首頁 探索 說明
登入
bubblethink
/
aosp_patches
關註 1
讚好 0
複刻 1
Files 問題管理 0 合併請求 0 Wiki
分支: master
分支列表 標籤列表
aosp_patches
/
00002-microg-sigspoof.patch

00002-microg-sigspoof.patch 7.5 KB
永久連結 文件歷史 原始文件

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102 
  1. diff --git a/frameworks/base/core/res/AndroidManifest.xml b/frameworks/base/core/res/AndroidManifest.xml
    2. 

  2. index 66c497e..485635e 100644
    3. 

  3. --- a/frameworks/base/core/res/AndroidManifest.xml
    4. 

  4. +++ b/frameworks/base/core/res/AndroidManifest.xml
    5. 

  5. @@ -2341,6 +2341,13 @@
    6. 

  6.          android:description="@string/permdesc_getPackageSize"
    7. 

  7.          android:protectionLevel="normal" />
    8. 

  8.  
    9. 

  9. +    <!-- @hide Allows an application to change the package signature as
    10. 

  10. +         seen by applications -->
    11. 

  11. +    <permission android:name="android.permission.FAKE_PACKAGE_SIGNATURE"
    12. 

  12. +        android:protectionLevel="signature|privileged"
    13. 

  13. +        android:label="@string/permlab_fakePackageSignature"
    14. 

  14. +        android:description="@string/permdesc_fakePackageSignature" />
    15. 

  15. +
    16. 

  16.      <!-- @deprecated No longer useful, see
    17. 

  17.           {@link android.content.pm.PackageManager#addPackageToPreferred}
    18. 

  18.           for details. -->
    19. 

  19. diff --git a/frameworks/base/core/res/res/values/config.xml b/frameworks/base/core/res/res/values/config.xml
    20. 

  20. index 0b5dd7e..bbdba64 100644
    21. 

  21. --- a/frameworks/base/core/res/res/values/config.xml
    22. 

  22. +++ b/frameworks/base/core/res/res/values/config.xml
    23. 

  23. @@ -1650,6 +1650,8 @@
    24. 

  24.      <string-array name="config_locationProviderPackageNames" translatable="false">
    25. 

  25.          <!-- The standard AOSP fused location provider -->
    26. 

  26.          <item>com.android.location.fused</item>
    27. 

  27. +        <!-- The (faked) microg fused location provider (a free reimplementation) -->
    28. 

  28. +        <item>com.google.android.gms</item>
    29. 

  29.      </string-array>
    30. 

  30.  
    31. 

  31.      <!-- This string array can be overriden to enable test location providers initially. -->
    32. 

  32. diff --git a/frameworks/base/core/res/res/values/strings.xml b/frameworks/base/core/res/res/values/strings.xml
    33. 

  33. index 3c5159c..42ee3c6 100644
    34. 

  34. --- a/frameworks/base/core/res/res/values/strings.xml
    35. 

  35. +++ b/frameworks/base/core/res/res/values/strings.xml
    36. 

  36. @@ -785,6 +785,12 @@
    37. 

  37.  
    38. 

  38.      <!--  Permissions -->
    39. 

  39.  
    40. 

  40. +
    41. 

  41. +    <!-- Title of an application permission, listed so the user can choose whether they want to allow the application to do this. -->
    42. 

  42. +    <string name="permlab_fakePackageSignature">Spoof package signature</string>
    43. 

  43. +    <!-- Description of an application permission, listed so the user can choose whether they want to allow the application to do this. -->
    44. 

  44. +    <string name="permdesc_fakePackageSignature">Allows the app to pretend to be a different app. Malicious applications might be able to use this to access private application data. Legitimate uses include an emulator pretending to be what it emulates. Grant this permission with caution only!</string>
    45. 

  45. +    
    46. 

  46.      <!-- Title of an application permission, listed so the user can choose whether they want to allow the application to do this. -->
    47. 

