1/* 2 * Copyright (C) 2011 The Android Open Source Project 3 * 4 * Licensed under the Apache License, Version 2.0 (the "License"); 5 * you may not use this file except in compliance with the License. 6 * You may obtain a copy of the License at 7 * 8 * http://www.apache.org/licenses/LICENSE-2.0 9 * 10 * Unless required by applicable law or agreed to in writing, software 11 * distributed under the License is distributed on an "AS IS" BASIS, 12 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. 13 * See the License for the specific language governing permissions and 14 * limitations under the License. 15 */ 16 17package com.android.server.pm; 18 19import com.android.internal.util.ArrayUtils; 20import com.android.internal.util.FastXmlSerializer; 21 22import android.app.Activity; 23import android.app.ActivityManager; 24import android.app.ActivityManagerNative; 25import android.app.IStopUserCallback; 26import android.content.BroadcastReceiver; 27import android.content.Context; 28import android.content.Intent; 29import android.content.SharedPreferences; 30import android.content.pm.PackageManager; 31import android.content.pm.UserInfo; 32import android.graphics.Bitmap; 33import android.graphics.BitmapFactory; 34import android.os.Binder; 35import android.os.Environment; 36import android.os.FileUtils; 37import android.os.IUserManager; 38import android.os.Process; 39import android.os.RemoteException; 40import android.os.UserHandle; 41import android.os.UserManager; 42import android.util.AtomicFile; 43import android.util.Slog; 44import android.util.SparseArray; 45import android.util.TimeUtils; 46import android.util.Xml; 47 48import java.io.BufferedOutputStream; 49import java.io.File; 50import java.io.FileDescriptor; 51import java.io.FileInputStream; 52import java.io.FileNotFoundException; 53import java.io.FileOutputStream; 54import java.io.IOException; 55import java.io.PrintWriter; 56import java.util.ArrayList; 57import java.util.HashSet; 58import java.util.List; 59 60import org.xmlpull.v1.XmlPullParser; 61import org.xmlpull.v1.XmlPullParserException; 62import org.xmlpull.v1.XmlSerializer; 63 64public class UserManagerService extends IUserManager.Stub { 65 66 private static final String LOG_TAG = "UserManagerService"; 67 68 private static final boolean DBG = false; 69 70 private static final String TAG_NAME = "name"; 71 private static final String ATTR_FLAGS = "flags"; 72 private static final String ATTR_ICON_PATH = "icon"; 73 private static final String ATTR_ID = "id"; 74 private static final String ATTR_CREATION_TIME = "created"; 75 private static final String ATTR_LAST_LOGGED_IN_TIME = "lastLoggedIn"; 76 private static final String ATTR_SERIAL_NO = "serialNumber"; 77 private static final String ATTR_NEXT_SERIAL_NO = "nextSerialNumber"; 78 private static final String ATTR_PARTIAL = "partial"; 79 private static final String ATTR_USER_VERSION = "version"; 80 private static final String TAG_USERS = "users"; 81 private static final String TAG_USER = "user"; 82 83 private static final String USER_INFO_DIR = "system" + File.separator + "users"; 84 private static final String USER_LIST_FILENAME = "userlist.xml"; 85 private static final String USER_PHOTO_FILENAME = "photo.png"; 86 87 private static final int MIN_USER_ID = 10; 88 89 private static final int USER_VERSION = 1; 90 91 private static final long EPOCH_PLUS_30_YEARS = 30L * 365 * 24 * 60 * 60 * 1000L; // ms 92 93 private final Context mContext; 94 private final PackageManagerService mPm; 95 private final Object mInstallLock; 96 private final Object mPackagesLock; 