translations. DO NOT MERGE" into nyc-dr1-dev am: a969f081b6 ↵Bill Yi2016-09-170-0/+0
| |\ \ \ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | -s ours am: e0e69444a8 -s ours Change-Id: I23a804c3aeadfff5ea81592eef0109a51c197ca5
| * \ \ \ Import translations. DO NOT MERGE am: 4de452f333 -s oursBill Yi2016-09-170-0/+0
| |\ \ \ \ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | am: a8a5f8a749 -s ours Change-Id: I2a5828c52aa518fe89c2790f1c301f8a867c1047
| * \ \ \ \ Merge commit 'c85df59e1cbc19afd486e2743fc59b3dc5ad8b35' into ↵Jeff Sharkey2016-09-171-0/+44
| |\ \ \ \ \ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | manual_merge_c85df59 am: f367d6b2a0 Change-Id: I3cefb5dff31c154a12839dba15452f1a0bc40f3e
| * \ \ \ \ \ DO NOT MERGE: Listen to file changes on Downloads dir.Steve McKay2016-09-081-24/+107
| |\ \ \ \ \ \ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | am: 12d4497cc1 Change-Id: Ife92fb387336956fa5ef8b70fb8063971d8906ce
| * \ \ \ \ \ \ Merge "DO NOT MERGE. Send "completed" broadcast if download cancelled." into ↵Jeff Sharkey2016-08-310-0/+0
| |\ \ \ \ \ \ \ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | nyc-mr1-dev am: 7edda42b80 Change-Id: I99f8aba98cc5071e9024a4fc3377d48e6b96f496
| * \ \ \ \ \ \ \ DO NOT MERGE. Send "completed" broadcast if download cancelled.Jeff Sharkey2016-08-312-11/+22
| |\ \ \ \ \ \ \ \ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | am: c0496a0b0b Change-Id: I19d55af382ab6eb4ad080c402139eaf4df695ace
| * \ \ \ \ \ \ \ \ DO NOT MERGE. Update notifications when deleting downloads.Jeff Sharkey2016-08-311-0/+6
| |\ \ \ \ \ \ \ \ \ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | am: 2be85cd23d Change-Id: I724e6647d0cf82c2231c60f5e83721cb4c12d948
| * \ \ \ \ \ \ \ \ \ DO NOT MERGE: Check that file exists in disk in queryChildDocs am: a4b509c30aJorge Gil2016-08-300-0/+0
| |\ \ \ \ \ \ \ \ \ \ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | am: 8c8f3a0c7b Change-Id: Id309c2da3818c4605e188d6ca223ad79f69d2fde
| * \ \ \ \ \ \ \ \ \ \ Revert "Enforce calling identity before clearing." am: b440ceb00f am: ↵Adam Seaton2016-08-261-13/+0
| |\ \ \ \ \ \ \ \ \ \ \ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | 6777320335 am: a474af3a08 am: 8bec536bf2 am: 34ccbd80ea am: 956426bee5 am: 6a6944d1f4 am: 8e8770bdc8 am: 85a6e20a85 am: 465a080262 am: c46b6cc496 Change-Id: I1ba6dfaea02841e8ac6e4aa4f079a179a296f352
| * \ \ \ \ \ \ \ \ \ \ \ Merge "Configure code coverage filter." into nyc-mr1-devAllen Hair2016-08-260-0/+0
| |\ \ \ \ \ \ \ \ \ \ \ \ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | am: 2f21e5f161 Change-Id: Ib38f40b19b0dbf33a0b3b0eba29d07acbac2c8a3
| * \ \ \ \ \ \ \ \ \ \ \ \ Configure code coverage filter.Allen Hair2016-08-261-0/+2
| |\ \ \ \ \ \ \ \ \ \ \ \ \ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | am: 2a283e9853 Change-Id: Ia99fe23f14757fb362114b46c9f6b5e7e848059a
| * \ \ \ \ \ \ \ \ \ \ \ \ \ Merge "DO NOT MERGE: Check that file exists in disk in queryChildDocs" into ↵Steve McKay2016-08-230-0/+0
| |\ \ \ \ \ \ \ \ \ \ \ \ \ \ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | nyc-mr1-dev am: 4093cb5adb Change-Id: I6eca1a66132c601aa86fd0707e823cf6bec4c1e1
