CameraService.cpp revision f4db13db84c40299de4f9997f08d05259bdb8716
1/* 2 * Copyright (C) 2008 The Android Open Source Project 3 * 4 * Licensed under the Apache License, Version 2.0 (the "License"); 5 * you may not use this file except in compliance with the License. 6 * You may obtain a copy of the License at 7 * 8 * http://www.apache.org/licenses/LICENSE-2.0 9 * 10 * Unless required by applicable law or agreed to in writing, software 11 * distributed under the License is distributed on an "AS IS" BASIS, 12 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. 13 * See the License for the specific language governing permissions and 14 * limitations under the License. 15 */ 16 17#define LOG_TAG "CameraService" 18#define ATRACE_TAG ATRACE_TAG_CAMERA 19//#define LOG_NDEBUG 0 20 21#include <algorithm> 22#include <climits> 23#include <stdio.h> 24#include <cstring> 25#include <ctime> 26#include <string> 27#include <sys/types.h> 28#include <inttypes.h> 29#include <pthread.h> 30 31#include <android/hardware/ICamera.h> 32#include <android/hardware/ICameraClient.h> 33 34#include <android-base/macros.h> 35#include <binder/AppOpsManager.h> 36#include <binder/IPCThreadState.h> 37#include <binder/IServiceManager.h> 38#include <binder/MemoryBase.h> 39#include <binder/MemoryHeapBase.h> 40#include <binder/ProcessInfoService.h> 41#include <cutils/atomic.h> 42#include <cutils/properties.h> 43#include <gui/Surface.h> 44#include <hardware/hardware.h> 45#include <memunreachable/memunreachable.h> 46#include <media/AudioSystem.h> 47#include <media/IMediaHTTPService.h> 48#include <media/mediaplayer.h> 49#include <mediautils/BatteryNotifier.h> 50#include <utils/Errors.h> 51#include <utils/Log.h> 52#include <utils/String16.h> 53#include <utils/Trace.h> 54#include <private/android_filesystem_config.h> 55#include <system/camera_vendor_tags.h> 56#include <system/camera_metadata.h> 57#include <system/camera.h> 58 59#include "CameraService.h" 60#include "api1/CameraClient.h" 61#include "api1/Camera2Client.h" 62#include "api2/CameraDeviceClient.h" 63#include "utils/CameraTraces.h" 64 65namespace { 66 const char* kPermissionServiceName = "permission"; 67}; // namespace anonymous 68 69namespace android { 70 71using binder::Status; 72using namespace hardware; 73 74// ---------------------------------------------------------------------------- 75// Logging support -- this is for debugging only 76// Use "adb shell dumpsys media.camera -v 1" to change it. 77volatile int32_t gLogLevel = 0; 78 79#define LOG1(...) ALOGD_IF(gLogLevel >= 1, __VA_ARGS__); 80#define LOG2(...) ALOGD_IF(gLogLevel >= 2, __VA_ARGS__); 81 82static void setLogLevel(int level) { 83 android_atomic_write(level, &gLogLevel); 84} 85 86// Convenience methods for constructing binder::Status objects for error returns 87 88#define STATUS_ERROR(errorCode, errorString) \ 89 binder::Status::fromServiceSpecificError(errorCode, \ 90 String8::format("%s:%d: %s", __FUNCTION__, __LINE__, errorString)) 91 92#define STATUS_ERROR_FMT(errorCode, errorString, ...) \ 93 binder::Status::fromServiceSpecificError(errorCode, \ 94 String8::format("%s:%d: " errorString, __FUNCTION__, __LINE__, \ 95 __VA_ARGS__)) 96 97// ---------------------------------------------------------------------------- 98 99extern "C" { 100static void camera_device_status_change( 101 const struct camera_module_callbacks* callbacks, 102 int camera_id, 103 int new_status) { 104 sp<CameraService> cs = const_cast<CameraService*>( 105 static_cast<const CameraService*>(callbacks)); 106 107 cs->onDeviceStatusChanged(camera_id, 108 static_cast<camera_device_status_t>(new_status)); 109} 110 111static void torch_mode_status_change( 112 const struct camera_module_callbacks* callbacks, 113 const char* camera_id, 114 int new_status) { 115 if (!callbacks || !camera_id) { 116 ALOGE("%s invalid parameters. callbacks %p, camera_id %p", __FUNCTION__, 117 callbacks, camera_id); 118 } 119 sp<CameraService> cs = const_cast<CameraService*>( 120 static_cast<const CameraService*>(callbacks)); 121 122 int32_t status; 123 switch (new_status) { 124 case TORCH_MODE_STATUS_NOT_AVAILABLE: 125 status = ICameraServiceListener::TORCH_STATUS_NOT_AVAILABLE; 126 break; 127 case TORCH_MODE_STATUS_AVAILABLE_OFF: 128 status = ICameraServiceListener::TORCH_STATUS_AVAILABLE_OFF; 129 break; 130 case TORCH_MODE_STATUS_AVAILABLE_ON: 131 status = ICameraServiceListener::TORCH_STATUS_AVAILABLE_ON; 132 break; 133 default: 134 ALOGE("Unknown torch status %d", new_status); 135 return; 136 } 137 138 cs->onTorchStatusChanged( 139 String8(camera_id), 140 status); 141} 142} // extern "C" 143 144// ---------------------------------------------------------------------------- 145 146// This is ugly and only safe if we never re-create the CameraService, but 147// should be ok for now. 148static CameraService *gCameraService; 149 150CameraService::CameraService() : 151 mEventLog(DEFAULT_EVENT_LOG_LENGTH), 152 mNumberOfCameras(0), mNumberOfNormalCameras(0), 153 mSoundRef(0), mModule(nullptr) { 154 ALOGI("CameraService started (pid=%d)", getpid()); 155 gCameraService = this; 156 157 this->camera_device_status_change = android::camera_device_status_change; 158 this->torch_mode_status_change = android::torch_mode_status_change; 159 160 mServiceLockWrapper = std::make_shared<WaitableMutexWrapper>(&mServiceLock); 161} 162 163void CameraService::onFirstRef() 164{ 165 ALOGI("CameraService process starting"); 166 167 BnCameraService::onFirstRef(); 168 169 // Update battery life tracking if service is restarting 170 BatteryNotifier& notifier(BatteryNotifier::getInstance()); 171 notifier.noteResetCamera(); 172 notifier.noteResetFlashlight(); 173 174 camera_module_t *rawModule; 175 int err = hw_get_module(CAMERA_HARDWARE_MODULE_ID, 176 (const hw_module_t **)&rawModule); 177 if (err < 0) { 178 ALOGE("Could not load camera HAL module: %d (%s)", err, strerror(-err)); 179 logServiceError("Could not load camera HAL module", err); 180 return; 181 } 182 183 mModule = new CameraModule(rawModule); 184 err = mModule->init(); 185 if (err != OK) { 186 ALOGE("Could not initialize camera HAL module: %d (%s)", err, 187 strerror(-err)); 188 logServiceError("Could not initialize camera HAL module", err); 189 190 delete mModule; 191 mModule = nullptr; 192 return; 193 } 194 ALOGI("Loaded \"%s\" camera module", mModule->getModuleName()); 195 196 mNumberOfCameras = mModule->getNumberOfCameras(); 197 mNumberOfNormalCameras = mNumberOfCameras; 198 199 // Setup vendor tags before we call get_camera_info the first time 200 // because HAL might need to setup static vendor keys in get_camera_info 201 VendorTagDescriptor::clearGlobalVendorTagDescriptor(); 202 if (mModule->getModuleApiVersion() >= CAMERA_MODULE_API_VERSION_2_2) { 203 setUpVendorTags(); 204 } 205 206 mFlashlight = new CameraFlashlight(*mModule, *this); 207 status_t res = mFlashlight->findFlashUnits(); 208 if (res) { 209 // impossible because we haven't open any camera devices. 210 ALOGE("Failed to find flash units."); 211 } 212 213 int latestStrangeCameraId = INT_MAX; 214 for (int i = 0; i < mNumberOfCameras; i++) { 215 String8 cameraId = String8::format("%d", i); 216 217 // Get camera info 218 219 struct camera_info info; 220 bool haveInfo = true; 221 status_t rc = mModule->getCameraInfo(i, &info); 222 if (rc != NO_ERROR) { 223 ALOGE("%s: Received error loading camera info for device %d, cost and" 224 " conflicting devices fields set to defaults for this device.", 225 __FUNCTION__, i); 226 haveInfo = false; 227 } 228 229 // Check for backwards-compatibility support 230 if (haveInfo) { 231 if (checkCameraCapabilities(i, info, &latestStrangeCameraId) != OK) { 232 delete mModule; 233 mModule = nullptr; 234 return; 235 } 236 } 237 238 // Defaults to use for cost and conflicting devices 239 int cost = 100; 240 char** conflicting_devices = nullptr; 241 size_t conflicting_devices_length = 0; 242 243 // If using post-2.4 module version, query the cost + conflicting devices from the HAL 244 if (mModule->getModuleApiVersion() >= CAMERA_MODULE_API_VERSION_2_4 && haveInfo) { 245 cost = info.resource_cost; 246 conflicting_devices = info.conflicting_devices; 247 conflicting_devices_length = info.conflicting_devices_length; 248 } 249 250 std::set<String8> conflicting; 251 for (size_t i = 0; i < conflicting_devices_length; i++) { 252 conflicting.emplace(String8(conflicting_devices[i])); 253 } 254 255 // Initialize state for each camera device 256 { 257 Mutex::Autolock lock(mCameraStatesLock); 258 mCameraStates.emplace(cameraId, std::make_shared<CameraState>(cameraId, cost, 259 conflicting)); 260 } 261 262 if (mFlashlight->hasFlashUnit(cameraId)) { 263 mTorchStatusMap.add(cameraId, 264 ICameraServiceListener::TORCH_STATUS_AVAILABLE_OFF); 265 } 266 } 267 268 if (mModule->getModuleApiVersion() >= CAMERA_MODULE_API_VERSION_2_1) { 269 mModule->setCallbacks(this); 270 } 271 272 CameraService::pingCameraServiceProxy(); 273} 274 275sp<ICameraServiceProxy> CameraService::getCameraServiceProxy() { 276 sp<ICameraServiceProxy> proxyBinder = nullptr; 277#ifndef __BRILLO__ 278 sp<IServiceManager> sm = defaultServiceManager(); 279 // Use checkService because cameraserver normally starts before the 280 // system server and the proxy service. So the long timeout that getService 281 // has before giving up is inappropriate. 282 sp<IBinder> binder = sm->checkService(String16("media.camera.proxy")); 283 if (binder != nullptr) { 284 proxyBinder = interface_cast<ICameraServiceProxy>(binder); 285 } 286#endif 287 return proxyBinder; 288} 289 290void CameraService::pingCameraServiceProxy() { 291 sp<ICameraServiceProxy> proxyBinder = getCameraServiceProxy(); 292 if (proxyBinder == nullptr) return; 293 proxyBinder->pingForUserUpdate(); 294} 295 296CameraService::~CameraService() { 297 if (mModule) { 298 delete mModule; 299 mModule = nullptr; 300 } 301 VendorTagDescriptor::clearGlobalVendorTagDescriptor(); 302 gCameraService = nullptr; 303} 304 305void CameraService::onDeviceStatusChanged(int cameraId, 306 camera_device_status_t newStatus) { 307 ALOGI("%s: Status changed for cameraId=%d, newStatus=%d", __FUNCTION__, 308 cameraId, newStatus); 309 310 String8 id = String8::format("%d", cameraId); 311 std::shared_ptr<CameraState> state = getCameraState(id); 312 313 if (state == nullptr) { 314 ALOGE("%s: Bad camera ID %d", __FUNCTION__, cameraId); 315 return; 316 } 317 318 int32_t oldStatus = state->getStatus(); 319 320 if (oldStatus == static_cast<int32_t>(newStatus)) { 321 ALOGE("%s: State transition to the same status %#x not allowed", __FUNCTION__, newStatus); 322 return; 323 } 324 325 if (newStatus == CAMERA_DEVICE_STATUS_NOT_PRESENT) { 326 logDeviceRemoved(id, String8::format("Device status changed from %d to %d", oldStatus, 327 newStatus)); 328 sp<BasicClient> clientToDisconnect; 329 { 330 // Don't do this in updateStatus to avoid deadlock over mServiceLock 331 Mutex::Autolock lock(mServiceLock); 332 333 // Set the device status to NOT_PRESENT, clients will no longer be able to connect 334 // to this device until the status changes 335 updateStatus(ICameraServiceListener::STATUS_NOT_PRESENT, id); 336 337 // Remove cached shim parameters 338 state->setShimParams(CameraParameters()); 339 340 // Remove the client from the list of active clients 341 clientToDisconnect = removeClientLocked(id); 342 343 // Notify the client of disconnection 344 clientToDisconnect->notifyError( 345 hardware::camera2::ICameraDeviceCallbacks::ERROR_CAMERA_DISCONNECTED, 346 CaptureResultExtras{}); 347 } 348 349 ALOGI("%s: Client for camera ID %s evicted due to device status change from HAL", 350 __FUNCTION__, id.string()); 351 352 // Disconnect client 353 if (clientToDisconnect.get() != nullptr) { 354 // Ensure not in binder RPC so client disconnect PID checks work correctly 355 LOG_ALWAYS_FATAL_IF(getCallingPid() != getpid(), 356 "onDeviceStatusChanged must be called from the camera service process!"); 357 clientToDisconnect->disconnect(); 358 } 359 360 } else { 361 if (oldStatus == ICameraServiceListener::STATUS_NOT_PRESENT) { 362 logDeviceAdded(id, String8::format("Device status changed from %d to %d", oldStatus, 363 newStatus)); 364 } 365 updateStatus(static_cast<int32_t>(newStatus), id); 366 } 367 368} 369 370void CameraService::onTorchStatusChanged(const