installd.cpp revision b63d91fd2737680351876406277b6c759f4db33c
1/* 2** Copyright 2008, The Android Open Source Project 3** 4** Licensed under the Apache License, Version 2.0 (the "License"); 5** you may not use this file except in compliance with the License. 6** You may obtain a copy of the License at 7** 8** http://www.apache.org/licenses/LICENSE-2.0 9** 10** Unless required by applicable law or agreed to in writing, software 11** distributed under the License is distributed on an "AS IS" BASIS, 12** WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. 13** See the License for the specific language governing permissions and 14** limitations under the License. 15*/ 16 17#include <fcntl.h> 18#include <selinux/android.h> 19#include <selinux/avc.h> 20#include <sys/capability.h> 21#include <sys/fsuid.h> 22#include <sys/prctl.h> 23#include <sys/socket.h> 24#include <sys/stat.h> 25 26#include <android-base/logging.h> 27#include <cutils/fs.h> 28#include <cutils/log.h> // TODO: Move everything to base::logging. 29#include <cutils/properties.h> 30#include <cutils/sockets.h> 31#include <private/android_filesystem_config.h> 32 33#include <commands.h> 34#include <globals.h> 35#include <installd_constants.h> 36#include <installd_deps.h> // Need to fill in requirements of commands. 37#include <utils.h> 38 39#ifndef LOG_TAG 40#define LOG_TAG "installd" 41#endif 42#define SOCKET_PATH "installd" 43 44#define BUFFER_MAX 1024 /* input buffer for commands */ 45#define TOKEN_MAX 16 /* max number of arguments in buffer */ 46#define REPLY_MAX 256 /* largest reply allowed */ 47 48namespace android { 49namespace installd { 50 51// Check that installd-deps sizes match cutils sizes. 52static_assert(kPropertyKeyMax == PROPERTY_KEY_MAX, "Size mismatch."); 53static_assert(kPropertyValueMax == PROPERTY_VALUE_MAX, "Size mismatch."); 54 55//////////////////////// 56// Plug-in functions. // 57//////////////////////// 58 59int get_property(const char *key, char *value, const char *default_value) { 60 return property_get(key, value, default_value); 61} 62 63// Compute the output path of 64bool calculate_oat_file_path(char path[PKG_PATH_MAX], 65 const char *oat_dir, 66 const char *apk_path, 67 const char *instruction_set) { 68 char *file_name_start; 69 char *file_name_end; 70 71 file_name_start = strrchr(apk_path, '/'); 72 if (file_name_start == NULL) { 73 ALOGE("apk_path '%s' has no '/'s in it\n", apk_path); 74 return false; 75 } 76 file_name_end = strrchr(apk_path, '.'); 77 if (file_name_end < file_name_start) { 78 ALOGE("apk_path '%s' has no extension\n", apk_path); 79 return false; 80 } 81 82 // Calculate file_name 83 int file_name_len = file_name_end - file_name_start - 1; 84 char file_name[file_name_len + 1]; 85 memcpy(file_name, file_name_start + 1, file_name_len); 86 file_name[file_name_len] = '\0'; 87 88 // <apk_parent_dir>/oat/<isa>/<file_name>.odex 89 snprintf(path, PKG_PATH_MAX, "%s/%s/%s.odex", oat_dir, instruction_set, file_name); 90 return true; 91} 92 93/* 94 * Computes the odex file for the given apk_path and instruction_set. 95 * /system/framework/whatever.jar -> /system/framework/oat/<isa>/whatever.odex 96 * 97 * Returns false if it failed to determine the odex file path. 98 */ 99bool calculate_odex_file_path(char path[PKG_PATH_MAX], 100 const char *apk_path, 101 const char *instruction_set) { 102 if (strlen(apk_path) + strlen("oat/") + strlen(instruction_set) 103 + strlen("/") + strlen("odex") + 1 > PKG_PATH_MAX) { 104 ALOGE("apk_path '%s' may be too long to form odex file path.