97 98 private final File mUsersDir; 99 private final File mUserListFile; 100 private final File mBaseUserPath; 101 102 private SparseArray<UserInfo> mUsers = new SparseArray<UserInfo>(); 103 private HashSet<Integer> mRemovingUserIds = new HashSet<Integer>(); 104 105 private int[] mUserIds; 106 private boolean mGuestEnabled; 107 private int mNextSerialNumber; 108 // This resets on a reboot. Otherwise it keeps incrementing so that user ids are 109 // not reused in quick succession 110 private int mNextUserId = MIN_USER_ID; 111 private int mUserVersion = 0; 112 113 private static UserManagerService sInstance; 114 115 public static UserManagerService getInstance() { 116 synchronized (UserManagerService.class) { 117 return sInstance; 118 } 119 } 120 121 /** 122 * Available for testing purposes. 123 */ 124 UserManagerService(File dataDir, File baseUserPath) { 125 this(null, null, new Object(), new Object(), dataDir, baseUserPath); 126 } 127 128 /** 129 * Called by package manager to create the service. This is closely 130 * associated with the package manager, and the given lock is the 131 * package manager's own lock. 132 */ 133 UserManagerService(Context context, PackageManagerService pm, 134 Object installLock, Object packagesLock) { 135 this(context, pm, installLock, packagesLock, 136 Environment.getDataDirectory(), 137 new File(Environment.getDataDirectory(), "user")); 138 } 139 140 /** 141 * Available for testing purposes. 142 */ 143 private UserManagerService(Context context, PackageManagerService pm, 144 Object installLock, Object packagesLock, 145 File dataDir, File baseUserPath) { 146 mContext = context; 147 mPm = pm; 148 mInstallLock = installLock; 149 mPackagesLock = packagesLock; 150 synchronized (mInstallLock) { 151 synchronized (mPackagesLock) { 152 mUsersDir = new File(dataDir, USER_INFO_DIR); 153 mUsersDir.mkdirs(); 154 // Make zeroth user directory, for services to migrate their files to that location 155 File userZeroDir = new File(mUsersDir, "0"); 156 userZeroDir.mkdirs(); 157 mBaseUserPath = baseUserPath; 158 FileUtils.setPermissions(mUsersDir.toString(), 159 FileUtils.S_IRWXU|FileUtils.S_IRWXG 160 |FileUtils.S_IROTH|FileUtils.S_IXOTH, 161 -1, -1); 162 mUserListFile = new File(mUsersDir, USER_LIST_FILENAME); 163 readUserListLocked(); 164 // Prune out any partially created/partially removed users. 165 ArrayList<UserInfo> partials = new ArrayList<UserInfo>(); 166 for (int i = 0; i < mUsers.size(); i++) { 167 UserInfo ui = mUsers.valueAt(i); 168 if (ui.partial && i != 0) { 169 partials.add(ui); 170 } 171 } 172 for (int i = 0; i < partials.size(); i++) { 173 UserInfo ui = partials.get(i); 174 Slog.w(LOG_TAG, "Removing partially created user #" + i 175 + " (name=" + ui.name + ")"); 176 removeUserStateLocked(ui.id); 177 } 178 sInstance = this; 179 } 180 } 181 } 182 183 @Override 184 public List<UserInfo> getUsers(boolean excludeDying) { 185 checkManageUsersPermission("query users"); 186 synchronized (mPackagesLock) { 187 ArrayList<UserInfo> users = new ArrayList<UserInfo>(mUsers.size()); 188 for (int i = 0; i < mUsers.size(); i++) { 189 UserInfo ui = mUsers.valueAt(i); 190 if (ui.partial) { 191 continue; 192 } 193 if (!excludeDying || !mRemovingUserIds.contains(ui.id)) { 194 users.add(ui); 195 } 196 } 197 return users; 198 } 199 } 200 201 @Override 202 public UserInfo getUserInfo(int userId) { 203 checkManageUsersPermission("query user"); 204 synchronized (mPackagesLock) { 205 return getUserInfoLocked(userId); 206 } 207 } 208 209 /* 210 * Should be locked on mUsers before calling this. 211 */ 