  47.      <string name="permlab_statusBar">disable or modify status bar</string>
    48. 

  48.      <!-- Description of an application permission, listed so the user can choose whether they want to allow the application to do this. -->
    49. 

  49. diff --git a/frameworks/base/services/core/java/com/android/server/pm/PackageManagerService.java b/frameworks/base/services/core/java/com/android/server/pm/PackageManagerService.java
    50. 

  50. index 63c721a5da7..f6b441d990a 100644
    51. 

  51. --- a/frameworks/base/services/core/java/com/android/server/pm/PackageManagerService.java
    52. 

  52. +++ b/frameworks/base/services/core/java/com/android/server/pm/PackageManagerService.java
    53. 

  53. @@ -703,6 +703,11 @@ public class PackageManagerService extends IPackageManager.Stub
    54. 

  54.  
    55. 

  55.      private static final String RANDOM_DIR_PREFIX = "~~";
    56. 

  56.  
    57. 

  57. +    /**
    58. 

  58. +     * The Google signature faked by microG.
    59. 

  59. +     */
    60. 

  60. +    private static final String MICROG_FAKE_SIGNATURE = "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";
    61. 

  61. +
    62. 

  62.      final ServiceThread mHandlerThread;
    63. 

  63.  
    64. 

  64.      final Handler mHandler;
    65. 

  65. @@ -4383,8 +4388,9 @@ public class PackageManagerService extends IPackageManager.Stub
    66. 

  66.              final Set<String> permissions = ArrayUtils.isEmpty(p.getRequestedPermissions())
    67. 

  67.                      ? Collections.emptySet() : permissionsState.getPermissions(userId);
    68. 

  68.  
    69. 

  69. -            PackageInfo packageInfo = PackageInfoUtils.generate(p, gids, flags,
    70. 

  70. -                    ps.firstInstallTime, ps.lastUpdateTime, permissions, state, userId, ps);
    71. 

  71. +            PackageInfo packageInfo = mayFakeSignature(p, PackageInfoUtils.generate(p, gids, flags,
    72. 

  72. +                ps.firstInstallTime, ps.lastUpdateTime, permissions, state, userId, ps),
    73. 

  73. +                permissions);
    74. 

  74.  
    75. 

  75.              if (packageInfo == null) {
    76. 

  76.                  return null;
    77. 

  77. @@ -4420,6 +4426,24 @@ public class PackageManagerService extends IPackageManager.Stub
    78. 

  78.          }
    79. 

  79.      }
    80. 

  80.  
    81. 

  81. +    private PackageInfo mayFakeSignature(AndroidPackage p, PackageInfo pi,
    82. 

  82. +            Set<String> permissions) {
    83. 

  83. +        try {
    84. 

  84. +            if (permissions.contains("android.permission.FAKE_PACKAGE_SIGNATURE")
    85. 

  85. +                    && p.getTargetSdkVersion() > Build.VERSION_CODES.LOLLIPOP_MR1) {
    86. 

  86. +                // Only allow microG and FakeStore
    87. 

  87. +                String packageName = p.getPackageName();
    88. 

  88. +                if (packageName.equals("com.google.android.gms") || packageName.equals("com.android.vending")) {
    89. 

  89. +                    pi.signatures = new Signature[] {new Signature(MICROG_FAKE_SIGNATURE)};
    90. 

  90. +                }
    91. 

  91. +            }
    92. 

  92. +        } catch (Throwable t) {
    93. 

  93. +            // We should never die because of any failures, this is system code!
    94. 

  94. +            Log.w("PackageManagerService.FAKE_PACKAGE_SIGNATURE", t);
    95. 

  95. +	}
    96. 

  96. +        return pi;
    97. 

  97. +    }
    98. 

  98. +
    99. 

  99.      @Override
    100. 

  100.      public void checkPackageStartable(String packageName, int userId) {
    101. 

  101.          final int callingUid = Binder.getCallingUid();
    102. 

  102.