This project is mirrored from https://github.com/LineageOS/android_frameworks_base.git. Updated .
  1. 16 Aug, 2018 1 commit
  2. 13 Aug, 2018 1 commit
  3. 10 Aug, 2018 1 commit
    • Kevin F. Haggerty's avatar
      Merge tag 'android-8.1.0_r43' into staging/lineage-15.1_merge-android-8.1.0_r43 · 7e2dc21a
      Kevin F. Haggerty authored
      Android 8.1.0 release 43
      
      * tag 'android-8.1.0_r43': (24 commits)
        Fix DynamicRefTable::load security bug
        ResStringPool: Prevenet boot loop from se fix
        Make safe label more safe
        WM: Prevent secondary display focus while keyguard is up
        DO NOT MERGE: Add unit tests to ensure VPN meteredness
        DO NOT MERGE: Fix ConnectivityController meteredness checks
        clearCallingIdentity before calling into getPackageUidAsUser
        Nullcheck to fix Autofill CTS
        Osu: fixed Mismatch between createFromParcel and writeToParcel
        DO NOT MERGE Truncate newline and tab characters in BluetoothDevice name
        Fix broken check for TelephonyManager#getForbiddenPlmns
        DO NOT MERGE (O) Revoke permision when group changed
        ResStringPool: Fix security vulnerability
        RESTRICT AUTOMERGE: Prevent reporting fake package name - framework (backport to oc-mr1-dev)
        Use concrete CREATOR instance for parceling lists
        Rework thumbnail cleanup
        DO NOT MERGE - fix AFM.getComponentNameFromContext()
        Proper autofill fix to let phone process autofill Settings activity.
        Make sure apps cannot forge package name on AssistStructure used for Autofill.
        Fixed Security Vulnerability of DcParamObject
        ...
      
      Change-Id: I37be2836181595f928721968cb7ffa2df312eff1
      7e2dc21a
  4. 08 Aug, 2018 1 commit
  5. 06 Aug, 2018 1 commit
  6. 05 Aug, 2018 1 commit
  7. 02 Aug, 2018 1 commit
    • Rashed Abdel-Tawab's avatar
      camera: Check if aux camera whitelist is set before restricting cameras · 40c1fa96
      Rashed Abdel-Tawab authored
      Some devices have a fully featured 3rd camera and adding 20+ camera apps
      to the whitelist is impossible due to the string length limit on
      systemprops. Add a check to see if the prop is even set, and if not,
      check if the blacklist property is set and mark those apps to hide the
      3rd camera from. If a package is not part of the blacklist, just restore
      the original behaviour and expose all the cameras to the app.
      
      Change-Id: I6c3b33c077e8710c73b5d0fa28e1b017d6c43a58
      40c1fa96
  8. 01 Aug, 2018 1 commit
    • Luca Stefani's avatar
      fw/b lights: Allow black notification color · 415e8de0
      Luca Stefani authored
      * Color 0 is used to mean "lineage-sdk should pick a default"
      
      * Explictly requesting black made the led blue (eg lineageparts light picker), fix that
      
      Change-Id: Ia03f898c1b6cd0f77af8bb155139b587664f47af
      415e8de0
  9. 29 Jul, 2018 1 commit
  10. 26 Jul, 2018 4 commits
  11. 20 Jul, 2018 20 commits
    • android-build-team Robot's avatar
      Merge cherrypicks of [4586293, 4586294, 4586295, 4584365, 4584366, 4584367,... · 9522ef33
      android-build-team Robot authored
      Merge cherrypicks of [4586293, 4586294, 4586295, 4584365, 4584366, 4584367, 4584368, 4584369, 4584370, 4587544, 4584705, 4586296, 4587545, 4587546, 4586297, 4586298, 4586299, 4586300, 4584371, 4586301, 4584706, 4586302, 4586303, 4587584, 4587585, 4587586, 4587587, 4587588, 4587589, 4587590, 4587591, 4587644, 4587645, 4587646, 4587647, 4587648, 4587649, 4587650, 4587651, 4587652, 4587653, 4587654, 4587655, 4587656, 4587657, 4587658, 4587659, 4587660, 4587661, 4587662, 4584536, 4587547, 4587548, 4587549, 4584707, 4584708, 4587550, 4587551, 4587593, 4586516, 4584372, 4584373, 4584374, 4587595, 4584375, 4584376, 4587552, 4587596, 4587597, 4587598, 4587599, 4584414, 4584415, 4584416, 4584417, 4584418, 4584419, 4584420, 4584421, 4584422, 4584423, 4587804, 4587805, 4587806, 4587807, 4587808, 4587809, 4587810, 4587811, 4587812, 4587813, 4587814, 4587815, 4587816, 4587817, 4587818, 4587884, 4587885, 4587600, 4587601, 4587819, 4584709] into sparse-4749909-L91900000192339903
      
      Change-Id: I05ab6ec1384517154dff3078335d3c787a523f3d
      9522ef33
    • Ryan Mitchell's avatar
      Fix DynamicRefTable::load security bug · 3c0f405f
      Ryan Mitchell authored
      DynamicRefTables parsed from apks are missing bounds checks that prevent
      buffer overflows. This changes verifies the bounds of the header before
      attempting to preform operations on the chunk.
      
