Android-x86

Fork

• external-gbm_gralloc
• hardware-powerbtnd
• hardware-intel-libva
• manifest
• device-generic-x86_64
• device-generic-common
• system-bt
• hardware-intel-intel-driver
• external-bluetooth-bluedroid
• build
• device-generic-x86
• packages-apps-Camera2
• device-viewsonic-viewpad10
• packages-apps-Taskbar
• packages-apps-Gallery2
• system-media
• hardware-intel-common-libva
• external-vboxguest-linux-modules
• system-netd
• hardware-intel-common-vaapi
• external-swiftshader
• external-efibootmgr
• device-generic-openthos
• packages-apps-Settings
• hardware-ril
• packages-apps-CMFileManager
• packages-apps-Eleven
• external-toybox
• external-drm_hwcomposer
• hardware-libhardware_legacy
• system-extras
• hardware-libsensors
• hardware-liblights
• hardware-broadcom-libbt
• packages-apps-TSCalibration2
• system-core
• packages-apps-Bluetooth
• device-generic-firmware
• device-generic-goldfish
• external-s2tc
• device-asus
• device-amd
• device-common
• device-hp-tx2500
• device-ibm-thinkpad
• device-lenovo-s103t
• device-tegatech-tegav2
• external-srec
• external-webkit
• external-wpa_supplicant_6
• packages-apps-AndroidTerm
• packages-apps-FileManager
• external-tslib
• external-modules-rtl8723au
• packages-inputmethods-PinyinIME
• sdk
• system-bluetooth
• hardware-alsa_sound
• device-asus-laptop
• device-amd-persimmon
• development
• device-dell-sparta
• device-vm-vm
• hardware-wacom-input
• libcore
• packages-apps-Browser
• packages-apps-Camera
• prebuilt
• device-motion-m1400
• device-viliv-s5
• packages-apps-Superuser
• device-asus-eeepc
• device-generic-goldfish-opengl
• external-mplayer
• external-wpa_supplicant
• frameworks-policies-base
• ndk
• packages-apps-Calendar
• packages-apps-ConnectBot
• packages-apps-Contacts
• packages-apps-DeskClock
• packages-apps-LIME
• packages-apps-Music
• packages-providers-DownloadProvider
• packages-wallpapers-Basic
• packages-wallpapers-MagicSmoke
• packages-wallpapers-MusicVisualization
• packages-providers-ImProvider
• packages-apps-AlarmClock
• packages-apps-IM
• packages-apps-Launcher
• packages-apps-SoundRecorder
• external-opencore
• vendor-intel-houdini
• vendor-samsung-q1u
• external-dhcpcd
• hardware-menlow-psb
• hardware-menlow-ioport
• push
• external-eject
• external-v86d
• external-koush-Superuser
• external-koush-Widgets
• frameworks-native
• external-libpciaccess
• external-bluetooth-bluez
• external-libtruezip
• external-stagefright-plugins
• external-ntfs-3g
• external-parted
• hardware-intel-hwcomposer
• external-mesa
• external-ffmpeg
• external-llvm
• external-libdrm
• external-e2fsprogs
• external-bluetooth-glib
• hardware-broadcom-wlan
• external-drm_gralloc
• hardware-gps
• external-busybox
• kernel
• external-alsa-lib
• external-alsa-utils
• system-vold
• frameworks-base
• frameworks-av
• external-bluetooth-sbc
• packages-apps-Trebuchet
• dalvik
• hardware-x86power
• packages-services-Analytics
• external-ppp
• packages-apps-Launcher3
• external-wpa_supplicant_8
• hardware-intel-audio_media
• hardware-intel-libsensors
• hardware-libaudio
• hardware-libcamera
• external-googleanalytics
• hardware-libhardware
• hardware-interfaces
• bootable-newinstaller
• art
• external-efivar
• hardware-memtrack
• system-connectivity-wificond
• bionic
• external-kernel-drivers
• external-drm_framebuffer
• external-exfat
• external-openssh
• external-wireless-tools
• external-mksh
• external-libffi
• external-musl-libc
• system-hardware-interfaces
• external-minigbm
• external-IA-Hardware-Composer
• external-drmfb-composer
• external-alsa-ucm-conf
• external-libncurses
• external-llvm-project
• system-linkerconfig