String8& cameraId, 371 int32_t newStatus) { 372 Mutex::Autolock al(mTorchStatusMutex); 373 onTorchStatusChangedLocked(cameraId, newStatus); 374} 375 376void CameraService::onTorchStatusChangedLocked(const String8& cameraId, 377 int32_t newStatus) { 378 ALOGI("%s: Torch status changed for cameraId=%s, newStatus=%d", 379 __FUNCTION__, cameraId.string(), newStatus); 380 381 int32_t status; 382 status_t res = getTorchStatusLocked(cameraId, &status); 383 if (res) { 384 ALOGE("%s: cannot get torch status of camera %s: %s (%d)", 385 __FUNCTION__, cameraId.string(), strerror(-res), res); 386 return; 387 } 388 if (status == newStatus) { 389 return; 390 } 391 392 res = setTorchStatusLocked(cameraId, newStatus); 393 if (res) { 394 ALOGE("%s: Failed to set the torch status to %d: %s (%d)", __FUNCTION__, 395 (uint32_t)newStatus, strerror(-res), res); 396 return; 397 } 398 399 { 400 // Update battery life logging for flashlight 401 Mutex::Autolock al(mTorchUidMapMutex); 402 auto iter = mTorchUidMap.find(cameraId); 403 if (iter != mTorchUidMap.end()) { 404 int oldUid = iter->second.second; 405 int newUid = iter->second.first; 406 BatteryNotifier& notifier(BatteryNotifier::getInstance()); 407 if (oldUid != newUid) { 408 // If the UID has changed, log the status and update current UID in mTorchUidMap 409 if (status == ICameraServiceListener::TORCH_STATUS_AVAILABLE_ON) { 410 notifier.noteFlashlightOff(cameraId, oldUid); 411 } 412 if (newStatus == ICameraServiceListener::TORCH_STATUS_AVAILABLE_ON) { 413 notifier.noteFlashlightOn(cameraId, newUid); 414 } 415 iter->second.second = newUid; 416 } else { 417 // If the UID has not changed, log the status 418 if (newStatus == ICameraServiceListener::TORCH_STATUS_AVAILABLE_ON) { 419 notifier.noteFlashlightOn(cameraId, oldUid); 420 } else { 421 notifier.noteFlashlightOff(cameraId, oldUid); 422 } 423 } 424 } 425 } 426 427 { 428 Mutex::Autolock lock(mStatusListenerLock); 429 for (auto& i : mListenerList) { 430 i->onTorchStatusChanged(newStatus, String16{cameraId}); 431 } 432 } 433} 434 435Status CameraService::getNumberOfCameras(int32_t type, int32_t* numCameras) { 436 ATRACE_CALL(); 437 switch (type) { 438 case CAMERA_TYPE_BACKWARD_COMPATIBLE: 439 *numCameras = mNumberOfNormalCameras; 440 break; 441 case CAMERA_TYPE_ALL: 442 *numCameras = mNumberOfCameras; 443 break; 444 default: 445 ALOGW("%s: Unknown camera type %d", 446 __FUNCTION__, type); 447 return STATUS_ERROR_FMT(ERROR_ILLEGAL_ARGUMENT, 448 "Unknown camera type %d", type); 449 } 450 return Status::ok(); 451} 452 453Status CameraService::getCameraInfo(int cameraId, 454 CameraInfo* cameraInfo) { 455 ATRACE_CALL(); 456 if (!mModule) { 457 return STATUS_ERROR(ERROR_DISCONNECTED, 458 "Camera subsystem is not available"); 459 } 460 461 if (cameraId < 0 || cameraId >= mNumberOfCameras) { 462 return STATUS_ERROR(ERROR_ILLEGAL_ARGUMENT, 463 "CameraId is not valid"); 464 } 465 466 struct camera_info info; 467 Status rc = filterGetInfoErrorCode( 468 mModule->getCameraInfo(cameraId, &info)); 469 470 if (rc.isOk()) { 471 cameraInfo->facing = info.facing; 472 cameraInfo->orientation = info.orientation; 473 // CameraInfo is for android.hardware.Camera which does not 474 // support external camera facing. The closest approximation would be 475 // front camera. 476 if (cameraInfo->facing == CAMERA_FACING_EXTERNAL) { 477 cameraInfo->facing = CAMERA_FACING_FRONT; 478 } 479 } 480 return rc; 481} 482 483int CameraService::cameraIdToInt(const String8& cameraId) { 484 errno = 0; 485 size_t pos = 0; 486 int ret = stoi(std::string{cameraId.string()}, &pos); 487 if (errno != 0 || pos != cameraId.size()) { 488 return -1; 489 } 490 return ret; 491} 492 493Status CameraService::generateShimMetadata(int cameraId, /*out*/CameraMetadata* cameraInfo) { 494 ATRACE_CALL(); 495 496 Status ret = Status::ok(); 497 498 struct CameraInfo info; 499 if (!(ret = getCameraInfo(cameraId, &info)).isOk()) { 500 return ret; 501 } 502 503 CameraMetadata shimInfo; 504 int32_t orientation = static_cast<int32_t>(info.orientation); 505 status_t rc; 506 if ((rc = shimInfo.update(ANDROID_SENSOR_ORIENTATION, &orientation, 1)) != OK) { 507 return STATUS_ERROR_FMT(ERROR_INVALID_OPERATION, 508 "Error updating metadata: %d (%s)", rc, strerror(-rc)); 509 } 510 511 uint8_t facing = (info.facing == CAMERA_FACING_FRONT) ? 512 ANDROID_LENS_FACING_FRONT : ANDROID_LENS_FACING_BACK; 513 if ((rc = shimInfo.update(ANDROID_LENS_FACING, &facing, 1)) != OK) { 514 return STATUS_ERROR_FMT(ERROR_INVALID_OPERATION, 515 "Error updating metadata: %d (%s)", rc, strerror(-rc)); 516 } 517 518 CameraParameters shimParams; 519 if (!(ret = getLegacyParametersLazy(cameraId, /*out*/&shimParams)).isOk()) { 520 // Error logged by callee 521 return ret; 522 } 523 524 Vector<Size> sizes; 525 Vector<Size> jpegSizes; 526 Vector<int32_t> formats; 527 { 528 shimParams.getSupportedPreviewSizes(/*out*/sizes); 529 shimParams.getSupportedPreviewFormats(/*out*/formats); 530 shimParams.getSupportedPictureSizes(/*out*/jpegSizes); 531 } 532 533 // Always include IMPLEMENTATION_DEFINED 534 formats.add(HAL_PIXEL_FORMAT_IMPLEMENTATION_DEFINED); 535 536 const size_t INTS_PER_CONFIG = 4; 537 538 // Build available stream configurations metadata 539 size_t streamConfigSize = (sizes.size() * formats.size() + jpegSizes.size()) * INTS_PER_CONFIG; 540 541 Vector<int32_t> streamConfigs; 542 streamConfigs.setCapacity(streamConfigSize); 543 544 for (size_t i = 0; i < formats.size(); ++i) { 545 for (size_t j = 0; j < sizes.size(); ++j) { 546 streamConfigs.add(formats[i]); 547 streamConfigs.add(sizes[j].width); 548 streamConfigs.add(sizes[j].height); 549 streamConfigs.add(ANDROID_SCALER_AVAILABLE_STREAM_CONFIGURATIONS_OUTPUT); 550 } 551 } 552 553 for (size_t i = 0; i < jpegSizes.size(); ++i) { 554 streamConfigs.add(HAL_PIXEL_FORMAT_BLOB); 555 streamConfigs.add(jpegSizes[i].width); 556 streamConfigs.add(jpegSizes[i].height); 557 streamConfigs.add(ANDROID_SCALER_AVAILABLE_STREAM_CONFIGURATIONS_OUTPUT); 558 } 559 560 if ((rc = shimInfo.update(ANDROID_SCALER_AVAILABLE_STREAM_CONFIGURATIONS, 561 streamConfigs.array(), streamConfigSize)) != OK) { 562 return STATUS_ERROR_FMT(ERROR_INVALID_OPERATION, 563 "Error updating metadata: %d (%s)", rc, strerror(-rc)); 564 } 565 566 int64_t fakeMinFrames[0]; 567 // TODO: Fixme, don't fake min frame durations. 568 if ((rc = shimInfo.update(ANDROID_SCALER_AVAILABLE_MIN_FRAME_DURATIONS, 569 fakeMinFrames, 0)) != OK) { 570 return STATUS_ERROR_FMT(ERROR_INVALID_OPERATION, 571 "Error updating metadata: %d (%s)", rc, strerror(-rc)); 572 } 573 574 int64_t fakeStalls[0]; 575 // TODO: Fixme, don't fake stall durations. 576 if ((rc = shimInfo.update(ANDROID_SCALER_AVAILABLE_STALL_DURATIONS, 577 fakeStalls, 0)) != OK) { 578 return STATUS_ERROR_FMT(ERROR_INVALID_OPERATION, 579 "Error updating metadata: %d (%s)", rc, strerror(-rc)); 580 } 581 582 *cameraInfo = shimInfo; 583 return ret; 584} 585 586Status CameraService::getCameraCharacteristics(int cameraId, 587 CameraMetadata* cameraInfo) { 588 ATRACE_CALL(); 589 if (!cameraInfo) { 590 ALOGE("%s: cameraInfo is NULL", __FUNCTION__); 591 return STATUS_ERROR(ERROR_ILLEGAL_ARGUMENT, "cameraInfo is NULL"); 592 } 593 594 if (!mModule) { 595 ALOGE("%s: camera hardware module doesn't exist", __FUNCTION__); 596 return STATUS_ERROR(ERROR_DISCONNECTED, 597 "Camera subsystem is not available");; 598 } 599 600 if (cameraId < 0 || cameraId >= mNumberOfCameras) { 601 ALOGE("%s: Invalid camera id: %d", __FUNCTION__, cameraId); 602 return STATUS_ERROR_FMT(ERROR_ILLEGAL_ARGUMENT, 603 "Invalid camera id: %d", cameraId); 604 } 605 606 int facing; 607 Status ret; 608 if (mModule->getModuleApiVersion() < CAMERA_MODULE_API_VERSION_2_0 || 609 getDeviceVersion(cameraId, &facing) < CAMERA_DEVICE_API_VERSION_3_0) { 610 /** 611 * Backwards compatibility mode for old HALs: 612 * - Convert CameraInfo into static CameraMetadata properties. 613 * - Retrieve cached CameraParameters for this camera. If none exist, 614 * attempt to open CameraClient and retrieve the CameraParameters. 615 * - Convert cached CameraParameters into static CameraMetadata 616 * properties. 617 */ 618 ALOGI("%s: Switching to HAL1 shim implementation...", __FUNCTION__); 619 620 ret = generateShimMetadata(cameraId, cameraInfo); 621 } else { 622 /** 623 * Normal HAL 2.1+ codepath. 624 */ 625 struct camera_info info; 626 ret = filterGetInfoErrorCode(mModule->getCameraInfo(cameraId, &info)); 627 if (ret.isOk()) { 628 *cameraInfo = info.static_camera_characteristics; 629 } 630 } 631 632 return ret; 633} 634 635int CameraService::getCallingPid() { 636 return IPCThreadState::self()->getCallingPid(); 637} 638 639int CameraService::getCallingUid() { 640 return IPCThreadState::self()->getCallingUid(); 641} 642 643String8 CameraService::getFormattedCurrentTime() { 644 time_t now = time(nullptr); 645 char formattedTime[64]; 646 strftime(formattedTime, sizeof(formattedTime), "%m-%d %H:%M:%S", localtime(&now)); 647 return String8(formattedTime); 648} 649 650int CameraService::getCameraPriorityFromProcState(int procState) { 651 // Find the priority for the camera usage based on the process state. Higher priority clients 652 // win for evictions. 653 if (procState < 0) { 654 ALOGE("%s: Received invalid process state %d from ActivityManagerService!", __FUNCTION__, 655 procState); 656 return -1; 657 } 658 // Treat sleeping TOP processes the same as regular TOP processes, for 659 // access priority. This is important for lock-screen camera launch scenarios 660 if (procState == PROCESS_STATE_TOP_SLEEPING) { 661 procState = PROCESS_STATE_TOP; 662 } 663 return INT_MAX - procState; 664} 665 666Status CameraService::getCameraVendorTagDescriptor( 667 /*out*/ 668 hardware::camera2::params::VendorTagDescriptor* desc) { 669 ATRACE_CALL(); 670 if (!mModule) { 671 ALOGE("%s: camera hardware module doesn't exist", __FUNCTION__); 672 return STATUS_ERROR(ERROR_DISCONNECTED, "Camera subsystem not available"); 673 } 674 sp<VendorTagDescriptor> globalDescriptor = VendorTagDescriptor::getGlobalVendorTagDescriptor(); 675 if (globalDescriptor != nullptr) { 676 *desc = *(globalDescriptor.get()); 677 } 678 return Status::ok(); 679} 680 681int CameraService::getDeviceVersion(int cameraId, int* facing) { 682 ATRACE_CALL(); 683 struct camera_info info; 684 if (mModule->getCameraInfo(cameraId, &info) != OK) { 685 return -1; 686 } 687 688 int deviceVersion; 689 if (mModule->getModuleApiVersion() >= CAMERA_MODULE_API_VERSION_2_0) { 690 deviceVersion = info.device_version; 691 } else { 692 deviceVersion = CAMERA_DEVICE_API_VERSION_1_0; 693 } 694 695 if (facing) { 696 *facing = info.facing; 697 } 698 699 return deviceVersion; 700} 701 702Status CameraService::filterGetInfoErrorCode(status_t err) { 703 switch(err) { 704 case NO_ERROR: 705 return Status::ok(); 706 case -EINVAL: 707 return STATUS_ERROR(ERROR_ILLEGAL_ARGUMENT, 708 "CameraId is not valid for HAL module"); 709 case -ENODEV: 710 return STATUS_ERROR(ERROR_DISCONNECTED, 711 "Camera device not available"); 712 default: 713 return STATUS_ERROR_FMT(ERROR_INVALID_OPERATION, 714 "Camera HAL encountered error %d: %s", 715 err, strerror(-err)); 716 } 717} 718 719bool CameraService::setUpVendorTags() { 720 ATRACE_CALL(); 721 vendor_tag_ops_t vOps = vendor_tag_ops_t(); 722 723 // Check if vendor operations have been implemented 724 if (!mModule->isVendorTagDefined()) { 725 ALOGI("%s: No vendor tags defined for this device.", __FUNCTION__); 726 return false; 727 } 728 729 mModule->getVendorTagOps(&vOps); 730 731 // Ensure all vendor operations are present 732 if (vOps.get_tag_count == NULL || vOps.get_all_tags == NULL || 733 vOps.get_section_name == NULL || vOps.get_tag_name == NULL || 734 vOps.get_tag_type == NULL) { 735 ALOGE("%s: Vendor tag operations not fully defined. Ignoring definitions." 