\n", apk_path); 105 return false; 106 } 107 108 strcpy(path, apk_path); 109 char *end = strrchr(path, '/'); 110 if (end == NULL) { 111 ALOGE("apk_path '%s' has no '/'s in it?!\n", apk_path); 112 return false; 113 } 114 const char *apk_end = apk_path + (end - path); // strrchr(apk_path, '/'); 115 116 strcpy(end + 1, "oat/"); // path = /system/framework/oat/\0 117 strcat(path, instruction_set); // path = /system/framework/oat/<isa>\0 118 strcat(path, apk_end); // path = /system/framework/oat/<isa>/whatever.jar\0 119 end = strrchr(path, '.'); 120 if (end == NULL) { 121 ALOGE("apk_path '%s' has no extension.\n", apk_path); 122 return false; 123 } 124 strcpy(end + 1, "odex"); 125 return true; 126} 127 128bool create_cache_path(char path[PKG_PATH_MAX], 129 const char *src, 130 const char *instruction_set) { 131 /* demand that we are an absolute path */ 132 if ((src == nullptr) || (src[0] != '/') || strstr(src,"..")) { 133 return false; 134 } 135 136 size_t srclen = strlen(src); 137 138 if (srclen > PKG_PATH_MAX) { // XXX: PKG_NAME_MAX? 139 return false; 140 } 141 142 size_t dstlen = 143 android_data_dir.len + 144 strlen(DALVIK_CACHE) + 145 1 + 146 strlen(instruction_set) + 147 srclen + 148 strlen(DALVIK_CACHE_POSTFIX) + 2; 149 150 if (dstlen > PKG_PATH_MAX) { 151 return false; 152 } 153 154 sprintf(path,"%s%s/%s/%s%s", 155 android_data_dir.path, 156 DALVIK_CACHE, 157 instruction_set, 158 src + 1, /* skip the leading / */ 159 DALVIK_CACHE_POSTFIX); 160 161 char* tmp = 162 path + 163 android_data_dir.len + 164 strlen(DALVIK_CACHE) + 165 1 + 166 strlen(instruction_set) + 1; 167 168 for(; *tmp; tmp++) { 169 if (*tmp == '/') { 170 *tmp = '@'; 171 } 172 } 173 174 return true; 175} 176 177 178static char* parse_null(char* arg) { 179 if (strcmp(arg, "!") == 0) { 180 return nullptr; 181 } else { 182 return arg; 183 } 184} 185 186static int do_ping(char **arg ATTRIBUTE_UNUSED, char reply[REPLY_MAX] ATTRIBUTE_UNUSED) 187{ 188 return 0; 189} 190 191static int do_create_app_data(char **arg, char reply[REPLY_MAX] ATTRIBUTE_UNUSED) { 192 /* const char *uuid, const char *pkgname, userid_t userid, int flags, 193 appid_t appid, const char* seinfo, int target_sdk_version */ 194 return create_app_data(parse_null(arg[0]), arg[1], atoi(arg[2]), atoi(arg[3]), 195 atoi(arg[4]), arg[5], atoi(arg[6])); 196} 197 198static int do_restorecon_app_data(char **arg, char reply[REPLY_MAX] ATTRIBUTE_UNUSED) { 199 /* const char* uuid, const char* pkgName, userid_t userid, int flags, 200 appid_t appid, const char* seinfo */ 201 return restorecon_app_data(parse_null(arg[0]), arg[1], atoi(arg[2]), atoi(arg[3]), atoi(arg[4]), arg[5]); 202} 203 204static int do_migrate_app_data(char **arg, char reply[REPLY_MAX] ATTRIBUTE_UNUSED) { 205 /* const char *uuid, const char *pkgname, userid_t userid, int flags */ 206 return migrate_app_data(parse_null(arg[0]), arg[1], atoi(arg[2]), atoi(arg[3])); 207} 208 209static int do_clear_app_data(char **arg, char reply[REPLY_MAX] ATTRIBUTE_UNUSED) { 210 /* const char *uuid, const char *pkgname, userid_t userid, int flags, ino_t ce_data_inode */ 211 return clear_app_data(parse_null(arg[0]), arg[1], atoi(arg[2]), atoi(arg[3]), atol(arg[4])); 212} 213 214static int do_destroy_app_data(char **arg, char reply[REPLY_MAX] ATTRIBUTE_UNUSED) { 215 /* const char *uuid, const char *pkgname, userid_t userid, int flags, ino_t ce_data_inode */ 216 return destroy_app_data(parse_null(arg[0]), arg[1], atoi(arg[2]), atoi(arg[3]), atol(arg[4])); 217} 218 219// We use otapreopt_chroot to get into the chroot. 220static constexpr const char* kOtaPreopt = "/system/bin/otapreopt_chroot"; 221 222static int do_ota_dexopt(char **arg, char reply[REPLY_MAX] ATTRIBUTE_UNUSED) { 223 // Time to fork and run otapreopt. 224 225 // Check that the tool exists. 226 struct stat s; 227 if (stat(kOtaPreopt, &s) != 0) { 228 LOG(ERROR) << "Otapreopt chroot tool not found."; 229 return -1; 230 } 231 232 pid_t pid = fork(); 233 if (pid == 0) { 234 const char* argv[1 + 9 + 1]; 235 argv[0] = kOtaPreopt; 236 for (size_t i = 1; i <= 9; ++i) { 237 argv[i] = arg[i - 1]; 238 } 239 argv[10] = nullptr; 240 241 execv(argv[0], (char * const *)argv); 242 PLOG(ERROR) << "execv(OTAPREOPT_CHROOT) failed"; 243 exit(99); 244 } else { 245 int res = wait_child(pid); 246 if (res == 0) { 247 ALOGV("DexInv: --- END OTAPREOPT (success) ---\n"); 248 } else { 249 ALOGE("DexInv: --- END OTAPREOPT --- status=0x%04x, process failed\n", res); 250 } 251 return res; 252 } 253} 254 255static int do_dexopt(char **arg, char reply[REPLY_MAX]) 256{ 257 int dexopt_flags = atoi(arg[6]); 258 if ((dexopt_flags & DEXOPT_OTA) != 0) { 259 return do_ota_dexopt(arg, reply); 260 } 261 return dexopt(arg[0], // apk_path 262 atoi(arg[1]), // uid 263 arg[2], // pkgname 264 arg[3], // instruction_set 265 atoi(arg[4]), // dexopt_needed 266 arg[5], // oat_dir 267 dexopt_flags, 268 arg[7], // compiler_filter 269 parse_null(arg[8]), // volume_uuid 270 parse_null(arg[9])); // shared_libraries 271} 272 273static int do_merge_profiles(char **arg, char reply[REPLY_MAX]) 274{ 275 uid_t uid = static_cast<uid_t>(atoi(arg[0])); 276 const char* pkgname = arg[1]; 277 if (merge_profiles(uid, pkgname)) { 278 strncpy(reply, "true", REPLY_MAX); 279 } else { 280 strncpy(reply, "false", REPLY_MAX); 281 } 282 return 0; 283} 284 285static int do_mark_boot_complete(char **arg, char reply[REPLY_MAX] ATTRIBUTE_UNUSED) 286{ 287 return mark_boot_complete(arg[0] /* instruction set */); 288} 289 290static int do_rm_dex(char **arg, char reply[REPLY_MAX] ATTRIBUTE_UNUSED) 291{ 292 return rm_dex(arg[0], arg[1]); /* pkgname, instruction_set */ 293} 294 295static int do_free_cache(char **arg, char reply[REPLY_MAX] ATTRIBUTE_UNUSED) /* TODO int:free_size */ 296{ 297 return free_cache(parse_null(arg[0]), (int64_t)atoll(arg[1])); /* uuid, free_size */ 298} 299 300static int do_get_app_size(char **arg, char reply[REPLY_MAX]) { 301 int64_t codesize = 0; 302 int64_t