Merge "Revert "Fixing security vuln by tightening race condition window."" am: fbe01199cb
am: 7664a53479
Change-Id: Ia790fab495bbf38aeb390343c0d45f447480d661
This commit is contained in:
commit
fc325ddb46
1 changed files with 1 additions and 5 deletions
|
@ -613,8 +613,6 @@ Status KeyStoreService::generateKey(
|
|||
const ::android::sp<::android::security::keystore::IKeystoreKeyCharacteristicsCallback>& cb,
|
||||
const String16& name, const KeymasterArguments& params, const ::std::vector<uint8_t>& entropy,
|
||||
int uid, int flags, int32_t* _aidl_return) {
|
||||
// TODO(jbires): remove this getCallingUid call upon implementation of b/25646100
|
||||
uid_t originalUid = IPCThreadState::self()->getCallingUid();
|
||||
uid = getEffectiveUid(uid);
|
||||
auto logOnScopeExit = android::base::make_scope_guard([&] {
|
||||
if (__android_log_security()) {
|
||||
|
@ -634,9 +632,7 @@ Status KeyStoreService::generateKey(
|
|||
}
|
||||
|
||||
if (containsTag(params.getParameters(), Tag::INCLUDE_UNIQUE_ID)) {
|
||||
// TODO(jbires): remove uid checking upon implementation of b/25646100
|
||||
if (!checkBinderPermission(P_GEN_UNIQUE_ID) ||
|
||||
originalUid != IPCThreadState::self()->getCallingUid()) {
|
||||
if (!checkBinderPermission(P_GEN_UNIQUE_ID)) {
|
||||
return AIDL_RETURN(ResponseCode::PERMISSION_DENIED);
|
||||
}
|
||||
}
|
||||
|
|
Loading…
Reference in a new issue