736 , __FUNCTION__); 737 return false; 738 } 739 740 // Read all vendor tag definitions into a descriptor 741 sp<VendorTagDescriptor> desc; 742 status_t res; 743 if ((res = VendorTagDescriptor::createDescriptorFromOps(&vOps, /*out*/desc)) 744 != OK) { 745 ALOGE("%s: Could not generate descriptor from vendor tag operations," 746 "received error %s (%d). Camera clients will not be able to use" 747 "vendor tags", __FUNCTION__, strerror(res), res); 748 return false; 749 } 750 751 // Set the global descriptor to use with camera metadata 752 VendorTagDescriptor::setAsGlobalVendorTagDescriptor(desc); 753 return true; 754} 755 756Status CameraService::makeClient(const sp<CameraService>& cameraService, 757 const sp<IInterface>& cameraCb, const String16& packageName, int cameraId, 758 int facing, int clientPid, uid_t clientUid, int servicePid, bool legacyMode, 759 int halVersion, int deviceVersion, apiLevel effectiveApiLevel, 760 /*out*/sp<BasicClient>* client) { 761 762 if (halVersion < 0 || halVersion == deviceVersion) { 763 // Default path: HAL version is unspecified by caller, create CameraClient 764 // based on device version reported by the HAL. 765 switch(deviceVersion) { 766 case CAMERA_DEVICE_API_VERSION_1_0: 767 if (effectiveApiLevel == API_1) { // Camera1 API route 768 sp<ICameraClient> tmp = static_cast<ICameraClient*>(cameraCb.get()); 769 *client = new CameraClient(cameraService, tmp, packageName, cameraId, facing, 770 clientPid, clientUid, getpid(), legacyMode); 771 } else { // Camera2 API route 772 ALOGW("Camera using old HAL version: %d", deviceVersion); 773 return STATUS_ERROR_FMT(ERROR_DEPRECATED_HAL, 774 "Camera device \"%d\" HAL version %d does not support camera2 API", 775 cameraId, deviceVersion); 776 } 777 break; 778 case CAMERA_DEVICE_API_VERSION_3_0: 779 case CAMERA_DEVICE_API_VERSION_3_1: 780 case CAMERA_DEVICE_API_VERSION_3_2: 781 case CAMERA_DEVICE_API_VERSION_3_3: 782 case CAMERA_DEVICE_API_VERSION_3_4: 783 if (effectiveApiLevel == API_1) { // Camera1 API route 784 sp<ICameraClient> tmp = static_cast<ICameraClient*>(cameraCb.get()); 785 *client = new Camera2Client(cameraService, tmp, packageName, cameraId, facing, 786 clientPid, clientUid, servicePid, legacyMode); 787 } else { // Camera2 API route 788 sp<hardware::camera2::ICameraDeviceCallbacks> tmp = 789 static_cast<hardware::camera2::ICameraDeviceCallbacks*>(cameraCb.get()); 790 *client = new CameraDeviceClient(cameraService, tmp, packageName, cameraId, 791 facing, clientPid, clientUid, servicePid); 792 } 793 break; 794 default: 795 // Should not be reachable 796 ALOGE("Unknown camera device HAL version: %d", deviceVersion); 797 return STATUS_ERROR_FMT(ERROR_INVALID_OPERATION, 798 "Camera device \"%d\" has unknown HAL version %d", 799 cameraId, deviceVersion); 800 } 801 } else { 802 // A particular HAL version is requested by caller. Create CameraClient 803 // based on the requested HAL version. 804 if (deviceVersion > CAMERA_DEVICE_API_VERSION_1_0 && 805 halVersion == CAMERA_DEVICE_API_VERSION_1_0) { 806 // Only support higher HAL version device opened as HAL1.0 device. 807 sp<ICameraClient> tmp = static_cast<ICameraClient*>(cameraCb.get()); 808 *client = new CameraClient(cameraService, tmp, packageName, cameraId, facing, 809 clientPid, clientUid, servicePid, legacyMode); 810 } else { 811 // Other combinations (e.g. HAL3.x open as HAL2.x) are not supported yet. 812 ALOGE("Invalid camera HAL version %x: HAL %x device can only be" 813 " opened as HAL %x device", halVersion, deviceVersion, 814 CAMERA_DEVICE_API_VERSION_1_0); 815 return STATUS_ERROR_FMT(ERROR_ILLEGAL_ARGUMENT, 816 "Camera device \"%d\" (HAL version %d) cannot be opened as HAL version %d", 817 cameraId, deviceVersion, halVersion); 818 } 819 } 820 return Status::ok(); 821} 822 823String8 CameraService::toString(std::set<userid_t> intSet) { 824 String8 s(""); 825 bool first = true; 826 for (userid_t i : intSet) { 827 if (first) { 828 s.appendFormat("%d", i); 829 first = false; 830 } else { 831 s.appendFormat(", %d", i); 832 } 833 } 834 return s; 835} 836 837Status CameraService::initializeShimMetadata(int cameraId) { 838 int uid = getCallingUid(); 839 840 String16 internalPackageName("cameraserver"); 841 String8 id = String8::format("%d", cameraId); 842 Status ret = Status::ok(); 843 sp<Client> tmp = nullptr; 844 if (!(ret = connectHelper<ICameraClient,Client>( 845 sp<ICameraClient>{nullptr}, id, static_cast<int>(CAMERA_HAL_API_VERSION_UNSPECIFIED), 846 internalPackageName, uid, USE_CALLING_PID, 847 API_1, /*legacyMode*/ false, /*shimUpdateOnly*/ true, 848 /*out*/ tmp) 849 ).isOk()) { 850 ALOGE("%s: Error initializing shim metadata: %s", __FUNCTION__, ret.toString8().string()); 851 } 852 return ret; 853} 854 855Status CameraService::getLegacyParametersLazy(int cameraId, 856 /*out*/ 857 CameraParameters* parameters) { 858 859 ALOGV("%s: for cameraId: %d", __FUNCTION__, cameraId); 860 861 Status ret = Status::ok(); 862 863 if (parameters == NULL) { 864 ALOGE("%s: parameters must not be null", __FUNCTION__); 865 return STATUS_ERROR(ERROR_ILLEGAL_ARGUMENT, "Parameters must not be null"); 866 } 867 868 String8 id = String8::format("%d", cameraId); 869 870 // Check if we already have parameters 871 { 872 // Scope for service lock 873 Mutex::Autolock lock(mServiceLock); 874 auto cameraState = getCameraState(id); 875 if (cameraState == nullptr) { 876 ALOGE("%s: Invalid camera ID: %s", __FUNCTION__, id.string()); 877 return STATUS_ERROR_FMT(ERROR_ILLEGAL_ARGUMENT, 878 "Invalid camera ID: %s", id.string()); 879 } 880 CameraParameters p = cameraState->getShimParams(); 881 if (!p.isEmpty()) { 882 *parameters = p; 883 return ret; 884 } 885 } 886 887 int64_t token = IPCThreadState::self()->clearCallingIdentity(); 888 ret = initializeShimMetadata(cameraId); 889 IPCThreadState::self()->restoreCallingIdentity(token); 890 if (!ret.isOk()) { 891 // Error already logged by callee 892 return ret; 893 } 894 895 // Check for parameters again 896 { 897 // Scope for service lock 898 Mutex::Autolock lock(mServiceLock); 899 auto cameraState = getCameraState(id); 900 if (cameraState == nullptr) { 901 ALOGE("%s: Invalid camera ID: %s", __FUNCTION__, id.string()); 902 return STATUS_ERROR_FMT(ERROR_ILLEGAL_ARGUMENT, 903 "Invalid camera ID: %s", id.string()); 904 } 905 CameraParameters p = cameraState->getShimParams(); 906 if (!p.isEmpty()) { 907 *parameters = p; 908 return ret; 909 } 910 } 911 912 ALOGE("%s: Parameters were not initialized, or were empty. Device may not be present.", 913 __FUNCTION__); 914 return STATUS_ERROR(ERROR_INVALID_OPERATION, "Unable to initialize legacy parameters"); 915} 916 917// Can camera service trust the caller based on the calling UID? 918static bool isTrustedCallingUid(uid_t uid) { 919 switch (uid) { 920 case AID_MEDIA: // mediaserver 921 case AID_CAMERASERVER: // cameraserver 922 case AID_RADIO: // telephony 923 return true; 924 default: 925 return false; 926 } 927} 928 929Status CameraService::validateConnectLocked(const String8& cameraId, 930 const String8& clientName8, /*inout*/int& clientUid, /*inout*/int& clientPid, 931 /*out*/int& originalClientPid) const { 932 933#ifdef __BRILLO__ 934 UNUSED(clientName8); 935 UNUSED(clientUid); 936 UNUSED(clientPid); 937 UNUSED(originalClientPid); 938#else 939 Status allowed = validateClientPermissionsLocked(cameraId, clientName8, clientUid, clientPid, 940 originalClientPid); 941 if (!allowed.isOk()) { 942 return allowed; 943 } 944#endif // __BRILLO__ 945 946 int callingPid = getCallingPid(); 947 948 if (!mModule) { 949 ALOGE("CameraService::connect X (PID %d) rejected (camera HAL module not loaded)", 950 callingPid); 951 return STATUS_ERROR_FMT(ERROR_DISCONNECTED, 952 "No camera HAL module available to open camera device \"%s\"", cameraId.string()); 953 } 954 955 if (getCameraState(cameraId) == nullptr) { 956 ALOGE("CameraService::connect X (PID %d) rejected (invalid camera ID %s)", callingPid, 957 cameraId.string()); 958 return STATUS_ERROR_FMT(ERROR_DISCONNECTED, 959 "No camera device with ID \"%s\" available", cameraId.string()); 960 } 961 962 status_t err = checkIfDeviceIsUsable(cameraId); 963 if (err != NO_ERROR) { 964 switch(err) { 965 case -ENODEV: 966 case -EBUSY: 967 return STATUS_ERROR_FMT(ERROR_DISCONNECTED, 968 "No camera device with ID \"%s\" currently available", cameraId.string()); 969 default: 970 return STATUS_ERROR_FMT(ERROR_INVALID_OPERATION, 971 "Unknown error connecting to ID \"%s\"", cameraId.string()); 972 } 973 } 974 return Status::ok(); 975} 976 977Status CameraService::validateClientPermissionsLocked(const String8& cameraId, 978 const String8& clientName8, int& clientUid, int& clientPid, 979 /*out*/int& originalClientPid) const { 980 int callingPid = getCallingPid(); 981 int callingUid = getCallingUid(); 982 983 // Check if we can trust clientUid 984 if (clientUid == USE_CALLING_UID) { 985 clientUid = callingUid; 986 } else if (!isTrustedCallingUid(callingUid)) { 987 ALOGE("CameraService::connect X (calling PID %d, calling UID %d) rejected " 988 "(don't trust clientUid %d)", callingPid, callingUid, clientUid); 989 return STATUS_ERROR_FMT(ERROR_PERMISSION_DENIED, 990 "Untrusted caller (calling PID %d, UID %d) trying to " 991 "forward camera access to camera %s for client %s (PID %d, UID %d)", 992 callingPid, callingUid, cameraId.string(), 993 clientName8.string(), clientUid, clientPid); 994 } 995 996 // Check if we can trust clientPid 997 if (clientPid == USE_CALLING_PID) { 998 clientPid = callingPid; 999 } else if (!isTrustedCallingUid(callingUid)) { 1000 ALOGE("CameraService::connect X (calling PID %d, calling UID %d) rejected " 1001 "(don't trust clientPid %d)", callingPid, callingUid, clientPid); 1002 return STATUS_ERROR_FMT(ERROR_PERMISSION_DENIED, 1003 "Untrusted caller (calling PID %d, UID %d) trying to " 1004 "forward camera access to camera %s for client %s (PID %d, UID %d)", 1005 callingPid, callingUid, cameraId.string(), 1006 clientName8.string(), clientUid, clientPid); 1007 } 1008 1009 // If it's not calling from cameraserver, check the permission. 1010 if (callingPid != getpid() && 1011 !checkPermission(String16("android.permission.CAMERA"), clientPid, clientUid)) { 1012 ALOGE("Permission Denial: can't use the camera pid=%d, uid=%d", clientPid, clientUid); 1013 return STATUS_ERROR_FMT(ERROR_PERMISSION_DENIED, 1014 "Caller \"%s\" (PID %d, UID %d) cannot open camera \"%s\" without camera permission", 1015 clientName8.string(), clientUid, clientPid, cameraId.string()); 1016 } 1017 1018 // Only use passed in clientPid to check permission. Use calling PID as the client PID that's 1019 // connected to camera service directly. 1020 originalClientPid = clientPid; 1021 clientPid = callingPid; 1022 1023 userid_t clientUserId = multiuser_get_user_id(clientUid); 1024 1025 // Only allow clients who are being used by the current foreground device user, unless calling 1026 // from our own process. 1027 if (callingPid != getpid() && (mAllowedUsers.find(clientUserId) == mAllowedUsers.end())) { 1028 ALOGE("CameraService::connect X (PID %d) rejected (cannot connect from " 1029 "device user %d, currently allowed device users: %s)", callingPid, clientUserId, 1030 toString(mAllowedUsers).string()); 1031 return STATUS_ERROR_FMT(ERROR_PERMISSION_DENIED, 1032 "Callers from device user %d are not currently allowed to connect to camera \"%s\"", 1033 clientUserId, cameraId.string()); 1034 } 1035 1036 return Status::ok(); 1037} 1038 1039status_t CameraService::checkIfDeviceIsUsable(const String8& cameraId) const { 1040 auto cameraState = getCameraState(cameraId); 1041 int callingPid = getCallingPid(); 1042 if (cameraState == nullptr) { 1043 ALOGE("CameraService::connect X (PID %d) rejected (invalid camera ID %s)", callingPid, 1044 cameraId.string()); 1045 return -ENODEV; 1046 } 1047 1048 int32_t currentStatus = cameraState->getStatus(); 1049 if (currentStatus == ICameraServiceListener::STATUS_NOT_PRESENT) { 1050 ALOGE("CameraService::connect X (PID %d) rejected (camera %s is not connected)", 1051 callingPid, cameraId.string()); 1052 return -ENODEV; 1053 } else if (currentStatus == ICameraServiceListener::STATUS_ENUMERATING) { 1054 ALOGE("CameraService::connect X (PID %d) rejected, (camera %s is initializing)", 1055 callingPid, cameraId.string()); 1056 return -EBUSY; 1057 } 1058 1059 return NO_ERROR; 1060} 1061 1062void CameraService::finishConnectLocked(const sp<BasicClient>& client, 1063 const CameraService::DescriptorPtr& desc) { 1064 1065 // Make a descriptor for the incoming client 1066 auto clientDescriptor = CameraService::CameraClientManager::makeClientDescriptor(client, desc); 1067 auto evicted = mActiveClientManager.addAndEvict(clientDescriptor); 1068 1069 logConnected(desc->getKey(), static_cast<int>(desc->getOwnerId()), 1070 String8(client->getPackageName())); 1071 1072 if (evicted.size() > 0) { 1073 // This should never happen - clients should already have been removed in disconnect 1074 for (auto& i : evicted) { 1075 ALOGE("%s: Invalid state: Client for camera %s was not removed in disconnect", 1076 __FUNCTION__, i->getKey().string()); 1077 } 1078 1079 LOG_ALWAYS_FATAL("%s: Invalid state for CameraService, clients not evicted properly", 1080 __FUNCTION__); 1081 } 1082 1083 // And register a death notification for the client callback. Do 1084 // this last to avoid Binder policy where a nested Binder 1085 // transaction might be pre-empted to service the client death 1086 // notification if the client process dies before linkToDeath is 1087 // invoked. 