212 private UserInfo getUserInfoLocked(int userId) { 213 UserInfo ui = mUsers.get(userId); 214 // If it is partial and not in the process of being removed, return as unknown user. 215 if (ui != null && ui.partial && !mRemovingUserIds.contains(userId)) { 216 Slog.w(LOG_TAG, "getUserInfo: unknown user #" + userId); 217 return null; 218 } 219 return ui; 220 } 221 222 public boolean exists(int userId) { 223 synchronized (mPackagesLock) { 224 return ArrayUtils.contains(mUserIds, userId); 225 } 226 } 227 228 @Override 229 public void setUserName(int userId, String name) { 230 checkManageUsersPermission("rename users"); 231 boolean changed = false; 232 synchronized (mPackagesLock) { 233 UserInfo info = mUsers.get(userId); 234 if (info == null || info.partial) { 235 Slog.w(LOG_TAG, "setUserName: unknown user #" + userId); 236 return; 237 } 238 if (name != null && !name.equals(info.name)) { 239 info.name = name; 240 writeUserLocked(info); 241 changed = true; 242 } 243 } 244 if (changed) { 245 sendUserInfoChangedBroadcast(userId); 246 } 247 } 248 249 @Override 250 public void setUserIcon(int userId, Bitmap bitmap) { 251 checkManageUsersPermission("update users"); 252 synchronized (mPackagesLock) { 253 UserInfo info = mUsers.get(userId); 254 if (info == null || info.partial) { 255 Slog.w(LOG_TAG, "setUserIcon: unknown user #" + userId); 256 return; 257 } 258 writeBitmapLocked(info, bitmap); 259 writeUserLocked(info); 260 } 261 sendUserInfoChangedBroadcast(userId); 262 } 263 264 private void sendUserInfoChangedBroadcast(int userId) { 265 Intent changedIntent = new Intent(Intent.ACTION_USER_INFO_CHANGED); 266 changedIntent.putExtra(Intent.EXTRA_USER_HANDLE, userId); 267 changedIntent.addFlags(Intent.FLAG_RECEIVER_REGISTERED_ONLY); 268 mContext.sendBroadcastAsUser(changedIntent, new UserHandle(userId)); 269 } 270 271 @Override 272 public Bitmap getUserIcon(int userId) { 273 checkManageUsersPermission("read users"); 274 synchronized (mPackagesLock) { 275 UserInfo info = mUsers.get(userId); 276 if (info == null || info.partial) { 277 Slog.w(LOG_TAG, "getUserIcon: unknown user #" + userId); 278 return null; 279 } 280 if (info.iconPath == null) { 281 return null; 282 } 283 return BitmapFactory.decodeFile(info.iconPath); 284 } 285 } 286 287 @Override 288 public void setGuestEnabled(boolean enable) { 289 checkManageUsersPermission("enable guest users"); 290 synchronized (mPackagesLock) { 291 if (mGuestEnabled != enable) { 292 mGuestEnabled = enable; 293 // Erase any guest user that currently exists 294 for (int i = 0; i < mUsers.size(); i++) { 295 UserInfo user = mUsers.valueAt(i); 296 if (!user.partial && user.isGuest()) { 297 if (!enable) { 298 removeUser(user.id); 299 } 300 return; 301 } 302 } 303 // No guest was found 304 if (enable) { 305 createUser("Guest", UserInfo.FLAG_GUEST); 306 } 307 } 308 } 309 } 310 311 @Override 312 public boolean isGuestEnabled() { 313 synchronized (mPackagesLock) { 314 return mGuestEnabled; 315 } 316 } 317 318 @Override 319 public void wipeUser(int userHandle) { 320 checkManageUsersPermission("wipe user"); 321 // TODO: 322 } 323 324 public void makeInitialized(int userId) { 325 checkManageUsersPermission("makeInitialized"); 326 synchronized (mPackagesLock) { 327 UserInfo info = mUsers.get(userId); 328 if (info == null || info.partial) { 329 Slog.w(LOG_TAG, "makeInitialized: unknown user #" + userId); 330 } 331 if ((info.flags&UserInfo.FLAG_INITIALIZED) == 0) { 332 info.flags |= UserInfo.FLAG_INITIALIZED; 333 writeUserLocked(info); 334 } 335 } 336 } 337 338 /** 339 * Check if we've hit the limit of how many users can be created. 