Precondition:
- Samsung Tablet SM-T595 with Android 10
- Tablet is enrolled in EMM (can be simulated with Test DPC)
Steps to reproduce the bug:
- Open an app within your private profile and take a screenshot (gets automatically saved to the clipboard).
- Open an app within your work profile and touch any EditText to give it focus.
Expected behaviour:
- The EditText should be focused with the keyboard coming up.
- The app should not crash.
Actual behaviour:
The app crashes with the following exception:
Uncaught exception thrown in the UI: java.lang.SecurityException: No access to content://com.sec.android.semclipboardprovider/images: neither user 1010241 nor current process has android.permission.INTERACT_ACROSS_USERS_FULL or android.permission.INTERACT_ACROSS_USERS
at android.os.Parcel.createException(Parcel.java:2088)
at android.os.Parcel.readException(Parcel.java:2056)
at android.os.Parcel.readException(Parcel.java:2004)
at android.sec.clipboard.IClipboardService$Stub$Proxy.getClipData(IClipboardService.java:959)
at com.samsung.android.content.clipboard.SemClipboardManager.getLatestClip(SemClipboardManager.java:609)
at android.widget.EditText.updateClipboardFilter(EditText.java:316)
at android.view.inputmethod.InputMethodManager.startInputInner(InputMethodManager.java:2131)
...
The SecurityException gets thrown when clipboard data is fetched in response to focusing the EditText. Focusing the EditText results in a call to updateClipboardFilter()
, which in turn fetches the data that is currently saved in the clipboard. This is probably done to show the correct options to the user when they want to paste something from the clipboard.
The problem seems to be that the clipboard data which has been saved to the clipboard from an app in the private profile is being accessed by an app in the work profile. Samsung’s clipboard service does not seem to properly handle exchanging clipboard data between users with different profile types.