Gitiles
Code Review Sign In
review.blissroms.org / platform_frameworks_base / 9d8d152aee80f0281656ff303df5087e6d9c9b8f
commit9d8d152aee80f0281656ff303df5087e6d9c9b8f[log] [tgz]
authorLinus Tufvesson <lus@google.com>Fri Feb 28 10:21:00 2020 +0000
committerLinus Tufvesson <lus@google.com>Thu Apr 30 17:17:18 2020 +0100
tree394a723838f71c361e5af8b2bae345c294e97489
parent26e2c92945811acd6077bddd91d7d003148ef731 [diff]
Don't allow activites on virtual displays

.. unless the caller has ACTIVITY_EMBEDDING permission or is already
present on the display. This prevents non privileged apps from elevating
their FG state by creating a private VD and putting an activity there.
Which would keep their stack considered FG even after their activity on
the main display is no longer visible.

Test: atest CtsWindowManagerDeviceTestCases:MultiDisplaySecurityTests
Bug: 146768652
Change-Id: I1f9662c2bd14b34e00fbc8ebb926538f0329c37a
4 files changed
tree: 394a723838f71c361e5af8b2bae345c294e97489
  1. apct-tests/
  2. apex/
  3. api/
  4. cmds/
  5. config/
  6. core/
  7. data/
  8. docs/
  9. drm/
  10. graphics/
  11. identity/
  12. keystore/
  13. libs/
  14. location/
  15. lowpan/
  16. media/
  17. mime/
  18. mms/
  19. native/
  20. nfc-extras/
  21. obex/
  22. opengl/
  23. packages/
  24. proto/
  25. rs/
  26. samples/
  27. sax/
  28. services/
  29. startop/
  30. telecomm/
  31. telephony/
  32. test-base/
  33. test-legacy/
  34. test-mock/
  35. test-runner/
  36. tests/
  37. tools/
  38. wifi/
  39. .clang-format
  40. .gitignore
  41. .mailmap
  42. Android.bp
  43. Android.mk
  44. ApiDocs.bp
  45. CleanSpec.mk
  46. framework-jarjar-rules.txt
  47. MODULE_LICENSE_APACHE2
  48. NOTICE
  49. pathmap.mk
  50. PREUPLOAD.cfg
  51. StubLibraries.bp
  52. TEST_MAPPING