Android Nougat AOSP Changes

Changes from 7.0.0_r15 (NRD91N) to 7.0.0_r17 (NBD91K):

Warning Releases with no significant changes other than version bump in platform/build component are likely to only feature proprietary binary blob (e.g. firmwares) changes.

Newly Added Components (0):

None

Removed Components (0):

None

Updated Components (33):

  • device/google/dragon-kernel with 2 change(s)
    • fa4bb86 : ryu: update prebuilt kernel
    • 81857a3 : ryu: update prebuilt kernel

  • device/htc/flounder-kernel with 2 change(s)
    • b03bbc5 : flounder: update kernel prebuilt (Oct 2016 Security)
    • 1a7eaf4 : flounder: update kernel prebuilt (Oct 2016 Security)

  • device/huawei/angler with 2 change(s)
    • 907884c : media: update media_codecs_performance.xml
    • ce2bbf0 : media: update media_codecs_performance.xml

  • device/moto/shamu with 6 change(s)
    • 29a0aaa : Revert "Path fix for backend connection to FE upon call disconnection"
    • 6427d7c : allow empty
    • 4b8d27e : Revert "Path fix for backend connection to FE upon call disconnection"
    • bead262 : Revert "Path fix for backend connection to FE upon call disconnection"
    • e655ce7 : Path fix for backend connection to FE upon call disconnection
    • d2117b6 : shamu: Set default values for audio HAL.

  • device/moto/shamu-kernel with 1 change(s)

  • platform/art with 1 change(s)
    • 7300ad4 : Pass the right class loader when inlining.

  • platform/build with 30 change(s)
    • 9f47494 : NBD91K
    • bc5db48 : NBE92
    • 2efe2e5 : NBD91J
    • 5c85641 : NBD91I
    • 91eaf6a : NBD91H
    • 2f25f53 : NBD91G
    • 79af65b : NBD91F
    • 52257ea : NBD91E
    • 2c0132f : Updating security string to 2016-11-05 on nyc-dev
    • b65367b : Updating Security String to 2016-11-01 on nyc-dev
    • 10eaafa : NBE89
    • e060660 : NBD91D
    • 5bbdbab : NBD91C
    • 4aaa5d8 : NBD91B
    • 8547561 : Updating security string to 2016-11-05 on nyc-dev
    • c806aef : Updating Security String to 2016-11-01 on nyc-dev
    • 2af2da3 : NBD90Z
    • c363420 : NBD90Y
    • 661444a : NBD90X
    • 18da38c : NBD90W
    • 2b41208 : Update comments around PLATFORM_SECURITY_LEVEL (nyc-dev) Bug: 29881091
    • d6c83b7 : Update Security String to 2016-10-05 to Platform and CTS for October Security Updates (rebased)
    • baa9303 : Update Security String to 2016-10-01 to platform and CTS for October Security
    • 80fbf8c : NBD90V
    • a178721 : Update comments around PLATFORM_SECURITY_LEVEL (nyc-dev) Bug: 29881091
    • 7c44cd2 : Update Security String to 2016-10-05 to Platform and CTS for October Security Updates (rebased)
    • 7c98a41 : Update Security String to 2016-10-01 to platform and CTS for October Security
    • e802356 : NBD90U
    • 79c7788 : NBD90T
    • 740f963 : Fix build prefix to avoid duplicate build registries

  • platform/external/chromium-webview with 2 change(s)
    • fe818f1 : resolve merge conflicts of e9d901a to nyc-dev
    • a59bede : resolve merge conflicts of e9d901a to nyc-dev

  • platform/external/conscrypt with 2 change(s)
    • 87d7551 : Fix typo in name of des-ede mapping
    • 9e2cb54 : Fix typo in name of des-ede mapping

  • platform/external/expat with 2 change(s)
    • a300f14 : Security Vulnerability - CVE-2012-6702 and CVE-2016-5300
    • f193e66 : Security Vulnerability - CVE-2012-6702 and CVE-2016-5300