1088 sp<IBinder> remoteCallback = client->getRemote(); 1089 if (remoteCallback != nullptr) { 1090 remoteCallback->linkToDeath(this); 1091 } 1092} 1093 1094status_t CameraService::handleEvictionsLocked(const String8& cameraId, int clientPid, 1095 apiLevel effectiveApiLevel, const sp<IBinder>& remoteCallback, const String8& packageName, 1096 /*out*/ 1097 sp<BasicClient>* client, 1098 std::shared_ptr<resource_policy::ClientDescriptor<String8, sp<BasicClient>>>* partial) { 1099 ATRACE_CALL(); 1100 status_t ret = NO_ERROR; 1101 std::vector<DescriptorPtr> evictedClients; 1102 DescriptorPtr clientDescriptor; 1103 { 1104 if (effectiveApiLevel == API_1) { 1105 // If we are using API1, any existing client for this camera ID with the same remote 1106 // should be returned rather than evicted to allow MediaRecorder to work properly. 1107 1108 auto current = mActiveClientManager.get(cameraId); 1109 if (current != nullptr) { 1110 auto clientSp = current->getValue(); 1111 if (clientSp.get() != nullptr) { // should never be needed 1112 if (!clientSp->canCastToApiClient(effectiveApiLevel)) { 1113 ALOGW("CameraService connect called from same client, but with a different" 1114 " API level, evicting prior client..."); 1115 } else if (clientSp->getRemote() == remoteCallback) { 1116 ALOGI("CameraService::connect X (PID %d) (second call from same" 1117 " app binder, returning the same client)", clientPid); 1118 *client = clientSp; 1119 return NO_ERROR; 1120 } 1121 } 1122 } 1123 } 1124 1125 // Get current active client PIDs 1126 std::vector<int> ownerPids(mActiveClientManager.getAllOwners()); 1127 ownerPids.push_back(clientPid); 1128 1129 // Use the value +PROCESS_STATE_NONEXISTENT, to avoid taking 1130 // address of PROCESS_STATE_NONEXISTENT as a reference argument 1131 // for the vector constructor. PROCESS_STATE_NONEXISTENT does 1132 // not have an out-of-class definition. 1133 std::vector<int> priorities(ownerPids.size(), +PROCESS_STATE_NONEXISTENT); 1134 1135 // Get priorites of all active PIDs 1136 ProcessInfoService::getProcessStatesFromPids(ownerPids.size(), &ownerPids[0], 1137 /*out*/&priorities[0]); 1138 1139 // Update all active clients' priorities 1140 std::map<int,int> pidToPriorityMap; 1141 for (size_t i = 0; i < ownerPids.size() - 1; i++) { 1142 pidToPriorityMap.emplace(ownerPids[i], getCameraPriorityFromProcState(priorities[i])); 1143 } 1144 mActiveClientManager.updatePriorities(pidToPriorityMap); 1145 1146 // Get state for the given cameraId 1147 auto state = getCameraState(cameraId); 1148 if (state == nullptr) { 1149 ALOGE("CameraService::connect X (PID %d) rejected (no camera device with ID %s)", 1150 clientPid, cameraId.string()); 1151 // Should never get here because validateConnectLocked should have errored out 1152 return BAD_VALUE; 1153 } 1154 1155 // Make descriptor for incoming client 1156 clientDescriptor = CameraClientManager::makeClientDescriptor(cameraId, 1157 sp<BasicClient>{nullptr}, static_cast<int32_t>(state->getCost()), 1158 state->getConflicting(), 1159 getCameraPriorityFromProcState(priorities[priorities.size() - 1]), clientPid); 1160 1161 // Find clients that would be evicted 1162 auto evicted = mActiveClientManager.wouldEvict(clientDescriptor); 1163 1164 // If the incoming client was 'evicted,' higher priority clients have the camera in the 1165 // background, so we cannot do evictions 1166 if (std::find(evicted.begin(), evicted.end(), clientDescriptor) != evicted.end()) { 1167 ALOGE("CameraService::connect X (PID %d) rejected (existing client(s) with higher" 1168 " priority).", clientPid); 1169 1170 sp<BasicClient> clientSp = clientDescriptor->getValue(); 1171 String8 curTime = getFormattedCurrentTime(); 1172 auto incompatibleClients = 1173 mActiveClientManager.getIncompatibleClients(clientDescriptor); 1174 1175 String8 msg = String8::format("%s : DENIED connect device %s client for package %s " 1176 "(PID %d, priority %d) due to eviction policy", curTime.string(), 1177 cameraId.string(), packageName.string(), clientPid, 1178 getCameraPriorityFromProcState(priorities[priorities.size() - 1])); 1179 1180 for (auto& i : incompatibleClients) { 1181 msg.appendFormat("\n - Blocked by existing device %s client for package %s" 1182 "(PID %" PRId32 ", priority %" PRId32 ")", i->getKey().string(), 1183 String8{i->getValue()->getPackageName()}.string(), i->getOwnerId(), 1184 i->getPriority()); 1185 ALOGE(" Conflicts with: Device %s, client package %s (PID %" 1186 PRId32 ", priority %" PRId32 ")", i->getKey().string(), 1187 String8{i->getValue()->getPackageName()}.string(), i->getOwnerId(), 1188 i->getPriority()); 1189 } 1190 1191 // Log the client's attempt 1192 Mutex::Autolock l(mLogLock); 1193 mEventLog.add(msg); 1194 1195 return -EBUSY; 1196 } 1197 1198 for (auto& i : evicted) { 1199 sp<BasicClient> clientSp = i->getValue(); 1200 if (clientSp.get() == nullptr) { 1201 ALOGE("%s: Invalid state: Null client in active client list.", __FUNCTION__); 1202 1203 // TODO: Remove this 1204 LOG_ALWAYS_FATAL("%s: Invalid state for CameraService, null client in active list", 1205 __FUNCTION__); 1206 mActiveClientManager.remove(i); 1207 continue; 1208 } 1209 1210 ALOGE("CameraService::connect evicting conflicting client for camera ID %s", 1211 i->getKey().string()); 1212 evictedClients.push_back(i); 1213 1214 // Log the clients evicted 1215 logEvent(String8::format("EVICT device %s client held by package %s (PID" 1216 " %" PRId32 ", priority %" PRId32 ")\n - Evicted by device %s client for" 1217 " package %s (PID %d, priority %" PRId32 ")", 1218 i->getKey().string(), String8{clientSp->getPackageName()}.string(), 1219 i->getOwnerId(), i->getPriority(), cameraId.string(), 1220 packageName.string(), clientPid, 1221 getCameraPriorityFromProcState(priorities[priorities.size() - 1]))); 1222 1223 // Notify the client of disconnection 1224 clientSp->notifyError(hardware::camera2::ICameraDeviceCallbacks::ERROR_CAMERA_DISCONNECTED, 1225 CaptureResultExtras()); 1226 } 1227 } 1228 1229 // Do not hold mServiceLock while disconnecting clients, but retain the condition blocking 1230 // other clients from connecting in mServiceLockWrapper if held 1231 mServiceLock.unlock(); 1232 1233 // Clear caller identity temporarily so client disconnect PID checks work correctly 1234 int64_t token = IPCThreadState::self()->clearCallingIdentity(); 1235 1236 // Destroy evicted clients 1237 for (auto& i : evictedClients) { 1238 // Disconnect is blocking, and should only have returned when HAL has cleaned up 1239 i->getValue()->disconnect(); // Clients will remove themselves from the active client list 1240 } 1241 1242 IPCThreadState::self()->restoreCallingIdentity(token); 1243 1244 for (const auto& i : evictedClients) { 1245 ALOGV("%s: Waiting for disconnect to complete for client for device %s (PID %" PRId32 ")", 1246 __FUNCTION__, i->getKey().string(), i->getOwnerId()); 1247 ret = mActiveClientManager.waitUntilRemoved(i, DEFAULT_DISCONNECT_TIMEOUT_NS); 1248 if (ret == TIMED_OUT) { 1249 ALOGE("%s: Timed out waiting for client for device %s to disconnect, " 1250 "current clients:\n%s", __FUNCTION__, i->getKey().string(), 1251 mActiveClientManager.toString().string()); 1252 return -EBUSY; 1253 } 1254 if (ret != NO_ERROR) { 1255 ALOGE("%s: Received error waiting for client for device %s to disconnect: %s (%d), " 1256 "current clients:\n%s", __FUNCTION__, i->getKey().string(), strerror(-ret), 1257 ret, mActiveClientManager.toString().string()); 1258 return ret; 1259 } 1260 } 1261 1262 evictedClients.clear(); 1263 1264 // Once clients have been disconnected, relock 1265 mServiceLock.lock(); 1266 1267 // Check again if the device was unplugged or something while we weren't holding mServiceLock 1268 if ((ret = checkIfDeviceIsUsable(cameraId)) != NO_ERROR) { 1269 return ret; 1270 } 1271 1272 *partial = clientDescriptor; 1273 return NO_ERROR; 1274} 1275 1276Status CameraService::connect( 1277 const sp<ICameraClient>& cameraClient, 1278 int cameraId, 1279 const String16& clientPackageName, 1280 int clientUid, 1281 int clientPid, 1282 /*out*/ 1283 sp<ICamera>* device) { 1284 1285 ATRACE_CALL(); 1286 Status ret = Status::ok(); 1287 String8 id = String8::format("%d", cameraId); 1288 sp<Client> client = nullptr; 1289 ret = connectHelper<ICameraClient,Client>(cameraClient, id, 1290 CAMERA_HAL_API_VERSION_UNSPECIFIED, clientPackageName, clientUid, clientPid, API_1, 1291 /*legacyMode*/ false, /*shimUpdateOnly*/ false, 1292 /*out*/client); 1293 1294 if(!ret.isOk()) { 1295 logRejected(id, getCallingPid(), String8(clientPackageName), 1296 ret.toString8()); 1297 return ret; 1298 } 1299 1300 *device = client; 1301 return ret; 1302} 1303 1304Status CameraService::connectLegacy( 1305 const sp<ICameraClient>& cameraClient, 1306 int cameraId, int halVersion, 1307 const String16& clientPackageName, 1308 int clientUid, 1309 /*out*/ 1310 sp<ICamera>* device) { 1311 1312 ATRACE_CALL(); 1313 String8 id = String8::format("%d", cameraId); 1314 int apiVersion = mModule->getModuleApiVersion(); 1315 if (halVersion != CAMERA_HAL_API_VERSION_UNSPECIFIED && 1316 apiVersion < CAMERA_MODULE_API_VERSION_2_3) { 1317 /* 1318 * Either the HAL version is unspecified in which case this just creates 1319 * a camera client selected by the latest device version, or 1320 * it's a particular version in which case the HAL must supported 1321 * the open_legacy call 1322 */ 1323 String8 msg = String8::format("Camera HAL module version %x too old for connectLegacy!", 1324 apiVersion); 1325 ALOGE("%s: %s", 1326 __FUNCTION__, msg.string()); 1327 logRejected(id, getCallingPid(), String8(clientPackageName), 1328 msg); 1329 return STATUS_ERROR(ERROR_ILLEGAL_ARGUMENT, msg.string()); 1330 } 1331 1332 Status ret = Status::ok(); 1333 sp<Client> client = nullptr; 1334 ret = connectHelper<ICameraClient,Client>(cameraClient, id, halVersion, 1335 clientPackageName, clientUid, USE_CALLING_PID, API_1, 1336 /*legacyMode*/ true, /*shimUpdateOnly*/ false, 1337 /*out*/client); 1338 1339 if(!ret.isOk()) { 1340 logRejected(id, getCallingPid(), String8(clientPackageName), 1341 ret.toString8()); 1342 return ret; 1343 } 1344 1345 *device = client; 1346 return ret; 1347} 1348 1349Status CameraService::connectDevice( 1350 const sp<hardware::camera2::ICameraDeviceCallbacks>& cameraCb, 1351 int cameraId, 1352 const String16& clientPackageName, 1353 int clientUid, 1354 /*out*/ 1355 sp<hardware::camera2::ICameraDeviceUser>* device) { 1356 1357 ATRACE_CALL(); 1358 Status ret = Status::ok(); 1359 String8 id = String8::format("%d", cameraId); 1360 sp<CameraDeviceClient> client = nullptr; 1361 ret = connectHelper<hardware::camera2::ICameraDeviceCallbacks,CameraDeviceClient>(cameraCb, id, 1362 CAMERA_HAL_API_VERSION_UNSPECIFIED, clientPackageName, 1363 clientUid, USE_CALLING_PID, API_2, 1364 /*legacyMode*/ false, /*shimUpdateOnly*/ false, 1365 /*out*/client); 1366 1367 if(!ret.isOk()) { 1368 logRejected(id, getCallingPid(), String8(clientPackageName), 1369 ret.toString8()); 1370 return ret; 1371 } 1372 1373 *device = client; 1374 return ret; 1375} 1376 1377Status CameraService::setTorchMode(const String16& cameraId, bool enabled, 1378 const sp<IBinder>& clientBinder) { 1379 1380 ATRACE_CALL(); 1381 if (enabled && clientBinder == nullptr) { 1382 ALOGE("%s: torch client binder is NULL", __FUNCTION__); 1383 return STATUS_ERROR(ERROR_ILLEGAL_ARGUMENT, 1384 "Torch client Binder is null"); 1385 } 1386 1387 String8 id = String8(cameraId.string()); 1388 int uid = getCallingUid(); 1389 1390 // verify id is valid. 