Gitiles
Code Review Sign In
review.shift-gmbh.com / SHIFTPHONES / android_frameworks_native / 7d0eb60ead42a8ba1ba4f2521717c8468740aa1a / . / libs / binder / AppOpsManager.cpp
blob: a494e223920b7a39dd41564dc5abd3d0eaf944be [file] [log] [blame]
Dianne Hackborn5da5ca52013-02-12 15:12:21 -0800[diff] [blame]1/*
2 * Copyright (C) 2013 The Android Open Source Project
3 *
4 * Licensed under the Apache License, Version 2.0 (the "License");
5 * you may not use this file except in compliance with the License.
6 * You may obtain a copy of the License at
7 *
8 * http://www.apache.org/licenses/LICENSE-2.0
9 *
10 * Unless required by applicable law or agreed to in writing, software
11 * distributed under the License is distributed on an "AS IS" BASIS,
12 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13 * See the License for the specific language governing permissions and
14 * limitations under the License.
15 */
16
Christopher Wiley5975c002016-02-12 15:41:08 -0800[diff] [blame]17#include <mutex>
Dianne Hackborn5da5ca52013-02-12 15:12:21 -0800[diff] [blame]18#include <binder/AppOpsManager.h>
Dianne Hackborn913b63d2013-07-17 17:26:15 -0700[diff] [blame]19#include <binder/Binder.h>
Dianne Hackborn5da5ca52013-02-12 15:12:21 -0800[diff] [blame]20#include <binder/IServiceManager.h>
21
22#include <utils/SystemClock.h>
23
24namespace android {
25
Christopher Wiley8ed42702016-02-05 09:08:23 -0800[diff] [blame]26namespace {
27
28#if defined(__BRILLO__)
29// Because Brillo has no application model, security policy is managed
30// statically (at build time) with SELinux controls.
31// As a consequence, it also never runs the AppOpsManager service.
32const int APP_OPS_MANAGER_UNAVAILABLE_MODE = AppOpsManager::MODE_ALLOWED;
33#else
34const int APP_OPS_MANAGER_UNAVAILABLE_MODE = AppOpsManager::MODE_IGNORED;
35#endif // defined(__BRILLO__)
36
37} // namespace
38
Dianne Hackborn5da5ca52013-02-12 15:12:21 -0800[diff] [blame]39static String16 _appops("appops");
Dianne Hackborn913b63d2013-07-17 17:26:15 -0700[diff] [blame]40static pthread_mutex_t gTokenMutex = PTHREAD_MUTEX_INITIALIZER;
41static sp<IBinder> gToken;
42
43static const sp<IBinder>& getToken(const sp<IAppOpsService>& service) {
44 pthread_mutex_lock(&gTokenMutex);
Yi Kongfdd8da92018-06-07 17:52:27 -0700[diff] [blame]45 if (gToken == nullptr || gToken->pingBinder() != NO_ERROR) {
Dianne Hackborn913b63d2013-07-17 17:26:15 -0700[diff] [blame]46 gToken = service->getToken(new BBinder());
47 }
Zhijun He20d03802013-07-22 17:09:35 -0700[diff] [blame]48 pthread_mutex_unlock(&gTokenMutex);
Dianne Hackborn913b63d2013-07-17 17:26:15 -0700[diff] [blame]49 return gToken;
50}
Dianne Hackborn5da5ca52013-02-12 15:12:21 -0800[diff] [blame]51
52AppOpsManager::AppOpsManager()
53{
54}
55
Christopher Wiley8ed42702016-02-05 09:08:23 -0800[diff] [blame]56#if defined(__BRILLO__)
57// There is no AppOpsService on Brillo
58sp<IAppOpsService> AppOpsManager::getService() { return NULL; }
59#else
Dianne Hackborn5da5ca52013-02-12 15:12:21 -0800[diff] [blame]60sp<IAppOpsService> AppOpsManager::getService()
61{
Christopher Wiley8ed42702016-02-05 09:08:23 -0800[diff] [blame]62
Christopher Wiley5975c002016-02-12 15:41:08 -0800[diff] [blame]63 std::lock_guard<Mutex> scoped_lock(mLock);
Dianne Hackborn5da5ca52013-02-12 15:12:21 -0800[diff] [blame]64 int64_t startTime = 0;
Dianne Hackborn5da5ca52013-02-12 15:12:21 -0800[diff] [blame]65 sp<IAppOpsService> service = mService;
Yi Kongfdd8da92018-06-07 17:52:27 -0700[diff] [blame]66 while (service == nullptr || !IInterface::asBinder(service)->isBinderAlive()) {
Eino-Ville Talvalae88a85e2013-02-19 12:54:57 -0800[diff] [blame]67 sp<IBinder> binder = defaultServiceManager()->checkService(_appops);
Yi Kongfdd8da92018-06-07 17:52:27 -0700[diff] [blame]68 if (binder == nullptr) {
Eino-Ville Talvalae88a85e2013-02-19 12:54:57 -0800[diff] [blame]69 // Wait for the app ops service to come back...
