android - Security issues when using Content Provider in BluetoothGattCallback -


i observing strange permission related issue when oncharacteristicchanged() callback called.

i writing android service communicates le (low energy) sensor in peripheral role using bluetooth le apis. enable notification on characteristic on sensor notifies changes.

when oncharacteristicchanged() callback called, service retrieves characteristic's value , stores in content provider. access content provider restricted signature level permission. application hosting service has permission.

here simplified code of oncharacteristicchanged:

@override public void oncharacteristicchanged(final bluetoothgatt gatt, final bluetoothgattcharacteristic characteristic) {     super.oncharacteristicchanged(gatt, characteristic);      log.v(tag, "pid=" + android.os.process.mypid() + " uid=" + android.os.process.myuid());      uri uri = mcontext.getcontentresolver().insert(uri_values, characteristic.getvalue()); }

i getting security permission when insert() api called in above callback.

02-27 15:15:32.752: v/proxygattclient(10511): pid=10511 uid=10177 02-27 15:15:32.792: e/persistenceutil(10511): error saving reading database 02-27 15:15:32.792: e/persistenceutil(10511): java.lang.securityexception: permission denial: writing com.example.content.mycontentprovider uri content://com.example/values pid=1336, uid=1002 requires com.example.permission.access_content, or granturipermission() 02-27 15:15:32.792: e/persistenceutil(10511):   @ android.content.contentprovider$transport.enforcewritepermissioninner(contentprovider.java:445) 02-27 15:15:32.792: e/persistenceutil(10511):   @ android.content.contentprovider$transport.enforcewritepermission(contentprovider.java:382) 02-27 15:15:32.792: e/persistenceutil(10511):   @ android.content.contentprovider$transport.insert(contentprovider.java:210) 02-27 15:15:32.792: e/persistenceutil(10511):   @ android.content.contentresolver.insert(contentresolver.java:917) 02-27 15:15:32.792: e/persistenceutil(10511):   @ com.qcl.vh.ble.proxygattclient.oncharacteristicchanged(proxygattclient.java:101) 02-27 15:15:32.792: e/persistenceutil(10511):   @ android.bluetooth.bluetoothgatt$1.onnotify(bluetoothgatt.java:425) 02-27 15:15:32.792: e/persistenceutil(10511):   @ android.bluetooth.ibluetoothgattcallback$stub.ontransact(ibluetoothgattcallback.java:397) 02-27 15:15:32.792: e/persistenceutil(10511):   @ android.os.binder.exectransact(binder.java:388) 02-27 15:15:32.792: e/persistenceutil(10511):   @ dalvik.system.nativestart.run(native method)

running 'adb shell ps' shows pid=1336, uid=1002 process id of "com.android.bluetooth" process. above stack trace shows, content provider's insert being called in bluetooth process's context. of course process not have permission write in content provider , exception.

when log process's id within oncharacteristicchanged() shows pid=10511 uid=10177, process id of process hosting application.

can explain above behavior? why insert() called on blueooth process's context while callback running in application's process.

i running on samsung galaxy s3, android 4.3.

thanks

the answer right in error, believe.

requires com.example.permission.access_content

you must allow others read contentprovider. read more here

could show how know host application has these permissions? i've asked similar question in past, here:

what's difference between android:permission="packagename.permissions.browser_provider" , android:granturipermissions?


Comments

Post a Comment

Popular posts from this blog

Android layout hidden on keyboard show -

i have strange problem layout. when tap on edittext , keyboard shown edittext stay on bottom , when tap on to hide keyboard , keyboard hides , edittext go should when want input text. when tap again, keyboard shown , edittext goes down behind keyboard... <relativelayout android:layout_width="match_parent" android:layout_height="match_parent" > <scrollview android:layout_width="match_parent" android:layout_height="fill_parent" android:above="@+id/rl_commands"> <textview android:layout_width="match_parent" android:layout_height="wrap_content"/> </scrollview> <relativelayout android:layout_width="match_parent android:layout_height="24dp" android:id="@+id/rl_commands" android:alignparentbottom="true">
Read more

google app engine - 403 Forbidden POST - Flask WTForms -

i have flask application running on google app engine. trying submit form built using wtform , keep getting following error. 403 forbidden: don't have permission access requested resource. either read-protected or not readable server. location.html (part of code) <form method=post action="/home/location"> .... <button type="submit" class="btn btn-primary" value="submit"> directions </button> </form> main.py @app.route('/home/location', methods=['post', 'get']) def location(): form = cfcdirections.direction(request.form) print(request.method) if request.method == 'post' , form.validate(): print("after if") directions = cfcdirections() street_no = directions.no street = directions.street suburb = directions.suburb postcode = directions.postcode
Read more

c - Why would PK11_GenerateRandom() return an error -8023? -

i looking through internet trying find source of pk11_generaterandom() function see why function fail. have program uses function when moved new flavor of linux, fails after forking ( fork() ) since not believe there problem nss, suspect doing incorrectly disregarded in older versions of linux new 1 there issue. the openssl package same on 'good' , 'bad' server: openssl 0.9.8e-fips-rhel5 01 jul nss rpm differs though. 'good' has nss-3.12.2.0-2.el5 and bas has version nss-3.15.3-4.el5_10 the 'good' server uses quite obsolete linux: linux 2.6.18-128.el5 #1 smp wed jan 21 08:45:05 est 2009 x86_64 x86_64 x86_64 gnu/linux enterprise linux enterprise linux server release 5.3 (carthage) red hat enterprise linux server release 5.3 (tikanga) the 'bad' server newer: linux bad 2.6.18-371.4.1.el5 #1 smp wed jan 29 11:05:49 pst 2014 x86_64 x86_64 x86_64 gnu/linux oracle linux server release 5.10 red hat enterprise linux server release
Read more