1391 auto state = getCameraState(id); 1392 if (state == nullptr) { 1393 ALOGE("%s: camera id is invalid %s", __FUNCTION__, id.string()); 1394 return STATUS_ERROR_FMT(ERROR_ILLEGAL_ARGUMENT, 1395 "Camera ID \"%s\" is a not valid camera ID", id.string()); 1396 } 1397 1398 int32_t cameraStatus = state->getStatus(); 1399 if (cameraStatus != ICameraServiceListener::STATUS_PRESENT && 1400 cameraStatus != ICameraServiceListener::STATUS_NOT_AVAILABLE) { 1401 ALOGE("%s: camera id is invalid %s", __FUNCTION__, id.string()); 1402 return STATUS_ERROR_FMT(ERROR_ILLEGAL_ARGUMENT, 1403 "Camera ID \"%s\" is a not valid camera ID", id.string()); 1404 } 1405 1406 { 1407 Mutex::Autolock al(mTorchStatusMutex); 1408 int32_t status; 1409 status_t err = getTorchStatusLocked(id, &status); 1410 if (err != OK) { 1411 if (err == NAME_NOT_FOUND) { 1412 return STATUS_ERROR_FMT(ERROR_ILLEGAL_ARGUMENT, 1413 "Camera \"%s\" does not have a flash unit", id.string()); 1414 } 1415 ALOGE("%s: getting current torch status failed for camera %s", 1416 __FUNCTION__, id.string()); 1417 return STATUS_ERROR_FMT(ERROR_INVALID_OPERATION, 1418 "Error updating torch status for camera \"%s\": %s (%d)", id.string(), 1419 strerror(-err), err); 1420 } 1421 1422 if (status == ICameraServiceListener::TORCH_STATUS_NOT_AVAILABLE) { 1423 if (cameraStatus == ICameraServiceListener::STATUS_NOT_AVAILABLE) { 1424 ALOGE("%s: torch mode of camera %s is not available because " 1425 "camera is in use", __FUNCTION__, id.string()); 1426 return STATUS_ERROR_FMT(ERROR_CAMERA_IN_USE, 1427 "Torch for camera \"%s\" is not available due to an existing camera user", 1428 id.string()); 1429 } else { 1430 ALOGE("%s: torch mode of camera %s is not available due to " 1431 "insufficient resources", __FUNCTION__, id.string()); 1432 return STATUS_ERROR_FMT(ERROR_MAX_CAMERAS_IN_USE, 1433 "Torch for camera \"%s\" is not available due to insufficient resources", 1434 id.string()); 1435 } 1436 } 1437 } 1438 1439 { 1440 // Update UID map - this is used in the torch status changed callbacks, so must be done 1441 // before setTorchMode 1442 Mutex::Autolock al(mTorchUidMapMutex); 1443 if (mTorchUidMap.find(id) == mTorchUidMap.end()) { 1444 mTorchUidMap[id].first = uid; 1445 mTorchUidMap[id].second = uid; 1446 } else { 1447 // Set the pending UID 1448 mTorchUidMap[id].first = uid; 1449 } 1450 } 1451 1452 status_t err = mFlashlight->setTorchMode(id, enabled); 1453 1454 if (err != OK) { 1455 int32_t errorCode; 1456 String8 msg; 1457 switch (err) { 1458 case -ENOSYS: 1459 msg = String8::format("Camera \"%s\" has no flashlight", 1460 id.string()); 1461 errorCode = ERROR_ILLEGAL_ARGUMENT; 1462 break; 1463 default: 1464 msg = String8::format( 1465 "Setting torch mode of camera \"%s\" to %d failed: %s (%d)", 1466 id.string(), enabled, strerror(-err), err); 1467 errorCode = ERROR_INVALID_OPERATION; 1468 } 1469 ALOGE("%s: %s", __FUNCTION__, msg.string()); 1470 return STATUS_ERROR(errorCode, msg.string()); 1471 } 1472 1473 { 1474 // update the link to client's death 1475 Mutex::Autolock al(mTorchClientMapMutex); 1476 ssize_t index = mTorchClientMap.indexOfKey(id); 1477 if (enabled) { 1478 if (index == NAME_NOT_FOUND) { 1479 mTorchClientMap.add(id, clientBinder); 1480 } else { 1481 mTorchClientMap.valueAt(index)->unlinkToDeath(this); 1482 mTorchClientMap.replaceValueAt(index, clientBinder); 1483 } 1484 clientBinder->linkToDeath(this); 1485 } else if (index != NAME_NOT_FOUND) { 1486 mTorchClientMap.valueAt(index)->unlinkToDeath(this); 1487 } 1488 } 1489 1490 return Status::ok(); 1491} 1492 1493Status CameraService::notifySystemEvent(int32_t eventId, 1494 const std::vector<int32_t>& args) { 1495 ATRACE_CALL(); 1496 1497 switch(eventId) { 1498 case ICameraService::EVENT_USER_SWITCHED: { 1499 doUserSwitch(/*newUserIds*/ args); 1500 break; 1501 } 1502 case ICameraService::EVENT_NONE: 1503 default: { 1504 ALOGW("%s: Received invalid system event from system_server: %d", __FUNCTION__, 1505 eventId); 1506 break; 1507 } 1508 } 1509 return Status::ok(); 1510} 1511 1512Status CameraService::addListener(const sp<ICameraServiceListener>& listener) { 1513 ATRACE_CALL(); 1514 1515 ALOGV("%s: Add listener %p", __FUNCTION__, listener.get()); 1516 1517 if (listener == nullptr) { 1518 ALOGE("%s: Listener must not be null", __FUNCTION__); 1519 return STATUS_ERROR(ERROR_ILLEGAL_ARGUMENT, "Null listener given to addListener"); 1520 } 1521 1522 Mutex::Autolock lock(mServiceLock); 1523 1524 { 1525 Mutex::Autolock lock(mStatusListenerLock); 1526 for (auto& it : mListenerList) { 1527 if (IInterface::asBinder(it) == IInterface::asBinder(listener)) { 1528 ALOGW("%s: Tried to add listener %p which was already subscribed", 1529 __FUNCTION__, listener.get()); 1530 return STATUS_ERROR(ERROR_ALREADY_EXISTS, "Listener already registered"); 1531 } 1532 } 1533 1534 mListenerList.push_back(listener); 1535 } 1536 1537 1538 /* Immediately signal current status to this listener only */ 1539 { 1540 Mutex::Autolock lock(mCameraStatesLock); 1541 for (auto& i : mCameraStates) { 1542 // TODO: Update binder to use String16 for camera IDs and remove; 1543 int id = cameraIdToInt(i.first); 1544 if (id == -1) continue; 1545 1546 listener->onStatusChanged(i.second->getStatus(), id); 1547 } 1548 } 1549 1550 /* Immediately signal current torch status to this listener only */ 1551 { 1552 Mutex::Autolock al(mTorchStatusMutex); 1553 for (size_t i = 0; i < mTorchStatusMap.size(); i++ ) { 1554 String16 id = String16(mTorchStatusMap.keyAt(i).string()); 1555 listener->onTorchStatusChanged(mTorchStatusMap.valueAt(i), id); 1556 } 1557 } 1558 1559 return Status::ok(); 1560} 1561 1562Status CameraService::removeListener(const sp<ICameraServiceListener>& listener) { 1563 ATRACE_CALL(); 1564 1565 ALOGV("%s: Remove listener %p", __FUNCTION__, listener.get()); 1566 1567 if (listener == 0) { 1568 ALOGE("%s: Listener must not be null", __FUNCTION__); 1569 return STATUS_ERROR(ERROR_ILLEGAL_ARGUMENT, "Null listener given to removeListener"); 1570 } 1571 1572 Mutex::Autolock lock(mServiceLock); 1573 1574 { 1575 Mutex::Autolock lock(mStatusListenerLock); 1576 for (auto it = mListenerList.begin(); it != mListenerList.end(); it++) { 1577 if (IInterface::asBinder(*it) == IInterface::asBinder(listener)) { 1578 mListenerList.erase(it); 1579 return Status::ok(); 1580 } 1581 } 1582 } 1583 1584 ALOGW("%s: Tried to remove a listener %p which was not subscribed", 1585 __FUNCTION__, listener.get()); 1586 1587 return STATUS_ERROR(ERROR_ILLEGAL_ARGUMENT, "Unregistered listener given to removeListener"); 1588} 1589 1590Status CameraService::getLegacyParameters(int cameraId, /*out*/String16* parameters) { 1591 1592 ATRACE_CALL(); 1593 ALOGV("%s: for camera ID = %d", __FUNCTION__, cameraId); 1594 1595 if (parameters == NULL) { 1596 ALOGE("%s: parameters must not be null", __FUNCTION__); 1597 return STATUS_ERROR(ERROR_ILLEGAL_ARGUMENT, "Parameters must not be null"); 1598 } 1599 1600 Status ret = Status::ok(); 1601 1602 CameraParameters shimParams; 1603 if (!(ret = getLegacyParametersLazy(cameraId, /*out*/&shimParams)).isOk()) { 1604 // Error logged by caller 1605 return ret; 1606 } 1607 1608 String8 shimParamsString8 = shimParams.flatten(); 1609 String16 shimParamsString16 = String16(shimParamsString8); 1610 1611 *parameters = shimParamsString16; 1612 1613 return ret; 1614} 1615 1616Status CameraService::supportsCameraApi(int cameraId, int apiVersion, bool *isSupported) { 1617 ATRACE_CALL(); 1618 1619 ALOGV("%s: for camera ID = %d", __FUNCTION__, cameraId); 1620 1621 switch (apiVersion) { 1622 case API_VERSION_1: 1623 case API_VERSION_2: 1624 break; 1625 default: 1626 String8 msg = String8::format("Unknown API version %d", apiVersion); 1627 ALOGE("%s: %s", __FUNCTION__, msg.string()); 1628 return STATUS_ERROR(ERROR_ILLEGAL_ARGUMENT, msg.string()); 1629 } 1630 1631 int facing = -1; 1632 int deviceVersion = getDeviceVersion(cameraId, &facing); 1633 1634 switch(deviceVersion) { 1635 case CAMERA_DEVICE_API_VERSION_1_0: 1636 case CAMERA_DEVICE_API_VERSION_3_0: 1637 case CAMERA_DEVICE_API_VERSION_3_1: 1638 if (apiVersion == API_VERSION_2) { 1639 ALOGV("%s: Camera id %d uses HAL version %d <3.2, doesn't support api2 without shim", 1640 __FUNCTION__, cameraId, deviceVersion); 1641 *isSupported = false; 1642 } else { // if (apiVersion == API_VERSION_1) { 1643 ALOGV("%s: Camera id %d uses older HAL before 3.2, but api1 is always supported", 1644 __FUNCTION__, cameraId); 1645 *isSupported = true; 1646 } 1647 break; 1648 case CAMERA_DEVICE_API_VERSION_3_2: 1649 case CAMERA_DEVICE_API_VERSION_3_3: 1650 case CAMERA_DEVICE_API_VERSION_3_4: 1651 ALOGV("%s: Camera id %d uses HAL3.2 or newer, supports api1/api2 directly", 1652 __FUNCTION__, cameraId); 1653 *isSupported = true; 1654 break; 1655 case -1: { 1656 String8 msg = String8::format("Unknown camera ID %d", cameraId); 1657 ALOGE("%s: %s", __FUNCTION__, msg.string()); 1658 return STATUS_ERROR(ERROR_ILLEGAL_ARGUMENT, msg.string()); 1659 } 1660 default: { 1661 String8 msg = String8::format("Unknown device version %d for device %d", 1662 deviceVersion, cameraId); 1663 ALOGE("%s: %s", __FUNCTION__, msg.string()); 1664 return STATUS_ERROR(ERROR_INVALID_OPERATION, msg.string()); 1665 } 1666 } 1667 1668 return Status::ok(); 1669} 1670 1671void CameraService::removeByClient(const BasicClient* client) { 1672 Mutex::Autolock lock(mServiceLock); 1673 for (auto& i : mActiveClientManager.getAll()) { 1674 auto clientSp = i->getValue(); 1675 if (clientSp.get() == client) { 1676 mActiveClientManager.remove(i); 1677 } 1678 } 1679} 1680 1681bool CameraService::evictClientIdByRemote(const wp<IBinder>& remote) { 1682 const int callingPid = getCallingPid(); 1683 const int servicePid = getpid(); 1684 bool ret = false; 1685 { 1686 // Acquire mServiceLock and prevent other clients from connecting 1687 std::unique_ptr<AutoConditionLock> lock = 1688 AutoConditionLock::waitAndAcquire(mServiceLockWrapper); 1689 1690 1691 std::vector<sp<BasicClient>> evicted; 1692 for (auto& i : mActiveClientManager.getAll()) { 1693 auto clientSp = i->getValue(); 1694 if (clientSp.get() == nullptr) { 1695 ALOGE("%s: Dead client still in mActiveClientManager.", __FUNCTION__); 1696 mActiveClientManager.remove(i); 1697 continue; 1698 } 1699 if (remote == clientSp->getRemote() && (callingPid == servicePid || 1700 callingPid == clientSp->getClientPid())) { 1701 mActiveClientManager.remove(i); 1702 evicted.push_back(clientSp); 1703 1704 // Notify the client of disconnection 1705 clientSp->notifyError( 1706 hardware::camera2::ICameraDeviceCallbacks::ERROR_CAMERA_DISCONNECTED, 1707 CaptureResultExtras()); 1708 } 1709 } 1710 1711 // Do not hold mServiceLock while disconnecting clients, but retain the condition blocking 1712 // other clients from connecting in mServiceLockWrapper if held 1713 mServiceLock.unlock(); 1714 1715 // Do not clear caller identity, remote caller should be client proccess 1716 1717 for (auto& i : evicted) { 1718 if (i.get() != nullptr) { 1719 i->disconnect(); 1720 ret = true; 1721 } 1722 } 1723 1724 // Reacquire mServiceLock 1725 mServiceLock.lock(); 1726 1727 } // lock is destroyed, allow further connect calls 1728 1729 return ret; 1730} 1731 1732 1733/** 1734 * Check camera capabilities, such as support for basic color operation 1735 * Also check that the device HAL version is still in support 1736 */ 1737int CameraService::checkCameraCapabilities(int id, camera_info info, int *latestStrangeCameraId) { 1738 // device_version undefined in CAMERA_MODULE_API_VERSION_1_0, 1739 // All CAMERA_MODULE_API_VERSION_1_0 devices are backward-compatible 1740 if (mModule->getModuleApiVersion() >= CAMERA_MODULE_API_VERSION_2_0) { 1741 // Verify the device version is in the supported range 1742 switch (info.device_version) { 1743 case CAMERA_DEVICE_API_VERSION_1_0: 1744 case CAMERA_DEVICE_API_VERSION_3_0: 1745 case CAMERA_DEVICE_API_VERSION_3_1: 1746 case CAMERA_DEVICE_API_VERSION_3_2: 1747 case CAMERA_DEVICE_API_VERSION_3_3: 1748 case CAMERA_DEVICE_API_VERSION_3_4: 1749 // in support 1750 break; 1751 case CAMERA_DEVICE_API_VERSION_2_0: 1752 case CAMERA_DEVICE_API_VERSION_2_1: 1753 // no longer supported 1754 default: 1755 ALOGE("%s: Device %d has HAL version %x, which is not supported", 1756 __FUNCTION__, id, info.device_version); 1757 String8 msg = String8::format( 