| Dianne Hackborn | 5da5ca5 | 2013-02-12 15:12:21 -0800 | [diff] [blame] | 1 | /* |
| 2 | * Copyright (C) 2013 The Android Open Source Project |
| 3 | * |
| 4 | * Licensed under the Apache License, Version 2.0 (the "License"); |
| 5 | * you may not use this file except in compliance with the License. |
| 6 | * You may obtain a copy of the License at |
| 7 | * |
| 8 | * http://www.apache.org/licenses/LICENSE-2.0 |
| 9 | * |
| 10 | * Unless required by applicable law or agreed to in writing, software |
| 11 | * distributed under the License is distributed on an "AS IS" BASIS, |
| 12 | * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. |
| 13 | * See the License for the specific language governing permissions and |
| 14 | * limitations under the License. |
| 15 | */ |
| 16 | |
| 17 | #include <binder/AppOpsManager.h> |
| Dianne Hackborn | 913b63d | 2013-07-17 17:26:15 -0700 | [diff] [blame] | 18 | #include <binder/Binder.h> |
| Dianne Hackborn | 5da5ca5 | 2013-02-12 15:12:21 -0800 | [diff] [blame] | 19 | #include <binder/IServiceManager.h> |
| 20 | |
| 21 | #include <utils/SystemClock.h> |
| 22 | |
| 23 | namespace android { |
| 24 | |
| Christopher Wiley | 8ed4270 | 2016-02-05 09:08:23 -0800 | [diff] [blame^] | 25 | namespace { |
| 26 | |
| 27 | #if defined(__BRILLO__) |
| 28 | // Because Brillo has no application model, security policy is managed |
| 29 | // statically (at build time) with SELinux controls. |
| 30 | // As a consequence, it also never runs the AppOpsManager service. |
| 31 | const int APP_OPS_MANAGER_UNAVAILABLE_MODE = AppOpsManager::MODE_ALLOWED; |
| 32 | #else |
| 33 | const int APP_OPS_MANAGER_UNAVAILABLE_MODE = AppOpsManager::MODE_IGNORED; |
| 34 | #endif // defined(__BRILLO__) |
| 35 | |
| 36 | } // namespace |
| 37 | |
| Dianne Hackborn | 5da5ca5 | 2013-02-12 15:12:21 -0800 | [diff] [blame] | 38 | static String16 _appops("appops"); |
| Dianne Hackborn | 913b63d | 2013-07-17 17:26:15 -0700 | [diff] [blame] | 39 | static pthread_mutex_t gTokenMutex = PTHREAD_MUTEX_INITIALIZER; |
| 40 | static sp<IBinder> gToken; |
| 41 | |
| 42 | static const sp<IBinder>& getToken(const sp<IAppOpsService>& service) { |
| 43 | pthread_mutex_lock(&gTokenMutex); |
| 44 | if (gToken == NULL) { |
| 45 | gToken = service->getToken(new BBinder()); |
| 46 | } |
| Zhijun He | 20d0380 | 2013-07-22 17:09:35 -0700 | [diff] [blame] | 47 | pthread_mutex_unlock(&gTokenMutex); |
| Dianne Hackborn | 913b63d | 2013-07-17 17:26:15 -0700 | [diff] [blame] | 48 | return gToken; |
| 49 | } |
| Dianne Hackborn | 5da5ca5 | 2013-02-12 15:12:21 -0800 | [diff] [blame] | 50 | |
| 51 | AppOpsManager::AppOpsManager() |
| 52 | { |
| 53 | } |
| 54 | |
| Christopher Wiley | 8ed4270 | 2016-02-05 09:08:23 -0800 | [diff] [blame^] | 55 | #if defined(__BRILLO__) |
| 56 | // There is no AppOpsService on Brillo |
| 57 | sp<IAppOpsService> AppOpsManager::getService() { return NULL; } |
| 58 | #else |
| Dianne Hackborn | 5da5ca5 | 2013-02-12 15:12:21 -0800 | [diff] [blame] | 59 | sp<IAppOpsService> AppOpsManager::getService() |
| 60 | { |
| Christopher Wiley | 8ed4270 | 2016-02-05 09:08:23 -0800 | [diff] [blame^] | 61 | |
| Dianne Hackborn | 5da5ca5 | 2013-02-12 15:12:21 -0800 | [diff] [blame] | 62 | int64_t startTime = 0; |
| 63 | mLock.lock(); |
| 64 | sp<IAppOpsService> service = mService; |
| Marco Nelissen | 2ea926b | 2014-11-14 08:01:01 -0800 | [diff] [blame] | 65 | while (service == NULL || !IInterface::asBinder(service)->isBinderAlive()) { |
| Eino-Ville Talvala | e88a85e | 2013-02-19 12:54:57 -0800 | [diff] [blame] | 66 | sp<IBinder> binder = defaultServiceManager()->checkService(_appops); |
| 67 | if (binder == NULL) { |
| 68 | // Wait for the app ops service to come back... |
| 69 | if (startTime == 0) { |
| 70 | startTime = uptimeMillis(); |