70 if (startTime == 0) {
71 startTime = uptimeMillis();
72 ALOGI("Waiting for app ops service");
73 } else if ((uptimeMillis()-startTime) > 10000) {
74 ALOGW("Waiting too long for app ops service, giving up");
Yi Kongfdd8da92018-06-07 17:52:27 -0700[diff] [blame]75 service = nullptr;
Christopher Wiley6dd45522016-02-05 09:06:30 -0800[diff] [blame]76 break;
Dianne Hackborn5da5ca52013-02-12 15:12:21 -0800[diff] [blame]77 }
Eino-Ville Talvalae88a85e2013-02-19 12:54:57 -0800[diff] [blame]78 sleep(1);
79 } else {
80 service = interface_cast<IAppOpsService>(binder);
81 mService = service;
Dianne Hackborn5da5ca52013-02-12 15:12:21 -0800[diff] [blame]82 }
83 }
Dianne Hackborn5da5ca52013-02-12 15:12:21 -0800[diff] [blame]84 return service;
85}
Christopher Wiley8ed42702016-02-05 09:08:23 -0800[diff] [blame]86#endif // defined(__BRILLO__)
Dianne Hackborn5da5ca52013-02-12 15:12:21 -0800[diff] [blame]87
88int32_t AppOpsManager::checkOp(int32_t op, int32_t uid, const String16& callingPackage)
89{
90 sp<IAppOpsService> service = getService();
Yi Kongfdd8da92018-06-07 17:52:27 -0700[diff] [blame]91 return service != nullptr
Christopher Wiley8ed42702016-02-05 09:08:23 -0800[diff] [blame]92 ? service->checkOperation(op, uid, callingPackage)
93 : APP_OPS_MANAGER_UNAVAILABLE_MODE;
Dianne Hackborn5da5ca52013-02-12 15:12:21 -0800[diff] [blame]94}
95
96int32_t AppOpsManager::noteOp(int32_t op, int32_t uid, const String16& callingPackage) {
97 sp<IAppOpsService> service = getService();
Yi Kongfdd8da92018-06-07 17:52:27 -0700[diff] [blame]98 return service != nullptr
Christopher Wiley8ed42702016-02-05 09:08:23 -0800[diff] [blame]99 ? service->noteOperation(op, uid, callingPackage)
100 : APP_OPS_MANAGER_UNAVAILABLE_MODE;
Dianne Hackborn5da5ca52013-02-12 15:12:21 -0800[diff] [blame]101}
102
Svet Ganov616554c2018-02-26 13:27:26 -0800[diff] [blame]103int32_t AppOpsManager::startOpNoThrow(int32_t op, int32_t uid, const String16& callingPackage,
104 bool startIfModeDefault) {
Dianne Hackborn5da5ca52013-02-12 15:12:21 -0800[diff] [blame]105 sp<IAppOpsService> service = getService();
Yi Kongfdd8da92018-06-07 17:52:27 -0700[diff] [blame]106 return service != nullptr
Svet Ganov616554c2018-02-26 13:27:26 -0800[diff] [blame]107 ? service->startOperation(getToken(service), op, uid, callingPackage,
108 startIfModeDefault) : APP_OPS_MANAGER_UNAVAILABLE_MODE;
Dianne Hackborn5da5ca52013-02-12 15:12:21 -0800[diff] [blame]109}
110
111void AppOpsManager::finishOp(int32_t op, int32_t uid, const String16& callingPackage) {
112 sp<IAppOpsService> service = getService();
Yi Kongfdd8da92018-06-07 17:52:27 -0700[diff] [blame]113 if (service != nullptr) {
Dianne Hackborn913b63d2013-07-17 17:26:15 -0700[diff] [blame]114 service->finishOperation(getToken(service), op, uid, callingPackage);
Dianne Hackborn5da5ca52013-02-12 15:12:21 -0800[diff] [blame]115 }
116}
117
118void AppOpsManager::startWatchingMode(int32_t op, const String16& packageName,
119 const sp<IAppOpsCallback>& callback) {
120 sp<IAppOpsService> service = getService();
Yi Kongfdd8da92018-06-07 17:52:27 -0700[diff] [blame]121 if (service != nullptr) {
Dianne Hackborn5da5ca52013-02-12 15:12:21 -0800[diff] [blame]122 service->startWatchingMode(op, packageName, callback);
123 }
124}
125
126void AppOpsManager::stopWatchingMode(const sp<IAppOpsCallback>& callback) {
127 sp<IAppOpsService> service = getService();
Yi Kongfdd8da92018-06-07 17:52:27 -0700[diff] [blame]128 if (service != nullptr) {
Dianne Hackborn5da5ca52013-02-12 15:12:21 -0800[diff] [blame]129 service->stopWatchingMode(callback);
130 }
131}
132
Svetoslavb412f6e2015-04-29 16:50:41 -0700[diff] [blame]133int32_t AppOpsManager::permissionToOpCode(const String16& permission) {
134 sp<IAppOpsService> service = getService();
Yi Kongfdd8da92018-06-07 17:52:27 -0700[diff] [blame]135 if (service != nullptr) {
Svetoslavb412f6e2015-04-29 16:50:41 -0700[diff] [blame]136 return service->permissionToOpCode(permission);
137 }
138 return -1;
139}
140
141
Dianne Hackborn5da5ca52013-02-12 15:12:21 -0800[diff] [blame]142}; // namespace android