Donation

Merge remote-tracking branch 'lineage/cm-14.1' into cm-14.1-x86

Merge remote-tracking branch 'lineage/cm-14.1' into cm-14.1-x86

[BACKPORT]NetD : Allow passing in interface names for vpn app restriction

Cherry-picked from https://review.lineageos.org/#/c/LineageOS/android_system_netd/+/232794/

Change-Id: Iab28b872bee61e9b6da7fe43992510fb48fa32e0

Merge remote-tracking branch 'lineage/cm-14.1' into cm-14.1-x86

Conflicts:
server/RouteController.cpp

Invalidate dst caches when changing network permissions.

Bug: 64103722
Test: builds
Test: connected socket UDP traffic switches to wifi when cell goes into background
Change-Id: I22e618be40d61be6d5f56a6fc4e5a71e1606c2f8
Merged-In: I22e618be40d61be6d5f56a6fc4e5a71e1606c2f8
(cherry picked from commit 639696d77d19edb8298a21500b9fe1d101ec0b62)

Don't allow seamless handover to networks requiring permissions.

Currently, implicitly-marked sockets continue to work when the
network changes permission. This makes it so that UDP sockets
connected on a foreground network will continue to work even if
the network moves into the background (e.g., when the linger
timer fires on cell data with mobile data always on).

Instead, make it so that sockets implicitly marked to a network
become unroutable when the network starts requiring permissions.
Explicitly-marked sockets will continue to be routed on the
network, as usual.

This is consistent with what we do for TCP: when a network
changes permissions, all implicitly-marked sockets on that
network are closed using SOCK_DESTROY.

This change should not affect any other behaviour because:

- Netd only ever implicitly marks sockets to the default network
or to a bypassable VPN that applies to the caller.
- In both cases, at the time of marking, the network does not
require permissions because:
- VPNs don't support permissions.
- The default network never requires any permissions:
- ConnectivityService's mDefaultRequest specifies
NOT_RESTRICTED.
- The only case where a NOT_RESTRICTED network can require a
permission is if it's a background network, and the default
network is, by definition, never a background network.
- VPNs can't change permissions.
- If the network is still the default network, the lack of this
implicit rule doesn't matter.

Therefore, the only case where this rule can alter routing is if
a socket is implicitly marked on the default network and that
network, after ceasing to be the default, changes permissions.

Bug: 64103722
Test: builds
Test: manually observed IP rules while changing network permissions
Change-Id: I255a9d216c50aa47bb951be9bd6cce59a12c6165
Merged-In: I255a9d216c50aa47bb951be9bd6cce59a12c6165
(cherry picked from commit 050085a56162dff203979e8c62cb57449f5f7a26)

Merge remote-tracking branch 'x86/nougat-x86' into cm-14.1-x86

Only set protectFromVpn if explicitlySelected is also true.

When a secure VPN is up, setting protectFromVpn=1 and explicitlySelected=0
causes the probe routing lookups used by _have_ipv4 and _have_ipv6 to skip
the VPN rule, instead selecting the default network.

This means that the address families for which we query DNS records are
determined by the address families of the the default network, not those of
the VPN.

If explicitlySelected==true, setting protectFromVpn=true (if the app can
protect its sockets) results in querying the address families from the
specified network, which is correct.

Test: as follows
- built
- flashed
- booted
- runtest -x netd_integration_test.cpp passes
- testing per bug discussion
Bug: 37131664
Bug: 37347238
Change-Id: I7cf322a047494fd70c3c4d8862d53d6a6dac66de

Use new-style UID routing.

