Android Oreo AOSP Changes

Changes from 8.0.0_r29 (OPR2.170623.027) to 8.0.0_r30 (OPR3.170623.013):

Warning Releases with no significant changes other than version bump in platform/build component are likely to only feature proprietary binary blob (e.g. firmwares) changes.

Newly Added Components (0):

None

Removed Components (0):

None

Updated Components (23):

  • device/google/dragon with 1 change(s)
    • feefe70 : Fix audio record pre-processing

  • device/google/marlin with 1 change(s)
    • 1d367a3 : QCamera2/HAL3: correct mutex lock/unlock sequence

  • platform/art with 1 change(s)
    • 1c62719 : Fix region space when used with SetLengthToUsableSizeVisitor.

  • platform/build with 16 change(s)
    • 0264be1 : Version bump to OPR3.170623.013
    • cab79c9 : Version bump to OPR3.170623.012
    • facf150 : Version bump to OPR3.170623.011
    • c0b04b9 : Version bump to OPR3.170623.010
    • 0e11fea : Update Security String to 2017-11-05 on oc-dev bug:65631379 (cherry picked from commit d24487a2f2f215e5de8aad8117e58f81eaf1529c)
    • c0559ab : Update Security String to 2017-11-01 on oc-dev bug:65631379 (cherry picked from commit 8f4a4c213118ce088245abc4f31204393bab62a5)
    • 5f275a8 : Update platform security string to 2017-10-05 in oc-dev Bug:64896113 (cherry picked from commit 4e140ce86ac37b5a5aec06058262fe1a7a835909)
    • 883f74f : Update platform security string to 2017-10-01 in oc-dev Bug:64896113 (cherry picked from commit 80d3742026e1640e3cbcfb2bcbc9244733dc05d4)
    • 1c4cf3f : Version bump to OPR3.170623.007
    • d3d5458 : Version bump to OPR3.170623.006
    • 90bdb56 : Version bump to OPR3.170623.005
    • 95daf1c : Version bump to OPR3.170623.004
    • f296cd8 : Updating Security String to 2017-09-05 Bug:63846344 (cherry picked from commit 32f388f655be42e2c7b724ec8568164877a5507b)
    • cd32289 : Updating Security String to 2017-09-01 Bug:63846344 (cherry picked from commit f1c17f17ff96d2a9705d6b7a003374c9f83ba14d)
    • 57a1ac1 : Version bump to OPR3.170623.002
    • 46574b3 : OPR3-170623.001

  • platform/development with 1 change(s)
    • 20b4c12 : Fix usage of a changed IPC API

  • platform/external/dnsmasq with 2 change(s)
    • 7fa9cbf : Add extra (size_t) cast to avoid compiler warning.
    • 5721a01 : Make dnsmasq more stable.

  • platform/external/libavc with 7 change(s)
    • 79157c5 : Decoder: Updated error check while parsing num_ref_idx_lx_active.
    • b5ad5bc : Decoder: Corrected variable datatypes in ih264d_get_implicit_weights.
    • 3c8751c : Added an out of bound check on u4_num_bufs in input argument
    • 7d37030 : Decoder: Conceal picture only if valid picture buffer is obtained.
    • bf05d5e : Decoder: Fixed allocation of pv_map_ref_idx_to_poc_buf.
    • 895e36e : Decoder: Fixed overflow in refernce list creation.
    • 6da32f0 : Initialize DPB structures to valid values.

  • platform/external/libhevc with 6 change(s)
    • 07ab3f7 : Added an out of bound check on u4_num_bufs in input argument
    • 5d29837 : Fix tile index buf alloc size
    • 217651c : Fix slice decrement for skipped slices
    • 2de1b02 : Ensure CTB size 16 for clips with tiles and width/height = 4096
    • f4b8363 : Limit boundary PU sizes in case of errors
    • 0373720 : Fix array size for hrd parameters

  • platform/external/libmpeg2 with 6 change(s)
    • 7257deb : Propagating Error From impeg2d_pre_pic_dec_proc
    • 501d34f : Check on Picture Dimensions
    • 1cadf01 : Fix Half Pel MC on Last Ref Row
    • 739ec67 : Check Number of MBs to Skip.
    • 58e4615 : Replace memcpy with memmove to Solve Memory Overlap Error
    • e68d6b4 : Fixed Memory Overflow Errors

  • platform/external/tremolo with 2 change(s)
    • d58fa3e : Fix out of bounds access in codebook processing
    • 83d9fd5 : Use heap instead of alloca in res012.c

