CarbonROM
diff --git a/‎cmds/incidentd/src/IncidentService.cpp‎
Lines changed: 12 additions & 8 deletions b/‎cmds/incidentd/src/IncidentService.cpp‎
Lines changed: 12 additions & 8 deletions
diff --git a/‎core/java/android/app/IActivityTaskManager.aidl‎
Lines changed: 1 addition & 0 deletions b/‎core/java/android/app/IActivityTaskManager.aidl‎
Lines changed: 1 addition & 0 deletions
diff --git a/‎core/java/android/app/IUriGrantsManager.aidl‎
Lines changed: 3 additions & 0 deletions b/‎core/java/android/app/IUriGrantsManager.aidl‎
Lines changed: 3 additions & 0 deletions
diff --git a/‎core/java/android/app/Notification.java‎
Lines changed: 33 additions & 16 deletions b/‎core/java/android/app/Notification.java‎
Lines changed: 33 additions & 16 deletions
diff --git a/‎core/java/android/os/PersistableBundle.java‎
Lines changed: 34 additions & 8 deletions b/‎core/java/android/os/PersistableBundle.java‎
Lines changed: 34 additions & 8 deletions
diff --git a/‎core/java/com/android/internal/app/IAppOpsService.aidl‎
Lines changed: 2 additions & 2 deletions b/‎core/java/com/android/internal/app/IAppOpsService.aidl‎
Lines changed: 2 additions & 2 deletions
diff --git a/‎packages/SystemUI/src/com/android/systemui/keyguard/KeyguardViewMediator.java‎
Lines changed: 6 additions & 2 deletions b/‎packages/SystemUI/src/com/android/systemui/keyguard/KeyguardViewMediator.java‎
Lines changed: 6 additions & 2 deletions
diff --git a/‎packages/SystemUI/src/com/android/systemui/media/MediaDataManager.kt‎
Lines changed: 30 additions & 3 deletions b/‎packages/SystemUI/src/com/android/systemui/media/MediaDataManager.kt‎
Lines changed: 30 additions & 3 deletions
@@ -500,9 +500,13 @@ status_t IncidentService::onTransact(uint32_t code, const Parcel& data, Parcel*
 
     switch (code) {
         case SHELL_COMMAND_TRANSACTION: {
-            int in = data.readFileDescriptor();
-            int out = data.readFileDescriptor();
-            int err = data.readFileDescriptor();
+            unique_fd in, out, err;
+            if (status_t status = data.readUniqueFileDescriptor(&in); status != OK) return status;
+
+            if (status_t status = data.readUniqueFileDescriptor(&out); status != OK) return status;
+
+            if (status_t status = data.readUniqueFileDescriptor(&err); status != OK) return status;
+
             int argc = data.readInt32();
             Vector<String8> args;
             for (int i = 0; i < argc && data.dataAvail() > 0; i++) {
@@ -512,15 +516,15 @@ status_t IncidentService::onTransact(uint32_t code, const Parcel& data, Parcel*
             sp<IResultReceiver> resultReceiver =
                     IResultReceiver::asInterface(data.readStrongBinder());
 
-            FILE* fin = fdopen(in, "r");
-            FILE* fout = fdopen(out, "w");
-            FILE* ferr = fdopen(err, "w");
+            FILE* fin = fdopen(in.release(), "r");
+            FILE* fout = fdopen(out.release(), "w");
+            FILE* ferr = fdopen(err.release(), "w");
 
             if (fin == NULL || fout == NULL || ferr == NULL) {
                 resultReceiver->send(NO_MEMORY);
             } else {
-                err = command(fin, fout, ferr, args);
-                resultReceiver->send(err);
+                status_t result = command(fin, fout, ferr, args);
+                resultReceiver->send(result);
             }
 
             if (fin != NULL) {
 
@@ -239,6 +239,7 @@ interface IActivityTaskManager {
      *              {@link android.view.WindowManagerPolicyConstants#KEYGUARD_GOING_AWAY_FLAG_TO_SHADE}
      *              etc.
      */
+     @JavaPassthrough(annotation="@android.annotation.RequiresPermission(android.Manifest.permission.CONTROL_KEYGUARD)")
     void keyguardGoingAway(int flags);
 
     void suppressResizeConfigChanges(boolean suppress);
 
