Pie clean top bar

See merge request !84

Android 9.0.0 release 60

* tag 'android-9.0.0_r60':
  Revert "Ignores protected broadcasts if not priv-app"
  Only autoVerify at install for new hosts
  DO NOT MERGE: Verify INSTALL_PACKAGES permissions when adding installer package
  Revert "Revoke 'always' web handler status when not autoverifying"

Change-Id: I8cebfba17f32226567c1a6fdf6c1b6bab395bb3c

Change-Id: I2ea43c78213b464e96eb01d5b9c6d665b0328196

Devices 2006 and 2007 are the left and right joycons, respectively.

Change-Id: I2f91ec8d4c4ebc91ce64bba1d287831cd093a216

The controller for Nintendo Switch is currently missing a key layout,
and the resulting codes are incorrect. Provide the appropriate map here.

Also, update some button mappings for the Xbox 360 controller.

Bug: 135136477
Test: Tested using "gamepad tester". CTS test will be added in a future
release. Tested using custom app.

Change-Id: I1ffcabdcc11aa83316c483ea49cb10fc85f6264f

The current keyboard shortcut for BACK is ctrl-alt-del, which
doesn't even work. Allowing ESC to act as BACK matches what some
vendors are already doing downstream.

Change-Id: I5df5dbedb84d364ac5a56cdf159f2ce9747e6ecc

pie give /e/ mail default permissions

See merge request !79

Change tasks app permission name from "org.dmfs" to "foundation.e"

See merge request !71

Merge tag 'android-9.0.0_r59' of https://android.googlesource.com/platform/frameworks/base into staging/lineage-16.0_merge-android-9.0.0_r59

Android 9.0.0 Release 59 (6559974)

* tag 'android-9.0.0_r59' of https://android.googlesource.com/platform/frameworks/base:
  DO NOT MERGE Make intents immutable
  More fixes towards the race conditions in AMS
  Add back enforceReadPermission for getmetadata
  RESTRICT AUTOMERGE
  DO NOT MERGE - Kill apps outright for API contract violations
  RESTRICT AUTOMERGE Prevent accessing companion records from arbitrary uids
  Verify all possible hosts that match web nav

Change-Id: I25dd0cdeac26ec449b920b7f28e14ab6d926a24b

This reverts commit d1a8aade.

The change was originally picked from aosp master. It is corrected much
more throughly by the backported fix in
I94d9de50bb03c33666471e3dbd9c721e9278f7cb

Change-Id: I4a149ce06d4e6275f7da266f6f85836c1a93f902

Partial backport of I770cf207c08ba0d36de6e3b6ab378e94498a02bd

Change-Id: I35abd3433d3e95e4d62671fe15a59cb6ddbb33d0

Revert of I5bd2bf3bd7c38fd9cc563a02b24bc569495d79ed

For now, allow all system apps to declare protected
broadcasts. This will be cleaned up in a future change.

Bug: 158570769

Merged-In: I54d236c0a6daaa934bd64a3bd05e2654e0e868fe
Change-Id: I54d236c0a6daaa934bd64a3bd05e2654e0e868fe
(cherry picked from commit b5e3addc5f27149d1b0bbc213ced47b2ade732bf)

Re-run app link verification at update time only when the set of hosts
has expanded.  Intentionally revoke verify history when an app stops
using autoVerify, as a one-time measure to place it back into the
non-autoverify model for tracking the user's launch preferences.  If the
app starts using autoVerify again later, it behaves identically to an
app that has never done so before.

Bug: 151475497
Bug: 146204120
Test: described on master CL

Merged-In: I200d85085ce79842a3ed39377d1f75ec381c8991
Change-Id: Ibaf087946966ad82d60c7b255e3ee75990716b63
(cherry picked from commit 3e76c30b7db2cb431e84a3e933c839fefe283c6d)

Without this check, any package can set the installer package of
another package whose installer has been removed or was never set.
This provides access to other privileged actions and is undesired.

Bug: 150857253

Test: manual verify with proof of concept in linked bug
Test: atest android.appsecurity.cts.PackageSetInstallerTest

Merged-In: I2159c357911ff39ffd819054b42f96ae86bc98bc
Change-Id: I2159c357911ff39ffd819054b42f96ae86bc98bc
(cherry picked from commit 8220483a)

This reverts commit ce22265e.

