Permissions mapping to process groups
215 views
Skip to first unread message
Tez
Oct 31, 2010, 7:56:53 AM10/31/10
to android-platform
Hi,
I understand that the INTERNET permission is mapped to the "inet"
group as stated in the platform.xml file.
Where is the point in the code that this actually happens? I have
tried to search for it in Package manager service.
Also, assuming I am modifying the sources, how can I temporarily
remove a particular user id from the "inet" group.
Cheers,
Earlence
I understand that the INTERNET permission is mapped to the "inet"
group as stated in the platform.xml file.
Where is the point in the code that this actually happens? I have
tried to search for it in Package manager service.
Also, assuming I am modifying the sources, how can I temporarily
remove a particular user id from the "inet" group.
Cheers,
Earlence
Dianne Hackborn
Oct 31, 2010, 6:41:52 PM10/31/10
to android-...@googlegroups.com
These are defined in /system/etc/permissions/framework.xml (or any other file in the directory).
--
Dianne Hackborn
Android framework engineer
hac...@android.com
Note: please don't send private questions to me, as I don't have time to provide private support, and so won't reply to such e-mails. All such questions should be posted on public forums, where I and others can see and answer them.
The only way to temporarily remove a uid from a gid is by changing the framework to allow you to remove a permission from an app, and kill any processes running under its uid.
--
You received this message because you are subscribed to the Google Groups "android-platform" group.
To post to this group, send email to android-...@googlegroups.com.
To unsubscribe from this group, send email to android-platfo...@googlegroups.com.
For more options, visit this group at http://groups.google.com/group/android-platform?hl=en.
--
Dianne Hackborn
Android framework engineer
hac...@android.com
Note: please don't send private questions to me, as I don't have time to provide private support, and so won't reply to such e-mails. All such questions should be posted on public forums, where I and others can see and answer them.
Tez
Nov 1, 2010, 6:39:51 AM11/1/10
to android-platform
can you elaborate on the process "remove a permission from an app"
my understanding is: the fact that a package is installed means all
permissions were granted.
hence, the permission list is not stored.
This means I have to actually modify the manifest xml file of the
app?
but the app is signed by a 3rd party key.
cheers,
Earlence
On Oct 31, 11:41 pm, Dianne Hackborn <hack...@android.com> wrote:
> These are defined in /system/etc/permissions/framework.xml (or any other
> file in the directory).
>
> The only way to temporarily remove a uid from a gid is by changing the
> framework to allow you to remove a permission from an app, and kill any
> processes running under its uid.
>
>
>
> On Sun, Oct 31, 2010 at 4:56 AM, Tez <earlencefe...@gmail.com> wrote:
> > Hi,
>
> > I understand that the INTERNET permission is mapped to the "inet"
> > group as stated in the platform.xml file.
> > Where is the point in the code that this actually happens? I have
> > tried to search for it in Package manager service.
> > Also, assuming I am modifying the sources, how can I temporarily
> > remove a particular user id from the "inet" group.
>
> > Cheers,
> > Earlence
>
> > --
> > You received this message because you are subscribed to the Google Groups
> > "android-platform" group.
> > To post to this group, send email to android-...@googlegroups.com.
> > To unsubscribe from this group, send email to
> > android-platfo...@googlegroups.com<android-platform%2Bunsu...@googlegroups.com>
> > .
my understanding is: the fact that a package is installed means all
permissions were granted.
hence, the permission list is not stored.
This means I have to actually modify the manifest xml file of the
app?
but the app is signed by a 3rd party key.
cheers,
Earlence
On Oct 31, 11:41 pm, Dianne Hackborn <hack...@android.com> wrote:
> These are defined in /system/etc/permissions/framework.xml (or any other
> file in the directory).
>
> The only way to temporarily remove a uid from a gid is by changing the
> framework to allow you to remove a permission from an app, and kill any
> processes running under its uid.
>
>
>
> On Sun, Oct 31, 2010 at 4:56 AM, Tez <earlencefe...@gmail.com> wrote:
> > Hi,
>
> > I understand that the INTERNET permission is mapped to the "inet"
> > group as stated in the platform.xml file.
> > Where is the point in the code that this actually happens? I have
> > tried to search for it in Package manager service.
> > Also, assuming I am modifying the sources, how can I temporarily
> > remove a particular user id from the "inet" group.
>
> > Cheers,
> > Earlence
>
> > --
> > You received this message because you are subscribed to the Google Groups
> > "android-platform" group.
> > To post to this group, send email to android-...@googlegroups.com.
> > To unsubscribe from this group, send email to
> > .
> > For more options, visit this group at
> >http://groups.google.com/group/android-platform?hl=en.
>
> --
> Dianne Hackborn
> Android framework engineer
> hack...@android.com
> >http://groups.google.com/group/android-platform?hl=en.
>
> --
> Dianne Hackborn
> Android framework engineer
Reply all
Reply to author
Forward
0 new messages