      Bug: 79488511
      Test: run cts -m CtsAppSecurityHostTestCases \
              -t android.appsecurity.cts.CorruptApkTests
      
      Change-Id: I02c8ad957da244fce777ac68a482e4e8fa70f846
      Merged-In: I02c8ad957da244fce777ac68a482e4e8fa70f846
      (cherry picked from commit 18a6ada4)
      3c0f405f
    • Ryan Mitchell's avatar
      ResStringPool: Prevenet boot loop from se fix · 8f639585
      Ryan Mitchell authored
      Changes the logs adding in a previous security fix to warnings so
      devices with malformed APKs currently on them will not undergo DOS when
      they are upgraded to P.
      
      Bug: 79724567
      Test: run cts -m CtsAppSecurityHostTestCases \
                -t android.appsecurity.cts.CorruptApkTests
      
      Change-Id: Ied54e4bb14abdaf79da562022c7ea6075187c1f8
      (cherry picked from commit f05f47b2)
      (cherry picked from commit c31cf800)
      8f639585
    • Todd Kennedy's avatar
      Make safe label more safe · b3d874c9
      Todd Kennedy authored
      * limit the absolute maximum size of the label to 50000 characters
      [which is probably far more than necessary, but, can be dialed down]
      
      * use a string buffer while processing the string [instead of creating
      multiple string objects]
      
      Bug: 62537081
      Test: Manual. Install APK in bug and see that it can be uninstalled
      Change-Id: Ibf63c2691ad7438a123e92110d95b1f50050f8b1
      Merged-In: Ibf63c2691ad7438a123e92110d95b1f50050f8b1
      (cherry picked from commit 2263da95)
      b3d874c9
    • Adrian Roos's avatar
      WM: Prevent secondary display focus while keyguard is up · 196e5cf2
      Adrian Roos authored
      Fixes an issue where input intended for the keyguard could end up going
      to a different display.
      
      To prevent this, make sure that only the default display can get focused
      when the keyguard is showing.
      
      Change-Id: I6463c44aedca06930d2c9bda7c45ffd93141308c
      Merged-In: I6463c44aedca06930d2c9bda7c45ffd93141308c
      Fixes: 71786287
      Test: atest DisplayContentTests
      (cherry picked from commit 3cd5e3d9)
      196e5cf2
    • Benedict Wong's avatar
      DO NOT MERGE: Add unit tests to ensure VPN meteredness · b4c5afe8
      Benedict Wong authored
      These new tests ensure that VPNs report the meteredness of their
      underlying networks correctly. The added test verifies VPN meteredness
      for cases of metered and unmetered WiFi and Cell
      
      Bug: 78644887
      Test: This; ran on walleye-eng
      Change-Id: I28bdc71a336bfd97f7908455d4781d774df44b87
      (cherry picked from commit 66bc5288)
      b4c5afe8
    • Benedict Wong's avatar
      DO NOT MERGE: Fix ConnectivityController meteredness checks · dcdeaf8b
      Benedict Wong authored
      This patch corrects ConnectivityController's meteredness checks to
      perform correct meteredness checks while VPNs are running. This fixes a
      bug in O-MR1 where any apps using the DownloadProvider with unmetered
      network constraints fail to start while the VPN is enabled.
      
      This change adds a bespoke method for ConnectivityController, allowing
      it to correctly identify the meteredness without affecting public API
      surfaces.
      
      Bug: 78644887
      Test: Built, flashed on Walleye, and tested.
      Test: Additional test coverage in subsequent patch(es).
      Change-Id: Ie1d11d93d51d936ce81cd5984af61bde30325983
      (cherry picked from commit d08ab5a6)
      dcdeaf8b
    • Tony Mak's avatar
      clearCallingIdentity before calling into getPackageUidAsUser · f10472c4
      Tony Mak authored
      Fix: 70585244
      Bug: 69981755
      
      Test: Enable any accessibility service -> inflate work profile
            -> Tap on any work app -> no longer crash
      
