Change-Id: Ib79857aa0c6bdf76d0ab65cd66e044aac4e4084e

This CL integrates the IpSecPacketLossDetector into VCN
route selection. With this change, when a data stall is
reported, the network candidate will be penalized and
then deprioritized during network selection. A network
candidate will stop being penalized until it hitting a timeout
or passing the validation.

Bug: 282996138
Test: atest FrameworksVcnTests(new tests), CtsVcnTestCases
Change-Id: Ifabd6fdea1d5a4fea40cf929dbab7c26d37274ac

Bug: 307556883
Test: n/a
Change-Id: I5001247c342f23b07e1355db7e50ad90cce66b07

syntax from go/android-codereviews#include-an-owners-file-from-a-sub-directory-within-the-same-git-project

Change-Id: Ia02a5efdda1c2dea65753a63cbd2e78e56bac6eb

This CL creates an abstract class NetworkMetricMonitor and a
subclass IpSecPacketLossDetector. IpSecPacketLossDetector
is responsible for continuously monitoring IPsec packet loss
and reporting to the caller when the data loss rate surpass
a threshold. This detector allows the VCN to switch from
the underlying network that has bad quality.

This CL also defines new carrier configs that specify the
data loss threshold and detecting frequency

Bug: 282996138
Test: atest FrameworksVcnTests(new tests), CtsVcnTestCases
Change-Id: I5f4b8e1821bdbb37f0a6de6e1584f8e3c87273f3

Bug: 307556883
Test: n/a
Change-Id: I2836908a00981d54e884a495a662bc293219c0e4

(Discovery tech and Change Routing)

Bug: 300351519
Bug: 319156577
Test: n/a
Merged-In: If664910d00fc673c0329e0cd4489174260eb4f1e
Merged-In: I3035f8b4fac331d827afa8e7bda6109d91ee510a
Change-Id: If664910d00fc673c0329e0cd4489174260eb4f1e

After compatibility check at boot time, the VintfObject is
usually no longer needed. Hence, at boot time, we actively
release the VintfObject object after compatibility check
by not using the shared instance in the first place.

Test: TH
Bug: 270169217
Change-Id: I9b3383cd52fa67eb18dd5837f96caf2b0eab2ce5

Before this change, if the kernel has a set of CONFIGs
that is not compatible with the system image, a dialog
is displayed for user / userdebug builds at boot time.

This check has been doing more harm than good because:

- This check is already enforced at build time and during
  VTS tests (See vts_treble_vintf_framework_test).
- The dialog blocks UI automation for tests. For these UI
  automation tests, they need to respond to the dialog.
- GKI has been enforced ecosystem-wide except for a few
  low-end devices of other verticals. For these non-GKI
  devices, the check enforced by VTS should guard this.
  Hence, the check does not give us any signal.
- During development, a kernel that corresponds to the latest
  release (android15 as of now) might not have valid kernel
  config requirements in userspace. Kernel development schedule
  is usually ahead of the userspace development schedule.
  It does not always carry the string "-mainline-", because
  it is not a mainline kernel. To unblock test automation on
  these latest, bleeding-edge kernels, this kernel check should
  go away.
- This is a small steps towards dropping the dependency on libvintf
  on libandroid_runtime. libvintf links to libselinux, which is
  huge. libandroid_runtime loads this, and the memory stays there
  forever. Ideally, we should disable the whole VINTF check at
  boot time, but let's do this one step at a time.

Bug: 272479887
Bug: 270169217
Test: TH
Change-Id: If24cdca9fb535b8f443c0d21f9a46c7ea25c1f9f

It is not used anywhere.

Test: TH
Bug: 270169217
Change-Id: Ifcc8412ed3629d2447908513faf1d6f5ed3f483c

Non-A/B has been deprecated for long. During non-A/B updates,
compatibility.zip is checked with VintfObject.verify(), which
is another deprecated function that always returns compatible
if a list of package VINTF XMLs are supplied. (see below.) Hence, the private
RecoverySystem.verifyPackageCompatibility was just useless code
that unconditionally returns true except for invalid ZIP file.
Remove it. Replace the public RecoverySystem.verifyPackageCompatibility
and make it return true unconditonally.

VintfObject.verify() with OTA XMLs are deprecated per
http://b/139300422 [VINTF] Delete OTA vintf checking code
in http://r.android.com/1194233 ("Delete VINTF compatibility checks
during OTA."), in 2019. We had decided that compatibility checks
during OTA should be removed, and moved to OTA generation time instead.
Using an old libvintf on the device to check against new libvintf
metadata required forward compatibility of libvintf, which cannot be
achieved. Instead, the device should verify the signature of the OTA to
verify its source.

