OSDN Git Service

(root) / android-x86 / external-koush-Superuser.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: 7d8d00f)
Prevent clickjacking of superuser requests
authorVeeti Paananen <veeti.paananen@rojekti.fi>
Fri, 18 Jul 2014 09:23:15 +0000 (12:23 +0300)
committerVeeti Paananen <veeti.paananen@rojekti.fi>
Sun, 20 Jul 2014 03:18:30 +0000 (06:18 +0300)
Enable filterTouchesWhenObscured on the accept request button to prevent
possible clickjacking attacks. This is a measure used in many sensitive
dialogs (app installation, backup & VPN) in AOSP.

Change-Id: I33c18c449c909b97b29b981bffe7f3095adee506

Superuser/res/layout/request.xml patch | blob | history

diff --git a/Superuser/res/layout/request.xml b/Superuser/res/layout/request.xml
index bf2a20a..95b1c41 100644 (file)
--- a/Superuser/res/layout/request.xml
+++ b/Superuser/res/layout/request.xml
@@ -119,6 +119,7 @@
             android:layout_height="wrap_content"
             android:layout_weight="1"
             android:enabled="false"
+            android:filterTouchesWhenObscured="true"
             android:text="@string/allow" />
     </LinearLayout>
 
external/koush/Superuser
About OSDN
Find Software
Develop Software
Help