      Test: cts-tradefed run cts-dev --module DevicePolicyManager --test com.android.cts.devicepolicy.CrossProfileAppsHostSideTest.testPrimaryUserToManagedProfile
      Change-Id: I80d18f4e2ab76a228cb0aa2c8312c323a9b5c84d
      (cherry picked from commit 857326e3)
      f10472c4
    • Eugene Susla's avatar
      Nullcheck to fix Autofill CTS · 65e567a3
      Eugene Susla authored
      Test: presubmit
      Fixes: 70506475
      Bug: 69981755
      Change-Id: I187bed4889a4901a7137a2995178ea651ed09186
      (cherry picked from commit 6c68a692)
      65e567a3
    • Ecco Park's avatar
      Osu: fixed Mismatch between createFromParcel and writeToParcel · c4592694
      Ecco Park authored
      Bug: 77600924
      Change-Id: I46d765892e8e6839ed5140a3b0d6bb1815ccf9bc
      Signed-off-by: 's avatarEcco Park <eccopark@google.com>
      (cherry picked from commit 9a59cf84)
      c4592694
    • Hansong Zhang's avatar
      DO NOT MERGE Truncate newline and tab characters in BluetoothDevice name · d60d1869
      Hansong Zhang authored
      Test: manual
      Bug: 73173182
      Change-Id: I7f2201cab36adf7f01d1a794d783cb78a536811f
      (cherry picked from commit 24da173b)
      d60d1869
    • sqian's avatar
      Fix broken check for TelephonyManager#getForbiddenPlmns · e1c5b945
      sqian authored
      (backport from a fix merged in pi-dev)
      
      Bug: 73884967
      Test: Treehugger
      Change-Id: I9deaae20893184cde36dcd936fe83708fa60b830
      Merged-In: I0cf7920e138892fbcab71fae0eed1293f0b2e404
      Merged-In: I9e3456e5f1e479b0e2b102f6c90db57cd0e977fe
      (cherry picked from commit 7b52a48d)
      e1c5b945
    • Philip P. Moltmann's avatar
      DO NOT MERGE (O) Revoke permision when group changed · 0c9517a6
      Philip P. Moltmann authored
      If a run time permission of a group is already granted we grant the
      other permission of the group automatically when requested.
      
      Hence if an already granted permission changed its group during an
      update suddenly permission of a potentially not approved group will
      get auto-granted.
      
      This is undesirable, hence we revoke the permission during the update
      process.
      
      Test: atest android.permission.cts.PermissionGroupChange
      Change-Id: Ib2165d1ae53b80455ebe02e07775853e37a2e339
      Fixes: 72710897
      (cherry picked from commit 0ed1b472)
      0c9517a6
    • y's avatar
      ResStringPool: Fix security vulnerability · 458134f7
      y authored
      Adds detection of attacker-modified size and data fields passed to
      ResStringPool::setTo(). These attacks are modified apks that AAPT would
      not normally generate. In the rare case this occurs, the installation
      cannot be allowed to continue.
      
      Bug: 71361168
      Bug: 71360999
      Test: run cts -m CtsAppSecurityHostTestCases \
                -t android.appsecurity.cts.CorruptApkTests
      
      Change-Id: If7eb93a9e723b16c8a0556fc4e20006aa0391d57
      Merged-In: If7eb93a9e723b16c8a0556fc4e20006aa0391d57
      (cherry picked from commit 7e54c3f2)
      458134f7
    • akirilov's avatar
      RESTRICT AUTOMERGE: Prevent reporting fake package name - framework (backport to oc-mr1-dev) · 774d6ea7
      akirilov authored
      Test: added AccessibilityEndToEndTest#testPackageNameCannotBeFaked
            cts-tradefed run cts -m CtsAccessibilityServiceTestCases
            cts-tradefed run cts -m CtsAccessibilityTestCases
      
      Bug: 69981755
      Change-Id: If3752e106aa7fdee4645dc9852289af471ceff18
      Merged-In: I13304efbee10d1affa087e9c8bc4ec237643283e
      (cherry picked from commit c36db6d4)
      774d6ea7
    • Fyodor Kupolov's avatar
      Use concrete CREATOR instance for parceling lists · 133ec0e4
      Fyodor Kupolov authored
      Replaced readTypedArrayList/writeTypedArrayList with
      writeTypedList/createTypedArrayList(CREATOR)
      
      Bug: 71508348
      Test: CtsAutoFillServiceTestCases pass
      Merged-In: I2a8321023b40cc74b7026eb0fb32a9cc5f5543a9
      Change-Id: Id17d02e40a4ae567bf2d74d2ea8ba4d8a943bdb7
      (cherry picked from commit 4921986d)
      133ec0e4
    • Marco Nelissen's avatar
      Rework thumbnail cleanup · 49690f8a
      Marco Nelissen authored
      Bug: 63766886
      Test: ran CTS tests
      Change-Id: I1f92bb014e275eafe3f42aef1f8c817f187c6608
      (cherry picked from commit 6d2096f3)
      49690f8a
    • Felipe Leme's avatar
      DO NOT MERGE - fix AFM.getComponentNameFromContext() · 14029e40
      Felipe Leme authored
      This method broke on O-MR1 when I3abf999eb6056c1df7982780bae43b58337c0668
      was chery-picked from master.
      
