diff options
author | Ruchi Kandoi <kandoiruchi@google.com> | 2018-03-12 12:31:56 -0700 |
---|---|---|
committer | Ruchi Kandoi <kandoiruchi@google.com> | 2018-03-20 10:22:03 -0700 |
commit | 4f81eae39d935fa0221bc9333762c520e11440bf (patch) | |
tree | 5120fcbc7b0d9495d2286c2293f8924ab8a87ed2 | |
parent | fffcc4e3ff78f746101858c1e055ae681ea343a7 (diff) | |
download | SecureElement-4f81eae39d935fa0221bc9333762c520e11440bf.tar.gz |
Deny access if APDU access is not defined.
Test: Secure Element initializes
Bug: 74536289
Change-Id: Iffe66b42adc21628e3def830579faf553c100ef5
(cherry picked from commit 2c52cac806cab91046f6e447076a42440270ede9)
-rw-r--r-- | src/com/android/se/security/AccessRuleCache.java | 4 |
1 files changed, 2 insertions, 2 deletions
diff --git a/src/com/android/se/security/AccessRuleCache.java b/src/com/android/se/security/AccessRuleCache.java index 86a5a78..1a4f2eb 100644 --- a/src/com/android/se/security/AccessRuleCache.java +++ b/src/com/android/se/security/AccessRuleCache.java @@ -273,7 +273,7 @@ public class AccessRuleCache { // let's take care about the undefined rules, according to the GP specification: ChannelAccess ca = mRuleCache.get(ref_do); if (ca.getApduAccess() == ChannelAccess.ACCESS.UNDEFINED) { - ca.setApduAccess(ChannelAccess.ACCESS.ALLOWED); + ca.setApduAccess(ChannelAccess.ACCESS.DENIED); } if ((ca.getNFCEventAccess() == ChannelAccess.ACCESS.UNDEFINED) && (ca.getApduAccess() != ChannelAccess.ACCESS.UNDEFINED)) { @@ -328,7 +328,7 @@ public class AccessRuleCache { // let's take care about the undefined rules, according to the GP specification: ChannelAccess ca = mRuleCache.get(ref_do); if (ca.getApduAccess() == ChannelAccess.ACCESS.UNDEFINED) { - ca.setApduAccess(ChannelAccess.ACCESS.ALLOWED); + ca.setApduAccess(ChannelAccess.ACCESS.DENIED); } if ((ca.getNFCEventAccess() == ChannelAccess.ACCESS.UNDEFINED) && (ca.getApduAccess() != ChannelAccess.ACCESS.UNDEFINED)) { |