14efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver/* 24efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver * Copyright (C) 2013 The Android Open Source Project 34efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver * 44efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver * Licensed under the Apache License, Version 2.0 (the "License"); 54efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver * you may not use this file except in compliance with the License. 64efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver * You may obtain a copy of the License at 74efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver * 84efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver * http://www.apache.org/licenses/LICENSE-2.0 94efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver * 104efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver * Unless required by applicable law or agreed to in writing, software 114efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver * distributed under the License is distributed on an "AS IS" BASIS, 124efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. 134efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver * See the License for the specific language governing permissions and 144efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver * limitations under the License. 154efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver */ 164efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver 174efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruverpackage com.android.server.firewall; 184efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver 198be8df214189844d0782aba432b90d3706df8c4dBen Gruverimport android.app.AppGlobals; 208be8df214189844d0782aba432b90d3706df8c4dBen Gruverimport android.content.ComponentName; 214efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruverimport android.content.Intent; 224efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruverimport android.content.IntentFilter; 23b62237938eb1379980eb80004137d6dcd6ff14f7Ben Gruverimport android.content.pm.ApplicationInfo; 248be8df214189844d0782aba432b90d3706df8c4dBen Gruverimport android.content.pm.IPackageManager; 254efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruverimport android.content.pm.PackageManager; 264efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruverimport android.os.Environment; 27a4879c3425ae6ce46d7e7273c081a973a1c79ac6Ben Gruverimport android.os.FileObserver; 28a4879c3425ae6ce46d7e7273c081a973a1c79ac6Ben Gruverimport android.os.Handler; 296f357d3284a833cc50a990e14b39f389b8972254Jeff Brownimport android.os.Looper; 30a4879c3425ae6ce46d7e7273c081a973a1c79ac6Ben Gruverimport android.os.Message; 318be8df214189844d0782aba432b90d3706df8c4dBen Gruverimport android.os.RemoteException; 32f157b48eae1469754d801e2bed5cdacd73e4399dBen Gruverimport android.util.ArrayMap; 334efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruverimport android.util.Slog; 344efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruverimport android.util.Xml; 35f157b48eae1469754d801e2bed5cdacd73e4399dBen Gruverimport com.android.internal.util.ArrayUtils; 364efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruverimport com.android.internal.util.XmlUtils; 378be8df214189844d0782aba432b90d3706df8c4dBen Gruverimport com.android.server.EventLogTags; 384efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruverimport com.android.server.IntentResolver; 394efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruverimport org.xmlpull.v1.XmlPullParser; 404efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruverimport org.xmlpull.v1.XmlPullParserException; 414efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver 424efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruverimport java.io.File; 434efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruverimport java.io.FileInputStream; 444efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruverimport java.io.FileNotFoundException; 454efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruverimport java.io.IOException; 464efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruverimport java.util.ArrayList; 47f157b48eae1469754d801e2bed5cdacd73e4399dBen Gruverimport java.util.Arrays; 484efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruverimport java.util.HashMap; 494efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruverimport java.util.List; 504efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver 514efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruverpublic class IntentFirewall { 52dd72c9ed558158f889a8cdfed8a108553ba5a562Ben Gruver static final String TAG = "IntentFirewall"; 534efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver 54b7c1a17846a306deef62855630bca9f061dc9372Ben Gruver // e.g. /data/system/ifw or /data/secure/system/ifw 558212ae0aee1700b9c287ebadf15af8dacdc8eae6Jeff Sharkey private static final File RULES_DIR = new File(Environment.getDataSystemDirectory(), "ifw"); 564efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver 578be8df214189844d0782aba432b90d3706df8c4dBen Gruver private static final int LOG_PACKAGES_MAX_LENGTH = 150; 588be8df214189844d0782aba432b90d3706df8c4dBen Gruver private static final int LOG_PACKAGES_SUFFICIENT_LENGTH = 125; 598be8df214189844d0782aba432b90d3706df8c4dBen Gruver 604efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver private static final String TAG_RULES = "rules"; 614efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver private static final String TAG_ACTIVITY = "activity"; 624efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver private static final String TAG_SERVICE = "service"; 634efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver private static final String TAG_BROADCAST = "broadcast"; 644efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver 658be8df214189844d0782aba432b90d3706df8c4dBen Gruver private static final int TYPE_ACTIVITY = 0; 66a4879c3425ae6ce46d7e7273c081a973a1c79ac6Ben Gruver private static final int TYPE_BROADCAST = 1; 67a4879c3425ae6ce46d7e7273c081a973a1c79ac6Ben Gruver private static final int TYPE_SERVICE = 2; 688be8df214189844d0782aba432b90d3706df8c4dBen Gruver 694efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver private static final HashMap<String, FilterFactory> factoryMap; 704efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver 714efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver private final AMSInterface mAms; 724efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver 73a4879c3425ae6ce46d7e7273c081a973a1c79ac6Ben Gruver private final RuleObserver mObserver; 74a4879c3425ae6ce46d7e7273c081a973a1c79ac6Ben Gruver 