Gitiles
Code Review Sign In
gerrit-public.fairphone.software / platform / frameworks / base / d0b5c8ff80e648506e0c22d9cd4e237b34a21197
commitd0b5c8ff80e648506e0c22d9cd4e237b34a21197[log] [tgz]
authorlumark <lumark@google.com>Sun Sep 29 11:30:37 2019 +0800
committerlumark <lumark@google.com>Thu Dec 05 17:07:43 2019 +0800
tree943871a4d8f3f0fc640a9f54b5bd45c4493b0c0c
parent14a2a901bdf28cb5b0e68aab9f1997a6586a7fe6 [diff]
Do not allow input connections from untrusted virtual displays

As Input-routing or Input Method Editor (IME) supported on multi-displays from Q,
user can interact multi-displays with touch and key input.

It could be necessary to consider and prevent a use case that the malicious app
may create in-visible virtual display to steal the window focus or intercept key
or keyboard input through input channel or input connection.

Don't provide display focus to the newly created virtual displays, until the user
interacts with a virtual display, then we give it & receive the display focus.

Bug: 129963294
Test: make sure all MultiDisplay and Window focus related tests pass.
Change-Id: I9bc37695cf6e2e894bf545a69c6cb006666c5539
6 files changed
tree: 943871a4d8f3f0fc640a9f54b5bd45c4493b0c0c
  1. apct-tests/
  2. apex/
  3. api/
  4. cmds/
  5. config/
  6. core/
  7. data/
  8. docs/
  9. drm/
  10. graphics/
  11. keystore/
  12. libs/
  13. location/
  14. lowpan/
  15. media/
  16. mime/
  17. mms/
  18. native/
  19. nfc-extras/
  20. obex/
  21. opengl/
  22. packages/
  23. proto/
  24. rs/
  25. samples/
  26. sax/
  27. services/
  28. startop/
  29. telecomm/
  30. telephony/
  31. test-base/
  32. test-legacy/
  33. test-mock/
  34. test-runner/
  35. tests/
  36. tools/
  37. wifi/
  38. .gitignore
  39. .mailmap
  40. Android.bp
  41. Android.mk
  42. CleanSpec.mk
  43. jarjar_rules_hidl.txt
  44. MODULE_LICENSE_APACHE2
  45. NOTICE
  46. pathmap.mk
  47. PREUPLOAD.cfg