Developer permissions are *never* granted automatically. The only way to grant a developer permission is to run the "pm grant" command from adb shell. There is no UI to control these permissions.
READ_LOGS originally started off as a "dangerous" permission, but in API level 16, changed to a system|signature permission, then later turned to a development permission. An application can request these permissions. On Android versions prior to 4.1, Android would grant this permission. In Android 4.1 and above, the permission request is silently ignored and an application can only see it's own data. AFAIK, WRITE_SECURE_SETTINGS has never been available to apps. To answer your questions: 1) Any permission request must be stated in an application's AndroidManifest.xml file. This includes development permissions such as READ_LOGS. Just because a permission is requested doesn't mean it will be granted. 2) These permission requests can show up in development apps, but are silently ignored. 3) The permissions are only granted if the device owner, via an adb shell command, runs "pm grant". Otherwise, development permissions are NEVER granted. 4) Once granted, "pm revoke" will revoke a developer permission. -- Nick On Thu, May 9, 2013 at 7:47 AM, Jeffrey Walton <[email protected]> wrote: > Hi All, > > I've been reading Nikolay Elenkov's blog on Android Code Signing > ( > http://nelenkov.blogspot.com/2013/05/code-signing-in-androids-security-model.html > ). > > The blog talks about developer permissions that are revocable at > runtime, such as READ_LOGS and WRITE_SECURE_SETTINGS. The permissions > are listed at > http://developer.android.com/reference/android/Manifest.permission.htm. > > A few questions: > > (1) How do we determine development permissions? The Manifest does not > denote them. > > (2) Should these permissions show up in production apps? > > (3) For the permissions to be in effect (i.e., the capability is > granted), does the phone have to be in development mode? > > (4) How do we revoke them? Is there an alternative to `adb pm revoke`? > Is there a GUI component? > > Some of these have been around for quite some time (API 1), but the > blog appears to indicate they are new. For example, > Manifest.permission.html states READ_LOGS has been available since API > 1. > > Is there any more reading on the subject? Google and Bing are > returning a lot of irrelevant fodder. > > (BTW, great article Nikolay). > > Jeff > > -- > You received this message because you are subscribed to the Google Groups > "Android Security Discussions" group. > To unsubscribe from this group and stop receiving emails from it, send an > email to [email protected]. > To post to this group, send email to > [email protected]. > Visit this group at > http://groups.google.com/group/android-security-discuss?hl=en. > For more options, visit https://groups.google.com/groups/opt_out. > > > -- Nick Kralevich | Android Security | [email protected] | 650.214.4037 -- You received this message because you are subscribed to the Google Groups "Android Security Discussions" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To post to this group, send email to [email protected]. Visit this group at http://groups.google.com/group/android-security-discuss?hl=en. For more options, visit https://groups.google.com/groups/opt_out.
