Gitiles
Code Review Sign In
gerrit-public.fairphone.software / platform / frameworks / base / 80f6a985c3662bc65ffba83975ec23c1a93ed888
commit80f6a985c3662bc65ffba83975ec23c1a93ed888[log] [tgz]
authorSeigo Nonaka <nona@google.com>Thu Jun 22 08:22:18 2017 -0700
committerSeigo Nonaka <nona@google.com>Thu Jun 22 19:07:17 2017 -0700
tree49632f94afc3270d5759dcf4160e8f77847ca7b9
parent2ef19c1d73f89ca4718b5a8f0c2e7221621e844f [diff]
Stop loading other package's font by default.

Since CONTEXT_RESTRICTED is not a default flag of createPackageContext,
we can't rely on it for preventing unexpected font injections.
To protect developers and existing apps from a risk of font injection,
stop loading font from other package's resouce unless the developer
explicitly set CONTEXT_IGNORE_SECURITY.

This CL contains Iac2a6fb3d82ef23d5ca6ee33f4aaa9ed28455271 by manual
merging to handle repository split.

Bug: 62813533
Bug: 62879353
Test: Manually done
Merged-In: I4442ddc48dadb5c968b444be86038b602074d301
Change-Id: I4442ddc48dadb5c968b444be86038b602074d301
6 files changed
tree: 49632f94afc3270d5759dcf4160e8f77847ca7b9
  1. apct-tests/
  2. api/
  3. cmds/
  4. core/
  5. data/
  6. docs/
  7. drm/
  8. graphics/
  9. keystore/
  10. legacy-test/
  11. libs/
  12. location/
  13. media/
  14. native/
  15. nfc-extras/
  16. obex/
  17. opengl/
  18. packages/
  19. proto/
  20. rs/
  21. samples/
  22. sax/
  23. services/
  24. telecomm/
  25. telephony/
  26. test-runner/
  27. tests/
  28. tools/
  29. vr/
  30. wifi/
  31. Android.bp
  32. Android.mk
  33. CleanSpec.mk
  34. compiled-classes-phone
  35. MODULE_LICENSE_APACHE2
  36. NOTICE
  37. pathmap.mk
  38. preloaded-classes
  39. PREUPLOAD.cfg