75a4879c3425ae6ce46d7e7273c081a973a1c79ac6Ben Gruver private FirewallIntentResolver mActivityResolver = new FirewallIntentResolver(); 76a4879c3425ae6ce46d7e7273c081a973a1c79ac6Ben Gruver private FirewallIntentResolver mBroadcastResolver = new FirewallIntentResolver(); 77a4879c3425ae6ce46d7e7273c081a973a1c79ac6Ben Gruver private FirewallIntentResolver mServiceResolver = new FirewallIntentResolver(); 784efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver 794efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver static { 804efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver FilterFactory[] factories = new FilterFactory[] { 814efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver AndFilter.FACTORY, 824efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver OrFilter.FACTORY, 834efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver NotFilter.FACTORY, 844efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver 854efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver StringFilter.ACTION, 864efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver StringFilter.COMPONENT, 874efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver StringFilter.COMPONENT_NAME, 884efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver StringFilter.COMPONENT_PACKAGE, 894efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver StringFilter.DATA, 904efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver StringFilter.HOST, 914efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver StringFilter.MIME_TYPE, 9257e76b405faf154352e17f0114bf6b23aa9ac0f0Ben Gruver StringFilter.SCHEME, 934efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver StringFilter.PATH, 944efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver StringFilter.SSP, 954efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver 964efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver CategoryFilter.FACTORY, 974efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver SenderFilter.FACTORY, 98b2340f3fcc2cfded97e0372a336bcf6f9211e0c1Ben Gruver SenderPackageFilter.FACTORY, 994efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver SenderPermissionFilter.FACTORY, 1004efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver PortFilter.FACTORY 1014efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver }; 1024efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver 1034efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver // load factor ~= .75 1044efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver factoryMap = new HashMap<String, FilterFactory>(factories.length * 4 / 3); 1054efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver for (int i=0; i<factories.length; i++) { 1064efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver FilterFactory factory = factories[i]; 1074efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver factoryMap.put(factory.getTagName(), factory); 1084efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver } 1094efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver } 1104efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver 1116f357d3284a833cc50a990e14b39f389b8972254Jeff Brown public IntentFirewall(AMSInterface ams, Handler handler) { 1124efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver mAms = ams; 1136f357d3284a833cc50a990e14b39f389b8972254Jeff Brown mHandler = new FirewallHandler(handler.getLooper()); 114b7c1a17846a306deef62855630bca9f061dc9372Ben Gruver File rulesDir = getRulesDir(); 115b7c1a17846a306deef62855630bca9f061dc9372Ben Gruver rulesDir.mkdirs(); 116a4879c3425ae6ce46d7e7273c081a973a1c79ac6Ben Gruver 117b7c1a17846a306deef62855630bca9f061dc9372Ben Gruver readRulesDir(rulesDir); 118a4879c3425ae6ce46d7e7273c081a973a1c79ac6Ben Gruver 119b7c1a17846a306deef62855630bca9f061dc9372Ben Gruver mObserver = new RuleObserver(rulesDir); 120a4879c3425ae6ce46d7e7273c081a973a1c79ac6Ben Gruver mObserver.startWatching(); 1214efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver } 1224efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver 123a4879c3425ae6ce46d7e7273c081a973a1c79ac6Ben Gruver /** 124a4879c3425ae6ce46d7e7273c081a973a1c79ac6Ben Gruver * This is called from ActivityManager to check if a start activity intent should be allowed. 125a4879c3425ae6ce46d7e7273c081a973a1c79ac6Ben Gruver * It is assumed the caller is already holding the global ActivityManagerService lock. 126a4879c3425ae6ce46d7e7273c081a973a1c79ac6Ben Gruver */ 127dd72c9ed558158f889a8cdfed8a108553ba5a562Ben Gruver public boolean checkStartActivity(Intent intent, int callerUid, int callerPid, 128b62237938eb1379980eb80004137d6dcd6ff14f7Ben Gruver String resolvedType, ApplicationInfo resolvedApp) { 129f5323fee2a7deaf264ed10fbe3d9c69055987e55Ben Gruver return checkIntent(mActivityResolver, intent.getComponent(), TYPE_ACTIVITY, intent, 13049660c7c24f24c3394233e3bbf94c96281e8c408Ben Gruver callerUid, callerPid, resolvedType, resolvedApp.uid); 131b62237938eb1379980eb80004137d6dcd6ff14f7Ben Gruver } 132b62237938eb1379980eb80004137d6dcd6ff14f7Ben Gruver 133f5323fee2a7deaf264ed10fbe3d9c69055987e55Ben Gruver public boolean checkService(ComponentName resolvedService, Intent intent, int callerUid, 134f5323fee2a7deaf264ed10fbe3d9c69055987e55Ben Gruver int callerPid, String resolvedType, ApplicationInfo resolvedApp) { 135f5323fee2a7deaf264ed10fbe3d9c69055987e55Ben Gruver return checkIntent(mServiceResolver, resolvedService, TYPE_SERVICE, intent, callerUid, 13649660c7c24f24c3394233e3bbf94c96281e8c408Ben Gruver callerPid, resolvedType, resolvedApp.uid); 13749660c7c24f24c3394233e3bbf94c96281e8c408Ben Gruver } 13849660c7c24f24c3394233e3bbf94c96281e8c408Ben Gruver 13949660c7c24f24c3394233e3bbf94c96281e8c408Ben Gruver public boolean checkBroadcast(Intent intent, int callerUid, int callerPid, 14049660c7c24f24c3394233e3bbf94c96281e8c408Ben Gruver String resolvedType, int receivingUid) { 14149660c7c24f24c3394233e3bbf94c96281e8c408Ben Gruver return checkIntent(mBroadcastResolver, intent.getComponent(), TYPE_BROADCAST, intent, 14249660c7c24f24c3394233e3bbf94c96281e8c408Ben Gruver callerUid, callerPid, resolvedType, receivingUid); 143b62237938eb1379980eb80004137d6dcd6ff14f7Ben Gruver } 144b62237938eb1379980eb80004137d6dcd6ff14f7Ben Gruver 145f5323fee2a7deaf264ed10fbe3d9c69055987e55Ben Gruver public boolean checkIntent(FirewallIntentResolver resolver, ComponentName resolvedComponent, 146f5323fee2a7deaf264ed10fbe3d9c69055987e55Ben Gruver int intentType, Intent intent, int callerUid, int callerPid, String resolvedType, 14749660c7c24f24c3394233e3bbf94c96281e8c408Ben Gruver int receivingUid) { 1484efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver boolean log = false; 1494efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver boolean