Gitiles
Code Review Sign In
gerrit-public.fairphone.software / platform / system / bt / refs/tags/rel/10/fp2/22.12.0-rel.0
  1. 64cd18f Merge branch 'dev/10/fp2/security-aosp-qt-release' into int/10/fp2 by Maarten Derks · 1 year, 6 months ago rel/10/fp2/22.12.0-rel rel/10/fp2/22.12.0-rel.0
  2. 2508318 Fix integer overflow when parsing avrc response by Keith Mok · 1 year, 9 months ago
  3. b81b232 Add length check when copy AVDT and AVCT packet by Keith Mok · 1 year, 9 months ago
  4. d37419b Add missing increment in bnep_api.cc by Brian Delwiche · 1 year, 9 months ago
  5. d4a90db RESTRICT AUTOMERGE Added max buffer length check by Brian Delwiche · 1 year, 9 months ago
  6. f5a07b7 Add length check when copy AVDTP packet by Ted Wang · 1 year, 9 months ago
  7. b3547e6 Add buffer in pin_reply in bluetooth.cc by Brian Delwiche · 1 year, 9 months ago
  8. ced6c9b Add negative length check in process_service_search_rsp by Brian Delwiche · 1 year, 9 months ago
  9. 324ef58 Merge branch 'dev/10/fp2/security-aosp-qt-release' into int/10/fp2 by Maarten Derks · 1 year, 7 months ago rel/10/fp2/22.10.0-rel rel/10/fp2/22.10.0-rel.0
  10. ba9a7ee Fix potential interger overflow when parsing vendor response by Ted Wang · 2 years, 1 month ago
  11. a554e1c Merge branch 'dev/10/fp2/security-aosp-qt-release' into int/10/fp2 by Maarten Derks · 1 year, 10 months ago rel/10/fp2/22.08.0-rel rel/10/fp2/22.08.0-rel.0
  12. d9f4cb9 Removing bonded device when auth fails due to missing keys by Roopa Sattiraju · 2 years ago
  13. 221f304 Merge cherrypicks of [17777141, 18119099, 18030837] into security-aosp-qt-release. by Android Build Coastguard Worker · 2 years ago
  14. 75d51f2 Security: Fix out of bound read in AT_SKIP_REST by Josh Wu · 2 years, 1 month ago
  15. 8b644d9 Check Avrcp packet vendor length before extracting length by William Escande · 2 years ago
  16. f6bba8d Security: Fix out of bound write in HFP client by Chen Chen · 2 years, 1 month ago
  17. 439ccf0 Merge branch 'security-aosp-qt-release' into int/10/fp2 by Maarten Derks · 2 years, 2 months ago rel/10/fp2/22.04.0-rel rel/10/fp2/22.06.0-rel rel/10/fp2/22.04.0-rel.1 rel/10/fp2/22.06.0-rel.0
  18. 5b4b799 Merge cherrypicks of [16630869] into security-aosp-qt-release. by Android Build Coastguard Worker · 2 years, 3 months ago
  19. 8c6477c Security fix OOB read due to invalid count in stack/avrc/avrc_pars_ct by Ted Wang · 2 years, 4 months ago
  20. 9703efc Merge branch 'security-aosp-qt-release' into int/10/fp2 by Maarten Derks · 2 years, 4 months ago rel/10/fp2/22.02.0-rel rel/10/fp2/22.02.0-rel.0
  21. 4b709f9 Merge branch 'security-aosp-qt-release' into int/10/fp2 by Maarten Derks · 2 years, 5 months ago
  22. e315793 Merge cherrypicks of [16215818, 16232312] into security-aosp-qt-release. by Android Build Coastguard Worker · 2 years, 5 months ago
  23. 7ffaeac Reset the IRK after all devices are unpaired by Martin Brabham · 2 years, 7 months ago
  24. 4bcc8f4 security: Use-After-Free in btm_sec_[dis]connected by Chris Manton · 2 years, 6 months ago