340 */ 341 private boolean isUserLimitReachedLocked() { 342 int nUsers = mUsers.size(); 343 return nUsers >= UserManager.getMaxSupportedUsers(); 344 } 345 346 /** 347 * Enforces that only the system UID or root's UID or apps that have the 348 * {@link android.Manifest.permission.MANAGE_USERS MANAGE_USERS} 349 * permission can make certain calls to the UserManager. 350 * 351 * @param message used as message if SecurityException is thrown 352 * @throws SecurityException if the caller is not system or root 353 */ 354 private static final void checkManageUsersPermission(String message) { 355 final int uid = Binder.getCallingUid(); 356 if (uid != Process.SYSTEM_UID && uid != 0 357 && ActivityManager.checkComponentPermission( 358 android.Manifest.permission.MANAGE_USERS, 359 uid, -1, true) != PackageManager.PERMISSION_GRANTED) { 360 throw new SecurityException("You need MANAGE_USERS permission to: " + message); 361 } 362 } 363 364 private void writeBitmapLocked(UserInfo info, Bitmap bitmap) { 365 try { 366 File dir = new File(mUsersDir, Integer.toString(info.id)); 367 File file = new File(dir, USER_PHOTO_FILENAME); 368 if (!dir.exists()) { 369 dir.mkdir(); 370 FileUtils.setPermissions( 371 dir.getPath(), 372 FileUtils.S_IRWXU|FileUtils.S_IRWXG|FileUtils.S_IXOTH, 373 -1, -1); 374 } 375 FileOutputStream os; 376 if (bitmap.compress(Bitmap.CompressFormat.PNG, 100, os = new FileOutputStream(file))) { 377 info.iconPath = file.getAbsolutePath(); 378 } 379 try { 380 os.close(); 381 } catch (IOException ioe) { 382 // What the ... ! 383 } 384 } catch (FileNotFoundException e) { 385 Slog.w(LOG_TAG, "Error setting photo for user ", e); 386 } 387 } 388 389 /** 390 * Returns an array of user ids. This array is cached here for quick access, so do not modify or 391 * cache it elsewhere. 392 * @return the array of user ids. 393 */ 394 public int[] getUserIds() { 395 synchronized (mPackagesLock) { 396 return mUserIds; 397 } 398 } 399 400 int[] getUserIdsLPr() { 401 return mUserIds; 402 } 403 404 private void readUserList() { 405 synchronized (mPackagesLock) { 406 readUserListLocked(); 407 } 408 } 409 410 private void readUserListLocked() { 411 mGuestEnabled = false; 412 if (!mUserListFile.exists()) { 413 fallbackToSingleUserLocked(); 414 return; 415 } 416 FileInputStream fis = null; 417 AtomicFile userListFile = new AtomicFile(mUserListFile); 418 try { 419 fis = userListFile.openRead(); 420 XmlPullParser parser = Xml.newPullParser(); 421 parser.setInput(fis, null); 422 int type; 423 while ((type = parser.next()) != XmlPullParser.START_TAG 424 && type != XmlPullParser.END_DOCUMENT) { 425 ; 426 } 427 428 if (type != XmlPullParser.START_TAG) { 429 Slog.e(LOG_TAG, "Unable to read user list"); 430 fallbackToSingleUserLocked(); 431 return; 432 } 433 434 mNextSerialNumber = -1; 435 if (parser.getName().equals(TAG_USERS)) { 436 String lastSerialNumber = parser.getAttributeValue(null, ATTR_NEXT_SERIAL_NO); 437 if (lastSerialNumber != null) { 438 mNextSerialNumber = Integer.parseInt(lastSerialNumber); 439 } 440 String versionNumber = parser.getAttributeValue(null, ATTR_USER_VERSION); 441 if (versionNumber != null) { 442 mUserVersion = Integer.parseInt(versionNumber); 443 } 444 } 445 446 while ((type = parser.next()) != XmlPullParser.END_DOCUMENT) { 447 if (type == XmlPullParser.START_TAG && parser.getName().equals(TAG_USER)) { 448 String id = parser.getAttributeValue(null, ATTR_ID); 449 UserInfo user = readUser(Integer.parseInt(id)); 450 451 if (user != null) { 452 mUsers.put(user.id, user); 453 if (user.isGuest()) { 454 mGuestEnabled = true; 455 } 456 if (mNextSerialNumber < 0 || mNextSerialNumber <= user.id) { 457 mNextSerialNumber = user.id + 1; 458 } 459 } 460 } 461 } 462 updateUserIdsLocked(); 463 upgradeIfNecessary(); 464 } catch (IOException ioe) { 465 fallbackToSingleUserLocked(); 466 } catch (XmlPullParserException pe) { 467 fallbackToSingleUserLocked(); 468 } finally { 469 if (fis != null) { 470 try { 471 fis.close(); 472 } catch (IOException e) { 473 } 474 } 475 } 476 } 477 478 /** 479 * This fixes an incorrect initialization of user name for the owner. 480 * TODO: Remove in the next release. 481 */ 482 private void upgradeIfNecessary() { 483 int userVersion = mUserVersion; 484 if (userVersion < 1) { 485 // Assign a proper name for the owner, if not initialized correctly before 486 UserInfo user = mUsers.get(UserHandle.USER_OWNER); 487 if ("Primary".equals(user.name)) { 488 user.name = mContext.getResources().getString(com.android.internal.R.string.owner_name); 489 writeUserLocked(user); 490 } 491 userVersion = 1; 492 } 493 494 if (userVersion < USER_VERSION) { 495 Slog.w(LOG_TAG, "User version " + mUserVersion + " didn't upgrade as expected to " 496 + USER_VERSION); 497 } else { 498 mUserVersion = userVersion; 499 writeUserListLocked(); 500 } 501 } 502 503 private void fallbackToSingleUserLocked() { 504 // Create the primary user 505 UserInfo primary = new UserInfo(0, 506 mContext.getResources().getString(com.android.internal.R.string.owner_name), null, 507 UserInfo.FLAG_ADMIN | UserInfo.FLAG_PRIMARY | UserInfo.FLAG_INITIALIZED); 508 mUsers.put(0, primary); 509 mNextSerialNumber = MIN_USER_ID; 510 updateUserIdsLocked(); 511 512 writeUserListLocked(); 513 writeUserLocked(primary); 514 } 515 516 /* 517 * Writes the user file in this format: 518 * 519 * <user flags="20039023" id="0"> 520 * <name>Primary</name> 521 * </user> 522 */ 523 private void writeUserLocked(UserInfo userInfo) { 524 FileOutputStream fos = null; 525 AtomicFile userFile = new AtomicFile(new File(mUsersDir, userInfo.id + ".xml")); 526 try { 527 fos = userFile.startWrite(); 528 final BufferedOutputStream bos = new BufferedOutputStream(fos); 529 530 // XmlSerializer serializer = XmlUtils.serializerInstance(); 531 final XmlSerializer serializer = new FastXmlSerializer(); 532 serializer.setOutput(bos, "utf-8"); 533 serializer.startDocument(null, true); 534 serializer.setFeature("http://xmlpull.org/v1/doc/features.html#indent-output", true); 535 536 serializer.startTag(null, TAG_USER); 537 serializer.attribute(null, ATTR_ID, Integer.toString(userInfo.id)); 538 serializer.attribute(null, ATTR_SERIAL_NO, Integer.toString(userInfo.serialNumber)); 539 serializer.attribute(null, ATTR_FLAGS, Integer.toString(userInfo.flags)); 540 serializer.attribute(null, ATTR_CREATION_TIME, Long.toString(userInfo.creationTime)); 541 serializer.attribute(null, ATTR_LAST_LOGGED_IN_TIME, 542 Long.toString(userInfo.lastLoggedInTime)); 543 if (userInfo.iconPath != null) { 544 serializer.attribute(null, ATTR_ICON_PATH, userInfo.iconPath); 545 } 546 if (userInfo.partial) { 547 serializer.attribute(null, ATTR_PARTIAL, "true"); 548 } 549 550 serializer.startTag(null, TAG_NAME); 551 serializer.text(userInfo.name); 552 serializer.endTag(null, TAG_NAME); 553 554 serializer.endTag(null, TAG_USER); 555 556 serializer.endDocument(); 557 userFile.finishWrite(fos); 558 } catch (Exception ioe) { 559 Slog.e(LOG_TAG, "Error writing user info " + userInfo.id + "\n" + ioe); 560 userFile.failWrite(fos); 561 } 562 } 563 564 /* 565 * Writes the user list file in this format: 