@@ -39,4 +39,7 @@ interface IUriGrantsManager {
     void clearGrantedUriPermissions(in String packageName, int userId);
     ParceledListSlice getUriPermissions(in String packageName, boolean incoming,
             boolean persistedOnly);
+
+    int checkGrantUriPermission_ignoreNonSystem(
+            int sourceUid, String targetPkg, in Uri uri, int modeFlags, int userId);
 }
@@ -2138,6 +2138,10 @@ public Action build() {
             }
         }
 
+        private void visitUris(@NonNull Consumer<Uri> visitor) {
+            visitIconUri(visitor, getIcon());
+        }
+
         @Override
         public Action clone() {
             return new Action(
@@ -2823,7 +2827,7 @@ public void visitUris(@NonNull Consumer<Uri> visitor) {
 
         if (actions != null) {
             for (Action action : actions) {
-                visitIconUri(visitor, action.getIcon());
+                action.visitUris(visitor);
             }
         }
 
@@ -2846,18 +2850,14 @@ public void visitUris(@NonNull Consumer<Uri> visitor) {
                 visitor.accept(Uri.parse(extras.getString(EXTRA_BACKGROUND_IMAGE_URI)));
             }
 
-            ArrayList<Person> people = extras.getParcelableArrayList(EXTRA_PEOPLE_LIST);
+            ArrayList<Person> people = extras.getParcelableArrayList(EXTRA_PEOPLE_LIST,
+                    Person.class);
             if (people != null && !people.isEmpty()) {
                 for (Person p : people) {
                     visitor.accept(p.getIconUri());
                 }
             }
 
-            final Person person = extras.getParcelable(EXTRA_MESSAGING_PERSON, Person.class);
-            if (person != null) {
-                visitor.accept(person.getIconUri());
-            }
-
             final RemoteInputHistoryItem[] history = extras.getParcelableArray(
                     Notification.EXTRA_REMOTE_INPUT_HISTORY_ITEMS,
                     RemoteInputHistoryItem.class);
@@ -2869,10 +2869,16 @@ public void visitUris(@NonNull Consumer<Uri> visitor) {
                     }
                 }
             }
-        }
 
-        if (isStyle(MessagingStyle.class) && extras != null) {
-            final Parcelable[] messages = extras.getParcelableArray(EXTRA_MESSAGES);
+            // Extras for MessagingStyle. We visit them even if not isStyle(MessagingStyle), since
+            // Notification Listeners might use directly (without the isStyle check).
+            final Person person = extras.getParcelable(EXTRA_MESSAGING_PERSON, Person.class);
+            if (person != null) {
+                visitor.accept(person.getIconUri());
+            }
+
+            final Parcelable[] messages = extras.getParcelableArray(EXTRA_MESSAGES,
+                    Parcelable.class);
             if (!ArrayUtils.isEmpty(messages)) {
                 for (MessagingStyle.Message message : MessagingStyle.Message
                         .getMessagesFromBundleArray(messages)) {
@@ -2885,7 +2891,8 @@ public void visitUris(@NonNull Consumer<Uri> visitor) {
                 }
             }
 
-            final Parcelable[] historic = extras.getParcelableArray(EXTRA_HISTORIC_MESSAGES);
+            final Parcelable[] historic = extras.getParcelableArray(EXTRA_HISTORIC_MESSAGES,
+                    Parcelable.class);
             if (!ArrayUtils.isEmpty(historic)) {
                 for (MessagingStyle.Message message : MessagingStyle.Message
                         .getMessagesFromBundleArray(historic)) {
@@ -2898,20 +2905,24 @@ public void visitUris(@NonNull Consumer<Uri> visitor) {
                 }
             }
 
-            visitIconUri(visitor, extras.getParcelable(EXTRA_CONVERSATION_ICON));
-        }
+            visitIconUri(visitor, extras.getParcelable(EXTRA_CONVERSATION_ICON, Icon.class));
 
-        if (isStyle(CallStyle.class) & extras != null) {
-            Person callPerson = extras.getParcelable(EXTRA_CALL_PERSON);
+            // Extras for CallStyle (same reason for visiting without checking isStyle).
+            Person callPerson = extras.getParcelable(EXTRA_CALL_PERSON, Person.class);
             if (callPerson != null) {
                 visitor.accept(callPerson.getIconUri());
             }
-            visitIconUri(visitor, extras.getParcelable(EXTRA_VERIFICATION_ICON));
+            visitIconUri(visitor, extras.getParcelable(EXTRA_VERIFICATION_ICON, Icon.class));
         }
 
         if (mBubbleMetadata != null) {
             visitIconUri(visitor, mBubbleMetadata.getIcon());
         }
+
+        if (extras != null && extras.containsKey(WearableExtender.EXTRA_WEARABLE_EXTENSIONS)) {
+            WearableExtender extender = new WearableExtender(this);
+            extender.visitUris(visitor);
+        }
     }
 
