1e752a5cc64b78f799525aa4e44e5f74e8c402465Svet Ganov/* 2e752a5cc64b78f799525aa4e44e5f74e8c402465Svet Ganov * Copyright (C) 2018 The Android Open Source Project 3e752a5cc64b78f799525aa4e44e5f74e8c402465Svet Ganov * 4e752a5cc64b78f799525aa4e44e5f74e8c402465Svet Ganov * Licensed under the Apache License, Version 2.0 (the "License"); 5e752a5cc64b78f799525aa4e44e5f74e8c402465Svet Ganov * you may not use this file except in compliance with the License. 6e752a5cc64b78f799525aa4e44e5f74e8c402465Svet Ganov * You may obtain a copy of the License at 7e752a5cc64b78f799525aa4e44e5f74e8c402465Svet Ganov * 8e752a5cc64b78f799525aa4e44e5f74e8c402465Svet Ganov * http://www.apache.org/licenses/LICENSE-2.0 9e752a5cc64b78f799525aa4e44e5f74e8c402465Svet Ganov * 10e752a5cc64b78f799525aa4e44e5f74e8c402465Svet Ganov * Unless required by applicable law or agreed to in writing, software 11e752a5cc64b78f799525aa4e44e5f74e8c402465Svet Ganov * distributed under the License is distributed on an "AS IS" BASIS, 12e752a5cc64b78f799525aa4e44e5f74e8c402465Svet Ganov * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. 13e752a5cc64b78f799525aa4e44e5f74e8c402465Svet Ganov * See the License for the specific language governing permissions and 14e752a5cc64b78f799525aa4e44e5f74e8c402465Svet Ganov * limitations under the License. 15e752a5cc64b78f799525aa4e44e5f74e8c402465Svet Ganov */ 16e752a5cc64b78f799525aa4e44e5f74e8c402465Svet Ganov 17e752a5cc64b78f799525aa4e44e5f74e8c402465Svet Ganov#ifndef ANDROID_PERMISSION_CONTROLLER_H 18e752a5cc64b78f799525aa4e44e5f74e8c402465Svet Ganov#define ANDROID_PERMISSION_CONTROLLER_H 19e752a5cc64b78f799525aa4e44e5f74e8c402465Svet Ganov 2047f876b74be0a2d6d417f5ff385f85d835a97fe9Jiyong Park#ifndef __ANDROID_VNDK__ 2147f876b74be0a2d6d417f5ff385f85d835a97fe9Jiyong Park 22e752a5cc64b78f799525aa4e44e5f74e8c402465Svet Ganov#include <binder/IPermissionController.h> 23e752a5cc64b78f799525aa4e44e5f74e8c402465Svet Ganov 24e752a5cc64b78f799525aa4e44e5f74e8c402465Svet Ganov#include <utils/threads.h> 25e752a5cc64b78f799525aa4e44e5f74e8c402465Svet Ganov 26e752a5cc64b78f799525aa4e44e5f74e8c402465Svet Ganov// --------------------------------------------------------------------------- 27e752a5cc64b78f799525aa4e44e5f74e8c402465Svet Ganovnamespace android { 28e752a5cc64b78f799525aa4e44e5f74e8c402465Svet Ganov 29e752a5cc64b78f799525aa4e44e5f74e8c402465Svet Ganovclass PermissionController 30e752a5cc64b78f799525aa4e44e5f74e8c402465Svet Ganov{ 31e752a5cc64b78f799525aa4e44e5f74e8c402465Svet Ganovpublic: 32e752a5cc64b78f799525aa4e44e5f74e8c402465Svet Ganov 33e752a5cc64b78f799525aa4e44e5f74e8c402465Svet Ganov enum { 34e752a5cc64b78f799525aa4e44e5f74e8c402465Svet Ganov MATCH_SYSTEM_ONLY = 1<<16, 