Test: TH
Bug: 270169217
Bug: 139300422
Change-Id: I775d29e4cd1d165233e07cfb820d1fe343fa4757

Remove the serialNumber parameter from
IStorageManager#prepareUserStorage, StorageManager#prepareUserStorage,
and StorageManagerService#prepareUserStorageInternal, as it is not used.

Bug: 316035110
Test: atest UserDataPreparerTest
Flag: N/A, mechanical refactoring
Change-Id: I4bb716a502fec267fbe0d93e423c7d713c78feaa

Remove the serialNumber parameter from
IStorageManager#createUserStorageKeys and
StorageManager#createUserStorageKeys, as it is not used.

Bug: 316035110
Test: presubmit
Flag: N/A, mechanical refactoring
Change-Id: I11f2507fefb374bea7c8de857424c67108fcb97e

Remove the serialNumber parameter from IStorageManager#unlockCeStorage,
as it is not used.

Bug: 316035110
Test: atest UserControllerTest
Test: atest com.android.server.locksettings
Flag: N/A, mechanical refactoring
Change-Id: Idfb46e625f0ab6915c980e4a39420fe712cb5fb5

Add/update owners for SystemConfig related files
(See comment in: https://r.android.com/2775452)

c/j/c/a/s/SystemConfig.java has also moved so update the OWNERS
file for that too.

Change-Id: Ia773c7851d6aad4223ce5845d0993d527a5fd140

Prevent the disabling of specified apps, avoiding cases
where disabling the app may result in an unusable system.

Bug: 200043113
Change-Id: I5b0ed8c34a40428e8d18072582e46854737c000a

Test: m Settings && adb install -r $ANDROID_PRODUCT_OUT/system_ext/priv-app/Settings/Settings.apk
Test: atest SettingsProviderTest
Bug: 295035851
Bug: 294614538
Change-Id: I7bba46c39d609f314e17eb861341bd599b192612

Test: m framework-all
Test: Compiled and applied OTA using settings app using stable interface
m Settings && adb install -r $ANDROID_PRODUCT_OUT/system_ext/priv-app/Settings/Settings.apk
Bug: 317914533

Change-Id: I393df5218c60303dbea60386c680b75b553ddac2

Change-Id: Icc8a7b899ccb54196ece9cccbfe3658547f0603c

Bug: 317406085
Test: atest FrameworksVcnTests(new tests), CtsVcnTestCases
Change-Id: I8f5b6cb4e8286331626d4d39b864f0298657cab6

Toast message should have a target package that receives and resolves
the intent, otherwise it will be sent to all components in all packages
which could result in crashes.

Bug: b/318460567
Test: manual
Change-Id: I9918ae7d273aa0bda6a39294bba878d9b58cf1b5

Bugs: 307559608
Change-Id: I0c600c1a8c96fef4d820e41a6188862672f535af

This is only enabled for IServiceManager for the fake HwNoService class
that replaces the remote hwservicemanager on devices that have HIDL
disabled.

Test: boot CF without hwservicemanager
Bug: 218588089

Change-Id: Ibd2ad90aad7b70d61b70ec29f654f99dcf7610d1

Bug: 293467489
Test: tested on device
Change-Id: I1abb2b880a37f18c0a5e28c4e22d739703d1f20a
Merged-In: I277458bb1f6d7ece1f9efc8054a8d3d9b3924000

It is effectively an oversight that bluetooth has this
but network stack does not.

This prevents the network stack process from (for example)
using timerfd_create with CLOCK_{REAL,BOOT}TIME_ALARM,
without trampolining through parts of the mainline module
which are shipped as part of the system server.