     /**
@@ -11597,6 +11608,12 @@ private void setFlag(int mask, boolean value) {
                 mFlags &= ~mask;
             }
         }
+
+        private void visitUris(@NonNull Consumer<Uri> visitor) {
+            for (Action action : mActions) {
+                action.visitUris(visitor);
+            }
+        }
     }
 
     /**
 
@@ -21,6 +21,7 @@
 import android.annotation.NonNull;
 import android.annotation.Nullable;
 import android.util.ArrayMap;
+import android.util.Slog;
 import android.util.TypedXmlPullParser;
 import android.util.TypedXmlSerializer;
 import android.util.Xml;
@@ -50,6 +51,8 @@
  */
 public final class PersistableBundle extends BaseBundle implements Cloneable, Parcelable,
         XmlUtils.WriteMapCallback {
+    private static final String TAG = "PersistableBundle";
+
     private static final String TAG_PERSISTABLEMAP = "pbundle_as_map";
 
     /** An unmodifiable {@code PersistableBundle} that is always {@link #isEmpty() empty}. */
@@ -118,7 +121,11 @@ public PersistableBundle(PersistableBundle b) {
      * @hide
      */
     public PersistableBundle(Bundle b) {
-        this(b.getItemwiseMap());
+        this(b, true);
+    }
+
+    private PersistableBundle(Bundle b, boolean throwException) {
+        this(b.getItemwiseMap(), throwException);
     }
 
     /**
@@ -127,7 +134,7 @@ public PersistableBundle(Bundle b) {
      * @param map a Map containing only those items that can be persisted.
      * @throws IllegalArgumentException if any element of #map cannot be persisted.
      */
-    private PersistableBundle(ArrayMap<String, Object> map) {
+    private PersistableBundle(ArrayMap<String, Object> map, boolean throwException) {
         super();
         mFlags = FLAG_DEFUSABLE;
 
@@ -136,16 +143,23 @@ private PersistableBundle(ArrayMap<String, Object> map) {
 
         // Now verify each item throwing an exception if there is a violation.
         final int N = mMap.size();
-        for (int i=0; i<N; i++) {
+        for (int i = N - 1; i >= 0; --i) {
             Object value = mMap.valueAt(i);
             if (value instanceof ArrayMap) {
                 // Fix up any Maps by replacing them with PersistableBundles.
-                mMap.setValueAt(i, new PersistableBundle((ArrayMap<String, Object>) value));
+                mMap.setValueAt(i,
+                        new PersistableBundle((ArrayMap<String, Object>) value, throwException));
             } else if (value instanceof Bundle) {
-                mMap.setValueAt(i, new PersistableBundle(((Bundle) value)));
+                mMap.setValueAt(i, new PersistableBundle((Bundle) value, throwException));
             } else if (!isValidType(value)) {
-                throw new IllegalArgumentException("Bad value in PersistableBundle key="
-                        + mMap.keyAt(i) + " value=" + value);
+                final String errorMsg = "Bad value in PersistableBundle key="
+                        + mMap.keyAt(i) + " value=" + value;
+                if (throwException) {
+                    throw new IllegalArgumentException(errorMsg);
+                } else {
+                    Slog.wtfStack(TAG, errorMsg);
+                    mMap.removeAt(i);
+                }
             }
         }
     }
@@ -268,6 +282,15 @@ public void saveToXml(XmlSerializer out) throws IOException, XmlPullParserExcept
     /** @hide */
     public void saveToXml(TypedXmlSerializer out) throws IOException, XmlPullParserException {
         unparcel();
+        // Explicitly drop invalid types an attacker may have added before persisting.
+        for (int i = mMap.size() - 1; i >= 0; --i) {
+            final Object value = mMap.valueAt(i);
+            if (!isValidType(value)) {
+                Slog.e(TAG, "Dropping bad data before persisting: "
+                        + mMap.keyAt(i) + "=" + value);
+                mMap.removeAt(i);
+            }
+        }
         XmlUtils.writeMapXml(mMap, out, this);
     }
 