Reason for revert: Inadvertently broke link handling stickiness even for well behaved apps

Bug: 146204120
Test: install app that handles web urls; set to 'always' in Settings;
install same apk again.  Verify that app is still in 'always' state via
'adb shell dumpsys package d'

Merged-In: Ifac4f0c044c2c575a29bdd5ce5d14d12373fbe70
Merged-In: If9046cb420961b8ef0333e9f1115eb69fb92242e
Change-Id: Ife6cd66e0bae5738c08962a8fa9397973e33f28e
(cherry picked from commit 63b6cfd9)

Grant Default Permission to Calendar

See merge request !74

Grant Storage and contact to eDrive

See merge request !69

Test: make
Fixes: 154719656
Change-Id: I212ca5f1a48174ed85311b551259da314718f082
Merged-In: I212ca5f1a48174ed85311b551259da314718f082
(cherry picked from commit 36b33527)
(cherry picked from commit f596432f)

Bug: 142986887
Bug: 140108616
Test: Manual
Change-Id: I6e0bdc8c02bab54f6278096b3a3acadd97c064c6
Merged-In: I6e0bdc8c02bab54f6278096b3a3acadd97c064c6
(cherry picked from commit b2e84f04)
(cherry picked from commit 9f8923d5)

Test: manually tested
Bug: 151095863

Change-Id: I29ef120c10c488550b85269e598aeb6ff9505038
Merged-In: I4f04f08f76d039196c2c67bac80d4a46ebec87f2
(cherry picked from commit 71ec29b0)

This change is the union of
I2aaab1903dee54190338f7b6e49888aa51437108 and I58834636e092f992e403342e36b475dc60e8f20ai

Original CL descriptions:

*** I2aaab1903dee54190338f7b6e49888aa51437108
Block TYPE_PRESENTATION windows on default display

... and any other display that isn't considered a public presentation
display, as per Display.isPublicPresentation()

*** I58834636e092f992e403342e36b475dc60e8f20a
Use TYPE_PRIVATE_PRESENTATION for private presentations
Detect if the Presenation is targeting a private virtual display, and if they
are use the windowType TYPE_PRIVATE_PRESENTATION.
***

Bug: 141745510
Test: atest CtsWindowManagerDeviceTestCases:android.server.wm.PresentationTest CtsDisplayTestCases:android.display.cts.VirtualDisplayTest

Change-Id: I9f1c4b140ab4bc6183151aafc5501e8648fbc3fa
(cherry picked from commit d663d274)

...rather than relying on in-app code to perform the shutdown.

Backport of security fix.

Bug: 128649910
Bug: 140108616
Test: manual
Test: atest OsHostTests#testForegroundServiceBadNotification
Change-Id: I94d9de50bb03c33666471e3dbd9c721e9278f7cb
Merged-In: I94d9de50bb03c33666471e3dbd9c721e9278f7cb
(cherry picked from commit a79b6ba5)

[RELEASE] Sprint Lockdown

See merge request !66

Pie new user icons

See merge request !61

Change-Id: I560753b0bade38785987e43abdaf7b2cb35ccb74

Prevent accessing companion records from arbitrary uids

Test: manual
Fixes: 129476618
Change-Id: I7b18cfcdf58e62a445cbb508116c6ce7c1cea8d7
(cherry picked from commit 84cccfe6)

Merge tag 'android-9.0.0_r56' of https://android.googlesource.com/platform/frameworks/base into staging/lineage-16.0_merge-android-9.0.0_r56

Android 9.0.0 release 56

* tag 'android-9.0.0_r56' of https://android.googlesource.com/platform/frameworks/base:
  Verify all possible hosts that match web nav
  RESTRICT AUTOMERGE Prevent accessing companion records from arbitrary uids
  Revert "DO NOT MERGE - Kill apps outright for API contract violations"
  RESTRICT AUTOMERGE Use consistent calling uid and package in navigateUpTo
  RESTRICT AUTOMERGE Create separated tasks for different apps from startActivities
  DO NOT MERGE - Kill apps outright for API contract violations
  DO NOT MERGE Ensure package names read from config are system packages.
  RESTRICT AUTOMERGE Update keyguard locked state from TrustManagerService
  Only suspend package from system or shell

Change-Id: I678145bad18e8b34e462cde9f79f2952085f5e55