block = false; 1504efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver 151f157b48eae1469754d801e2bed5cdacd73e4399dBen Gruver // For the first pass, find all the rules that have at least one intent-filter or 152f157b48eae1469754d801e2bed5cdacd73e4399dBen Gruver // component-filter that matches this intent 153f157b48eae1469754d801e2bed5cdacd73e4399dBen Gruver List<Rule> candidateRules; 154f157b48eae1469754d801e2bed5cdacd73e4399dBen Gruver candidateRules = resolver.queryIntent(intent, resolvedType, false, 0); 155f157b48eae1469754d801e2bed5cdacd73e4399dBen Gruver if (candidateRules == null) { 156f157b48eae1469754d801e2bed5cdacd73e4399dBen Gruver candidateRules = new ArrayList<Rule>(); 157f157b48eae1469754d801e2bed5cdacd73e4399dBen Gruver } 158f157b48eae1469754d801e2bed5cdacd73e4399dBen Gruver resolver.queryByComponent(resolvedComponent, candidateRules); 159f157b48eae1469754d801e2bed5cdacd73e4399dBen Gruver 160f157b48eae1469754d801e2bed5cdacd73e4399dBen Gruver // For the second pass, try to match the potentially more specific conditions in each 161f157b48eae1469754d801e2bed5cdacd73e4399dBen Gruver // rule against the intent 162f157b48eae1469754d801e2bed5cdacd73e4399dBen Gruver for (int i=0; i<candidateRules.size(); i++) { 163f157b48eae1469754d801e2bed5cdacd73e4399dBen Gruver Rule rule = candidateRules.get(i); 164f5323fee2a7deaf264ed10fbe3d9c69055987e55Ben Gruver if (rule.matches(this, resolvedComponent, intent, callerUid, callerPid, resolvedType, 16549660c7c24f24c3394233e3bbf94c96281e8c408Ben Gruver receivingUid)) { 1664efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver block |= rule.getBlock(); 1674efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver log |= rule.getLog(); 1684efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver 1694efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver // if we've already determined that we should both block and log, there's no need 1704efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver // to continue trying rules 1714efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver if (block && log) { 1724efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver break; 1734efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver } 1744efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver } 1754efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver } 1764efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver 1774efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver if (log) { 178b62237938eb1379980eb80004137d6dcd6ff14f7Ben Gruver logIntent(intentType, intent, callerUid, resolvedType); 1794efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver } 1804efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver 1814efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver return !block; 1824efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver } 1834efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver 1848be8df214189844d0782aba432b90d3706df8c4dBen Gruver private static void logIntent(int intentType, Intent intent, int callerUid, 1858be8df214189844d0782aba432b90d3706df8c4dBen Gruver String resolvedType) { 1868be8df214189844d0782aba432b90d3706df8c4dBen Gruver // The component shouldn't be null, but let's double check just to be safe 1878be8df214189844d0782aba432b90d3706df8c4dBen Gruver ComponentName cn = intent.getComponent(); 1888be8df214189844d0782aba432b90d3706df8c4dBen Gruver String shortComponent = null; 1898be8df214189844d0782aba432b90d3706df8c4dBen Gruver if (cn != null) { 1908be8df214189844d0782aba432b90d3706df8c4dBen Gruver shortComponent = cn.flattenToShortString(); 1918be8df214189844d0782aba432b90d3706df8c4dBen Gruver } 1928be8df214189844d0782aba432b90d3706df8c4dBen Gruver 1938be8df214189844d0782aba432b90d3706df8c4dBen Gruver String callerPackages = null; 1948be8df214189844d0782aba432b90d3706df8c4dBen Gruver int callerPackageCount = 0; 1958be8df214189844d0782aba432b90d3706df8c4dBen Gruver IPackageManager pm = AppGlobals.getPackageManager(); 1968be8df214189844d0782aba432b90d3706df8c4dBen Gruver if (pm != null) { 1978be8df214189844d0782aba432b90d3706df8c4dBen Gruver try { 1988be8df214189844d0782aba432b90d3706df8c4dBen Gruver String[] callerPackagesArray = pm.getPackagesForUid(callerUid); 1998be8df214189844d0782aba432b90d3706df8c4dBen Gruver if (callerPackagesArray != null) { 2008be8df214189844d0782aba432b90d3706df8c4dBen Gruver callerPackageCount = callerPackagesArray.length; 2018be8df214189844d0782aba432b90d3706df8c4dBen Gruver callerPackages = joinPackages(callerPackagesArray); 2028be8df214189844d0782aba432b90d3706df8c4dBen Gruver } 2038be8df214189844d0782aba432b90d3706df8c4dBen Gruver } catch (RemoteException ex) { 2048be8df214189844d0782aba432b90d3706df8c4dBen Gruver Slog.e(TAG, "Remote exception while retrieving packages", ex); 2058be8df214189844d0782aba432b90d3706df8c4dBen Gruver } 2068be8df214189844d0782aba432b90d3706df8c4dBen Gruver } 2078be8df214189844d0782aba432b90d3706df8c4dBen Gruver 2088be8df214189844d0782aba432b90d3706df8c4dBen Gruver EventLogTags.writeIfwIntentMatched(intentType, shortComponent, callerUid, 2098be8df214189844d0782aba432b90d3706df8c4dBen Gruver callerPackageCount, callerPackages, intent.getAction(), resolvedType, 2108be8df214189844d0782aba432b90d3706df8c4dBen Gruver intent.getDataString(), intent.getFlags()); 2118be8df214189844d0782aba432b90d3706df8c4dBen Gruver } 2128be8df214189844d0782aba432b90d3706df8c4dBen Gruver 2138be8df214189844d0782aba432b90d3706df8c4dBen Gruver /** 2148be8df214189844d0782aba432b90d3706df8c4dBen Gruver * Joins a list of package names such that the resulting string is no more than 2158be8df214189844d0782aba432b90d3706df8c4dBen Gruver * LOG_PACKAGES_MAX_LENGTH. 2168be8df214189844d0782aba432b90d3706df8c4dBen Gruver * 2178be8df214189844d0782aba432b90d3706df8c4dBen Gruver * Only full package names will be added to the result, unless every package is longer than the 2188be8df214189844d0782aba432b90d3706df8c4dBen Gruver * limit, in which case one of the packages will be truncated and added. In this case, an 2198be8df214189844d0782aba432b90d3706df8c4dBen Gruver * additional '-' character will be added to the end of the string, to denote the truncation. 