audiopolicy: clear caller identity before calling audio policy manager Audio policy manager methods must always be executed with the level of priviledge of audioserver process. After checking calling permissions, audio policy service will clear binder caller identity before calling into audio policy manager. Also add restrictions for start source and stop source binder transactions. Bug: 77869640 Test: manual audio smoke tests Change-Id: I993d4fddcea9bfa3f44093c38406b85d69ca8890

commit: 10b7123bd6ce29fe756422aeedc5cfe469c4309f [log] [tgz]
author: Eric Laurent <elaurent@google.com> Fri Apr 13 18:14:44 2018 -0700
committer: Eric Laurent <elaurent@google.com> Fri Apr 13 18:18:49 2018 -0700
tree: 340803c949b9500ce5e2873fbf874fcec782fd3f
parent: 258fb48d1498c8d34d6877700db993938cc89f71 [diff] [blame]
diff --git a/media/libaudioclient/IAudioPolicyService.cpp b/media/libaudioclient/IAudioPolicyService.cpp
index a49b2cb..3cde9a8 100644
--- a/media/libaudioclient/IAudioPolicyService.cpp
+++ b/media/libaudioclient/IAudioPolicyService.cpp

@@ -872,7 +872,9 @@
         case INIT_STREAM_VOLUME:
         case SET_STREAM_VOLUME:
         case REGISTER_POLICY_MIXES:
-        case SET_MASTER_MONO: {
+        case SET_MASTER_MONO:
+        case START_AUDIO_SOURCE:
+        case STOP_AUDIO_SOURCE: {
             uid_t multiUserClientUid = IPCThreadState::self()->getCallingUid() % AID_USER_OFFSET;
             if (multiUserClientUid >= AID_APP_START) {
                 ALOGW("%s: transaction %d received from PID %d unauthorized UID %d",
commit	10b7123bd6ce29fe756422aeedc5cfe469c4309f	[log] [tgz]
author	Eric Laurent <elaurent@google.com>	Fri Apr 13 18:14:44 2018 -0700
committer	Eric Laurent <elaurent@google.com>	Fri Apr 13 18:18:49 2018 -0700
tree	340803c949b9500ce5e2873fbf874fcec782fd3f
parent	258fb48d1498c8d34d6877700db993938cc89f71 [diff] [blame]