Skip to content

Support Private Space on secondary users #159

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 410 commits into
base: 15-qpr2
Choose a base branch
from
Open

Support Private Space on secondary users #159

wants to merge 410 commits into from

Conversation

quh4gko8
Copy link
Member

@quh4gko8 quh4gko8 commented Apr 2, 2025

No description provided.

thestinger and others added 30 commits March 5, 2025 15:07
@thestinger @muhomorr
use permanent fingerprint lockout immediately
8dc6c18
@thestinger @muhomorr
add system property for disabling keyguard camera
c25abcb 
Change-Id: I0b65cac3c3d2fc495b339c34add742bd698b107c
@muhomorr
add auto-reboot feature
97b5d41 
Requires the corresponding changes to system/core and system/sepolicy.
@muhomorr
infrastructure for the Storage Scopes feature
b2b2ef9
@muhomorr
sscopes: temp: disable incomplete handling of READ_MEDIA_VISUAL_USER_…
ba3422c 
…SELECTED

Treat it same way other storage perms are treated for now.
@muhomorr
control access to Android/obb directory with a GosPackageState flag
ebcb70d
@muhomorr
ErrorDialogController: do not auto-dismiss crash dialogs
35fd95c 
This is a workaround for a bug that auto-dismisses crash dialog for native crash almost immediately
after it is shown.

Crash dialogs are shown only for foreground apps by default, there's no need to auto dismiss them.
@muhomorr
fix ANR details link not working in profiles and in secondary users
5011624 
Crash report dialog is not affected, it uses startActivityAsUser() already.
@muhomorr
include path of ANR stack traces file in ApplicationErrorReport
587c587 
ANR stack traces file contains stack traces of all app's threads and of all threads of relevant or
possibly relevant system processes, such as system_server.
@muhomorr
don't block reading ANR stack traces file via Unix file permissions
f390e06 
Access to these files is controlled by their SELinux policy. They are labeled as anr_data_file.

Enforcing additional read restrictions for ANR stack traces files through Unix permissions prevented
LogViewer app from accessing them, since it doesn't run as the highly privileged UID 1000
(android.uid.system) which owns these files.
@muhomorr
add option to view application error details in LogViewer app
f065af8 
Adds a "Show details" item to crash and ANR (app not responding) dialogs which opens the LogViewer
app.
@quh4gko8 @muhomorr
Set always-on and lockdown on by default on first vpn connection at s…
5e11c48 
…ystem_server side

Don't require reboot or settings re-set for always on and lockdown to
take effect on first vpn connection. The requirement for reboot, re-set
at settings has been caused by a permission not granted or declared by
VpnDialogs, which caused the unexpected behavior. Prevent this by
checking the permission of local process instead.
@muhomorr
pre-grant POST_NOTIFICATIONS to more system apps
4fd3e99
@muhomorr
allow privileged installer to search for packages across all users
d7af5fb
@muhomorr
extend original-package renaming to provider authorities for Vanadium
f80bed9 
In the general case, ContentProvider authorities can't be renamed because they aren't required to be
based on the package name.

Chromium always forms ContentProvider authorities by prefixing them with its package name, and
relies on this invariant in code.

When its package is renamed by original-package handling code, statements like
String authority = context.getPackageName() + CONSTANT
become invalid.