Kernel prebuilts for OC devices have been updated, so the legacy
attributes are not being used. Use the new attributes only. This
will ensure that devices aren't using the old code by mistake, as
any such devices will fail the VPN CTS tests.

(cherry picked from commit 882e467ff7b83de868fa0b9a9beb9036bf14aede)

Cherry-picking this to AOSP now that most external kernels have
been updated as well.

Bug: 16355602
Test: bullhead builds, boots
Test: netd_{unit,integration}_test pass
Test: has been running in internal master for several weeks.
Change-Id: I1c4e8c9281a843417a3a52294a1b7d3e6502bee6

Set both legacy and new UID routing attributes.

This should work on kernels that support either, as long as they
are older than 4.8.

Test: netd_integration_test passes with updated iproute and kernel
Test: netd_integration_test passes with existing iproute and kernel
Test: ConnectivityManagerTest and HostsideVpnTests pass on existing kernel
Test: ConnectivityManagerTest and HostsideVpnTests pass on updated kernel
Bug: 16355602
Change-Id: I9a2ef08ba2782587f43ea7d0609f5f07f6c3adb0

SoftAp: Fix compilation in netd if LIBWPA_CLIENT_EXISTS undefined.

startSoftap has an additional parameter ifname which is used only when
LIBWPA_CLIENT_EXISTS was defined. This shall result into compilation
issues when LIBWPA_CLIENT_EXISTS undefined. Hence keep hostapd_unix_file
variable independent of flag LIBWPA_CLIENT_EXISTS

CRs-Fixed: 1098883
Change-Id: I5577fb171d2d62dbf4c7a9ba945378e0c17d11d4

Android 7.1.2 Release 2 (N2G47E)
-----BEGIN PGP SIGNATURE-----

iEYEABECAAYFAljh7rAACgkQ6K0/gZqxDnjkHACfXjF6dPLMIi5OXGd64VRetNGz
b30AoIzDfB+eXclYhQuJwIX3ASPIVZZs
=fBbp
-----END PGP SIGNATURE-----

Merge tag 'android-7.1.2_r2' into cm-14.1

Android 7.1.2 Release 2 (N2G47E)

Change-Id: Ibe6b430b8fe7afbe371e492ee3c881f341a62e8f

NetD : Allow passing in interface names for wifi/data app restriction

CYAN-3976
CRACKLING-834

Changes from original cm-13.0 patch:

*) Move wifi/cell data app restrict rules into their own chain
(instead of adding directly to INPUT/OUTPUT). Now they
are flushed during soft restart.

*) Introduce helper function manipulateRestrictAppsInOut() to
reduce code duplication and cleanup the asprintf() /
manipulateRestrictApps() call sequence.

Change-Id: Ie91f7f4a826047cd6bd0de9a4246285d90ed4c83
(cherry picked from commit 38e79bccd6091ea0b929183cc9d9167f41eb4a2c)

Revert "netd: Trap dns calls"

This reverts commit 6139b8420b95000774eca78a30e1b1d75db8f68d.

SoftapController: Move startSoftap default arg to declaration

Fixes non QSAP SDK build after
commit 56adaf431dd9fbebf876cbd9ba1ecbc68425823e
"SoftapController: support for Fast Session Transfer"

Change-Id: I95928684b4018b9ef3e664728c655924099855a2

netd: Don't build the QSAP SDK on Nexii

* Unbreak tethering on Bullhead and friends.