1758 "Unsupported device HAL version %x for device %d", 1759 info.device_version, id); 1760 logServiceError(msg.string(), NO_INIT); 1761 return NO_INIT; 1762 } 1763 } 1764 1765 // Assume all devices pre-v3.3 are backward-compatible 1766 bool isBackwardCompatible = true; 1767 if (mModule->getModuleApiVersion() >= CAMERA_MODULE_API_VERSION_2_0 1768 && info.device_version >= CAMERA_DEVICE_API_VERSION_3_3) { 1769 isBackwardCompatible = false; 1770 status_t res; 1771 camera_metadata_ro_entry_t caps; 1772 res = find_camera_metadata_ro_entry( 1773 info.static_camera_characteristics, 1774 ANDROID_REQUEST_AVAILABLE_CAPABILITIES, 1775 &caps); 1776 if (res != 0) { 1777 ALOGW("%s: Unable to find camera capabilities for camera device %d", 1778 __FUNCTION__, id); 1779 caps.count = 0; 1780 } 1781 for (size_t i = 0; i < caps.count; i++) { 1782 if (caps.data.u8[i] == 1783 ANDROID_REQUEST_AVAILABLE_CAPABILITIES_BACKWARD_COMPATIBLE) { 1784 isBackwardCompatible = true; 1785 break; 1786 } 1787 } 1788 } 1789 1790 if (!isBackwardCompatible) { 1791 mNumberOfNormalCameras--; 1792 *latestStrangeCameraId = id; 1793 } else { 1794 if (id > *latestStrangeCameraId) { 1795 ALOGE("%s: Normal camera ID %d higher than strange camera ID %d. " 1796 "This is not allowed due backward-compatibility requirements", 1797 __FUNCTION__, id, *latestStrangeCameraId); 1798 logServiceError("Invalid order of camera devices", NO_INIT); 1799 mNumberOfCameras = 0; 1800 mNumberOfNormalCameras = 0; 1801 return NO_INIT; 1802 } 1803 } 1804 return OK; 1805} 1806 1807std::shared_ptr<CameraService::CameraState> CameraService::getCameraState( 1808 const String8& cameraId) const { 1809 std::shared_ptr<CameraState> state; 1810 { 1811 Mutex::Autolock lock(mCameraStatesLock); 1812 auto iter = mCameraStates.find(cameraId); 1813 if (iter != mCameraStates.end()) { 1814 state = iter->second; 1815 } 1816 } 1817 return state; 1818} 1819 1820sp<CameraService::BasicClient> CameraService::removeClientLocked(const String8& cameraId) { 1821 // Remove from active clients list 1822 auto clientDescriptorPtr = mActiveClientManager.remove(cameraId); 1823 if (clientDescriptorPtr == nullptr) { 1824 ALOGW("%s: Could not evict client, no client for camera ID %s", __FUNCTION__, 1825 cameraId.string()); 1826 return sp<BasicClient>{nullptr}; 1827 } 1828 1829 return clientDescriptorPtr->getValue(); 1830} 1831 1832void CameraService::doUserSwitch(const std::vector<int32_t>& newUserIds) { 1833 // Acquire mServiceLock and prevent other clients from connecting 1834 std::unique_ptr<AutoConditionLock> lock = 1835 AutoConditionLock::waitAndAcquire(mServiceLockWrapper); 1836 1837 std::set<userid_t> newAllowedUsers; 1838 for (size_t i = 0; i < newUserIds.size(); i++) { 1839 if (newUserIds[i] < 0) { 1840 ALOGE("%s: Bad user ID %d given during user switch, ignoring.", 1841 __FUNCTION__, newUserIds[i]); 1842 return; 1843 } 1844 newAllowedUsers.insert(static_cast<userid_t>(newUserIds[i])); 1845 } 1846 1847 1848 if (newAllowedUsers == mAllowedUsers) { 1849 ALOGW("%s: Received notification of user switch with no updated user IDs.", __FUNCTION__); 1850 return; 1851 } 1852 1853 logUserSwitch(mAllowedUsers, newAllowedUsers); 1854 1855 mAllowedUsers = std::move(newAllowedUsers); 1856 1857 // Current user has switched, evict all current clients. 1858 std::vector<sp<BasicClient>> evicted; 1859 for (auto& i : mActiveClientManager.getAll()) { 1860 auto clientSp = i->getValue(); 1861 1862 if (clientSp.get() == nullptr) { 1863 ALOGE("%s: Dead client still in mActiveClientManager.", __FUNCTION__); 1864 continue; 1865 } 1866 1867 // Don't evict clients that are still allowed. 1868 uid_t clientUid = clientSp->getClientUid(); 1869 userid_t clientUserId = multiuser_get_user_id(clientUid); 1870 if (mAllowedUsers.find(clientUserId) != mAllowedUsers.end()) { 1871 continue; 1872 } 1873 1874 evicted.push_back(clientSp); 1875 1876 String8 curTime = getFormattedCurrentTime(); 1877 1878 ALOGE("Evicting conflicting client for camera ID %s due to user change", 1879 i->getKey().string()); 1880 1881 // Log the clients evicted 1882 logEvent(String8::format("EVICT device %s client held by package %s (PID %" 1883 PRId32 ", priority %" PRId32 ")\n - Evicted due to user switch.", 1884 i->getKey().string(), String8{clientSp->getPackageName()}.string(), 1885 i->getOwnerId(), i->getPriority())); 1886 1887 } 1888 1889 // Do not hold mServiceLock while disconnecting clients, but retain the condition 1890 // blocking other clients from connecting in mServiceLockWrapper if held. 1891 mServiceLock.unlock(); 1892 1893 // Clear caller identity temporarily so client disconnect PID checks work correctly 1894 int64_t token = IPCThreadState::self()->clearCallingIdentity(); 1895 1896 for (auto& i : evicted) { 1897 i->disconnect(); 1898 } 1899 1900 IPCThreadState::self()->restoreCallingIdentity(token); 1901 1902 // Reacquire mServiceLock 1903 mServiceLock.lock(); 1904} 1905 1906void CameraService::logEvent(const char* event) { 1907 String8 curTime = getFormattedCurrentTime(); 1908 Mutex::Autolock l(mLogLock); 1909 mEventLog.add(String8::format("%s : %s", curTime.string(), event)); 1910} 1911 1912void CameraService::logDisconnected(const char* cameraId, int clientPid, 1913 const char* clientPackage) { 1914 // Log the clients evicted 1915 logEvent(String8::format("DISCONNECT device %s client for package %s (PID %d)", cameraId, 1916 clientPackage, clientPid)); 1917} 1918 1919void CameraService::logConnected(const char* cameraId, int clientPid, 1920 const char* clientPackage) { 1921 // Log the clients evicted 1922 logEvent(String8::format("CONNECT device %s client for package %s (PID %d)", cameraId, 1923 clientPackage, clientPid)); 1924} 1925 1926void CameraService::logRejected(const char* cameraId, int clientPid, 1927 const char* clientPackage, const char* reason) { 1928 // Log the client rejected 1929 logEvent(String8::format("REJECT device %s client for package %s (PID %d), reason: (%s)", 1930 cameraId, clientPackage, clientPid, reason)); 1931} 1932 1933void CameraService::logUserSwitch(const std::set<userid_t>& oldUserIds, 1934 const std::set<userid_t>& newUserIds) { 1935 String8 newUsers = toString(newUserIds); 1936 String8 oldUsers = toString(oldUserIds); 1937 // Log the new and old users 1938 logEvent(String8::format("USER_SWITCH previous allowed users: %s , current allowed users: %s", 1939 oldUsers.string(), newUsers.string())); 1940} 1941 1942void CameraService::logDeviceRemoved(const char* cameraId, const char* reason) { 1943 // Log the device removal 1944 logEvent(String8::format("REMOVE device %s, reason: (%s)", cameraId, reason)); 1945} 1946 1947void CameraService::logDeviceAdded(const char* cameraId, const char* reason) { 1948 // Log the device removal 1949 logEvent(String8::format("ADD device %s, reason: (%s)", cameraId, reason)); 1950} 1951 1952void CameraService::logClientDied(int clientPid, const char* reason) { 1953 // Log the device removal 1954 logEvent(String8::format("DIED client(s) with PID %d, reason: (%s)", clientPid, reason)); 1955} 1956 1957void CameraService::logServiceError(const char* msg, int errorCode) { 1958 String8 curTime = getFormattedCurrentTime(); 1959 logEvent(String8::format("SERVICE ERROR: %s : %d (%s)", msg, errorCode, strerror(-errorCode))); 1960} 1961 1962status_t CameraService::onTransact(uint32_t code, const Parcel& data, Parcel* reply, 1963 uint32_t flags) { 1964 1965 const int pid = getCallingPid(); 1966 const int selfPid = getpid(); 1967 1968 // Permission checks 1969 switch (code) { 1970 case BnCameraService::NOTIFYSYSTEMEVENT: { 1971 if (pid != selfPid) { 1972 // Ensure we're being called by system_server, or similar process with 1973 // permissions to notify the camera service about system events 1974 if (!checkCallingPermission( 1975 String16("android.permission.CAMERA_SEND_SYSTEM_EVENTS"))) { 1976 const int uid = getCallingUid(); 1977 ALOGE("Permission Denial: cannot send updates to camera service about system" 1978 " events from pid=%d, uid=%d", pid, uid); 1979 return PERMISSION_DENIED; 1980 } 1981 } 1982 break; 1983 } 1984 } 1985 1986 return BnCameraService::onTransact(code, data, reply, flags); 1987} 1988 1989// We share the media players for shutter and recording sound for all clients. 1990// A reference count is kept to determine when we will actually release the 1991// media players. 1992 1993MediaPlayer* CameraService::newMediaPlayer(const char *file) { 1994 MediaPlayer* mp = new MediaPlayer(); 1995 if (mp->setDataSource(NULL /* httpService */, file, NULL) == NO_ERROR) { 1996 mp->setAudioStreamType(AUDIO_STREAM_ENFORCED_AUDIBLE); 1997 mp->prepare(); 1998 } else { 1999 ALOGE("Failed to load CameraService sounds: %s", file); 2000 return NULL; 2001 } 2002 return mp; 2003} 2004 2005void CameraService::loadSound() { 2006 ATRACE_CALL(); 2007 2008 Mutex::Autolock lock(mSoundLock); 2009 LOG1("CameraService::loadSound ref=%d", mSoundRef); 2010 if (mSoundRef++) return; 2011 2012 mSoundPlayer[SOUND_SHUTTER] = newMediaPlayer("/system/media/audio/ui/camera_click.ogg"); 2013 mSoundPlayer[SOUND_RECORDING_START] = newMediaPlayer("/system/media/audio/ui/VideoRecord.ogg"); 2014 mSoundPlayer[SOUND_RECORDING_STOP] = newMediaPlayer("/system/media/audio/ui/VideoStop.ogg"); 2015} 2016 2017void CameraService::releaseSound() { 2018 Mutex::Autolock lock(mSoundLock); 2019 LOG1("CameraService::releaseSound ref=%d", mSoundRef); 2020 if (--mSoundRef) return; 2021 2022 for (int i = 0; i < NUM_SOUNDS; i++) { 2023 if (mSoundPlayer[i] != 0) { 2024 mSoundPlayer[i]->disconnect(); 2025 mSoundPlayer[i].clear(); 2026 } 2027 } 2028} 2029 2030void CameraService::playSound(sound_kind kind) { 2031 ATRACE_CALL(); 2032 2033 LOG1("playSound(%d)", kind); 2034 Mutex::Autolock lock(mSoundLock); 2035 sp<MediaPlayer> player = mSoundPlayer[kind]; 2036 if (player != 0) { 2037 player->seekTo(0); 2038 player->start(); 2039 } 2040} 2041 2042// ---------------------------------------------------------------------------- 2043 2044CameraService::Client::Client(const sp<CameraService>& cameraService, 2045 const sp<ICameraClient>& cameraClient, 2046 const String16& clientPackageName, 2047 int cameraId, int cameraFacing, 2048 int clientPid, uid_t clientUid, 2049 int servicePid) : 2050 CameraService::BasicClient(cameraService, 2051 IInterface::asBinder(cameraClient), 2052 clientPackageName, 2053 cameraId, cameraFacing, 2054 clientPid, clientUid, 2055 servicePid) 2056{ 2057 int callingPid = getCallingPid(); 2058 LOG1("Client::Client E (pid %d, id %d)", callingPid, cameraId); 2059 2060 mRemoteCallback = cameraClient; 2061 2062 cameraService->loadSound(); 2063 2064 LOG1("Client::Client X (pid %d, id %d)", callingPid, cameraId); 2065} 2066 2067// tear down the client 2068CameraService::Client::~Client() { 2069 ALOGV("~Client"); 2070 mDestructionStarted = true; 2071 2072 mCameraService->releaseSound(); 2073 // unconditionally disconnect. function is idempotent 2074 Client::disconnect(); 2075} 2076 2077CameraService::BasicClient::BasicClient(const sp<CameraService>& cameraService, 2078 const sp<IBinder>& remoteCallback, 2079 const String16& clientPackageName, 2080 int cameraId, int cameraFacing, 2081 int clientPid, uid_t clientUid, 2082 int servicePid): 2083 mClientPackageName(clientPackageName), mDisconnected(false) 2084{ 2085 mCameraService = cameraService; 2086 mRemoteBinder = remoteCallback; 2087 mCameraId = cameraId; 2088 mCameraFacing = cameraFacing; 2089 mClientPid = clientPid; 2090 mClientUid = clientUid; 2091 mServicePid = servicePid; 2092 mOpsActive = false; 2093 mDestructionStarted = false; 2094 2095 // In some cases the calling code has no access to the package it runs under. 