      Test: cts-tradefed run commandAndExit cts-dev -m CtsAutoFillServiceTestCases \
            -t android.autofillservice.cts.AttachedContextActivityTest#testAutofill
      Test: cts-tradefed run commandAndExit cts-dev -m CtsAutoFillServiceTestCases
      
      Also individually ran tests that failed (due to flakiness) when ran in a suite:
      
      Test: cts-tradefed run commandAndExit cts-dev -m CtsAutoFillServiceTestCases \
      -t android.autofillservice.cts.OptionalSaveActivityTest#testDontShowSaveUiWhenUserManuallyFilled_oneDatasetAllRequiredFields
      
      Test: cts-tradefed run commandAndExit cts-dev -m CtsAutoFillServiceTestCases -t android.autofillservice.cts.PreSimpleSaveActivityTest #testTapLink_tapBack_thenStartOverBySayingYesAndManualRequest
      
      Fixes: 71960322
      
      Change-Id: Ia093dcefe6699dc9493c46d671e48c2000214b31
      Merged-In: I3abf999eb6056c1df7982780bae43b58337c0668
      (cherry picked from commit b25b4736)
      14029e40
    • Felipe Leme's avatar
      Proper autofill fix to let phone process autofill Settings activity. · 21765ed6
      Felipe Leme authored
      Test: adb shell am start com.android.settings/.RadioInfo
      Bug: 69981710
      Fixes: 70506888
      
      Change-Id: Id29bad2d20b621f7379eb6144c95dcc819949b3d
      Merged-In: Id29bad2d20b621f7379eb6144c95dcc819949b3d
      (cherry picked from commit 97f16a76db29269619d9a1b45d4cea49026a5b6a)
      (cherry picked from commit 92b5d278)
      21765ed6
    • Felipe Leme's avatar
      Make sure apps cannot forge package name on AssistStructure used for Autofill. · 3f89a390
      Felipe Leme authored
      Test: cts-tradefed run commandAndExit cts-dev -m CtsAutoFillServiceTestCases -t android.autofillservice.cts.VirtualContainerActivityTest#testAppCannotFakePackageName
      Test: cts-tradefed run commandAndExit cts-dev -m CtsAutoFillServiceTestCases
      
      Bug: 69981710
      
      Change-Id: Id6036cddb51dd8dd0c9128b7212d573f630d693f
      Merged-In: Id6036cddb51dd8dd0c9128b7212d573f630d693f
      (cherry picked from commit 23e61a90)
      3f89a390
  12. 10 Jul, 2018 1 commit
  13. 09 Jul, 2018 1 commit
  14. 08 Jul, 2018 1 commit
  15. 06 Jul, 2018 1 commit
    • Luca Stefani's avatar
      Merge tag 'android-8.1.0_r36' into staging/lineage-15.1-android-8.1.0_r36 · 4489d3ae
      Luca Stefani authored
      Android 8.1.0 Release 36 (OPM2.171026.006.H1)
      
      * tag 'android-8.1.0_r36':
        clearCallingIdentity before calling into getPackageUidAsUser
        Nullcheck to fix Autofill CTS
        Osu: fixed Mismatch between createFromParcel and writeToParcel
        DO NOT MERGE Truncate newline and tab characters in BluetoothDevice name
        Fix broken check for TelephonyManager#getForbiddenPlmns
        DO NOT MERGE (O) Revoke permision when group changed
        ResStringPool: Fix security vulnerability
        RESTRICT AUTOMERGE: Prevent reporting fake package name - framework (backport to oc-mr1-dev)
        Use concrete CREATOR instance for parceling lists
        Rework thumbnail cleanup
        Proper autofill fix to let phone process autofill Settings activity.
      
      Change-Id: I6dc77f4bd29f92958b8d0c0bf37db8b00f3f720a
      4489d3ae
  16. 03 Jul, 2018 1 commit
  17. 01 Jul, 2018 1 commit
  18. 28 Jun, 2018 1 commit
    • Michael W's avatar
      Keyguard: Remove carrier text for disabled SIMs · e525faf6
      Michael W authored
      * By setting the State to "NOT_READY", the behaviour of the carrier text
        on the lockscreen is the same as it would be with one SIM only
      
      Change-Id: Iafe7ad820e59f4d960383309a7c4e1a87581cc51
      e525faf6