  • platform/external/icu with 3 change(s)
    • 64801af : Changed Turkish translation for Cyprus, cts tests
    • 745f26a : Changed Turkish translation for Cyprus, generated binaries
    • 649ea10 : Changed Turkish translation for Cyprus, source only

  • platform/external/libavc with 4 change(s)
    • 1136e78 : Decoder: Fixes for handling errors in multi-slice MB Aff streams
    • 8b2f1c9 : Fix in the case of invalid SPS PPS
    • 8a9474c : Decoder: Fixes for handling errors in multi-slice MB Aff streams
    • 0f6a66d : Fix in the case of invalid SPS PPS

  • platform/external/skia with 2 change(s)
    • 3272ed3 : Fix rewinding bug in SkJpegCodec (cherry picked from Skia)
    • 30ae072 : Fix rewinding bug in SkJpegCodec (cherry picked from Skia)

  • platform/frameworks/av with 40 change(s)
    • 5c15486 : IOMX: do not clear buffer if it's allocated by component
    • c283e75 : IOMX: allow configuration after going to loaded state
    • 1f3fb66 : IOMX: do not convert ANWB to gralloc source in emptyBuffer
    • 9c55146 : IOMX: do not clear buffer if it's allocated by component
    • eeedb2d : IOMX: allow configuration after going to loaded state
    • d06c60b : IOMX: do not convert ANWB to gralloc source in emptyBuffer
    • 36f4e00 : Limit mp4 atom size to something reasonable
    • 604b74f : SampleIterator: clear members on seekTo error
    • 2d500e6 : Check mprotect result
    • 5e4602b : OMXNodeInstance: sanity check portIndex.
    • 5888c28 : Fix free-after-use for MediaHTTP
    • 8a38d3a : Radio: get service by value.
    • a03e793 : SoundTrigger: get service by value.
    • 09f8f64 : Fix stack content leak vulnerability in mediaserver
    • d25dee8 : Fix potential overflow in Visualizer effect
    • 34b14ca : Limit mp4 atom size to something reasonable
    • 075c936 : SampleIterator: clear members on seekTo error
    • 380e846 : Check mprotect result
    • cf4e570 : OMXNodeInstance: sanity check portIndex.
    • acb30c5 : Fix free-after-use for MediaHTTP
    • ec795b4 : Radio: get service by value.
    • cb129c1 : SoundTrigger: get service by value.
    • eaaf2c6 : Fix stack content leak vulnerability in mediaserver
    • 4b38366 : Fix potential overflow in Visualizer effect
    • 3f1c6d1 : MediaPlayerService: allow next player to be NULL
    • 6b9e494 : AudioFlinger: Account for frames dropped in suspend mode
    • 60a3e68 : AudioFlinger: Prevent offload underrun during active playback
    • c4c6ccc : Fix build breakage caused by commit 940829f69b52d6038db66a9c727534636ecc456d.
    • 97cbb2d : Add EFFECT_CMD_SET_PARAM parameter checking
    • f19f97e : soundtrigger: add size check on sound model and recogntion data
    • 24f0663 : MediaPlayerService: avoid invalid static cast
    • c4ff129 : better validation lengths of strings in ID3 tags
    • 3717882 : SoftMPEG4: Check the buffer size before writing the reference frame.
    • f62a2b6 : MediaPlayerService: allow next player to be NULL
    • 28055a7 : Fix build breakage caused by commit 940829f69b52d6038db66a9c727534636ecc456d.
    • d705d85 : Add EFFECT_CMD_SET_PARAM parameter checking
    • 84c6abf : soundtrigger: add size check on sound model and recogntion data
    • 11833ac : MediaPlayerService: avoid invalid static cast
    • 23bc140 : better validation lengths of strings in ID3 tags
    • 2d1f61f : SoftMPEG4: Check the buffer size before writing the reference frame.