| 71 | ALOGI("Waiting for app ops service"); |
| 72 | } else if ((uptimeMillis()-startTime) > 10000) { |
| 73 | ALOGW("Waiting too long for app ops service, giving up"); |
| Christopher Wiley | 6dd4552 | 2016-02-05 09:06:30 -0800 | [diff] [blame] | 74 | service = NULL; |
| 75 | break; |
| Dianne Hackborn | 5da5ca5 | 2013-02-12 15:12:21 -0800 | [diff] [blame] | 76 | } |
| Eino-Ville Talvala | e88a85e | 2013-02-19 12:54:57 -0800 | [diff] [blame] | 77 | sleep(1); |
| 78 | } else { |
| 79 | service = interface_cast<IAppOpsService>(binder); |
| 80 | mService = service; |
| Dianne Hackborn | 5da5ca5 | 2013-02-12 15:12:21 -0800 | [diff] [blame] | 81 | } |
| 82 | } |
| 83 | mLock.unlock(); |
| 84 | return service; |
| 85 | } |
| Christopher Wiley | 8ed4270 | 2016-02-05 09:08:23 -0800 | [diff] [blame^] | 86 | #endif // defined(__BRILLO__) |
| Dianne Hackborn | 5da5ca5 | 2013-02-12 15:12:21 -0800 | [diff] [blame] | 87 | |
| 88 | int32_t AppOpsManager::checkOp(int32_t op, int32_t uid, const String16& callingPackage) |
| 89 | { |
| 90 | sp<IAppOpsService> service = getService(); |
| Christopher Wiley | 8ed4270 | 2016-02-05 09:08:23 -0800 | [diff] [blame^] | 91 | return service != NULL |
| 92 | ? service->checkOperation(op, uid, callingPackage) |
| 93 | : APP_OPS_MANAGER_UNAVAILABLE_MODE; |
| Dianne Hackborn | 5da5ca5 | 2013-02-12 15:12:21 -0800 | [diff] [blame] | 94 | } |
| 95 | |
| 96 | int32_t AppOpsManager::noteOp(int32_t op, int32_t uid, const String16& callingPackage) { |
| 97 | sp<IAppOpsService> service = getService(); |
| Christopher Wiley | 8ed4270 | 2016-02-05 09:08:23 -0800 | [diff] [blame^] | 98 | return service != NULL |
| 99 | ? service->noteOperation(op, uid, callingPackage) |
| 100 | : APP_OPS_MANAGER_UNAVAILABLE_MODE; |
| Dianne Hackborn | 5da5ca5 | 2013-02-12 15:12:21 -0800 | [diff] [blame] | 101 | } |
| 102 | |
| 103 | int32_t AppOpsManager::startOp(int32_t op, int32_t uid, const String16& callingPackage) { |
| 104 | sp<IAppOpsService> service = getService(); |
| Christopher Wiley | 8ed4270 | 2016-02-05 09:08:23 -0800 | [diff] [blame^] | 105 | return service != NULL |
| 106 | ? service->startOperation(getToken(service), op, uid, callingPackage) |
| 107 | : APP_OPS_MANAGER_UNAVAILABLE_MODE; |
| Dianne Hackborn | 5da5ca5 | 2013-02-12 15:12:21 -0800 | [diff] [blame] | 108 | } |
| 109 | |
| 110 | void AppOpsManager::finishOp(int32_t op, int32_t uid, const String16& callingPackage) { |
| 111 | sp<IAppOpsService> service = getService(); |
| 112 | if (service != NULL) { |
| Dianne Hackborn | 913b63d | 2013-07-17 17:26:15 -0700 | [diff] [blame] | 113 | service->finishOperation(getToken(service), op, uid, callingPackage); |
| Dianne Hackborn | 5da5ca5 | 2013-02-12 15:12:21 -0800 | [diff] [blame] | 114 | } |
| 115 | } |
| 116 | |
| 117 | void AppOpsManager::startWatchingMode(int32_t op, const String16& packageName, |
| 118 | const sp<IAppOpsCallback>& callback) { |
| 119 | sp<IAppOpsService> service = getService(); |
| 120 | if (service != NULL) { |
| 121 | service->startWatchingMode(op, packageName, callback); |
| 122 | } |
| 123 | } |
| 124 | |
| 125 | void AppOpsManager::stopWatchingMode(const sp<IAppOpsCallback>& callback) { |
| 126 | sp<IAppOpsService> service = getService(); |
| 127 | if (service != NULL) { |
| 128 | service->stopWatchingMode(callback); |
| 129 | } |
| 130 | } |
| 131 | |
| Svetoslav | b412f6e | 2015-04-29 16:50:41 -0700 | [diff] [blame] | 132 | int32_t AppOpsManager::permissionToOpCode(const String16& permission) { |
| 133 | sp<IAppOpsService> service = getService(); |
| 134 | if (service != NULL) { |
| 135 | return service->permissionToOpCode(permission); |
| 136 | } |
| 137 | return -1; |
| 138 | } |
| 139 | |
| 140 | |
| Dianne Hackborn | 5da5ca5 | 2013-02-12 15:12:21 -0800 | [diff] [blame] | 141 | }; // namespace android |