From a92b91d7966350ad37f5c60586e5ccb9abc696be Mon Sep 17 00:00:00 2001
From: Scott Mertz <scott@cyngn.com>
Date: Thu, 4 Aug 2016 15:17:01 -0700
Subject: fw: enforce android.permission.PREVENT_SYSTEM_KEYS in system server

Since privateFlags can be accessed and modified via reflection
due to change 5d927c2d8e, the prevent system keys or prevent
power keys flag can be set and deployed without ever calling
setPrivateFlags directly.

Move enforcing to system server to prevent app tampering.

TICKET: CYAN-7921 (open source JIRA)
Found by Maciej Krysztofiak

Change-Id: I53c2804d0283692036f5cc95e6ad57821bc0655a
---
 core/java/android/view/Window.java | 7 -------
 1 file changed, 7 deletions(-)

(limited to 'core/java')

diff --git a/core/java/android/view/Window.java b/core/java/android/view/Window.java
index 65577f0..50a926f 100644
--- a/core/java/android/view/Window.java
+++ b/core/java/android/view/Window.java
@@ -869,13 +869,6 @@ public abstract class Window {
     }
 
     private void setPrivateFlags(int flags, int mask) {
-        int preventFlags = WindowManager.LayoutParams.PRIVATE_FLAG_PREVENT_POWER_KEY |
-                WindowManager.LayoutParams.PRIVATE_FLAG_PREVENT_SYSTEM_KEYS;
-
-        if ((flags & mask & preventFlags) != 0) {
-            mContext.enforceCallingOrSelfPermission("android.permission.PREVENT_SYSTEM_KEYS",
-                    "No permission to prevent system key");
-        }
         final WindowManager.LayoutParams attrs = getAttributes();
         attrs.privateFlags = (attrs.privateFlags & ~mask) | (flags & mask);
         dispatchWindowAttributesChanged(attrs);
-- 
cgit v1.1