DivestOS/Patches/LineageOS-20.0/android_frameworks_base/0013-Special_Permissions-9.patch

From 0000000000000000000000000000000000000000 Mon Sep 17 00:00:00 2001
From: Dmitry Muhomor <muhomor.dmitry@gmail.com>
Date: Thu, 15 Sep 2022 13:58:34 +0300
Subject: [PATCH] ignore pid when spoofing permission checks

Permissions are enforced per-uid, checking pid may break spoofing for multi-process apps.
---
 core/java/android/app/ContextImpl.java | 8 +++-----
 1 file changed, 3 insertions(+), 5 deletions(-)

diff --git a/core/java/android/app/ContextImpl.java b/core/java/android/app/ContextImpl.java
index b50cd115382d..58d3702c7356 100644
--- a/core/java/android/app/ContextImpl.java
+++ b/core/java/android/app/ContextImpl.java
@@ -2166,18 +2166,16 @@ class ContextImpl extends Context {
         if (permission == null) {
             throw new IllegalArgumentException("permission is null");
         }
-
-        final boolean selfCheck = pid == android.os.Process.myPid() && uid == android.os.Process.myUid();
-
         if (mParams.isRenouncedPermission(permission)
-                && selfCheck) {
+                && pid == android.os.Process.myPid() && uid == android.os.Process.myUid()) {
             Log.v(TAG, "Treating renounced permission " + permission + " as denied");
             return PERMISSION_DENIED;
         }
+
         int res = PermissionManager.checkPermission(permission, pid, uid);
 
         if (res != PERMISSION_GRANTED) {
-            if (selfCheck) {
+            if (uid == android.os.Process.myUid()) {
                 if (AppPermissionUtils.shouldSpoofSelfCheck(permission)) {
                     return PERMISSION_GRANTED;
                 }
20.0: Network & Sensors permission from GrapheneOS This revokes the permissions to all user installed apps on update. Likely an expected quirk of being on 20.0 without the permission. 19.1 upgrades and new 20.0 installs should be fine. TODO: update 19.1 with the SpecialRuntimePermAppUtils too Signed-off-by: Tad <tad@spotco.us> 2022-10-18 21:13:17 +00:00			`From 0000000000000000000000000000000000000000 Mon Sep 17 00:00:00 2001`
			`From: Dmitry Muhomor <muhomor.dmitry@gmail.com>`
			`Date: Thu, 15 Sep 2022 13:58:34 +0300`
			`Subject: [PATCH] ignore pid when spoofing permission checks`

			`Permissions are enforced per-uid, checking pid may break spoofing for multi-process apps.`
			`---`
			`core/java/android/app/ContextImpl.java \| 8 +++-----`
			`1 file changed, 3 insertions(+), 5 deletions(-)`

			`diff --git a/core/java/android/app/ContextImpl.java b/core/java/android/app/ContextImpl.java`
			`index b50cd115382d..58d3702c7356 100644`
			`--- a/core/java/android/app/ContextImpl.java`
			`+++ b/core/java/android/app/ContextImpl.java`
			`@@ -2166,18 +2166,16 @@ class ContextImpl extends Context {`
			`if (permission == null) {`
			`throw new IllegalArgumentException("permission is null");`
			`}`
			`-`
			`- final boolean selfCheck = pid == android.os.Process.myPid() && uid == android.os.Process.myUid();`
			`-`
			`if (mParams.isRenouncedPermission(permission)`
			`- && selfCheck) {`
			`+ && pid == android.os.Process.myPid() && uid == android.os.Process.myUid()) {`
			`Log.v(TAG, "Treating renounced permission " + permission + " as denied");`
			`return PERMISSION_DENIED;`
			`}`
			`+`
			`int res = PermissionManager.checkPermission(permission, pid, uid);`

			`if (res != PERMISSION_GRANTED) {`
			`- if (selfCheck) {`
			`+ if (uid == android.os.Process.myUid()) {`
			`if (AppPermissionUtils.shouldSpoofSelfCheck(permission)) {`
			`return PERMISSION_GRANTED;`
			`}`