  • platform/frameworks/av with 15 change(s)
    • 32aafab : Revert "Fix memory leaks"
    • c8d70ef : Fix memory leaks
    • cca9a3a : Put media.metrics service into proper group
    • 3dd3cea : EffectBundle: Check parameter and value size
    • 3584eea : Track graphic buffer mode in OMXNodeInstance
    • 2ee4d08 : Check buffer size in useBuffer in software components
    • b6bacd4 : stagefright: avoid buffer overflow in base64 decoder
    • 6076181 : Add EFFECT_CMD_SET_PARAM parameter checking to Downmix and Reverb
    • d0e30e1 : Fix memory leak in OggExtractor
    • 5665aee : Skip track if verification fails
    • d49a2a9 : stagefright: fix crash due to bad timestamp index
    • 3ec03b0 : stagefright: check aac_frame_length to prevent infinite loop
    • 64b37e0 : MediaPlayerService: fix access of mPlayer in client
    • 25c38f4 : audio effects: filter reserved effect commands
    • aff88a0 : Check frame handle validity before freeing buffer.

  • platform/frameworks/base with 16 change(s)
    • 5a472f3 : Revert "Prevent getting data from Clipboard if device is locked"
    • de32b1f : disable carrier actions on redirection by default
    • c1bbb10 : Prevent getting data from Clipboard if device is locked
    • 5b586f5 : DPC should not be allowed to grant development permission
    • 78c718d : Backport overlay security fix
    • 2befed8 : Fix race condition of removing surface.
    • 1d76955 : Fix security hole in GateKeeperResponse.
    • 16c3061 : Enforce policy for camera gesture in keyguard
    • 05eb649 : Fix BLE scan leaks
    • 86f6315 : Improve AVRCP quality and state handling (2/2)
    • 7490e00 : power: throttle interaction hints
    • 1bcbd6e : Fix nomanservice notificationrecord leak
    • b18b799 : Properly compute default and system set flag on an upgrade
    • ad45462 : Add a missing null check
    • 83d81dc : Handle case for missing permissions - fix NPE
    • a0fe2ae : Report permission flags for all protections based on SDK

  • platform/frameworks/native with 1 change(s)
    • 5326732 : surfaceflinger: fix a nullptr dereference

  • platform/frameworks/opt/telephony with 2 change(s)
    • fb1cc63 : handle NPE for findAppRequestInfoSmsIntentLocked
    • c3ef09d : Ensure IMS dial uses the correct CLIR mode.

  • platform/hardware/qcom/media with 1 change(s)
    • c168c3c : mm-video-v4l2: venc: Protect buffer from being freed while accessing

  • platform/libcore with 2 change(s)
    • 53d7894 : Fix failing FileTest#test_canonicalCachesAreOff()
    • 87e919d : Disable File.getCanonicalPath caches.

  • platform/packages/apps/Bluetooth with 2 change(s)
    • 2f76650 : AVRCP: Only send the active player for media player listings
    • a093b5a : Improve AVRCP quality and state handling (1/2)

  • platform/packages/apps/Messaging with 1 change(s)
    • d2a102b : 37742976 - Catch bad gifs

  • platform/packages/apps/PackageInstaller with 1 change(s)
    • ba4bda4 : Backport overlay security fix

  • platform/packages/apps/Settings with 1 change(s)
    • fdf3a31 : Backport overlay security fix

  • platform/system/bt with 12 change(s)
    • 7712497 : Fix build error for AVRCP13 compat fix
    • 0a7d0bd : Change our AVRCP capabilities if the remote device only supports 1.3
    • b6291d4 : GAP: Set service_id before calling gap_release_ccb
    • a864a50 : Ensure that services are cleaned from the GattServer HandleMap.
    • 5809597 : SDP: Bounds check 'id' parameter for free_sdp_slot()
    • dc29639 : Add missing extension length check while parsing BNEP control packets
    • e89b55f : Free p_pending_data from tBNEP_CONN to avoid potential memory leaks
    • 4214a06 : Add missing continuation offset check for SDP continuation requests
    • ba0e694 : Disable PAN Reverse Tethering when connection originated by the Remote
    • 09ed13b : Add missing packet length checks while parsing BNEP control packets
    • a93eda4 : Add a missing check for PAN buffer size before copying data
    • 2410b1e : Allocate buffers of the right size when BT_HDR is included

  • platform/system/core with 1 change(s)
    • 95786ba : Fix integer overflow in utf{16,32}_to_utf8_length

  • platform/system/netd with 2 change(s)
    • badb15e : Invalidate dst caches when changing network permissions.
    • 3839a2b : Don't allow seamless handover to networks requiring permissions.