35e752a5cc64b78f799525aa4e44e5f74e8c402465Svet Ganov MATCH_UNINSTALLED_PACKAGES = 1<<13, 36e752a5cc64b78f799525aa4e44e5f74e8c402465Svet Ganov MATCH_FACTORY_ONLY = 1<<21, 37e752a5cc64b78f799525aa4e44e5f74e8c402465Svet Ganov MATCH_INSTANT = 1<<23 38e752a5cc64b78f799525aa4e44e5f74e8c402465Svet Ganov }; 39e752a5cc64b78f799525aa4e44e5f74e8c402465Svet Ganov 407afcb3f98e7342985ba5e62bf6d3a5ac1282e545Jeff Sharkey enum { 417afcb3f98e7342985ba5e62bf6d3a5ac1282e545Jeff Sharkey MODE_ALLOWED = 0, 427afcb3f98e7342985ba5e62bf6d3a5ac1282e545Jeff Sharkey MODE_IGNORED = 1, 437afcb3f98e7342985ba5e62bf6d3a5ac1282e545Jeff Sharkey MODE_ERRORED = 2, 447afcb3f98e7342985ba5e62bf6d3a5ac1282e545Jeff Sharkey MODE_DEFAULT = 3, 457afcb3f98e7342985ba5e62bf6d3a5ac1282e545Jeff Sharkey }; 467afcb3f98e7342985ba5e62bf6d3a5ac1282e545Jeff Sharkey 47e752a5cc64b78f799525aa4e44e5f74e8c402465Svet Ganov PermissionController(); 48e752a5cc64b78f799525aa4e44e5f74e8c402465Svet Ganov 49e752a5cc64b78f799525aa4e44e5f74e8c402465Svet Ganov bool checkPermission(const String16& permission, int32_t pid, int32_t uid); 507afcb3f98e7342985ba5e62bf6d3a5ac1282e545Jeff Sharkey int32_t noteOp(const String16& op, int32_t uid, const String16& packageName); 51e752a5cc64b78f799525aa4e44e5f74e8c402465Svet Ganov void getPackagesForUid(const uid_t uid, Vector<String16>& packages); 52e752a5cc64b78f799525aa4e44e5f74e8c402465Svet Ganov bool isRuntimePermission(const String16& permission); 53e752a5cc64b78f799525aa4e44e5f74e8c402465Svet Ganov int getPackageUid(const String16& package, int flags); 54e752a5cc64b78f799525aa4e44e5f74e8c402465Svet Ganov 55e752a5cc64b78f799525aa4e44e5f74e8c402465Svet Ganovprivate: 56e752a5cc64b78f799525aa4e44e5f74e8c402465Svet Ganov Mutex mLock; 57e752a5cc64b78f799525aa4e44e5f74e8c402465Svet Ganov sp<IPermissionController> mService; 58e752a5cc64b78f799525aa4e44e5f74e8c402465Svet Ganov 59e752a5cc64b78f799525aa4e44e5f74e8c402465Svet Ganov sp<IPermissionController> getService(); 60e752a5cc64b78f799525aa4e44e5f74e8c402465Svet Ganov}; 61e752a5cc64b78f799525aa4e44e5f74e8c402465Svet Ganov 62e752a5cc64b78f799525aa4e44e5f74e8c402465Svet Ganov 63e752a5cc64b78f799525aa4e44e5f74e8c402465Svet Ganov}; // namespace android 64e752a5cc64b78f799525aa4e44e5f74e8c402465Svet Ganov// --------------------------------------------------------------------------- 6547f876b74be0a2d6d417f5ff385f85d835a97fe9Jiyong Park#else // __ANDROID_VNDK__ 6647f876b74be0a2d6d417f5ff385f85d835a97fe9Jiyong Park#error "This header is not visible to vendors" 6747f876b74be0a2d6d417f5ff385f85d835a97fe9Jiyong Park#endif // __ANDROID_VNDK__ 6847f876b74be0a2d6d417f5ff385f85d835a97fe9Jiyong Park 69e752a5cc64b78f799525aa4e44e5f74e8c402465Svet Ganov#endif // ANDROID_PERMISSION_CONTROLLER_H 70