2096 // For example, NDK camera API. 2097 // In this case we will get the packages for the calling UID and pick the first one 2098 // for attributing the app op. This will work correctly for runtime permissions 2099 // as for legacy apps we will toggle the app op for all packages in the UID. 2100 // The caveat is that the operation may be attributed to the wrong package and 2101 // stats based on app ops may be slightly off. 2102 if (mClientPackageName.size() <= 0) { 2103 sp<IServiceManager> sm = defaultServiceManager(); 2104 sp<IBinder> binder = sm->getService(String16(kPermissionServiceName)); 2105 if (binder == 0) { 2106 ALOGE("Cannot get permission service"); 2107 // Leave mClientPackageName unchanged (empty) and the further interaction 2108 // with camera will fail in BasicClient::startCameraOps 2109 return; 2110 } 2111 2112 sp<IPermissionController> permCtrl = interface_cast<IPermissionController>(binder); 2113 Vector<String16> packages; 2114 2115 permCtrl->getPackagesForUid(mClientUid, packages); 2116 2117 if (packages.isEmpty()) { 2118 ALOGE("No packages for calling UID"); 2119 // Leave mClientPackageName unchanged (empty) and the further interaction 2120 // with camera will fail in BasicClient::startCameraOps 2121 return; 2122 } 2123 mClientPackageName = packages[0]; 2124 } 2125} 2126 2127CameraService::BasicClient::~BasicClient() { 2128 ALOGV("~BasicClient"); 2129 mDestructionStarted = true; 2130} 2131 2132binder::Status CameraService::BasicClient::disconnect() { 2133 binder::Status res = Status::ok(); 2134 if (mDisconnected) { 2135 return res; 2136 } 2137 mDisconnected = true; 2138 2139 mCameraService->removeByClient(this); 2140 mCameraService->logDisconnected(String8::format("%d", mCameraId), mClientPid, 2141 String8(mClientPackageName)); 2142 2143 sp<IBinder> remote = getRemote(); 2144 if (remote != nullptr) { 2145 remote->unlinkToDeath(mCameraService); 2146 } 2147 2148 finishCameraOps(); 2149 // Notify flashlight that a camera device is closed. 2150 mCameraService->mFlashlight->deviceClosed(String8::format("%d", mCameraId)); 2151 ALOGI("%s: Disconnected client for camera %d for PID %d", __FUNCTION__, mCameraId, mClientPid); 2152 2153 // client shouldn't be able to call into us anymore 2154 mClientPid = 0; 2155 2156 return res; 2157} 2158 2159status_t CameraService::BasicClient::dump(int, const Vector<String16>&) { 2160 // No dumping of clients directly over Binder, 2161 // must go through CameraService::dump 2162 android_errorWriteWithInfoLog(SN_EVENT_LOG_ID, "26265403", 2163 IPCThreadState::self()->getCallingUid(), NULL, 0); 2164 return OK; 2165} 2166 2167String16 CameraService::BasicClient::getPackageName() const { 2168 return mClientPackageName; 2169} 2170 2171 2172int CameraService::BasicClient::getClientPid() const { 2173 return mClientPid; 2174} 2175 2176uid_t CameraService::BasicClient::getClientUid() const { 2177 return mClientUid; 2178} 2179 2180bool CameraService::BasicClient::canCastToApiClient(apiLevel level) const { 2181 // Defaults to API2. 2182 return level == API_2; 2183} 2184 2185status_t CameraService::BasicClient::startCameraOps() { 2186 ATRACE_CALL(); 2187 2188 int32_t res; 2189 // Notify app ops that the camera is not available 2190 mOpsCallback = new OpsCallback(this); 2191 2192 { 2193 ALOGV("%s: Start camera ops, package name = %s, client UID = %d", 2194 __FUNCTION__, String8(mClientPackageName).string(), mClientUid); 2195 } 2196 2197 mAppOpsManager.startWatchingMode(AppOpsManager::OP_CAMERA, 2198 mClientPackageName, mOpsCallback); 2199 res = mAppOpsManager.startOp(AppOpsManager::OP_CAMERA, 2200 mClientUid, mClientPackageName); 2201 2202 if (res == AppOpsManager::MODE_ERRORED) { 2203 ALOGI("Camera %d: Access for \"%s\" has been revoked", 2204 mCameraId, String8(mClientPackageName).string()); 2205 return PERMISSION_DENIED; 2206 } 2207 2208 if (res == AppOpsManager::MODE_IGNORED) { 2209 ALOGI("Camera %d: Access for \"%s\" has been restricted", 2210 mCameraId, String8(mClientPackageName).string()); 2211 // Return the same error as for device policy manager rejection 2212 return -EACCES; 2213 } 2214 2215 mOpsActive = true; 2216 2217 // Transition device availability listeners from PRESENT -> NOT_AVAILABLE 2218 mCameraService->updateStatus(ICameraServiceListener::STATUS_NOT_AVAILABLE, 2219 String8::format("%d", mCameraId)); 2220 2221 // Transition device state to OPEN 2222 mCameraService->updateProxyDeviceState(ICameraServiceProxy::CAMERA_STATE_OPEN, 2223 String8::format("%d", mCameraId)); 2224 2225 return OK; 2226} 2227 2228status_t CameraService::BasicClient::finishCameraOps() { 2229 ATRACE_CALL(); 2230 2231 // Check if startCameraOps succeeded, and if so, finish the camera op 2232 if (mOpsActive) { 2233 // Notify app ops that the camera is available again 2234 mAppOpsManager.finishOp(AppOpsManager::OP_CAMERA, mClientUid, 2235 mClientPackageName); 2236 mOpsActive = false; 2237 2238 std::initializer_list<int32_t> rejected = {ICameraServiceListener::STATUS_NOT_PRESENT, 2239 ICameraServiceListener::STATUS_ENUMERATING}; 2240 2241 // Transition to PRESENT if the camera is not in either of the rejected states 2242 mCameraService->updateStatus(ICameraServiceListener::STATUS_PRESENT, 2243 String8::format("%d", mCameraId), rejected); 2244 2245 // Transition device state to CLOSED 2246 mCameraService->updateProxyDeviceState(ICameraServiceProxy::CAMERA_STATE_CLOSED, 2247 String8::format("%d", mCameraId)); 2248 } 2249 // Always stop watching, even if no camera op is active 2250 if (mOpsCallback != NULL) { 2251 mAppOpsManager.stopWatchingMode(mOpsCallback); 2252 } 2253 mOpsCallback.clear(); 2254 2255 return OK; 2256} 2257 2258void CameraService::BasicClient::opChanged(int32_t op, const String16& packageName) { 2259 ATRACE_CALL(); 2260 2261 String8 name(packageName); 2262 String8 myName(mClientPackageName); 2263 2264 if (op != AppOpsManager::OP_CAMERA) { 2265 ALOGW("Unexpected app ops notification received: %d", op); 2266 return; 2267 } 2268 2269 int32_t res; 2270 res = mAppOpsManager.checkOp(AppOpsManager::OP_CAMERA, 2271 mClientUid, mClientPackageName); 2272 ALOGV("checkOp returns: %d, %s ", res, 2273 res == AppOpsManager::MODE_ALLOWED ? "ALLOWED" : 2274 res == AppOpsManager::MODE_IGNORED ? "IGNORED" : 2275 res == AppOpsManager::MODE_ERRORED ? "ERRORED" : 2276 "UNKNOWN"); 2277 2278 if (res != AppOpsManager::MODE_ALLOWED) { 2279 ALOGI("Camera %d: Access for \"%s\" revoked", mCameraId, 2280 myName.string()); 2281 // Reset the client PID to allow server-initiated disconnect, 2282 // and to prevent further calls by client. 2283 mClientPid = getCallingPid(); 2284 CaptureResultExtras resultExtras; // a dummy result (invalid) 2285 notifyError(hardware::camera2::ICameraDeviceCallbacks::ERROR_CAMERA_SERVICE, resultExtras); 2286 disconnect(); 2287 } 2288} 2289 2290// ---------------------------------------------------------------------------- 2291 2292// Provide client strong pointer for callbacks. 2293sp<CameraService::Client> CameraService::Client::getClientFromCookie(void* user) { 2294 String8 cameraId = String8::format("%d", (int)(intptr_t) user); 2295 auto clientDescriptor = gCameraService->mActiveClientManager.get(cameraId); 2296 if (clientDescriptor != nullptr) { 2297 return sp<Client>{ 2298 static_cast<Client*>(clientDescriptor->getValue().get())}; 2299 } 2300 return sp<Client>{nullptr}; 2301} 2302 2303void CameraService::Client::notifyError(int32_t errorCode, 2304 const CaptureResultExtras& resultExtras) { 2305 (void) errorCode; 2306 (void) resultExtras; 2307 if (mRemoteCallback != NULL) { 2308 mRemoteCallback->notifyCallback(CAMERA_MSG_ERROR, CAMERA_ERROR_RELEASED, 0); 2309 } else { 2310 ALOGE("mRemoteCallback is NULL!!"); 2311 } 2312} 2313 2314// NOTE: function is idempotent 2315binder::Status CameraService::Client::disconnect() { 2316 ALOGV("Client::disconnect"); 2317 return BasicClient::disconnect(); 2318} 2319 2320bool CameraService::Client::canCastToApiClient(apiLevel level) const { 2321 return level == API_1; 2322} 2323 2324CameraService::Client::OpsCallback::OpsCallback(wp<BasicClient> client): 2325 mClient(client) { 2326} 2327 2328void CameraService::Client::OpsCallback::opChanged(int32_t op, 2329 const String16& packageName) { 2330 sp<BasicClient> client = mClient.promote(); 2331 if (client != NULL) { 2332 client->opChanged(op, packageName); 2333 } 2334} 2335 2336// ---------------------------------------------------------------------------- 2337// CameraState 2338// ---------------------------------------------------------------------------- 2339 2340CameraService::CameraState::CameraState(const String8& id, int cost, 2341 const std::set<String8>& conflicting) : mId(id), 2342 mStatus(ICameraServiceListener::STATUS_PRESENT), mCost(cost), mConflicting(conflicting) {} 2343 2344CameraService::CameraState::~CameraState() {} 2345 2346int32_t CameraService::CameraState::getStatus() const { 2347 Mutex::Autolock lock(mStatusLock); 2348 return mStatus; 2349} 2350 2351CameraParameters CameraService::CameraState::getShimParams() const { 2352 return mShimParams; 2353} 2354 2355void CameraService::CameraState::setShimParams(const CameraParameters& params) { 2356 mShimParams = params; 2357} 2358 2359int CameraService::CameraState::getCost() const { 2360 return mCost; 2361} 2362 2363std::set<String8> CameraService::CameraState::getConflicting() const { 2364 return mConflicting; 2365} 2366 2367String8 CameraService::CameraState::getId() const { 2368 return mId; 2369} 2370 2371// ---------------------------------------------------------------------------- 2372// ClientEventListener 2373// ---------------------------------------------------------------------------- 2374 2375void CameraService::ClientEventListener::onClientAdded( 2376 const resource_policy::ClientDescriptor<String8, 2377 sp<CameraService::BasicClient>>& descriptor) { 2378 const auto& basicClient = descriptor.getValue(); 2379 if (basicClient.get() != nullptr) { 2380 BatteryNotifier& notifier(BatteryNotifier::getInstance()); 2381 notifier.noteStartCamera(descriptor.getKey(), 2382 static_cast<int>(basicClient->getClientUid())); 2383 } 2384} 2385 2386void CameraService::ClientEventListener::onClientRemoved( 2387 const resource_policy::ClientDescriptor<String8, 2388 sp<CameraService::BasicClient>>& descriptor) { 2389 const auto& basicClient = descriptor.getValue(); 2390 if (basicClient.get() != nullptr) { 2391 BatteryNotifier& notifier(BatteryNotifier::getInstance()); 2392 notifier.noteStopCamera(descriptor.getKey(), 2393 static_cast<int>(basicClient->getClientUid())); 2394 } 2395} 2396 2397 2398// ---------------------------------------------------------------------------- 2399// CameraClientManager 2400// ---------------------------------------------------------------------------- 2401 2402CameraService::CameraClientManager::CameraClientManager() { 2403 setListener(std::make_shared<ClientEventListener>()); 2404} 2405 2406CameraService::CameraClientManager::~CameraClientManager() {} 2407 2408sp<CameraService::BasicClient> CameraService::CameraClientManager::getCameraClient( 2409 const String8& id) const { 2410 auto descriptor = get(id); 2411 if (descriptor == nullptr) { 2412 return sp<BasicClient>{nullptr}; 2413 } 2414 return descriptor->getValue(); 2415} 2416 2417String8 CameraService::CameraClientManager::toString() const { 2418 auto all = getAll(); 2419 String8 ret("["); 2420 bool hasAny = false; 2421 for (auto& i : all) { 2422 hasAny = true; 2423 String8 key = i->getKey(); 2424 int32_t cost = i->getCost(); 2425 int32_t pid = i->getOwnerId(); 2426 int32_t priority = i->getPriority(); 2427 auto conflicting = i->getConflicting(); 2428 auto clientSp = i->getValue(); 2429 String8 packageName; 2430 userid_t clientUserId = 0; 2431 if (clientSp.get() != nullptr) { 2432 packageName = String8{clientSp->getPackageName()}; 2433 uid_t clientUid = clientSp->getClientUid(); 2434 clientUserId = multiuser_get_user_id(clientUid); 2435 } 2436 ret.appendFormat("\n(Camera ID: %s, Cost: %" PRId32 ", PID: %" PRId32 ", Priority: %" 2437 PRId32 ", ", key.string(), cost, pid, priority); 2438 2439 if (clientSp.get() != nullptr) { 2440 ret.appendFormat("User Id: %d, ", clientUserId); 2441 } 2442 if (packageName.size() != 0) { 2443 ret.appendFormat("Client Package Name: %s", packageName.string()); 2444 } 2445 2446 ret.append(", Conflicting Client Devices: {"); 2447 for (auto& j : conflicting) { 2448 ret.appendFormat("%s, ", j.string()); 2449 } 2450 ret.append("})"); 2451 } 2452 if (hasAny) ret.append("\n"); 2453 ret.append("]\n"); 2454 return ret; 2455} 2456 2457CameraService::DescriptorPtr CameraService::CameraClientManager::makeClientDescriptor( 2458 const String8& key, const sp<BasicClient>& value, int32_t cost, 2459 const std::set<String8>& conflictingKeys, int32_t priority, int32_t ownerId) { 2460 2461 return std::make_shared<resource_policy::ClientDescriptor<String8, sp<BasicClient>>>( 2462 key, value, cost, conflictingKeys, priority, ownerId); 2463} 2464 2465CameraService::DescriptorPtr CameraService::CameraClientManager::makeClientDescriptor( 2466 const sp<BasicClient>& value, const CameraService::DescriptorPtr& partial) { 2467 return makeClientDescriptor(partial->getKey(), value, partial->getCost(), 2468 partial->getConflicting(), partial->getPriority(), partial->getOwnerId()); 2469} 2470 2471// ---------------------------------------------------------------------------- 2472 2473static const int kDumpLockRetries = 50; 2474static const int kDumpLockSleep = 60000; 2475 2476static bool tryLock(Mutex& mutex) 2477{ 2478 bool locked = false; 2479 for (int i = 0; i < kDumpLockRetries; ++i) { 2480 if (mutex.tryLock() == NO_ERROR) { 2481 locked = true; 2482 break; 2483 } 2484 usleep(kDumpLockSleep); 2485 } 2486 return locked; 2487} 2488 2489status_t CameraService::dump(int fd, const Vector<String16>& args) { 2490 ATRACE_CALL(); 2491 2492 String8 result("Dump of the Camera Service:\n"); 2493 if (checkCallingPermission(String16("android.permission.DUMP")) == false) { 2494 result = result.format("Permission Denial: " 2495 "can't dump CameraService from pid=%d, uid=%d\n", 2496 getCallingPid(), 2497 getCallingUid()); 2498 write(fd, result.string(), result.size()); 2499 } else { 2500 bool locked = tryLock(mServiceLock); 2501 // failed to lock - CameraService is probably deadlocked 2502 if (!locked) { 2503 result.append("CameraService may be deadlocked\n"); 2504 write(fd, result.string(), result.size()); 2505 } 2506 2507 bool hasClient = false; 2508 if (!mModule) { 2509 result = String8::format("No camera module available!