Donate to e Foundation | Murena handsets with /e/OS | Own a part of Murena! Learn more

Commit 1bcb43fc authored by Phil Weaver's avatar Phil Weaver
Browse files

Remove outdated security note from A11yEvent 

The note that passwords are hidden from a11y services
has led to researchers demonstrating the many ways that
they can be scraped. Remove the security note so we aren't
making a promise that we can't keep.

Bug: 38004070
Test: Comment change only, so relying on TH
Change-Id: I257f282aba7542af7543b96eb09b4f898b1a3f06
parent da3dd7c0

core/java/android/view/accessibility/AccessibilityEvent.java

+0 −7
Original line number Diff line number Diff line
@@ -529,13 +529,6 @@ import java.util.List; 
 *   <li>{@link #isEnabled()} - Whether the source is enabled.</li>

 * </ul>

 * </p>

 * <p>

 * <b>Security note</b>

 * <p>

 * Since an event contains the text of its source privacy can be compromised by leaking

 * sensitive information such as passwords. To address this issue any event fired in response

 * to manipulation of a PASSWORD field does NOT CONTAIN the text of the password.

 * </p>

 *

 * @see android.view.accessibility.AccessibilityManager

 * @see android.accessibilityservice.AccessibilityService