Change-Id: I8021fbd98f08f5e3916a9ddcaacf56d188bceb9e

DO NOT MERGE Add success/errno to connect() event reporting

Test: $ runtest -x system/netd/tests/netd_integration_test.cpp
Bug: 32198976

(cherry picked from commit 794c5c714a4d4cf169769ec956845a6fb24e7ebc)

Change-Id: I0a7990d7211d5355a48d941ee9659c16e38817ca

Merge 0f4e969926ab32df4a4602db0218da4caf4fb45e on remote branch

Change-Id: If2b67b31132fc9fc493cb53922da392f01ad050f

DO NOT MERGE onConnectEvent does not report udp connects

Test: manual test + $ runtest -x system/netd/test/netd_integration_test.cpp
Bug: 32198976
Bug: 29748723
Change-Id: I476ada792092db80c8fb27cb40d5d7ea0f26de46

Compilation fix: N-MR1 merge.

Change-Id: I575f541d9f578fb3608a1ce1ca001a5479207f56

Merge N-MR1 to remote branch.

Change-Id: I69bd3dd4892b3d6ddf94c923af9df402d3e190a4

Merge c1d402e393aafbeece086766be3be1bb7183d9af on remote branch

Change-Id: Ib836e36a27c8a9f784c1515a9ae9109a20e96974

Merge commit '1f28b6403effcbf8a2c6fd35a7b1474b60bc0463' into remote

Conflicts:
server/Android.mk
server/BandwidthController.cpp

Change-Id: I55ba1d27b52197c3c37f9ad148d51c677439f711

Merge 970d4a958e7fc0f05a5f5f3dbf1cf68d34278c12 on remote branch

Change-Id: I17f7743d81f8b3f0d282ff36894fa0599a3cd541

Promotion of android-framework.lnx.2.0.c1-00011.

CRs Change ID Subject
--------------------------------------------------------------------------------------------------------------
1090712 I7f71b2dfa1285a6f85e444ab15e14b63b1fe8be3 SoftAp: Try to connect hoastapd on correct interface

Change-Id: Iebd30f3a5b75d2669c9a46fe92c70bd69c78b437
CRs-Fixed: 1090712

DO NOT MERGE Comment out tests/benchmarks/Android.mk on nyc-mr2-dev

netd benchmark can't build on nyc-mr2-dev, because google-benchmark project is out of date
and won't be backported, and thus the content of this file is commented out to disable it.
In order to run netd benchmark locally you can uncomment the content of this file and follow
instructions in ag/1673408 (checkout that commit and build external/google-benchmark and
system/netd locally and then run the benchmark locally)

Bug: 29748723
Change-Id: Iaa101f79f1b6b20fa856b7bf8ca95c55abe05f05

DO NOT MERGE Fix use-after-free of mClient member DnsProxyListener::GetHostByNameHandler::run().

Found by ASan.

Test: Flash ASan build, boot up and verify that system/netd does not
crash with AddressSanitizer induced errors.

Bug: 32810214
Bug: 29748723

(cherry picked from commit f8bb7ecc72e7a18ff5528613f79316634e8f6885)

Change-Id: I8814756588b2bb4c78583a829e08d33305797642

DO NOT MERGE Add null check for hp in DnsProxyListener::GetHostByNameHandler

Bug: 32399924
Bug: 29748723
Test: runtest -x netd_integration_test.cpp

(cherry picked from commit 7a8a601190f948f18b1cc8c043f3a265c1ed183e)

Change-Id: I8e47c2461dc7e8bf34128a2d56ba936e2535c262

DO NOT MERGE Add connect event reporting

Adds reporting of connect events including netId, destination IP address,
destination port, uid and connect latency.

Also enables the relevant tests in the connect_benchmark.

Currently ignores the new data it receives, further work will be
done in the subsequent CLs.

Test: for now just the benchmarking, in the future CTS

Bug: 29748723

(cherry picked from commit 4b9b78aa02336de9291e5085401cef44c03c3bba)

Change-Id: I3ec05db3a9b914af38307282ede3f3439716b1ef

DO NOT MERGE Fixing the netd benchmark

Bug: 29748723

(cherry picked from commit fe7f72b4709c2b735287d817b6f1277e2f40b11c)

Change-Id: I3de12cab6d93a1ec928d47c7b3656eac99a91fb6