  25. 67ba9a3 Merge cherrypicks of [16009370, 16012241, 16012242, 16012310, 16012367, 16012311, 16012312, 16012313, 16012216, 16012387, 16012388, 16012390, 16012335, 16012391] into security-aosp-qt-release by Android Build Coastguard Worker · 2 years, 7 months ago
  26. 7ea885a osi: Prevent memory allocations with MSB set by Chris Manton · 2 years, 8 months ago
  27. 3304538 Merge branch 'security-aosp-qt-release' into int/10/fp2 by Maarten Derks · 2 years, 8 months ago
  28. 7322a31 Add support to force disable enhanced sco commands by billchen1977@gmail.com · 7 years ago
  29. 47812e2 Bluetooth: Read BLE vendor capability to proceed on Secure conn by Srinu Jella · 9 years ago
  30. 9b237db Prevent abort in case of command timeout by Luke Zhang · 7 years ago
  31. a3afff7 Fix L version ble_vendor_capability sanity check crash. by Ted Wang · 4 years, 9 months ago
  32. ae1e316 Merge tag 'android-security-10.0.0_r56' into int/10/fp2 by Karsten Tausche · 2 years, 9 months ago
  33. d2dd688 Merge tag 'android-security-10.0.0_r55' into int/10/fp2 by Karsten Tausche · 2 years, 9 months ago
  34. 6691446 Merge tag 'android-security-10.0.0_r54' into int/10/fp2 by Karsten Tausche · 2 years, 9 months ago
  35. 1deec77 Merge tag 'android-security-10.0.0_r53' into int/10/fp2 by Karsten Tausche · 2 years, 9 months ago
  36. f9dd970 Merge cherrypicks of [15151697, 15151718, 15151899, 15151900, 15151901, 15151902, 15151904, 15151906, 15151930, 15151932, 15151933, 15151856, 15151858, 15151388, 15151971, 15151972, 15151973] into security-aosp-qt-release by Android Build Coastguard Worker · 2 years, 11 months ago
  37. 5c72690 SMP: Reject pairing if public_key.x match by Hansong Zhang · 3 years ago
  38. a2b637d Merge cherrypicks of [14554379, 14554380, 14554562, 14554565, 14554567, 14554524, 14554569, 14554525, 14554572, 14554574, 14554575, 14554577, 14554622, 14554628, 14554630, 14554631, 14554503, 14554632, 14554536, 14554633] into security-aosp-qt-release by android-build-team Robot · 3 years ago
  39. 9446887 Fix memory overflow. by Richard Smith · 3 years, 3 months ago
  40. 267820f Merge cherrypicks of [14129455, 14130265, 14129457, 14130197, 14130199, 14130200, 14130201, 14130203, 14129438, 14129439, 14129732, 14129441, 14130241, 14129733, 14129734, 14130308, 14130309, 14130310, 14130312] into security-aosp-qt-release by android-build-team Robot · 3 years, 1 month ago
  41. 72ee2f7 RESTRICT AUTOMERGE Contain avrc_ctrl_pars_vendor_cmd OOB write by Chris Manton · 3 years, 2 months ago
  42. 4bba21e AVRCP: pass bdaddr by value when use SdpCb by Chienyuan · 3 years, 3 months ago
  43. c28ac24 smp: Use SMP_TRACE_WARNING by Myles Watson · 3 years, 2 months ago
  44. bb0ae6b smp: Reject pairing if the public keys match by Myles Watson · 3 years, 3 months ago
  45. 6ddf312 smp: Use SMP_TRACE_WARNING by Myles Watson · 3 years, 2 months ago
  46. 0e64344 avrcp: Ignore AVCT commands that are too long by Myles Watson · 3 years, 3 months ago
  47. 76da71c smp: Reject pairing if the public keys match by Myles Watson · 3 years, 3 months ago
  48. a1a50cc btif: Return after closing the socket by Myles Watson · 3 years, 3 months ago
  49. d62a78d DO NOT MERGE Add mutex for std::map in btif_av.cc by Chienyuan · 3 years, 4 months ago