2208be8df214189844d0782aba432b90d3706df8c4dBen Gruver * 2218be8df214189844d0782aba432b90d3706df8c4dBen Gruver * If it encounters a package that won't fit in the remaining space, it will continue on to the 2228be8df214189844d0782aba432b90d3706df8c4dBen Gruver * next package, unless the total length of the built string so far is greater than 2238be8df214189844d0782aba432b90d3706df8c4dBen Gruver * LOG_PACKAGES_SUFFICIENT_LENGTH, in which case it will stop and return what it has. 2248be8df214189844d0782aba432b90d3706df8c4dBen Gruver */ 2258be8df214189844d0782aba432b90d3706df8c4dBen Gruver private static String joinPackages(String[] packages) { 2268be8df214189844d0782aba432b90d3706df8c4dBen Gruver boolean first = true; 2278be8df214189844d0782aba432b90d3706df8c4dBen Gruver StringBuilder sb = new StringBuilder(); 2288be8df214189844d0782aba432b90d3706df8c4dBen Gruver for (int i=0; i<packages.length; i++) { 2298be8df214189844d0782aba432b90d3706df8c4dBen Gruver String pkg = packages[i]; 2308be8df214189844d0782aba432b90d3706df8c4dBen Gruver 2318be8df214189844d0782aba432b90d3706df8c4dBen Gruver // + 1 length for the comma. This logic technically isn't correct for the first entry, 2328be8df214189844d0782aba432b90d3706df8c4dBen Gruver // but it's not critical. 2338be8df214189844d0782aba432b90d3706df8c4dBen Gruver if (sb.length() + pkg.length() + 1 < LOG_PACKAGES_MAX_LENGTH) { 2348be8df214189844d0782aba432b90d3706df8c4dBen Gruver if (!first) { 2358be8df214189844d0782aba432b90d3706df8c4dBen Gruver sb.append(','); 2368be8df214189844d0782aba432b90d3706df8c4dBen Gruver } else { 2378be8df214189844d0782aba432b90d3706df8c4dBen Gruver first = false; 2388be8df214189844d0782aba432b90d3706df8c4dBen Gruver } 2398be8df214189844d0782aba432b90d3706df8c4dBen Gruver sb.append(pkg); 2408be8df214189844d0782aba432b90d3706df8c4dBen Gruver } else if (sb.length() >= LOG_PACKAGES_SUFFICIENT_LENGTH) { 2418be8df214189844d0782aba432b90d3706df8c4dBen Gruver return sb.toString(); 2428be8df214189844d0782aba432b90d3706df8c4dBen Gruver } 2438be8df214189844d0782aba432b90d3706df8c4dBen Gruver } 2448be8df214189844d0782aba432b90d3706df8c4dBen Gruver if (sb.length() == 0 && packages.length > 0) { 2458be8df214189844d0782aba432b90d3706df8c4dBen Gruver String pkg = packages[0]; 2468be8df214189844d0782aba432b90d3706df8c4dBen Gruver // truncating from the end - the last part of the package name is more likely to be 2478be8df214189844d0782aba432b90d3706df8c4dBen Gruver // interesting/unique 2488be8df214189844d0782aba432b90d3706df8c4dBen Gruver return pkg.substring(pkg.length() - LOG_PACKAGES_MAX_LENGTH + 1) + '-'; 2498be8df214189844d0782aba432b90d3706df8c4dBen Gruver } 2508be8df214189844d0782aba432b90d3706df8c4dBen Gruver return null; 2518be8df214189844d0782aba432b90d3706df8c4dBen Gruver } 2528be8df214189844d0782aba432b90d3706df8c4dBen Gruver 253b7c1a17846a306deef62855630bca9f061dc9372Ben Gruver public static File getRulesDir() { 254b7c1a17846a306deef62855630bca9f061dc9372Ben Gruver return RULES_DIR; 255633dc9bcef0935931781d7e4554566271fe9f2c5Ben Gruver } 256633dc9bcef0935931781d7e4554566271fe9f2c5Ben Gruver 257a4879c3425ae6ce46d7e7273c081a973a1c79ac6Ben Gruver /** 258b7c1a17846a306deef62855630bca9f061dc9372Ben Gruver * Reads rules from all xml files (*.xml) in the given directory, and replaces our set of rules 259b7c1a17846a306deef62855630bca9f061dc9372Ben Gruver * with the newly read rules. 260b7c1a17846a306deef62855630bca9f061dc9372Ben Gruver * 261b7c1a17846a306deef62855630bca9f061dc9372Ben Gruver * We only check for files ending in ".xml", to allow for temporary files that are atomically 262b7c1a17846a306deef62855630bca9f061dc9372Ben Gruver * renamed to .xml 263a4879c3425ae6ce46d7e7273c081a973a1c79ac6Ben Gruver * 264a4879c3425ae6ce46d7e7273c081a973a1c79ac6Ben Gruver * All calls to this method from the file observer come through a handler and are inherently 265a4879c3425ae6ce46d7e7273c081a973a1c79ac6Ben Gruver * serialized 266a4879c3425ae6ce46d7e7273c081a973a1c79ac6Ben Gruver */ 267b7c1a17846a306deef62855630bca9f061dc9372Ben Gruver private void readRulesDir(File rulesDir) { 268a4879c3425ae6ce46d7e7273c081a973a1c79ac6Ben Gruver FirewallIntentResolver[] resolvers = new FirewallIntentResolver[3]; 269a4879c3425ae6ce46d7e7273c081a973a1c79ac6Ben Gruver for (int i=0; i<resolvers.length; i++) { 270a4879c3425ae6ce46d7e7273c081a973a1c79ac6Ben Gruver resolvers[i] = new FirewallIntentResolver(); 271a4879c3425ae6ce46d7e7273c081a973a1c79ac6Ben Gruver } 272a4879c3425ae6ce46d7e7273c081a973a1c79ac6Ben Gruver 273b7c1a17846a306deef62855630bca9f061dc9372Ben Gruver File[] files = rulesDir.listFiles(); 274248688a678c53dea8448702e86183336da373c07Ben Gruver if (files != null) { 275248688a678c53dea8448702e86183336da373c07Ben Gruver for (int i=0; i<files.length; i++) { 276248688a678c53dea8448702e86183336da373c07Ben Gruver File file = files[i]; 277b7c1a17846a306deef62855630bca9f061dc9372Ben Gruver 278248688a678c53dea8448702e86183336da373c07Ben Gruver if (file.getName().endsWith(".xml")) { 279248688a678c53dea8448702e86183336da373c07Ben Gruver readRules(file, resolvers); 280248688a678c53dea8448702e86183336da373c07Ben Gruver } 281b7c1a17846a306deef62855630bca9f061dc9372Ben Gruver } 282b7c1a17846a306deef62855630bca9f061dc9372Ben Gruver } 283b7c1a17846a306deef62855630bca9f061dc9372Ben Gruver 284b7c1a17846a306deef62855630bca9f061dc9372Ben Gruver Slog.i(TAG, "Read new rules (A:" + resolvers[TYPE_ACTIVITY].filterSet().size() + 285b7c1a17846a306deef62855630bca9f061dc9372Ben Gruver " B:" + resolvers[TYPE_BROADCAST].filterSet().size() + 286b7c1a17846a306deef62855630bca9f061dc9372Ben Gruver " S:" + resolvers[TYPE_SERVICE].filterSet().size() + ")"); 287b7c1a17846a306deef62855630bca9f061dc9372Ben Gruver 288b7c1a17846a306deef62855630bca9f061dc9372Ben Gruver synchronized (mAms.getAMSLock()) { 289b7c1a17846a306deef62855630bca9f061dc9372Ben Gruver mActivityResolver = resolvers[TYPE_ACTIVITY]; 290b7c1a17846a306deef62855630bca9f061dc9372Ben Gruver mBroadcastResolver = resolvers[TYPE_BROADCAST]; 291b7c1a17846a306deef62855630bca9f061dc9372Ben Gruver mServiceResolver = resolvers[TYPE_SERVICE]; 292b7c1a17846a306deef62855630bca9f061dc9372Ben Gruver } 293b7c1a17846a306deef62855630bca9f061dc9372Ben Gruver } 294b7c1a17846a306deef62855630bca9f061dc9372Ben Gruver 295b7c1a17846a306deef62855630bca9f061dc9372Ben Gruver /** 296b7c1a17846a306deef62855630bca9f061dc9372Ben Gruver * Reads rules from the given file and add them to the given resolvers 297b7c1a17846a306deef62855630bca9f061dc9372Ben Gruver */ 298b7c1a17846a306deef62855630bca9f061dc9372Ben Gruver private void readRules(File rulesFile, FirewallIntentResolver[] resolvers) { 299b7c1a17846a306deef62855630bca9f061dc9372Ben Gruver // some temporary lists to hold the rules while we parse the xml file, so that we can 300b7c1a17846a306deef62855630bca9f061dc9372Ben Gruver // add the rules all at once, after we know there weren't any major structural problems 301b7c1a17846a306deef62855630bca9f061dc9372Ben Gruver // with the xml file 302b7c1a17846a306deef62855630bca9f061dc9372Ben Gruver List<List<Rule>> rulesByType = new ArrayList<List<Rule>>(3); 303b7c1a17846a306deef62855630bca9f061dc9372Ben Gruver for (int i=0; i<3; i++) { 304b7c1a17846a306deef62855630bca9f061dc9372Ben Gruver rulesByType.add(new ArrayList<Rule>()); 