@@ -322,9 +345,12 @@ public static PersistableBundle restoreFromXml(TypedXmlPullParser in) throws IOE
         while (((event = in.next()) != XmlPullParser.END_DOCUMENT) &&
                 (event != XmlPullParser.END_TAG || in.getDepth() < outerDepth)) {
             if (event == XmlPullParser.START_TAG) {
+                // Don't throw an exception when restoring from XML since an attacker could try to
+                // input invalid data in the persisted file.
                 return new PersistableBundle((ArrayMap<String, Object>)
                         XmlUtils.readThisArrayMapXml(in, startTag, tagName,
-                        new MyReadMapCallback()));
+                        new MyReadMapCallback()),
+                        /* throwException */ false);
             }
         }
         return new PersistableBundle();  // An empty mutable PersistableBundle
 
@@ -52,6 +52,8 @@ interface IAppOpsService {
     int checkAudioOperation(int code, int usage, int uid, String packageName);
     boolean shouldCollectNotes(int opCode);
     void setCameraAudioRestriction(int mode);
+    void startWatchingModeWithFlags(int op, String packageName, int flags,
+            IAppOpsCallback callback);
     // End of methods also called by native code.
     // Any new method exposed to native must be added after the last one, do not reorder
 
@@ -110,8 +112,6 @@ interface IAppOpsService {
     void startWatchingStarted(in int[] ops, IAppOpsStartedCallback callback);
     void stopWatchingStarted(IAppOpsStartedCallback callback);
 
-    void startWatchingModeWithFlags(int op, String packageName, int flags, IAppOpsCallback callback);
-
     void startWatchingNoted(in int[] ops, IAppOpsNotedCallback callback);
     void stopWatchingNoted(IAppOpsNotedCallback callback);
 
 
@@ -1557,6 +1557,10 @@ public void setKeyguardEnabled(boolean enabled) {
             mExternallyEnabled = enabled;
 
             if (!enabled && mShowing) {
+                if (mLockPatternUtils.isUserInLockdown(KeyguardUpdateMonitor.getCurrentUser())) {
+                    Log.d(TAG, "keyguardEnabled(false) overridden by user lockdown");
+                    return;
+                }
                 if (mExitSecureCallback != null) {
                     if (DEBUG) Log.d(TAG, "in process of verifyUnlock request, ignoring");
                     // we're in the process of handling a request to verify the user
@@ -1782,9 +1786,9 @@ private void doKeyguardLocked(Bundle options) {
             return;
         }
 
-        // if another app is disabling us, don't show
+        // if another app is disabling us, don't show unless we're in lockdown mode
         if (!mExternallyEnabled
-            && !mLockPatternUtils.isUserInLockdown(KeyguardUpdateMonitor.getCurrentUser())) {
+                && !mLockPatternUtils.isUserInLockdown(KeyguardUpdateMonitor.getCurrentUser())) {
             if (DEBUG) Log.d(TAG, "doKeyguard: not showing because externally disabled");
 
             mNeedToReshowWhenReenabled = true;
 
@@ -18,11 +18,13 @@ package com.android.systemui.media
 
 import android.app.Notification
 import android.app.PendingIntent
+import android.app.UriGrantsManager
 import android.app.smartspace.SmartspaceConfig
 import android.app.smartspace.SmartspaceManager
 import android.app.smartspace.SmartspaceSession
 import android.app.smartspace.SmartspaceTarget
 import android.content.BroadcastReceiver
+import android.content.ContentProvider
 import android.content.ContentResolver
 import android.content.Context
 import android.content.Intent
@@ -592,20 +594,21 @@ class MediaDataManager(
             Log.d(TAG, "adding track for $userId from browser: $desc")
         }
 
+        val currentEntry = mediaEntries.get(packageName)
+        val appUid = currentEntry?.appUid ?: Process.INVALID_UID
+
         // Album art
         var artworkBitmap = desc.iconBitmap
         if (artworkBitmap == null && desc.iconUri != null) {
-            artworkBitmap = loadBitmapFromUri(desc.iconUri!!)
+            artworkBitmap = loadBitmapFromUriForUser(desc.iconUri!!, userId, appUid, packageName)
         }
         val artworkIcon = if (artworkBitmap != null) {
             Icon.createWithBitmap(artworkBitmap)
         } else {
             null
         }
 