  50. 931873c AVRCP: Use calloc to zero reserved fields by Myles Watson · 3 years, 5 months ago
  51. dfe277c avrc_copy_packet: Zero initialize packet by Hansong Zhang · 3 years, 5 months ago
  52. 09ec6a0 Legacy pairing: Reject device with same BD_ADDR by Hansong Zhang · 3 years, 5 months ago
  53. c7435ba SDP: Only start discovery once by Myles Watson · 3 years, 5 months ago
  54. 876eae1 ACL: Drop broadcasts by Myles Watson · 3 years, 7 months ago
  55. e7305d9 Fix potential OOB write in libbluetooth by Ted Wang · 3 years, 7 months ago
  56. 65502ea Fix a security issue in sdp_server.cc by Hansong Zhang · 3 years, 7 months ago
  57. e99896d Check Classic key before cross-key derivation by Chen Chen · 3 years, 8 months ago
  58. 3a85188 Send a response to an smp security request depending on the callback event by Rahul Sabnis · 3 years, 9 months ago
  59. 6d3ae14 Return after removing sample LTK device by li-wei.cheng · 4 years, 4 months ago
  60. d298c89 Check whether local device is an ATV device to determine whether to show by Rahul Sabnis · 3 years, 10 months ago
  61. 2ec4767 Shows a consent dialog on the local device when pairing a bluetooth low by Rahul Sabnis · 3 years, 11 months ago
  62. 3fd0365 Fix possible OOB when receive gatt read type response data by weichinweng · 3 years, 10 months ago
  63. 6f5dae5 Remove pairing on incoming bond request by Myles Watson · 4 years ago
  64. 270a7cf Enable bitpool sanity checks by Joseph Pirozzo · 4 years ago
  65. 634f0e4 Check a2dp packet length is zero by Chris Manton · 4 years, 2 months ago
  66. 225ed53 Snap for 6382077 from db1917d8aec4f1781032e0a97fadaeddd9e94bda to qt-qpr3-release by android-build-team Robot · 4 years, 1 month ago
  67. 72980ee Fix potential stack overflow caused by integer overflow by Jakub Pawlowski · 4 years, 2 months ago
  68. db1917d [automerger skipped] Merge "Check a2dp packet length is zero" into qt-dev am: c909de62bf -s ours by Sterling Huber · 4 years, 1 month ago
  69. cd23082 Snap for 6377241 from aeeb427c94cf795dca2eb16054db701bb19c7bc7 to qt-qpr3-release by android-build-team Robot · 4 years, 1 month ago
  70. aeeb427 Merge "btm: fixing oob write in multi-adv SetData." into qt-qpr1-dev by TreeHugger Robot · 4 years, 1 month ago
  71. c909de6 Merge "Check a2dp packet length is zero" into qt-dev by Sterling Huber · 4 years, 1 month ago
  72. ca7a1ea [automerger skipped] Fix potential stack overflow caused by integer overflow am: 1570b62c88 am: 5b4bf745e9 am: 6360e91bb3 am: 3cd74938d8 -s ours am: db0c360dce -s ours by Jakub Pawlowski · 4 years, 1 month ago
  73. db0c360 [automerger skipped] Fix potential stack overflow caused by integer overflow am: 1570b62c88 am: 5b4bf745e9 am: 6360e91bb3 am: 3cd74938d8 -s ours by Jakub Pawlowski · 4 years, 1 month ago
  74. 3cd7493 Fix potential stack overflow caused by integer overflow am: 1570b62c88 am: 5b4bf745e9 am: 6360e91bb3 by Jakub Pawlowski · 4 years, 1 month ago
  75. 6360e91 Fix potential stack overflow caused by integer overflow am: 1570b62c88 am: 5b4bf745e9 by Jakub Pawlowski · 4 years, 1 month ago