305b7c1a17846a306deef62855630bca9f061dc9372Ben Gruver } 306b7c1a17846a306deef62855630bca9f061dc9372Ben Gruver 3074efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver FileInputStream fis; 3084efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver try { 3094efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver fis = new FileInputStream(rulesFile); 3104efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver } catch (FileNotFoundException ex) { 3114efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver // Nope, no rules. Nothing else to do! 3124efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver return; 3134efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver } 3144efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver 3154efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver try { 3164efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver XmlPullParser parser = Xml.newPullParser(); 3174efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver 3184efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver parser.setInput(fis, null); 3194efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver 3204efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver XmlUtils.beginDocument(parser, TAG_RULES); 3214efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver 3224efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver int outerDepth = parser.getDepth(); 3234efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver while (XmlUtils.nextElementWithin(parser, outerDepth)) { 324a4879c3425ae6ce46d7e7273c081a973a1c79ac6Ben Gruver int ruleType = -1; 325a4879c3425ae6ce46d7e7273c081a973a1c79ac6Ben Gruver 3264efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver String tagName = parser.getName(); 3274efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver if (tagName.equals(TAG_ACTIVITY)) { 328a4879c3425ae6ce46d7e7273c081a973a1c79ac6Ben Gruver ruleType = TYPE_ACTIVITY; 3294efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver } else if (tagName.equals(TAG_BROADCAST)) { 330a4879c3425ae6ce46d7e7273c081a973a1c79ac6Ben Gruver ruleType = TYPE_BROADCAST; 331a4879c3425ae6ce46d7e7273c081a973a1c79ac6Ben Gruver } else if (tagName.equals(TAG_SERVICE)) { 332a4879c3425ae6ce46d7e7273c081a973a1c79ac6Ben Gruver ruleType = TYPE_SERVICE; 3334efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver } 3344efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver 335a4879c3425ae6ce46d7e7273c081a973a1c79ac6Ben Gruver if (ruleType != -1) { 3364efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver Rule rule = new Rule(); 3374efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver 338b7c1a17846a306deef62855630bca9f061dc9372Ben Gruver List<Rule> rules = rulesByType.get(ruleType); 339a4879c3425ae6ce46d7e7273c081a973a1c79ac6Ben Gruver 340a4879c3425ae6ce46d7e7273c081a973a1c79ac6Ben Gruver // if we get an error while parsing a particular rule, we'll just ignore 341a4879c3425ae6ce46d7e7273c081a973a1c79ac6Ben Gruver // that rule and continue on with the next rule 3424efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver try { 3434efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver rule.readFromXml(parser); 3444efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver } catch (XmlPullParserException ex) { 345b7c1a17846a306deef62855630bca9f061dc9372Ben Gruver Slog.e(TAG, "Error reading an intent firewall rule from " + rulesFile, ex); 3464efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver continue; 3474efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver } 3484efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver 349b7c1a17846a306deef62855630bca9f061dc9372Ben Gruver rules.add(rule); 3504efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver } 3514efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver } 3524efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver } catch (XmlPullParserException ex) { 353a4879c3425ae6ce46d7e7273c081a973a1c79ac6Ben Gruver // if there was an error outside of a specific rule, then there are probably 354a4879c3425ae6ce46d7e7273c081a973a1c79ac6Ben Gruver // structural problems with the xml file, and we should completely ignore it 355b7c1a17846a306deef62855630bca9f061dc9372Ben Gruver Slog.e(TAG, "Error reading intent firewall rules from " + rulesFile, ex); 356b7c1a17846a306deef62855630bca9f061dc9372Ben Gruver return; 3574efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver } catch (IOException ex) { 358b7c1a17846a306deef62855630bca9f061dc9372Ben Gruver Slog.e(TAG, "Error reading intent firewall rules from " + rulesFile, ex); 359b7c1a17846a306deef62855630bca9f061dc9372Ben Gruver return; 3604efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver } finally { 3614efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver try { 3624efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver fis.close(); 3634efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver } catch (IOException ex) { 3644efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver Slog.e(TAG, "Error while closing " + rulesFile, ex); 3654efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver } 3664efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver } 3674efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver 368b7c1a17846a306deef62855630bca9f061dc9372Ben Gruver for (int ruleType=0; ruleType<rulesByType.size(); ruleType++) { 369b7c1a17846a306deef62855630bca9f061dc9372Ben Gruver List<Rule> rules = rulesByType.get(ruleType); 370b7c1a17846a306deef62855630bca9f061dc9372Ben Gruver FirewallIntentResolver resolver = resolvers[ruleType]; 371a4879c3425ae6ce46d7e7273c081a973a1c79ac6Ben Gruver 372b7c1a17846a306deef62855630bca9f061dc9372Ben Gruver for (int ruleIndex=0; ruleIndex<rules.size(); ruleIndex++) { 373b7c1a17846a306deef62855630bca9f061dc9372Ben Gruver Rule rule = rules.get(ruleIndex); 374f157b48eae1469754d801e2bed5cdacd73e4399dBen Gruver for (int i=0; i<rule.getIntentFilterCount(); i++) { 375f157b48eae1469754d801e2bed5cdacd73e4399dBen Gruver resolver.addFilter(rule.getIntentFilter(i)); 376f157b48eae1469754d801e2bed5cdacd73e4399dBen Gruver } 377f157b48eae1469754d801e2bed5cdacd73e4399dBen Gruver for (int i=0; i<rule.getComponentFilterCount(); i++) { 378f157b48eae1469754d801e2bed5cdacd73e4399dBen Gruver resolver.addComponentFilter(rule.getComponentFilter(i), rule); 379b7c1a17846a306deef62855630bca9f061dc9372Ben Gruver } 380b7c1a17846a306deef62855630bca9f061dc9372Ben Gruver } 381a4879c3425ae6ce46d7e7273c081a973a1c79ac6Ben Gruver } 382a4879c3425ae6ce46d7e7273c081a973a1c79ac6Ben Gruver } 383a4879c3425ae6ce46d7e7273c081a973a1c79ac6Ben Gruver 3844efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver static Filter parseFilter(XmlPullParser parser) throws IOException, XmlPullParserException { 3854efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver String elementName = parser.getName(); 3864efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver 3874efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver FilterFactory factory = factoryMap.get(elementName); 3884efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver 3894efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver if (factory == null) { 3904efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver throw new XmlPullParserException("Unknown element in filter list: " + elementName); 3914efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver } 3924efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver return factory.newFilter(parser); 3934efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver } 3944efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver 395f157b48eae1469754d801e2bed5cdacd73e4399dBen Gruver /** 396f157b48eae1469754d801e2bed5cdacd73e4399dBen Gruver * Represents a single activity/service/broadcast rule within one of the xml files. 397f157b48eae1469754d801e2bed5cdacd73e4399dBen Gruver * 398f157b48eae1469754d801e2bed5cdacd73e4399dBen Gruver * Rules are matched against an incoming intent in two phases. The goal of the first phase 399f157b48eae1469754d801e2bed5cdacd73e4399dBen Gruver * is to select a subset of rules that might match a given intent. 400f157b48eae1469754d801e2bed5cdacd73e4399dBen Gruver * 401f157b48eae1469754d801e2bed5cdacd73e4399dBen Gruver * For the first phase, we use a combination of intent filters (via an IntentResolver) 402f157b48eae1469754d801e2bed5cdacd73e4399dBen Gruver * and component filters to select which rules to check. If a rule has multiple intent or 403f157b48eae1469754d801e2bed5cdacd73e4399dBen Gruver * component filters, only a single filter must match for the rule to be passed on to the 404f157b48eae1469754d801e2bed5cdacd73e4399dBen Gruver * second phase. 405f157b48eae1469754d801e2bed5cdacd73e4399dBen Gruver * 406f157b48eae1469754d801e2bed5cdacd73e4399dBen Gruver * In the second phase, we check the specific conditions in each rule against the values in the 407f157b48eae1469754d801e2bed5cdacd73e4399dBen Gruver * intent. All top level conditions (but not filters) in the rule must match for the rule as a 408f157b48eae1469754d801e2bed5cdacd73e4399dBen Gruver * whole to match. 409f157b48eae1469754d801e2bed5cdacd73e4399dBen Gruver * 410f157b48eae1469754d801e2bed5cdacd73e4399dBen Gruver * If the rule matches, then we block or log the intent, as specified by the rule. If multiple 411f157b48eae1469754d801e2bed5cdacd73e4399dBen Gruver * rules match, we combine the block/log flags from any matching rule. 412f157b48eae1469754d801e2bed5cdacd73e4399dBen Gruver */ 4134efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver private static class Rule extends AndFilter { 4144efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver private static final String TAG_INTENT_FILTER = "intent-filter"; 415f157b48eae1469754d801e2bed5cdacd73e4399dBen Gruver private static final String TAG_COMPONENT_FILTER = "component-filter"; 416f157b48eae1469754d801e2bed5cdacd73e4399dBen Gruver private static final String ATTR_NAME = "name"; 4174efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver 4184efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver private static final String ATTR_BLOCK = "block"; 4194efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver private static final String ATTR_LOG = "log"; 4204efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver 4214efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver private final ArrayList<FirewallIntentFilter> mIntentFilters = 4224efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver new ArrayList<FirewallIntentFilter>(1); 423f157b48eae1469754d801e2bed5cdacd73e4399dBen Gruver private final ArrayList<ComponentName> mComponentFilters = new ArrayList<ComponentName>(0); 4244efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver private boolean block; 4254efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver private boolean log; 4264efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver 4274efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver @Override 4284efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver public Rule readFromXml(XmlPullParser parser) throws IOException, XmlPullParserException { 4294efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver block = Boolean.parseBoolean(parser.getAttributeValue(null, ATTR_BLOCK)); 4304efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver log = Boolean.parseBoolean(parser.getAttributeValue(null, ATTR_LOG)); 4314efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver 4324efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver super.readFromXml(parser); 4334efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver return this; 4344efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver } 4354efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver 4364efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver @Override 4374efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver protected void readChild(XmlPullParser parser) throws IOException, XmlPullParserException { 438f157b48eae1469754d801e2bed5cdacd73e4399dBen Gruver String currentTag = parser.getName(); 439f157b48eae1469754d801e2bed5cdacd73e4399dBen Gruver 440f157b48eae1469754d801e2bed5cdacd73e4399dBen Gruver if (currentTag.equals(TAG_INTENT_FILTER)) { 4414efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver FirewallIntentFilter intentFilter = new FirewallIntentFilter(this); 4424efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver intentFilter.readFromXml(parser); 4434efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver mIntentFilters.add(intentFilter); 444f157b48eae1469754d801e2bed5cdacd73e4399dBen Gruver } else if (currentTag.equals(TAG_COMPONENT_FILTER)) { 445f157b48eae1469754d801e2bed5cdacd73e4399dBen Gruver String componentStr = parser.getAttributeValue(null, ATTR_NAME); 446f157b48eae1469754d801e2bed5cdacd73e4399dBen Gruver if (componentStr == null) { 447f157b48eae1469754d801e2bed5cdacd73e4399dBen Gruver throw new XmlPullParserException("Component name must be specified.", 448f157b48eae1469754d801e2bed5cdacd73e4399dBen Gruver parser, null); 449f157b48eae1469754d801e2bed5cdacd73e4399dBen Gruver } 450f157b48eae1469754d801e2bed5cdacd73e4399dBen Gruver 451f157b48eae1469754d801e2bed5cdacd73e4399dBen Gruver ComponentName componentName = ComponentName.unflattenFromString(componentStr); 452f157b48eae1469754d801e2bed5cdacd73e4399dBen Gruver if (componentName == null) { 453f157b48eae1469754d801e2bed5cdacd73e4399dBen Gruver throw new XmlPullParserException("Invalid