14efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver/* 24efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver * Copyright (C) 2013 The Android Open Source Project 34efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver * 44efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver * Licensed under the Apache License, Version 2.0 (the "License"); 54efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver * you may not use this file except in compliance with the License. 64efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver * You may obtain a copy of the License at 74efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver * 84efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver * http://www.apache.org/licenses/LICENSE-2.0 94efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver * 104efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver * Unless required by applicable law or agreed to in writing, software 114efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver * distributed under the License is distributed on an "AS IS" BASIS, 124efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. 134efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver * See the License for the specific language governing permissions and 144efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver * limitations under the License. 154efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver */ 164efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver 174efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruverpackage com.android.server.firewall; 184efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver 19f5323fee2a7deaf264ed10fbe3d9c69055987e55Ben Gruverimport android.content.ComponentName; 204efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruverimport android.content.Intent; 214efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruverimport org.xmlpull.v1.XmlPullParser; 224efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruverimport org.xmlpull.v1.XmlPullParserException; 234efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver 244efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruverimport java.io.IOException; 254efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver 264efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruverclass SenderPermissionFilter implements Filter { 274efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver private static final String ATTR_NAME = "name"; 284efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver 294efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver private final String mPermission; 304efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver 314efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver private SenderPermissionFilter(String permission) { 324efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver mPermission = permission; 334efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver } 344efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver 354efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver @Override 36f5323fee2a7deaf264ed10fbe3d9c69055987e55Ben Gruver public boolean matches(IntentFirewall ifw, ComponentName resolvedComponent, Intent intent, 3749660c7c24f24c3394233e3bbf94c96281e8c408Ben Gruver int callerUid, int callerPid, String resolvedType, int receivingUid) { 384efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver // We assume the component is exported here. If the component is not exported, then 394efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver // ActivityManager would only resolve to this component for callers from the same uid. 404efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver // In this case, it doesn't matter whether the component is exported or not. 4149660c7c24f24c3394233e3bbf94c96281e8c408Ben Gruver return ifw.checkComponentPermission(mPermission, callerPid, callerUid, receivingUid, 424efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver true); 434efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver } 444efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver 454efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver public static final FilterFactory FACTORY = new FilterFactory("sender-permission") { 464efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver @Override 474efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver public Filter newFilter(XmlPullParser parser) 484efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver throws IOException, XmlPullParserException { 494efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver String permission = parser.getAttributeValue(null, ATTR_NAME); 504efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver if (permission == null) { 514efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver throw new XmlPullParserException("Permission name must be specified.", 524efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver parser, null); 534efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver } 544efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver return new SenderPermissionFilter(permission); 554efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver } 564efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver }; 574efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver} 58