-        val currentEntry = mediaEntries.get(packageName)
         val instanceId = currentEntry?.instanceId ?: logger.getNewInstanceId()
-        val appUid = currentEntry?.appUid ?: Process.INVALID_UID
 
         val mediaAction = getResumeMediaAction(resumeAction)
         val lastActive = systemClock.elapsedRealtime()
@@ -1000,6 +1003,30 @@ class MediaDataManager(
             false
         }
     }
+
+    /** Returns a bitmap if the user can access the given URI, else null */
+    private fun loadBitmapFromUriForUser(
+        uri: Uri,
+        userId: Int,
+        appUid: Int,
+        packageName: String,
+    ): Bitmap? {
+        try {
+            val ugm = UriGrantsManager.getService()
+            ugm.checkGrantUriPermission_ignoreNonSystem(
+                appUid,
+                packageName,
+                ContentProvider.getUriWithoutUserId(uri),
+                Intent.FLAG_GRANT_READ_URI_PERMISSION,
+                ContentProvider.getUserIdFromUri(uri, userId)
+            )
+            return loadBitmapFromUri(uri)
+        } catch (e: SecurityException) {
+            Log.e(TAG, "Failed to get URI permission: $e")
+        }
+        return null
+    }
+
     /**
      * Load a bitmap from a URI
      * @param uri the uri to load
Original file line number	Diff line number	Diff line change
`@@ -39,4 +39,7 @@ interface IUriGrantsManager {`
`39`	`39`	`void clearGrantedUriPermissions(in String packageName, int userId);`
`40`	`40`	`ParceledListSlice getUriPermissions(in String packageName, boolean incoming,`
`41`	`41`	`boolean persistedOnly);`
	`42`	`+`
	`43`	`+ int checkGrantUriPermission_ignoreNonSystem(`
	`44`	`+ int sourceUid, String targetPkg, in Uri uri, int modeFlags, int userId);`
`42`	`45`	`}`
Original file line number	Diff line number	Diff line change
`@@ -2138,6 +2138,10 @@ public Action build() {`
`2138`	`2138`	`}`
`2139`	`2139`	`}`
`2140`	`2140`
	`2141`	`+ private void visitUris(@NonNull Consumer<Uri> visitor) {`
	`2142`	`+ visitIconUri(visitor, getIcon());`
	`2143`	`+ }`
	`2144`	`+`
`2141`	`2145`	`@Override`
`2142`	`2146`	`public Action clone() {`
`2143`	`2147`	`return new Action(`
`@@ -2823,7 +2827,7 @@ public void visitUris(@NonNull Consumer<Uri> visitor) {`
`2823`	`2827`
`2824`	`2828`	`if (actions != null) {`
`2825`	`2829`	`for (Action action : actions) {`
`2826`		`- visitIconUri(visitor, action.getIcon());`
	`2830`	`+ action.visitUris(visitor);`
`2827`	`2831`	`}`
`2828`	`2832`	`}`
`2829`	`2833`
`@@ -2846,18 +2850,14 @@ public void visitUris(@NonNull Consumer<Uri> visitor) {`
`2846`	`2850`	`visitor.accept(Uri.parse(extras.getString(EXTRA_BACKGROUND_IMAGE_URI)));`
`2847`	`2851`	`}`
`2848`	`2852`
`2849`		`- ArrayList<Person> people = extras.getParcelableArrayList(EXTRA_PEOPLE_LIST);`
	`2853`	`+ ArrayList<Person> people = extras.getParcelableArrayList(EXTRA_PEOPLE_LIST,`
	`2854`	`+ Person.class);`
`2850`	`2855`	`if (people != null && !people.isEmpty()) {`
`2851`	`2856`	`for (Person p : people) {`
`2852`	`2857`	`visitor.accept(p.getIconUri());`
`2853`	`2858`	`}`
`2854`	`2859`	`}`
`2855`	`2860`
`2856`		`- final Person person = extras.getParcelable(EXTRA_MESSAGING_PERSON, Person.class);`
`2857`		`- if (person != null) {`
`2858`		`- visitor.accept(person.getIconUri());`
`2859`		`- }`
`2860`		`-`
`2861`	`2861`	`final RemoteInputHistoryItem[] history = extras.getParcelableArray(`
`2862`	`2862`	`Notification.EXTRA_REMOTE_INPUT_HISTORY_ITEMS,`