\n"); 2510 write(fd, result.string(), result.size()); 2511 2512 // Dump event log for error information 2513 dumpEventLog(fd); 2514 2515 if (locked) mServiceLock.unlock(); 2516 return NO_ERROR; 2517 } 2518 2519 result = String8::format("Camera module HAL API version: 0x%x\n", mModule->getHalApiVersion()); 2520 result.appendFormat("Camera module API version: 0x%x\n", mModule->getModuleApiVersion()); 2521 result.appendFormat("Camera module name: %s\n", mModule->getModuleName()); 2522 result.appendFormat("Camera module author: %s\n", mModule->getModuleAuthor()); 2523 result.appendFormat("Number of camera devices: %d\n", mNumberOfCameras); 2524 result.appendFormat("Number of normal camera devices: %d\n", mNumberOfNormalCameras); 2525 String8 activeClientString = mActiveClientManager.toString(); 2526 result.appendFormat("Active Camera Clients:\n%s", activeClientString.string()); 2527 result.appendFormat("Allowed users:\n%s\n", toString(mAllowedUsers).string()); 2528 2529 sp<VendorTagDescriptor> desc = VendorTagDescriptor::getGlobalVendorTagDescriptor(); 2530 if (desc == NULL) { 2531 result.appendFormat("Vendor tags left unimplemented.\n"); 2532 } else { 2533 result.appendFormat("Vendor tag definitions:\n"); 2534 } 2535 2536 write(fd, result.string(), result.size()); 2537 2538 if (desc != NULL) { 2539 desc->dump(fd, /*verbosity*/2, /*indentation*/4); 2540 } 2541 2542 dumpEventLog(fd); 2543 2544 bool stateLocked = tryLock(mCameraStatesLock); 2545 if (!stateLocked) { 2546 result = String8::format("CameraStates in use, may be deadlocked\n"); 2547 write(fd, result.string(), result.size()); 2548 } 2549 2550 for (auto& state : mCameraStates) { 2551 String8 cameraId = state.first; 2552 result = String8::format("Camera %s information:\n", cameraId.string()); 2553 camera_info info; 2554 2555 // TODO: Change getCameraInfo + HAL to use String cameraIds 2556 status_t rc = mModule->getCameraInfo(cameraIdToInt(cameraId), &info); 2557 if (rc != OK) { 2558 result.appendFormat(" Error reading static information!\n"); 2559 write(fd, result.string(), result.size()); 2560 } else { 2561 result.appendFormat(" Facing: %s\n", 2562 info.facing == CAMERA_FACING_BACK ? "BACK" : 2563 info.facing == CAMERA_FACING_FRONT ? "FRONT" : "EXTERNAL"); 2564 result.appendFormat(" Orientation: %d\n", info.orientation); 2565 int deviceVersion; 2566 if (mModule->getModuleApiVersion() < CAMERA_MODULE_API_VERSION_2_0) { 2567 deviceVersion = CAMERA_DEVICE_API_VERSION_1_0; 2568 } else { 2569 deviceVersion = info.device_version; 2570 } 2571 2572 auto conflicting = state.second->getConflicting(); 2573 result.appendFormat(" Resource Cost: %d\n", state.second->getCost()); 2574 result.appendFormat(" Conflicting Devices:"); 2575 for (auto& id : conflicting) { 2576 result.appendFormat(" %s", id.string()); 2577 } 2578 if (conflicting.size() == 0) { 2579 result.appendFormat(" NONE"); 2580 } 2581 result.appendFormat("\n"); 2582 2583 result.appendFormat(" Device version: %#x\n", deviceVersion); 2584 if (deviceVersion >= CAMERA_DEVICE_API_VERSION_3_0) { 2585 result.appendFormat(" Device static metadata:\n"); 2586 write(fd, result.string(), result.size()); 2587 dump_indented_camera_metadata(info.static_camera_characteristics, 2588 fd, /*verbosity*/2, /*indentation*/4); 2589 } else { 2590 write(fd, result.string(), result.size()); 2591 } 2592 2593 CameraParameters p = state.second->getShimParams(); 2594 if (!p.isEmpty()) { 2595 result = String8::format(" Camera1 API shim is using parameters:\n "); 2596 write(fd, result.string(), result.size()); 2597 p.dump(fd, args); 2598 } 2599 } 2600 2601 auto clientDescriptor = mActiveClientManager.get(cameraId); 2602 if (clientDescriptor == nullptr) { 2603 result = String8::format(" Device %s is closed, no client instance\n", 2604 cameraId.string()); 2605 write(fd, result.string(), result.size()); 2606 continue; 2607 } 2608 hasClient = true; 2609 result = String8::format(" Device %s is open. Client instance dump:\n\n", 2610 cameraId.string()); 2611 result.appendFormat("Client priority level: %d\n", clientDescriptor->getPriority()); 2612 result.appendFormat("Client PID: %d\n", clientDescriptor->getOwnerId()); 2613 2614 auto client = clientDescriptor->getValue(); 2615 result.appendFormat("Client package: %s\n", 2616 String8(client->getPackageName()).string()); 2617 write(fd, result.string(), result.size()); 2618 2619 client->dumpClient(fd, args); 2620 } 2621 2622 if (stateLocked) mCameraStatesLock.unlock(); 2623 2624 if (!hasClient) { 2625 result = String8::format("\nNo active camera clients yet.\n"); 2626 write(fd, result.string(), result.size()); 2627 } 2628 2629 if (locked) mServiceLock.unlock(); 2630 2631 // Dump camera traces if there were any 2632 write(fd, "\n", 1); 2633 camera3::CameraTraces::dump(fd, args); 2634 2635 // Process dump arguments, if any 2636 int n = args.size(); 2637 String16 verboseOption("-v"); 2638 String16 unreachableOption("--unreachable"); 2639 for (int i = 0; i < n; i++) { 2640 if (args[i] == verboseOption) { 2641 // change logging level 2642 if (i + 1 >= n) continue; 2643 String8 levelStr(args[i+1]); 2644 int level = atoi(levelStr.string()); 2645 result = String8::format("\nSetting log level to %d.\n", level); 2646 setLogLevel(level); 2647 write(fd, result.string(), result.size()); 2648 } else if (args[i] == unreachableOption) { 2649 // Dump memory analysis 2650 // TODO - should limit be an argument parameter? 2651 UnreachableMemoryInfo info; 2652 bool success = GetUnreachableMemory(info, /*limit*/ 10000); 2653 if (!success) { 2654 dprintf(fd, "\nUnable to dump unreachable memory. " 2655 "Try disabling SELinux enforcement.\n"); 2656 } else { 2657 dprintf(fd, "\nDumping unreachable memory:\n"); 2658 std::string s = info.ToString(/*log_contents*/ true); 2659 write(fd, s.c_str(), s.size()); 2660 } 2661 } 2662 } 2663 } 2664 return NO_ERROR; 2665} 2666 2667void CameraService::dumpEventLog(int fd) { 2668 String8 result = String8("\nPrior client events (most recent at top):\n"); 2669 2670 Mutex::Autolock l(mLogLock); 2671 for (const auto& msg : mEventLog) { 2672 result.appendFormat(" %s\n", msg.string()); 2673 } 2674 2675 if (mEventLog.size() == DEFAULT_EVENT_LOG_LENGTH) { 2676 result.append(" ...\n"); 2677 } else if (mEventLog.size() == 0) { 2678 result.append(" [no events yet]\n"); 2679 } 2680 result.append("\n"); 2681 2682 write(fd, result.string(), result.size()); 2683} 2684 2685void CameraService::handleTorchClientBinderDied(const wp<IBinder> &who) { 2686 Mutex::Autolock al(mTorchClientMapMutex); 2687 for (size_t i = 0; i < mTorchClientMap.size(); i++) { 2688 if (mTorchClientMap[i] == who) { 2689 // turn off the torch mode that was turned on by dead client 2690 String8 cameraId = mTorchClientMap.keyAt(i); 2691 status_t res = mFlashlight->setTorchMode(cameraId, false); 2692 if (res) { 2693 ALOGE("%s: torch client died but couldn't turn off torch: " 2694 "%s (%d)", __FUNCTION__, strerror(-res), res); 2695 return; 2696 } 2697 mTorchClientMap.removeItemsAt(i); 2698 break; 2699 } 2700 } 2701} 2702 2703/*virtual*/void CameraService::binderDied(const wp<IBinder> &who) { 2704 2705 /** 2706 * While tempting to promote the wp<IBinder> into a sp, it's actually not supported by the 2707 * binder driver 2708 */ 2709 2710 logClientDied(getCallingPid(), String8("Binder died unexpectedly")); 2711 2712 // check torch client 2713 handleTorchClientBinderDied(who); 2714 2715 // check camera device client 2716 if(!evictClientIdByRemote(who)) { 2717 ALOGV("%s: Java client's binder death already cleaned up (normal case)", __FUNCTION__); 2718 return; 2719 } 2720 2721 ALOGE("%s: Java client's binder died, removing it from the list of active clients", 2722 __FUNCTION__); 2723} 2724 2725void CameraService::updateStatus(int32_t status, const String8& cameraId) { 2726 updateStatus(status, cameraId, {}); 2727} 2728 2729void CameraService::updateStatus(int32_t status, const String8& cameraId, 2730 std::initializer_list<int32_t> rejectSourceStates) { 2731 // Do not lock mServiceLock here or can get into a deadlock from 2732 // connect() -> disconnect -> updateStatus 2733 2734 auto state = getCameraState(cameraId); 2735 2736 if (state == nullptr) { 2737 ALOGW("%s: Could not update the status for %s, no such device exists", __FUNCTION__, 2738 cameraId.string()); 2739 return; 2740 } 2741 2742 // Update the status for this camera state, then send the onStatusChangedCallbacks to each 2743 // of the listeners with both the mStatusStatus and mStatusListenerLock held 2744 state->updateStatus(status, cameraId, rejectSourceStates, [this] 2745 (const String8& cameraId, int32_t status) { 2746 2747 if (status != ICameraServiceListener::STATUS_ENUMERATING) { 2748 // Update torch status if it has a flash unit. 2749 Mutex::Autolock al(mTorchStatusMutex); 2750 int32_t torchStatus; 2751 if (getTorchStatusLocked(cameraId, &torchStatus) != 2752 NAME_NOT_FOUND) { 2753 int32_t newTorchStatus = 2754 status == ICameraServiceListener::STATUS_PRESENT ? 2755 ICameraServiceListener::TORCH_STATUS_AVAILABLE_OFF : 2756 ICameraServiceListener::TORCH_STATUS_NOT_AVAILABLE; 2757 if (torchStatus != newTorchStatus) { 2758 onTorchStatusChangedLocked(cameraId, newTorchStatus); 2759 } 2760 } 2761 } 2762 2763 Mutex::Autolock lock(mStatusListenerLock); 2764 2765 for (auto& listener : mListenerList) { 2766 // TODO: Refactor status listeners to use strings for Camera IDs and remove this. 2767 int id = cameraIdToInt(cameraId); 2768 if (id != -1) listener->onStatusChanged(status, id); 2769 } 2770 }); 2771} 2772 2773void CameraService::updateProxyDeviceState(ICameraServiceProxy::CameraState newState, 2774 const String8& cameraId) { 2775 sp<ICameraServiceProxy> proxyBinder = getCameraServiceProxy(); 2776 if (proxyBinder == nullptr) return; 2777 String16 id(cameraId); 2778 proxyBinder->notifyCameraState(id, newState); 2779} 2780 2781status_t CameraService::getTorchStatusLocked( 2782 const String8& cameraId, 2783 int32_t *status) const { 2784 if (!status) { 2785 return BAD_VALUE; 2786 } 2787 ssize_t index = mTorchStatusMap.indexOfKey(cameraId); 2788 if (index == NAME_NOT_FOUND) { 2789 // invalid camera ID or the camera doesn't have a flash unit 2790 return NAME_NOT_FOUND; 2791 } 2792 2793 *status = mTorchStatusMap.valueAt(index); 2794 return OK; 2795} 2796 2797status_t CameraService::setTorchStatusLocked(const String8& cameraId, 2798 int32_t status) { 2799 ssize_t index = mTorchStatusMap.indexOfKey(cameraId); 2800 if (index == NAME_NOT_FOUND) { 2801 return BAD_VALUE; 2802 } 2803 int32_t& item = 2804 mTorchStatusMap.editValueAt(index); 2805 item = status; 2806 2807 return OK; 2808} 2809 2810}; // namespace android 2811