See:
  https://man7.org/linux/man-pages/man2/timerfd_create.2.html

This change presumably depends on
https://android-review.googlesource.com/c/platform/system/sepolicy/+/2863215



Bug: 316171727
Test: TreeHugger
Signed-off-by: Maciej Żenczykowski <maze@google.com>
Change-Id: I3198262bc45cdd894fead211e9c3c6215dae71de

Bug: 317293523
Test: manual
Change-Id: Ief04be69ad420f55b139033bf59467c62e6bc975

Test: launch_cvd
Bug: 218588089

Change-Id: Ifeb615dccbac68eb050c340bc8809cd07a89dc6f

Test: repo still builds
Bug: 306203494
Change-Id: I3983801865a6b8cd9aba04c24a52f9bb2b1d7577

Bug: 317159909
Test: atest OverlayHostTests
      m OverlayHostTests
      m OverlayHostTests_PlatformSignatureStaticOverlay
      m OverlayHostTests_PlatformSignatureOverlay
      m OverlayHostTests_UpdateOverlaya
      m OverlayHostTests_FrameworkOverlayV1
      m OverlayHostTests_FrameworkOverlayV2
      m OverlayHostTests_AppOverlayV1
      m OverlayHostTests_AppOverlayV2
Change-Id: I14491d2cbaa98ec72de1eb149e1a82a7f061d5d0

Due to a bug in Metalava the `VisiblySynchronized` check would report
an erroneous duplicate baseline entry that referenced some internal
implementation detail, e.g. `PsiThisExpression` instead of an actual
API element. Another entry with the same message and correct API
element was also written.

The Metalava bug has been fixed so this change removes the erroneous
entry.

Bug: 311690008
Test: m checkapi
Merged-In: If5550b8cc0a97f02fb7fb1bd949f8e5517007d4c
Change-Id: I79b3c9802e40e74ba7f0c9b102dc201d01ddeab5

Test: Presubmit only
Bug: 297373084
Merged-In: I499b6a99e53775abf084f741802463940730091a
Change-Id: I499b6a99e53775abf084f741802463940730091a

Test: automated
Bug: 117306409
Merged-In: If3a3de2325de0c31ebe92ab41631869008425728
Change-Id: If3a3de2325de0c31ebe92ab41631869008425728

Bug: 309649371
Test: N/A
Change-Id: I4adff5cd92042208fa2d695423fdfa0072f916b2

Test: N/A
Change-Id: I99744ca971281130dbe57626882ac10e382ea949

This reverts commit 4a11b111.

This change was originally reverted due to a bug in the child commit of
a change in the same topic which caused process group kills not to occur
when using cgroup.kill. Now that has been fixed, bring back this change
with the fix.

Bug: 301871933
Change-Id: I81dde53f21ba2e01c01dfd5f7009ea1ef690b582

After this change, the profile inline cache threshold is configurable
through a system property "dalvik.vm.ps-inline-cache-threshold".

Bug: 309434431
Test: Set "dalvik.vm.ps-inline-cache-threshold" to different values, run
  a compose app benchmark, dump the profile, and see the difference in
  the profiles.
Change-Id: Ie430d8d21e2d4af92385b244bf327900b9c14d93

Bug: 297833427
Test: N/A
Change-Id: I8bd480d7deb74062f3aaf61f30b1335443f82653

Rename from `isOtherServiceEnabled` to `isCategoryOtherServiceEnabled`.

Bug: 315130804
Test: Compiles
Change-Id: I7b97b6de0bd702e695557a4d55a1f80e612f92c8

Add @IntDef to return values of getAdapterState.

Bug: 315228674
Test: Compiles
Change-Id: I8134a68c36950e89cd65c2b4ab9dd9cefb2cb7b4

UIDs and GIDs are unsigned on linux. Badly behaved callers are
occasionally passing negative integers for UIDs through JNI to uid_t
which is unsigned. Prevent this by throwing a JNI exception.

12-08 23:15:34.542  1000  3354  3388 I ActivityManager: Force stopping com.android.cts.install.lib.testapp.A appid=10109 user=-1: deletePackageX
12-08 23:15:34.543  1000  3354  3388 E libprocessgroup: No such cgroup attribute: /sys/fs/cgroup/uid_4294877405/cgroup.freeze
12-08 23:15:34.543  1000  3354  3388 W libprocessgroup: Failed to apply Frozen process profile: No such file or directory

Test: 12-11 18:43:23.145  3432  3466 I ActivityManager: Force stopping com.android.cts.install.lib.testapp.A appid=10109 user=-1: deletePackageX
Test: 12-11 18:43:23.146  3432  3466 E ActivityManager: Unable to freeze cgroup uid: -89891: java.lang.IllegalArgumentException: uid is negative: -89891
Test: 12-11 18:43:23.147  3432  3466 E ActivityManager: Unable to unfreeze cgroup uid: -89891: java.lang.IllegalArgumentException: uid is negative: -89891
Bug: 316198981
Change-Id: I24cb1e65e502ef6e09226538efe6ed54c8db7cdd