  76. 5b4bf74 Fix potential stack overflow caused by integer overflow am: 1570b62c88 by Jakub Pawlowski · 4 years, 1 month ago
  77. 8ccc0c8 Fix potential stack overflow caused by integer overflow am: ec0d507ed2 by Jakub Pawlowski · 4 years, 1 month ago
  78. 96392b0 Check a2dp packet length is zero by Chris Manton · 4 years, 2 months ago
  79. b1bf688 Snap for 6341266 from 6a91b4d117f5048d40e16b726bb214f59ff7c880 to qt-qpr3-release by android-build-team Robot · 4 years, 2 months ago
  80. 6a91b4d Merge "DO NOT MERGE Fix potential overflow in btif_rc" into qt-qpr1-dev by Chris Manton · 4 years, 2 months ago
  81. ee0e886 Merge "Fix potential OOB vulnerability when an HCI event is received" into qt-qpr1-dev by TreeHugger Robot · 4 years, 2 months ago
  82. aabb0a8 DO NOT MERGE Fix potential overflow in btif_rc by Chris Manton · 4 years, 2 months ago
  83. 006e8e4 Revert "DO NOT MERGE Ensure hci command status event has sufficient packet length" by Kelly Rossmoyer · 4 years, 2 months ago
  84. 4661381 Merge "DO NOT MERGE Ensure hci command status event has sufficient packet length" into qt-qpr1-dev by TreeHugger Robot · 4 years, 2 months ago
  85. b157fbb Snap for 6324712 from f021675ca6f9b7236e2f594d1165971e523bb09b to qt-qpr3-release by android-build-team Robot · 4 years, 2 months ago
  86. f021675 Merge "AVDTP: Prevent OOB read when parsing rejected response" into qt-qpr1-dev by TreeHugger Robot · 4 years, 2 months ago
  87. 63c94d5 Snap for 6317653 from 2c4f9ef514fe71e379a7b3c84c71adcef9168c66 to qt-qpr3-release by android-build-team Robot · 4 years, 2 months ago
  88. 2c4f9ef Merge changes I685873b0,Iac3078fa into qt-qpr1-dev by Joseph Pirozzo · 4 years, 2 months ago
  89. 1570b62 Fix potential stack overflow caused by integer overflow by Jakub Pawlowski · 4 years, 2 months ago
  90. ec0d507 Fix potential stack overflow caused by integer overflow by Jakub Pawlowski · 4 years, 2 months ago
  91. 60af186 Merge "Fix bluetooth can't turn off during network reset (3/3)" into qt-qpr1-dev by TreeHugger Robot · 4 years, 2 months ago
  92. 49437a6 Merge "avrc: Validating msg size before accessing fields" into qt-qpr1-dev by TreeHugger Robot · 4 years, 2 months ago
  93. c7338b5 Snap for 6313343 from b204c00caad3bf977bb63c7e580b651034867c8e to qt-qpr3-release by android-build-team Robot · 4 years, 2 months ago
  94. b204c00 Merge changes from topic "AutomotiveQBTSync" into qt-qpr1-dev by Joseph Pirozzo · 4 years, 2 months ago
  95. 1afad05 Fix potential OOB vulnerability when an HCI event is received by jonerlin · 4 years, 2 months ago
  96. fba6af3 Merge "Notify remote name failed for LE device" into qt-qpr1-dev by More Kuo · 4 years, 2 months ago
  97. 0535ce8 Merge "Make sure only valid packet fields are accessed in VendorPacketHandler" into qt-qpr1-dev by TreeHugger Robot · 4 years, 2 months ago
  98. 6851f7b HF_Client: Send BTA_HF_CLIENT_RFC_CLOSE_EVT when client_cb == NULL by Song Gao · 4 years, 5 months ago
  99. 03ce9cd HF_Client: Free the RFC if the handle doesn't match by Song Gao · 4 years, 5 months ago
  100. 64ffb61 Notify remote name failed for LE device by More Kuo · 4 years, 2 months ago