`2863`	`2863`	`RemoteInputHistoryItem.class);`
`@@ -2869,10 +2869,16 @@ public void visitUris(@NonNull Consumer<Uri> visitor) {`
`2869`	`2869`	`}`
`2870`	`2870`	`}`
`2871`	`2871`	`}`
`2872`		`- }`
`2873`	`2872`
`2874`		`- if (isStyle(MessagingStyle.class) && extras != null) {`
`2875`		`- final Parcelable[] messages = extras.getParcelableArray(EXTRA_MESSAGES);`
	`2873`	`+ // Extras for MessagingStyle. We visit them even if not isStyle(MessagingStyle), since`
	`2874`	`+ // Notification Listeners might use directly (without the isStyle check).`
	`2875`	`+ final Person person = extras.getParcelable(EXTRA_MESSAGING_PERSON, Person.class);`
	`2876`	`+ if (person != null) {`
	`2877`	`+ visitor.accept(person.getIconUri());`
	`2878`	`+ }`
	`2879`	`+`
	`2880`	`+ final Parcelable[] messages = extras.getParcelableArray(EXTRA_MESSAGES,`
	`2881`	`+ Parcelable.class);`
`2876`	`2882`	`if (!ArrayUtils.isEmpty(messages)) {`
`2877`	`2883`	`for (MessagingStyle.Message message : MessagingStyle.Message`
`2878`	`2884`	`.getMessagesFromBundleArray(messages)) {`
`@@ -2885,7 +2891,8 @@ public void visitUris(@NonNull Consumer<Uri> visitor) {`
`2885`	`2891`	`}`
`2886`	`2892`	`}`
`2887`	`2893`
`2888`		`- final Parcelable[] historic = extras.getParcelableArray(EXTRA_HISTORIC_MESSAGES);`
	`2894`	`+ final Parcelable[] historic = extras.getParcelableArray(EXTRA_HISTORIC_MESSAGES,`
	`2895`	`+ Parcelable.class);`
`2889`	`2896`	`if (!ArrayUtils.isEmpty(historic)) {`
`2890`	`2897`	`for (MessagingStyle.Message message : MessagingStyle.Message`
`2891`	`2898`	`.getMessagesFromBundleArray(historic)) {`
`@@ -2898,20 +2905,24 @@ public void visitUris(@NonNull Consumer<Uri> visitor) {`
`2898`	`2905`	`}`
`2899`	`2906`	`}`
`2900`	`2907`
`2901`		`- visitIconUri(visitor, extras.getParcelable(EXTRA_CONVERSATION_ICON));`
`2902`		`- }`
	`2908`	`+ visitIconUri(visitor, extras.getParcelable(EXTRA_CONVERSATION_ICON, Icon.class));`
`2903`	`2909`
`2904`		`- if (isStyle(CallStyle.class) & extras != null) {`
`2905`		`- Person callPerson = extras.getParcelable(EXTRA_CALL_PERSON);`
	`2910`	`+ // Extras for CallStyle (same reason for visiting without checking isStyle).`
	`2911`	`+ Person callPerson = extras.getParcelable(EXTRA_CALL_PERSON, Person.class);`
`2906`	`2912`	`if (callPerson != null) {`
`2907`	`2913`	`visitor.accept(callPerson.getIconUri());`
`2908`	`2914`	`}`
`2909`		`- visitIconUri(visitor, extras.getParcelable(EXTRA_VERIFICATION_ICON));`
	`2915`	`+ visitIconUri(visitor, extras.getParcelable(EXTRA_VERIFICATION_ICON, Icon.class));`
`2910`	`2916`	`}`
`2911`	`2917`
`2912`	`2918`	`if (mBubbleMetadata != null) {`
`2913`	`2919`	`visitIconUri(visitor, mBubbleMetadata.getIcon());`
`2914`	`2920`	`}`
	`2921`	`+`
	`2922`	`+ if (extras != null && extras.containsKey(WearableExtender.EXTRA_WEARABLE_EXTENSIONS)) {`
	`2923`	`+ WearableExtender extender = new WearableExtender(this);`
	`2924`	`+ extender.visitUris(visitor);`
	`2925`	`+ }`
`2915`	`2926`	`}`
`2916`	`2927`
`2917`	`2928`	`/**`
`@@ -11597,6 +11608,12 @@ private void setFlag(int mask, boolean value) {`
`11597`	`11608`	`mFlags &= ~mask;`
`11598`	`11609`	`}`
`11599`	`11610`	`}`
	`11611`	`+`
	`11612`	`+ private void visitUris(@NonNull Consumer<Uri> visitor) {`
	`11613`	`+ for (Action action : mActions) {`
	`11614`	`+ action.visitUris(visitor);`
	`11615`	`+ }`
	`11616`	`+ }`
`11600`	`11617`	`}`
`11601`	`11618`
`11602`	`11619`	`/**`