  • platform/frameworks/base with 47 change(s)
    • 7d96a1a : Fix NPE for WifiConfiguration in AccessPoint.
    • e612ba0 : LocationManager - Handle Shutdown for right User
    • 76d2d22 : Avoid crashing when downloading MitM'd PAC that is too big am: 7d2198b586 am: 9c1cb7a273 am: 6634e90ad7 am: 66ee2296a9
    • 03cc966 : Use "all_downloads" instead of "my_downloads".
    • 7beb6c2 : Fix build break due to automerge of 7d2198b5
    • c46705b : Catch all exceptions when parsing IME meta data
    • 084a5b4 : Fix deadlock in AcitivityManagerService.
    • 072b4bd : Only return password for account session flow if the caller is signed with system key and have get_password permission.
    • 7e2d478 : Ensure munmap matches mmap
    • 1e70481 : Fix setPairingConfirmation permissions issue (2/2)
    • d20378f : Backport changes to whitelist sockets opened by the zygote.
    • 6db2c83 : LocationManager - Handle Shutdown for right User
    • af7c2a7 : Avoid crashing when downloading MitM'd PAC that is too big am: 7d2198b586 am: 9c1cb7a273 am: 6634e90ad7 am: 66ee2296a9
    • a87d513 : Fix build break due to automerge of 7d2198b5
    • f30cfcb : Catch all exceptions when parsing IME meta data
    • df4b2f6 : Fix deadlock in AcitivityManagerService.
    • aa8226a : Only return password for account session flow if the caller is signed with system key and have get_password permission.
    • 7dc3969 : Ensure munmap matches mmap
    • 5dd5769 : Fix setPairingConfirmation permissions issue (2/2)
    • 388c9b2 : Backport changes to whitelist sockets opened by the zygote.
    • df0de20 : Use "all_downloads" instead of "my_downloads".
    • 81a0e13 : LocationManager - Handle Shutdown for right User
    • b439040 : Properly close fd backing a MemoryIntArray
    • 628bf23 : Sanity check ICMP6 router advertisement packets
    • 8da0528 : update shared libraries for system apps
    • a8a8675 : Cherry pick TextureView fixes
    • 6f761da : Eliminate next-alarm-clock broadcast flapping
    • ed42959 : Make sure IME focus is synced to View focus
    • 086ec0f : Fix double status bar icons
    • d7789d0 : Force AlertDialogLayout to have gravity start|top
    • 535eb07 : ChooserActivity: Cannot start app that the icon overflows the layout
    • 37e9867 : FloatingActionMode: Fix screen coordinates.
    • b341e02 : Set up view state before attaching, jump drawables if needed
    • 33c9b5f : Fixed a bug where notifications could reappear
    • 7f5d46a : Fixed a bug where the headsup would be stuck disappearing
    • c662295 : Enforce consistent sizes for arrays in SpannableStringInternal
    • d7a94a8 : Fix vulnerability in LockSettings service
    • 9e96728 : Limit capabilities of a11y gesture dispatch.
    • 9b0ae9f : Process: Fix communication with zygote.
    • 6ced050 : Bind fingerprint when we start authentication
    • 38ba968 : Fix vulnerability in LockSettings service
    • d9a7562 : Limit capabilities of a11y gesture dispatch.
    • c8a462e : Process: Fix communication with zygote.
    • b55f2e5 : Bind fingerprint when we start authentication
    • 904e596 : Try to mitigate issue #31016187: system_server crash in ArraySet.
    • 71c5b44 : Avoid potential re-entry as a result of child mutation
    • c4d27e9 : Added error handling to settings suggestions list

  • platform/frameworks/native with 4 change(s)
    • a08cb88 : ServiceManager: Allow system services running as secondary users to add services
    • f369622 : ServiceManager: Restore basic uid check
    • 6b19f00 : ServiceManager: Allow system services running as secondary users to add services
    • e7d5681 : ServiceManager: Restore basic uid check

  • platform/frameworks/opt/net/wifi with 4 change(s)
    • 92a1fa7 : VenueNameElement: fix off-by-one enum bounds check
    • 2c82860 : ANQPFactory: catch all potential parsing errors
    • 5a6c3b4 : VenueNameElement: fix off-by-one enum bounds check
    • 5d76c86 : ANQPFactory: catch all potential parsing errors

  • platform/frameworks/opt/telephony with 3 change(s)
    • 423614c : Remove flag from intent sent from Catservice to StkApp.
    • 8ac0b81 : Remove flag from intent sent from Catservice to StkApp.
    • 8590a94 : Remove flag from intent sent from Catservice to StkApp.

