Licence check outside Android Permissions ?!?
Originally Posted by drgigaherz
Hi, i have a problem downloading af movie in sony video unlimited in germany. Purchase was fine via SEN. But as soon as i try to download it starts asking wether it should be internal og sd and after that it cancels telling me i'm not connected to the network. Sony is of no help at all.
Has somebody else had this problem? And maybe got a solution?
I was just about to post a new thread, but I think this could be closely connected:
Redeemed free movie offer from Xperia Lounge and went on to downlaod from Sony's "Videos" app. After selecting target SD card for the download, two things happened: Videos stated "License could not be verified" (and no download started). Afwall+ showed toast msg about a connection attempt from "1090 (null)".
It seems that the App tries to initiate an internet connection from an unnamed app/task instead of through a task that actually identifiesitself and has android os permission to access the internet. Thus, there's no app in afwall+s list that can be whitelisted (and, for reasons that elude me, no entry in the firewall log).
Sony chat support advised to "deinstall the firewall" (yeah, right
) and, even when explicitely asked how one could trust the phone's handling of private data when it tries to initiate an internet connection outside of the android os permission framework, stated they could not give support about the interactions between preinstalled and third-party apps. While I had hoped otherwise, that was to be expected and nothing I would hold against the poor first level support chatter, who probaly did not even grok why I thought anything was wrong
As expected, disabling afwall allowed the download to initiate. It seems that reenabling the FW once the download had started will allow to finish the download, but I cannot confirm that yet (as it apparently only resumes dling while the film actually watched?).
EDIT: I was wrong, the file was just too big for the progress bar to move at noticeable speed. dl at 50% with reenabled afwall...
So while the symptom can be remedied easily and with tractaly short compromizes to security, the implications are much worse: As afwall lists all apps that have requested internet permission, and this is not whitelistable, sony attempts to transfer data without even requesting android permission
. It's a pity that i cannot tell afwall to popup and ask on unknown connection attempts to "allow once" ... And without an app to be associated with the connection attempt, I doubt that Xprivacy could intercept it...