datasize = 0; 303 int64_t cachesize = 0; 304 int64_t asecsize = 0; 305 int res = 0; 306 307 /* const char *uuid, const char *pkgname, int userid, int flags, ino_t ce_data_inode, 308 const char* code_path */ 309 res = get_app_size(parse_null(arg[0]), arg[1], atoi(arg[2]), atoi(arg[3]), atol(arg[4]), 310 arg[5], &codesize, &datasize, &cachesize, &asecsize); 311 312 /* 313 * Each int64_t can take up 22 characters printed out. Make sure it 314 * doesn't go over REPLY_MAX in the future. 315 */ 316 snprintf(reply, REPLY_MAX, "%" PRId64 " %" PRId64 " %" PRId64 " %" PRId64, 317 codesize, datasize, cachesize, asecsize); 318 return res; 319} 320 321static int do_get_app_data_inode(char **arg, char reply[REPLY_MAX]) { 322 ino_t inode = 0; 323 int res = 0; 324 325 /* const char *uuid, const char *pkgname, int userid, int flags */ 326 res = get_app_data_inode(parse_null(arg[0]), arg[1], atoi(arg[2]), atoi(arg[3]), &inode); 327 328 snprintf(reply, REPLY_MAX, "%" PRId64, (int64_t) inode); 329 return res; 330} 331 332static int do_move_complete_app(char **arg, char reply[REPLY_MAX] ATTRIBUTE_UNUSED) { 333 /* const char* from_uuid, const char *to_uuid, const char *package_name, 334 const char *data_app_name, appid_t appid, const char* seinfo, 335 int target_sdk_version */ 336 return move_complete_app(parse_null(arg[0]), parse_null(arg[1]), arg[2], arg[3], 337 atoi(arg[4]), arg[5], atoi(arg[6])); 338} 339 340static int do_create_user_data(char **arg, char reply[REPLY_MAX] ATTRIBUTE_UNUSED) 341{ 342 /* const char *uuid, userid_t userid, int user_serial, int flags */ 343 return create_user_data(parse_null(arg[0]), atoi(arg[1]), atoi(arg[2]), atoi(arg[3])); 344} 345 346static int do_destroy_user_data(char **arg, char reply[REPLY_MAX] ATTRIBUTE_UNUSED) 347{ 348 /* const char *uuid, userid_t userid, int flags */ 349 return destroy_user_data(parse_null(arg[0]), atoi(arg[1]), atoi(arg[2])); 350} 351 352static int do_linklib(char **arg, char reply[REPLY_MAX] ATTRIBUTE_UNUSED) 353{ 354 return linklib(parse_null(arg[0]), arg[1], arg[2], atoi(arg[3])); 355} 356 357static int do_idmap(char **arg, char reply[REPLY_MAX] ATTRIBUTE_UNUSED) 358{ 359 return idmap(arg[0], arg[1], atoi(arg[2])); 360} 361 362static int do_create_oat_dir(char **arg, char reply[REPLY_MAX] ATTRIBUTE_UNUSED) 363{ 364 /* oat_dir, instruction_set */ 365 return create_oat_dir(arg[0], arg[1]); 366} 367 368static int do_rm_package_dir(char **arg, char reply[REPLY_MAX] ATTRIBUTE_UNUSED) 369{ 370 /* oat_dir */ 371 return rm_package_dir(arg[0]); 372} 373 374static int do_clear_app_profiles(char **arg, char reply[REPLY_MAX] ATTRIBUTE_UNUSED) 375{ 376 /* package_name */ 377 return clear_app_profiles(arg[0]); 378} 379 380static int do_destroy_app_profiles(char **arg, char reply[REPLY_MAX] ATTRIBUTE_UNUSED) 381{ 382 /* package_name */ 383 return destroy_app_profiles(arg[0]); 384} 385 386static int do_link_file(char **arg, char reply[REPLY_MAX] ATTRIBUTE_UNUSED) 387{ 388 /* relative_path, from_base, to_base */ 389 return link_file(arg[0], arg[1], arg[2]); 390} 391 392static int do_move_ab(char **arg, char reply[REPLY_MAX] ATTRIBUTE_UNUSED) { 393 // apk_path, instruction_set, oat_dir 394 return move_ab(arg[0], arg[1], arg[2]); 395} 396 397struct cmdinfo { 398 const char *name; 399 unsigned numargs; 400 int (*func)(char **arg, char reply[REPLY_MAX]); 401}; 402 403struct cmdinfo cmds[] = { 404 { "ping", 0, do_ping }, 405 406 { "create_app_data", 7, do_create_app_data }, 407 { "restorecon_app_data", 6, do_restorecon_app_data }, 408 { "migrate_app_data", 4, do_migrate_app_data }, 409 { "clear_app_data", 5, do_clear_app_data }, 410 { "destroy_app_data", 5, do_destroy_app_data }, 411 { "move_complete_app", 7, do_move_complete_app }, 412 { "get_app_size", 6, do_get_app_size }, 413 { "get_app_data_inode", 4, do_get_app_data_inode }, 414 415 { "create_user_data", 4, do_create_user_data }, 416 { "destroy_user_data", 3, do_destroy_user_data }, 417 418 { "dexopt", 10, do_dexopt }, 419 { "markbootcomplete", 1, do_mark_boot_complete }, 420 { "rmdex", 2, do_rm_dex }, 421 { "freecache", 2, do_free_cache }, 422 { "linklib", 4, do_linklib }, 423 { "idmap", 3, do_idmap }, 424 { "createoatdir", 2, do_create_oat_dir }, 425 { "rmpackagedir", 1, do_rm_package_dir }, 426 { "clear_app_profiles", 1, do_clear_app_profiles }, 427 { "destroy_app_profiles", 1, do_destroy_app_profiles }, 428 { "linkfile", 3, do_link_file }, 429 { "move_ab", 3, do_move_ab }, 430 { "merge_profiles", 2, do_merge_profiles }, 431}; 432 433static int readx(int s, void *_buf, int count) 434{ 435 char *buf = (char *) _buf; 436 int n = 0, r; 437 if (count < 0) return -1; 438 while (n < count) { 439 r = read(s, buf + n, count - n); 440 if (r < 0) { 441 if (errno == EINTR) continue; 442 ALOGE("read error: %s\n", strerror(errno)); 443 return -1; 444 } 445 if (r == 0) { 446 ALOGE("eof\n"); 447 return -1; /* EOF */ 448 } 449 n += r; 450 } 451 return 0; 452} 453 454static int writex(int s, const void *_buf, int count) 455{ 456 const char *buf = (const char *) _buf; 457 int n = 0, r; 458 if (count < 0) return -1; 459 while (n < count) { 460 r = write(s, buf + n, count - n); 461 if (r < 0) { 462 if (errno == EINTR) continue; 463 ALOGE("write error: %s\n", strerror(errno)); 464 return -1; 465 } 466 n += r; 467 } 468 return 0; 469} 470 471 472/* Tokenize the command buffer, locate a matching command, 473 * ensure that the required number of arguments are provided, 474 * call the function(), return the result. 475 */ 476static int execute(int s, char cmd[BUFFER_MAX]) 477{ 478 char reply[REPLY_MAX]; 479 char *arg[TOKEN_MAX+1]; 480 unsigned i; 481 unsigned n = 0; 482 unsigned short count; 483 int ret = -1; 484 485 // ALOGI("execute('%s')\n", cmd); 486 487 /* default reply is "" */ 488 reply[0] = 0; 489 490 /* n is number of args (not counting arg[0]) */ 491 arg[0] = cmd; 492 while (*cmd) { 493 if (isspace(*cmd)) { 494 *cmd++ = 0; 495 n++; 496 arg[n] = cmd; 497 if (n == TOKEN_MAX) { 498 ALOGE("too many arguments\n"); 499 goto done; 500 } 501 } 502 if (*cmd) { 503 cmd++; 504 } 505 } 506 507 for (i = 0; i < sizeof(cmds) / sizeof(cmds[0]); i++) { 508 if (!strcmp(cmds[i].name,arg[0])) { 509 if (n != cmds[i].numargs) { 510 ALOGE("%s requires %d arguments (%d given)\n", 511 cmds[i].name, cmds[i].numargs, n); 512 } else { 513 ret = cmds[i].func(arg + 1, reply); 514 } 515 goto done; 516 } 517 } 518 ALOGE("unsupported command '%s'\n", arg[0]); 519 520done: 521 if (reply[0]) { 522 n = snprintf(cmd, BUFFER_MAX, "%d %s", ret, reply); 523 } else { 524 n = snprintf(cmd, BUFFER_MAX, "%d", ret); 525 } 526 if (n > BUFFER_MAX) n = BUFFER_MAX; 527 count = n; 528 529 // ALOGI("reply: '%s'\n", cmd); 530 if (writex(s, &count, sizeof(count))) return -1; 531 if (writex(s, cmd, count)) return -1; 532 return 0; 533} 534 535bool initialize_globals() { 536 const char* data_path = getenv("ANDROID_DATA"); 537 if (data_path == nullptr) { 538 ALOGE("Could not find ANDROID_DATA"); 539 return false; 540 } 541 const char* root_path = getenv("ANDROID_ROOT"); 542 if (root_path == nullptr) { 543 ALOGE("Could not find ANDROID_ROOT"); 544 return false; 545 } 546 547 return init_globals_from_data_and_root(data_path, root_path); 548} 549 550static int initialize_directories() { 551 int res = -1; 552 553 // Read current filesystem layout version to handle upgrade paths 554 char version_path[PATH_MAX]; 555 snprintf(version_path, PATH_MAX, "%s.layout_version", android_data_dir.path); 556 557 int oldVersion; 558 if (fs_read_atomic_int(version_path, &oldVersion) == -1) { 559 oldVersion = 0; 560 } 561 int version = oldVersion; 562 563 if (version < 2) { 564 SLOGD("Assuming that device has multi-user storage layout; upgrade no longer supported"); 565 version = 2; 566 } 567 568 if (ensure_config_user_dirs(0) == -1) { 569 ALOGE("Failed to setup misc for user 0"); 570 goto fail; 571 } 572 573 if (version == 2) { 574 ALOGD("Upgrading to /data/misc/user directories"); 575 576 char misc_dir[PATH_MAX]; 577 snprintf(misc_dir, PATH_MAX, "%smisc", android_data_dir.path); 578 579 char keychain_added_dir[PATH_MAX]; 580 snprintf(keychain_added_dir, PATH_MAX, "%s/keychain/cacerts-added", misc_dir); 581 582 char keychain_removed_dir[PATH_MAX]; 583 snprintf(keychain_removed_dir, PATH_MAX, "%s/keychain/cacerts-removed", misc_dir); 584 585 DIR *dir; 586 struct dirent *dirent; 587 dir = opendir("/data/user"); 588 if (dir != NULL) { 589 while ((dirent = readdir(dir))) { 590 const char *name = dirent->d_name; 591 592 // skip "." and ".." 593 if (name[0] == '.') { 594 if (name[1] == 0) continue; 595 if ((name[1] == '.') && (name[2] == 0)) continue; 596 } 597 598 uint32_t user_id = atoi(name); 599 600 // /data/misc/user/<user_id> 601 if (ensure_config_user_dirs(user_id) == -1) { 602 goto fail; 603 } 604 605 char misc_added_dir[PATH_MAX]; 606 snprintf(misc_added_dir, PATH_MAX, "%s/user/%s/cacerts-added", misc_dir, name); 607 608 char misc_removed_dir[PATH_MAX]; 609 snprintf(misc_removed_dir, PATH_MAX, "%s/user/%s/cacerts-removed", misc_dir, name); 610 611 uid_t uid = multiuser_get_uid(user_id, AID_SYSTEM); 612 gid_t gid = uid; 613 if (access(keychain_added_dir, F_OK) == 0) { 614 if (copy_dir_files(keychain_added_dir, misc_added_dir, uid, gid) != 0) { 615 ALOGE("Some files failed to copy"); 616 } 617 } 618 if (access(keychain_removed_dir, F_OK) == 0) { 619 if (copy_dir_files(keychain_removed_dir, misc_removed_dir, uid, gid) != 0) { 620 ALOGE("Some files failed to copy"); 621 } 622 } 623 } 