component name: " + componentStr); 454f157b48eae1469754d801e2bed5cdacd73e4399dBen Gruver } 455f157b48eae1469754d801e2bed5cdacd73e4399dBen Gruver 456f157b48eae1469754d801e2bed5cdacd73e4399dBen Gruver mComponentFilters.add(componentName); 4574efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver } else { 4584efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver super.readChild(parser); 4594efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver } 4604efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver } 4614efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver 4624efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver public int getIntentFilterCount() { 4634efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver return mIntentFilters.size(); 4644efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver } 4654efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver 4664efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver public FirewallIntentFilter getIntentFilter(int index) { 4674efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver return mIntentFilters.get(index); 4684efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver } 4694efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver 470f157b48eae1469754d801e2bed5cdacd73e4399dBen Gruver public int getComponentFilterCount() { 471f157b48eae1469754d801e2bed5cdacd73e4399dBen Gruver return mComponentFilters.size(); 472f157b48eae1469754d801e2bed5cdacd73e4399dBen Gruver } 473f157b48eae1469754d801e2bed5cdacd73e4399dBen Gruver 474f157b48eae1469754d801e2bed5cdacd73e4399dBen Gruver public ComponentName getComponentFilter(int index) { 475f157b48eae1469754d801e2bed5cdacd73e4399dBen Gruver return mComponentFilters.get(index); 476f157b48eae1469754d801e2bed5cdacd73e4399dBen Gruver } 4774efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver public boolean getBlock() { 4784efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver return block; 4794efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver } 4804efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver 4814efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver public boolean getLog() { 4824efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver return log; 4834efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver } 4844efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver } 4854efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver 4864efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver private static class FirewallIntentFilter extends IntentFilter { 4874efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver private final Rule rule; 4884efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver 4894efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver public FirewallIntentFilter(Rule rule) { 4904efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver this.rule = rule; 4914efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver } 4924efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver } 4934efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver 4944efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver private static class FirewallIntentResolver 4954efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver extends IntentResolver<FirewallIntentFilter, Rule> { 4964efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver @Override 4974efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver protected boolean allowFilterResult(FirewallIntentFilter filter, List<Rule> dest) { 4984efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver return !dest.contains(filter.rule); 4994efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver } 5004efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver 5014efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver @Override 5024efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver protected boolean isPackageForFilter(String packageName, FirewallIntentFilter filter) { 5034efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver return true; 5044efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver } 5054efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver 5064efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver @Override 5074efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver protected FirewallIntentFilter[] newArray(int size) { 5084efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver return new FirewallIntentFilter[size]; 5094efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver } 5104efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver 5114efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver @Override 5124efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver protected Rule newResult(FirewallIntentFilter filter, int match, int userId) { 5134efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver return filter.rule; 5144efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver } 5154efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver 5164efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver @Override 5174efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver protected void sortResults(List<Rule> results) { 5184efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver // there's no need to sort the results 5194efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver return; 5204efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver } 521f157b48eae1469754d801e2bed5cdacd73e4399dBen Gruver 522f157b48eae1469754d801e2bed5cdacd73e4399dBen Gruver public void queryByComponent(ComponentName componentName, List<Rule> candidateRules) { 523f157b48eae1469754d801e2bed5cdacd73e4399dBen Gruver Rule[] rules = mRulesByComponent.get(componentName); 524f157b48eae1469754d801e2bed5cdacd73e4399dBen Gruver if (rules != null) { 525f157b48eae1469754d801e2bed5cdacd73e4399dBen Gruver candidateRules.addAll(Arrays.asList(rules)); 526f157b48eae1469754d801e2bed5cdacd73e4399dBen Gruver } 527f157b48eae1469754d801e2bed5cdacd73e4399dBen Gruver } 528f157b48eae1469754d801e2bed5cdacd73e4399dBen Gruver 529f157b48eae1469754d801e2bed5cdacd73e4399dBen Gruver public void addComponentFilter(ComponentName componentName, Rule rule) { 530f157b48eae1469754d801e2bed5cdacd73e4399dBen Gruver Rule[] rules = mRulesByComponent.get(componentName); 531f157b48eae1469754d801e2bed5cdacd73e4399dBen Gruver rules = ArrayUtils.appendElement(Rule.class, rules, rule); 532f157b48eae1469754d801e2bed5cdacd73e4399dBen Gruver mRulesByComponent.put(componentName, rules); 533f157b48eae1469754d801e2bed5cdacd73e4399dBen Gruver } 534f157b48eae1469754d801e2bed5cdacd73e4399dBen Gruver 535f157b48eae1469754d801e2bed5cdacd73e4399dBen Gruver private final