Add a special-case for Vanadium to fix this.
@muhomorr
extend original-package renaming to static launcher shortcuts
f09d7fc
@quh4gko8 @muhomorr
bugfix: properly acquire package state from original package
c70d2c9 
This resolves the NPE crash when updating an application under the new
package name that initially had the original package as package name.
@muhomorr
disable package parser cache
8c7f5a0 
This is needed for properly verifying updates of system packages.
@muhomorr
perform additional boot-time checks on system package updates
8ecd626
@muhomorr
allow out-of-band package updates to use original-package system
63fe096
@muhomorr
require fs-verity when installing system package updates
356fbd4
@muhomorr
don't allow updating system packages to the same versionCode
794515c 
versionCode of many system packages, including privileged ones, is set to the current SDK version
and is thus not incremented during non-major OS upgrades.
This allowed to downgrade them to the older version that had the same versionCode.
@muhomorr
allow privileged installers to use getSharedLibraries(MATCH_ANY_USER)
159cd0c
@muhomorr
allow only first party app source and shell to update system packages
4594e88
@girlbossceo @muhomorr
Remove build fingerprint from screenshot EXIF
258a845
@girlbossceo @muhomorr
add toggle for screenshot timestamp EXIF metadata
020b244
@MSe1969 @muhomorr
SUPL: Don't send IMSI / Phone number to SUPL server
4687083 
Change-Id: I5ccc4d61e52ac11ef33f44618d0e610089885b87

Squashed with:
Author: Daniel Micay <[email protected]>
Date:   Wed Mar 15 06:32:20 2023 -0400

    simplify removal of SUPL IMSI / phone number

    This is not required for SUPL to work and the comment about Google is
    unnecessary.
@muhomorr
add GNSS SUPL setting
3f5d4a5
@muhomorr
allow privileged installers to maintain a global list of busy packages
d131655 
Adds a global data structure that is accessible by privileged installers and allows them to avoid
installing the same package at the same time.
@muhomorr
add option to scramble PIN layout
d0e72b9 
Applies to device PIN, SIM PIN and SIM PUK input screens.
muhomorr and others added 17 commits March 28, 2025 18:03
@muhomorr @thestinger
fixup! Widevine provisioning setting
268a35f
@muhomorr @thestinger
fixup! add battery charge limit setting
de7d9bd
@muhomorr @thestinger
fixup! add network location setting
9415f85
@muhomorr @thestinger
fixup! add special runtime permission for other sensors
7d2ddbb
@muhomorr @thestinger
fixup! add toggle for screenshot timestamp EXIF metadata
bc3c7a5
@muhomorr @thestinger
fixup! add option to scramble PIN layout
bb65c4a
@quh4gko8 @thestinger
fixup! SettingsProvider: add support for further restriction of setti…
634aa95 
…ng access
@quh4gko8 @thestinger
fixup! Disable "Add users when locked" settings on every boot
e697d10
@quh4gko8 @thestinger
fixup! Disable instant apps feature on every boot
4d1d4e1
@muhomorr @thestinger
Revert "fixup! Disable instant apps feature on every boot"
ae728c0 
This reverts commit 4d1d4e1.
@muhomorr @thestinger
Revert "fixup! Disable "Add users when locked" settings on every boot"
07110b9 
This reverts commit e697d10.
@muhomorr @thestinger
Revert "Disable instant apps feature on every boot"
69d778b 
This reverts commit 4505ba8.
@muhomorr @thestinger
Revert "Disable "Add users when locked" settings on every boot"
c5c0506 
This reverts commit bdb2449.
@muhomorr @thestinger
Revert "SettingsProviderHooks: Infrastructure for hooking settings st…
2833285 
…ate init"

This reverts commit d56df13.
@muhomorr @thestinger
fixup! SettingsProvider: add support for further restriction of setti…
330096e 
…ng access

Add support for forcing settings to have an explicit immutable value.
@muhomorr @thestinger
don't allow enabling the instant apps feature
3e41721
@muhomorr @thestinger
don't allow enabling the "add users when locked" setting
3b78313
@quh4gko8 quh4gko8 marked this pull request as ready for review April 2, 2025 18:57
@quh4gko8 quh4gko8 mentioned this pull request Apr 2, 2025
Open
@quh4gko8 quh4gko8 force-pushed the bp1a-dev_04-02_01 branch from 983cb28 to d49167f Compare April 3, 2025 06:21
@quh4gko8 quh4gko8 closed this Apr 3, 2025
@quh4gko8 quh4gko8 reopened this Apr 3, 2025
@thestinger thestinger force-pushed the 15-qpr2 branch 5 times, most recently from 5f3142f to 8edf282 Compare April 10, 2025 20:49
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.