624 closedir(dir); 625 626 if (access(keychain_added_dir, F_OK) == 0) { 627 delete_dir_contents(keychain_added_dir, 1, 0); 628 } 629 if (access(keychain_removed_dir, F_OK) == 0) { 630 delete_dir_contents(keychain_removed_dir, 1, 0); 631 } 632 } 633 634 version = 3; 635 } 636 637 // Persist layout version if changed 638 if (version != oldVersion) { 639 if (fs_write_atomic_int(version_path, version) == -1) { 640 ALOGE("Failed to save version to %s: %s", version_path, strerror(errno)); 641 goto fail; 642 } 643 } 644 645 // Success! 646 res = 0; 647 648fail: 649 return res; 650} 651 652static int log_callback(int type, const char *fmt, ...) { 653 va_list ap; 654 int priority; 655 656 switch (type) { 657 case SELINUX_WARNING: 658 priority = ANDROID_LOG_WARN; 659 break; 660 case SELINUX_INFO: 661 priority = ANDROID_LOG_INFO; 662 break; 663 default: 664 priority = ANDROID_LOG_ERROR; 665 break; 666 } 667 va_start(ap, fmt); 668 LOG_PRI_VA(priority, "SELinux", fmt, ap); 669 va_end(ap); 670 return 0; 671} 672 673static int installd_main(const int argc ATTRIBUTE_UNUSED, char *argv[]) { 674 char buf[BUFFER_MAX]; 675 struct sockaddr addr; 676 socklen_t alen; 677 int lsocket, s; 678 int selinux_enabled = (is_selinux_enabled() > 0); 679 680 setenv("ANDROID_LOG_TAGS", "*:v", 1); 681 android::base::InitLogging(argv); 682 683 ALOGI("installd firing up\n"); 684 685 union selinux_callback cb; 686 cb.func_log = log_callback; 687 selinux_set_callback(SELINUX_CB_LOG, cb); 688 689 if (!initialize_globals()) { 690 ALOGE("Could not initialize globals; exiting.\n"); 691 exit(1); 692 } 693 694 if (initialize_directories() < 0) { 695 ALOGE("Could not create directories; exiting.\n"); 696 exit(1); 697 } 698 699 if (selinux_enabled && selinux_status_open(true) < 0) { 700 ALOGE("Could not open selinux status; exiting.\n"); 701 exit(1); 702 } 703 704 lsocket = android_get_control_socket(SOCKET_PATH); 705 if (lsocket < 0) { 706 ALOGE("Failed to get socket from environment: %s\n", strerror(errno)); 707 exit(1); 708 } 709 if (listen(lsocket, 5)) { 710 ALOGE("Listen on socket failed: %s\n", strerror(errno)); 711 exit(1); 712 } 713 fcntl(lsocket, F_SETFD, FD_CLOEXEC); 714 715 for (;;) { 716 alen = sizeof(addr); 717 s = accept(lsocket, &addr, &alen); 718 if (s < 0) { 719 ALOGE("Accept failed: %s\n", strerror(errno)); 720 continue; 721 } 722 fcntl(s, F_SETFD, FD_CLOEXEC); 723 724 ALOGI("new connection\n"); 725 for (;;) { 726 unsigned short count; 727 if (readx(s, &count, sizeof(count))) { 728 ALOGE("failed to read size\n"); 729 break; 730 } 731 if ((count < 1) || (count >= BUFFER_MAX)) { 732 ALOGE("invalid size %d\n", count); 733 break; 734 } 735 if (readx(s, buf, count)) { 736 ALOGE("failed to read command\n"); 737 break; 738 } 739 buf[count] = 0; 740 if (selinux_enabled && selinux_status_updated() > 0) { 741 selinux_android_seapp_context_reload(); 742 } 743 if (execute(s, buf)) break; 744 } 745 ALOGI("closing connection\n"); 746 close(s); 747 } 748 749 return 0; 750} 751 752} // namespace installd 753} // namespace android 754 755int main(const int argc, char *argv[]) { 756 return android::installd::installd_main(argc, argv); 757} 758