| * \ \ \ \ \ \ \ \ \ \ \ \ \ \ DO NOT MERGE: Check that file exists in disk in queryChildDocsJorge Gil2016-08-231-2/+12
| |\ \ \ \ \ \ \ \ \ \ \ \ \ \ \ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | am: 314026d4e8 Change-Id: I3456cd39d299e97e9d2ef7ce200596bd829c3cdc
| * \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ Enforce calling identity before clearing. am: 8be3a92eb0 am: ec19fe6485 am: ↵Jeff Sharkey2016-08-091-0/+13
| |\ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | b3ce7976f2 am: 860239d87e am: 616f47abce am: a9ea617232 am: 567e549614 am: 14ae5650e4 am: 80ab64c562 am: f4607cbdb8 Change-Id: I9a5f79fd6f872277f35d740e0fd487120392e0ff
| * \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ Waiting for Wi-Fi notification is not ongoing.Jeff Sharkey2016-07-281-1/+3
| |\ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | am: 7b7fa39dec Change-Id: Ib5b8161ca3812b1200d96353bc7a3077e5cea01e
* | | | | | | | | | | | | | | | | | | Automatic translation importcm-14.1_oldAbhisek Devkota2017-03-291-0/+1
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Change-Id: I9f24a790ec7057b0be001d3bebe7c4aa382c864c
* | | | | | | | | | | | | | | | | | | Automatic translation importAbhisek Devkota2017-03-221-0/+2
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Change-Id: I909fea50b7b6d26a31df7bd09b9c8dbe120c2df5
* | | | | | | | | | | | | | | | | | | Automatic translation importAbhisek Devkota2017-03-203-0/+13
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Change-Id: I575efe47e1605c232d91aaeec506c32d55200804
* | | | | | | | | | | | | | | | | | | Automatic translation importAbhisek Devkota2017-03-153-3/+6
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Change-Id: I3ca425c68a8dd1d1545fd3a62ceae50a3dbb7f6f
* | | | | | | | | | | | | | | | | | | Automatic translation importAbhisek Devkota2017-03-086-1/+57
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Change-Id: I4dcb2f740e647c0495abc10a90e647826101a53f
* | | | | | | | | | | | | | | | | | | Automatic translation importMichael W2017-03-024-78/+5
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Change-Id: I963dcb23b6dc1c55e6f2b39208590928d72c2e0e
* | | | | | | | | | | | | | | | | | | Automatic translation importAbhisek Devkota2017-02-233-0/+13
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Change-Id: I1f237f1c90a633d5816ebc84dd8504cd9b7f48b5
* | | | | | | | | | | | | | | | | | | Automatic translation importAbhisek Devkota2017-02-1615-6/+314
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Change-Id: I2aac8c501435fd468ca188c121b81f2c1de2fe54
* | | | | | | | | | | | | | | | | | | Automatic translation importstaging/cm-14.1-cafrebaseinky@build012016-12-30134-0/+7055
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Change-Id: I97c79babd5ffd99b6f7e6221bd1d978f9cc8d761 Ticket: -
* | | | | | | | | | | | | | | | | | | DownloadProvider: Add support for manual pause/resumeZhao Wei Liew2016-12-308-10/+163
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Implement the following features: - Manually pause/resume individual downloads in DownloadManager - Manually pause/resume all downloads in notification Based on commit ecd609e7017b8a69688bbae25c17d878ea305f19. Change-Id: I433cdee2de8b3add0248bbb0a9d02f8da4e5bb38
generated by cgit v1.2.3 (git 2.25.1) at 2024-04-26 20:26:44 +0000