  • platform/hardware/qcom/audio with 2 change(s)
    • cd259b2 : Fix potential overflow in Visualizer effect
    • e239efc : Fix potential overflow in Visualizer effect

  • platform/hardware/ril with 2 change(s)
    • 916e84e : Replace variable-length arrays on stack with malloc.
    • f1f2724 : Replace variable-length arrays on stack with malloc.

  • platform/libcore with 3 change(s)
    • 2ff5d78 : sun.security.util: check lengths in DER encoding are non-negative
    • 8376309 : sun.security.util: check lengths in DER encoding are non-negative
    • f0de41a : ZipFile: Never change file offset during I/O operations.

  • platform/packages/apps/Bluetooth with 2 change(s)
    • 3f9497e : Fix setPairingConfirmation permissions issue (1/2)
    • 46cfeaa : Fix setPairingConfirmation permissions issue (1/2)

  • platform/packages/apps/Dialer with 1 change(s)
    • 7f6e414 : [Cherry-pick] Use the correct handleMmi function

  • platform/packages/apps/Email with 2 change(s)
    • 19df2a4 : Limit account id and id to longs
    • 0bb048c : Limit account id and id to longs

  • platform/packages/apps/Launcher3 with 2 change(s)
    • b4810a3 : Preventing a shortcut which requires permissions from being added to homescreen
    • 93a28fa : Preventing a shortcut which requires permissions from being added to homescreen

  • platform/packages/apps/Settings with 6 change(s)
    • 9058c8c : Null check intent before starting "learn more".
    • 31d9b19 : Null check intent before starting "learn more".
    • 54967fd : Fix NullPointerException when refreshing wifi preferences.
    • 662943f : Remove preference "Searching for Wi-Fi networks..."
    • 575e991 : Fix multiple bluetooth devices bug
    • 1a4f137 : Don't remove wifi preferences when updating AP to avoid GC.

  • platform/packages/apps/Stk with 3 change(s)

  • platform/packages/providers/DownloadProvider with 2 change(s)
    • fad2923 : Enforce calling identity before clearing.
    • 1db23ff : Enforce calling identity before clearing.

  • platform/packages/providers/TelephonyProvider with 2 change(s)
    • 6a33615 : 30481342: Security Vulnerability - TOCTOU in MmsProvider allows access to files as phone (radio) uid
    • ac80481 : 30481342: Security Vulnerability - TOCTOU in MmsProvider allows access to files as phone (radio) uid

  • platform/system/bt with 2 change(s)
    • 30a8f58 : audio_a2dp_hw: Always update frame counter in out_write
    • ea06f02 : Disable auto-pairing for hands-free devices

  • platform/system/core with 4 change(s)
    • 87d2f2d : liblog: add __android_log_close()
    • a3afe4b : liblog: add __android_log_close()
    • 9544ee2 : Fix vold vulnerability in FrameworkListener
    • bbceed5 : Fix vold vulnerability in FrameworkListener

  • platform/system/media with 6 change(s)
    • 0a1cd07 : Fix potential overflow in Visualizer effect
    • 07fa6a0 : Fix potential overflow in Visualizer effect
    • a0cbcf8 : Camera: Prevent data size overflow
    • 8188864 : Camera metadata: Check for inconsistent data count
    • d2c8e5a : Camera: Prevent data size overflow
    • 2577301 : Camera metadata: Check for inconsistent data count

  • platform/system/sepolicy with 2 change(s)
    • d2f8104 : Allow the zygote to stat all files it opens.
    • 539f03c : Allow the zygote to stat all files it opens.