ArrayMap<ComponentName, Rule[]> mRulesByComponent = 536f157b48eae1469754d801e2bed5cdacd73e4399dBen Gruver new ArrayMap<ComponentName, Rule[]>(0); 5374efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver } 5384efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver 5396f357d3284a833cc50a990e14b39f389b8972254Jeff Brown final FirewallHandler mHandler; 5406f357d3284a833cc50a990e14b39f389b8972254Jeff Brown 5416f357d3284a833cc50a990e14b39f389b8972254Jeff Brown private final class FirewallHandler extends Handler { 5426f357d3284a833cc50a990e14b39f389b8972254Jeff Brown public FirewallHandler(Looper looper) { 5436f357d3284a833cc50a990e14b39f389b8972254Jeff Brown super(looper, null, true); 5446f357d3284a833cc50a990e14b39f389b8972254Jeff Brown } 5456f357d3284a833cc50a990e14b39f389b8972254Jeff Brown 546a4879c3425ae6ce46d7e7273c081a973a1c79ac6Ben Gruver @Override 547a4879c3425ae6ce46d7e7273c081a973a1c79ac6Ben Gruver public void handleMessage(Message msg) { 548b7c1a17846a306deef62855630bca9f061dc9372Ben Gruver readRulesDir(getRulesDir()); 549a4879c3425ae6ce46d7e7273c081a973a1c79ac6Ben Gruver } 550a4879c3425ae6ce46d7e7273c081a973a1c79ac6Ben Gruver }; 551a4879c3425ae6ce46d7e7273c081a973a1c79ac6Ben Gruver 552a4879c3425ae6ce46d7e7273c081a973a1c79ac6Ben Gruver /** 553b7c1a17846a306deef62855630bca9f061dc9372Ben Gruver * Monitors for the creation/deletion/modification of any .xml files in the rule directory 554a4879c3425ae6ce46d7e7273c081a973a1c79ac6Ben Gruver */ 555a4879c3425ae6ce46d7e7273c081a973a1c79ac6Ben Gruver private class RuleObserver extends FileObserver { 556b7c1a17846a306deef62855630bca9f061dc9372Ben Gruver private static final int MONITORED_EVENTS = FileObserver.CREATE|FileObserver.MOVED_TO| 557b7c1a17846a306deef62855630bca9f061dc9372Ben Gruver FileObserver.CLOSE_WRITE|FileObserver.DELETE|FileObserver.MOVED_FROM; 558a4879c3425ae6ce46d7e7273c081a973a1c79ac6Ben Gruver 559b7c1a17846a306deef62855630bca9f061dc9372Ben Gruver public RuleObserver(File monitoredDir) { 560b7c1a17846a306deef62855630bca9f061dc9372Ben Gruver super(monitoredDir.getAbsolutePath(), MONITORED_EVENTS); 561a4879c3425ae6ce46d7e7273c081a973a1c79ac6Ben Gruver } 562a4879c3425ae6ce46d7e7273c081a973a1c79ac6Ben Gruver 563a4879c3425ae6ce46d7e7273c081a973a1c79ac6Ben Gruver @Override 564a4879c3425ae6ce46d7e7273c081a973a1c79ac6Ben Gruver public void onEvent(int event, String path) { 565b7c1a17846a306deef62855630bca9f061dc9372Ben Gruver if (path.endsWith(".xml")) { 566a4879c3425ae6ce46d7e7273c081a973a1c79ac6Ben Gruver // we wait 250ms before taking any action on an event, in order to dedup multiple 567a4879c3425ae6ce46d7e7273c081a973a1c79ac6Ben Gruver // events. E.g. a delete event followed by a create event followed by a subsequent 568b7c1a17846a306deef62855630bca9f061dc9372Ben Gruver // write+close event 569b7c1a17846a306deef62855630bca9f061dc9372Ben Gruver mHandler.removeMessages(0); 570b7c1a17846a306deef62855630bca9f061dc9372Ben Gruver mHandler.sendEmptyMessageDelayed(0, 250); 571a4879c3425ae6ce46d7e7273c081a973a1c79ac6Ben Gruver } 572a4879c3425ae6ce46d7e7273c081a973a1c79ac6Ben Gruver } 573a4879c3425ae6ce46d7e7273c081a973a1c79ac6Ben Gruver } 574a4879c3425ae6ce46d7e7273c081a973a1c79ac6Ben Gruver 5754efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver /** 5764efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver * This interface contains the methods we need from ActivityManagerService. This allows AMS to 5774efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver * export these methods to us without making them public, and also makes it easier to test this 5784efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver * component. 5794efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver */ 5804efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver public interface AMSInterface { 5814efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver int checkComponentPermission(String permission, int pid, int uid, 5824efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver int owningUid, boolean exported); 583a4879c3425ae6ce46d7e7273c081a973a1c79ac6Ben Gruver Object getAMSLock(); 5844efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver } 5854efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver 5864efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver /** 5874efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver * Checks if the caller has access to a component 5884efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver * 5894efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver * @param permission If present, the caller must have this permission 5904efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver * @param pid The pid of the caller 5914efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver * @param uid The uid of the caller 5924efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver * @param owningUid The uid of the application that owns the component 5934efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver * @param exported Whether the component is exported 5944efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver * @return True if the caller can access the described component 5954efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver */ 5964efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver boolean checkComponentPermission(String permission, int pid, int uid, int owningUid, 5974efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver boolean exported) { 5984efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver return mAms.checkComponentPermission(permission, pid, uid, owningUid, exported) == 5994efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver PackageManager.PERMISSION_GRANTED; 6004efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver } 6014efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver 6024efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver boolean signaturesMatch(int uid1, int uid2) { 6038be8df214189844d0782aba432b90d3706df8c4dBen Gruver try { 6048be8df214189844d0782aba432b90d3706df8c4dBen Gruver IPackageManager pm = AppGlobals.getPackageManager(); 6058be8df214189844d0782aba432b90d3706df8c4dBen Gruver return pm.checkUidSignatures(uid1, uid2) == PackageManager.SIGNATURE_MATCH; 6068be8df214189844d0782aba432b90d3706df8c4dBen Gruver } catch (RemoteException ex) { 6078be8df214189844d0782aba432b90d3706df8c4dBen Gruver Slog.e(TAG, "Remote exception while checking signatures", ex); 6088be8df214189844d0782aba432b90d3706df8c4dBen Gruver return false; 6098be8df214189844d0782aba432b90d3706df8c4dBen Gruver } 6104efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver } 611dd72c9ed558158f889a8cdfed8a108553ba5a562Ben Gruver 6124efe9403afb0ba3b83fa647eb82e4f90d29f131bBen Gruver} 613