Shareduserid and signature Android permission

Java code

1. [2011-06-30 15:34:39-testlisteneraidl] installation error: install_parse_failed_bad_shared_user_id
2. [15:34:39-testlisteneraidl] Please check logcat output for more details.
3. [15:34:39-testlisteneraidl] Launch canceled!

[15:34:39-testlisteneraidl] installation error: Warn [15:34:39-testlisteneraidl] Please check logcat output for more details. [15:34:39-testlisteneraidl] Launch canceled!

Android: shareduserid = "AA" is incorrectly formatted! It should follow the standard! Actually, that's all you need!

If two apks have the same userid, they share the permission!

Each APK file installed on the device, and Android assigns a separate user space to each APK process, the USERID in its manifest is a Linux User that is assigned to a unified Linux User and creates a sandbox for it, to prevent impact on other applications (or other applications ). The User ID is assigned when the application is installed on the device and remains permanently on the device.

With the shared user ID, multiple APK with the same user ID can be configured to run in the same process. by default, the system can access any data from each other. you can also configure to run different processes and access the databases and files in the data directory of other APK files. just like accessing the data of this program.

For an APK, to use a shared uid, you must take three steps:

1. Add the Android: shareduserid attribute to the manifest node.

2. Add the local_certificate definition in Android. mk.

If the above attribute is added but the local_certificate corresponding to it is not defined, the APK cannot be installed. The error message is: Package com. Test. mytest has no signatures that match those in shared user Android. uid. system; ignoring! That is to say, only two application signatures with the same signature and the same shareduserid tag will be assigned the same user ID. For example, if all media/download related APK files use Android. Media as shareduserid, they must have the same signature media.

3. Put the APK source code under the packages/apps/directory and compile it with MM.

For example.

All android. UID. the system will first add Android: shareduserid = "android. UID. system ", and then in Android. add local_certificate: = platform to MK. For more information, see settings.

All android. UID. for shared uid APK, Android: shareduserid = "android. UID. shared ", and then in Android. add local_certificate: = shared in MK. For more information, see launcher.

All android. media will add Android: shareduserid = "android. media ", and then in Android. add local_certificate: = media to MK. See Gallery.

In addition, any file created by the application will be assigned the user ID of the application and cannot be accessed by other packages normally. When getsharedpreferences (string, INT), openfileoutput (string, INT), or openorcreate database (string, Int, sqlitedatabase. cursorfactory) when creating a new file, the developer can simultaneously or separately use the mode_world_readable and mode_world_riteable labels to allow other packages to read/write this file. After these flags are set, the file still belongs to its own application, but its global read/write and read/write permissions have been set, so any other application can see it.

Signature:

There are four default signatures in the build/target/product/security directory for Android. mk to compile the APK:

1. testkey: Common APK, which is used by default.

2. Platform: This APK completes some of the core functions of the system. After access to the existing folders in the system, the UID of the process in which the APK is compiled is system.

3. Shared: the APK needs to share data with the home/contacts process.

4. Media: This APK is a part of the Media/download system.

The android. mk of the application contains a local_certificate field, which specifies the key used for signature, and testkey is used by default if not specified.

For APK compiled using eclipse, you can use signapk. jar to manually sign the source code in build \ tools \ signapk, after compilation in out/host/linux-x86/framework/signapk. jar can also be downloaded from the Internet. Use platform as an example: Java-jar./signapk platform. x509.pem platform. pk8 input.apk output.apk (platform. x509.pem platform. pk8 is obtained at build/target/product/Security)