diff options
author | Dianne Hackborn <nobody@android.com> | 2009-05-13 18:09:56 -0700 |
---|---|---|
committer | The Android Open Source Project <initial-contribution@android.com> | 2009-05-13 18:09:56 -0700 |
commit | 5d6d773fab559fdc12e553d60d789f3991ac552c (patch) | |
tree | 6188416dceccd82a180f6d478d366270e38ff93e /include/utils/misc.h | |
parent | 04c72b47d877c9f3b45caa1ddc7f640b02e7be4c (diff) | |
download | frameworks_base-5d6d773fab559fdc12e553d60d789f3991ac552c.zip frameworks_base-5d6d773fab559fdc12e553d60d789f3991ac552c.tar.gz frameworks_base-5d6d773fab559fdc12e553d60d789f3991ac552c.tar.bz2 |
AI 148824: Fix issue #1851541 (sharedUserId requests not being checked for matching signatures on .apk).
To address issues where we could leave half-installed applications around if there was a failure during the install, we split getPackageLP() into two phases: the first would create the record, and only after doing all verification checks would we call insertPackageSettingLP() to do the remaining part of the original implementation and actually insert the record into the data structures.
Unfortunately it was only in insertPackageSettingLP() that we would set the sharedUser field of the PackageSetting structure, so when before that we went to verify certificates, we didn't think it had requested a shared user ID, and let it through without checking.
This fix simply sets the sharedUser field when the PackageSetting structure is first created, so we will actually check against its certs. We still also set this again in insertPackageSettingLP(), but there is no harm in this because the only time we call this function is in that big install func, which just passes in the same shared user that it had when first getting the package.
BUG=1851541
Automated import of CL 148824
Diffstat (limited to 'include/utils/misc.h')
0 files changed, 0 insertions, 0 deletions