566 * 567 * <users nextSerialNumber="3"> 568 * <user id="0"></user> 569 * <user id="2"></user> 570 * </users> 571 */ 572 private void writeUserListLocked() { 573 FileOutputStream fos = null; 574 AtomicFile userListFile = new AtomicFile(mUserListFile); 575 try { 576 fos = userListFile.startWrite(); 577 final BufferedOutputStream bos = new BufferedOutputStream(fos); 578 579 // XmlSerializer serializer = XmlUtils.serializerInstance(); 580 final XmlSerializer serializer = new FastXmlSerializer(); 581 serializer.setOutput(bos, "utf-8"); 582 serializer.startDocument(null, true); 583 serializer.setFeature("http://xmlpull.org/v1/doc/features.html#indent-output", true); 584 585 serializer.startTag(null, TAG_USERS); 586 serializer.attribute(null, ATTR_NEXT_SERIAL_NO, Integer.toString(mNextSerialNumber)); 587 serializer.attribute(null, ATTR_USER_VERSION, Integer.toString(mUserVersion)); 588 589 for (int i = 0; i < mUsers.size(); i++) { 590 UserInfo user = mUsers.valueAt(i); 591 serializer.startTag(null, TAG_USER); 592 serializer.attribute(null, ATTR_ID, Integer.toString(user.id)); 593 serializer.endTag(null, TAG_USER); 594 } 595 596 serializer.endTag(null, TAG_USERS); 597 598 serializer.endDocument(); 599 userListFile.finishWrite(fos); 600 } catch (Exception e) { 601 userListFile.failWrite(fos); 602 Slog.e(LOG_TAG, "Error writing user list"); 603 } 604 } 605 606 private UserInfo readUser(int id) { 607 int flags = 0; 608 int serialNumber = id; 609 String name = null; 610 String iconPath = null; 611 long creationTime = 0L; 612 long lastLoggedInTime = 0L; 613 boolean partial = false; 614 615 FileInputStream fis = null; 616 try { 617 AtomicFile userFile = 618 new AtomicFile(new File(mUsersDir, Integer.toString(id) + ".xml")); 619 fis = userFile.openRead(); 620 XmlPullParser parser = Xml.newPullParser(); 621 parser.setInput(fis, null); 622 int type; 623 while ((type = parser.next()) != XmlPullParser.START_TAG 624 && type != XmlPullParser.END_DOCUMENT) { 625 ; 626 } 627 628 if (type != XmlPullParser.START_TAG) { 629 Slog.e(LOG_TAG, "Unable to read user " + id); 630 return null; 631 } 632 633 if (type == XmlPullParser.START_TAG && parser.getName().equals(TAG_USER)) { 634 int storedId = readIntAttribute(parser, ATTR_ID, -1); 635 if (storedId != id) { 636 Slog.e(LOG_TAG, "User id does not match the file name"); 637 return null; 638 } 639 serialNumber = readIntAttribute(parser, ATTR_SERIAL_NO, id); 640 flags = readIntAttribute(parser, ATTR_FLAGS, 0); 641 iconPath = parser.getAttributeValue(null, ATTR_ICON_PATH); 642 creationTime = readLongAttribute(parser, ATTR_CREATION_TIME, 0); 643 lastLoggedInTime = readLongAttribute(parser, ATTR_LAST_LOGGED_IN_TIME, 0); 644 String valueString = parser.getAttributeValue(null, ATTR_PARTIAL); 645 if ("true".equals(valueString)) { 646 partial = true; 647 } 648 649 while ((type = parser.next()) != XmlPullParser.START_TAG 650 && type != XmlPullParser.END_DOCUMENT) { 651 } 652 if (type == XmlPullParser.START_TAG && parser.getName().equals(TAG_NAME)) { 653 type = parser.next(); 654 if (type == XmlPullParser.TEXT) { 655 name = parser.getText(); 656 } 657 } 658 } 659 660 UserInfo userInfo = new UserInfo(id, name, iconPath, flags); 661 userInfo.serialNumber = serialNumber; 662 userInfo.creationTime = creationTime; 663 userInfo.lastLoggedInTime = lastLoggedInTime; 664 userInfo.partial = partial; 665 return userInfo; 666 667 } catch (IOException ioe) { 668 } catch (XmlPullParserException pe) { 669 } finally { 670 if (fis != null) { 671 try { 672 fis.close(); 673 } catch (IOException e) { 674 } 675 } 676 } 677 return null; 678 } 679 680 private int readIntAttribute(XmlPullParser parser, String attr, int defaultValue) { 681 String valueString = parser.getAttributeValue(null, attr); 682 if (valueString == null) return defaultValue; 683 try { 684 return Integer.parseInt(valueString); 685 } catch (NumberFormatException nfe) { 686 return defaultValue; 687 } 688 } 689 690 private long readLongAttribute(XmlPullParser parser, String attr, long defaultValue) { 691 String valueString = parser.getAttributeValue(null, attr); 692 if (valueString == null) return defaultValue; 693 try { 694 return Long.parseLong(valueString); 695 } catch (NumberFormatException nfe) { 696 return defaultValue; 697 } 698 } 699 700 @Override 701 public UserInfo createUser(String name, int flags) { 702 checkManageUsersPermission("Only the system can create users"); 703 704 final long ident = Binder.clearCallingIdentity(); 705 final UserInfo userInfo; 706 try { 707 synchronized (mInstallLock) { 708 synchronized (mPackagesLock) { 709 if (isUserLimitReachedLocked()) return null; 710 int userId = getNextAvailableIdLocked(); 711 userInfo = new UserInfo(userId, name, null, flags); 712 File userPath = new File(mBaseUserPath, Integer.toString(userId)); 713 userInfo.serialNumber = mNextSerialNumber++; 714 long now = System.currentTimeMillis(); 715 userInfo.creationTime = (now > EPOCH_PLUS_30_YEARS) ? now : 0; 716 userInfo.partial = true; 717 Environment.getUserSystemDirectory(userInfo.id).mkdirs(); 718 mUsers.put(userId, userInfo); 719 writeUserListLocked(); 720 writeUserLocked(userInfo); 721 mPm.createNewUserLILPw(userId, userPath); 722 userInfo.partial = false; 723 writeUserLocked(userInfo); 724 updateUserIdsLocked(); 725 } 726 } 727 if (userInfo != null) { 728 Intent addedIntent = new Intent(Intent.ACTION_USER_ADDED); 729 addedIntent.putExtra(Intent.EXTRA_USER_HANDLE, userInfo.id); 730 mContext.sendBroadcastAsUser(addedIntent, UserHandle.ALL, 731 android.Manifest.permission.MANAGE_USERS); 732 } 733 } finally { 734 Binder.restoreCallingIdentity(ident); 735 } 736 return userInfo; 737 } 738 739 /** 740 * Removes a user and all data directories created for that user. This method should be called 741 * after the user's processes have been terminated. 742 * @param id the user's id 743 */ 744 public boolean removeUser(int userHandle) { 745 checkManageUsersPermission("Only the system can remove users"); 746 final UserInfo user; 747 synchronized (mPackagesLock) { 748 user = mUsers.get(userHandle); 749 if (userHandle == 0 || user == null) { 750 return false; 751 } 752 mRemovingUserIds.add(userHandle); 753 // Set this to a partially created user, so that the user will be purged 754 // on next startup, in case the runtime stops now before stopping and 755 // removing the user completely. 756 user.partial = true; 757 writeUserLocked(user); 758 } 759 if (DBG) Slog.i(LOG_TAG, "Stopping user " + userHandle); 760 int res; 761 try { 762 res = ActivityManagerNative.getDefault().stopUser(userHandle, 763 new IStopUserCallback.Stub() { 764 @Override 765 public void userStopped(int userId) { 766 finishRemoveUser(userId); 767 } 768 @Override 769 public void userStopAborted(int userId) { 770 } 771 }); 772 } catch (RemoteException e) { 773 return false; 774 } 775 776 return res == ActivityManager.USER_OP_SUCCESS; 777 } 778 779 void finishRemoveUser(final int userHandle) { 780 if (DBG) Slog.i(LOG_TAG, "finishRemoveUser " + userHandle); 781 // Let other services shutdown any activity and clean up their state before completely 782 // wiping the user's system directory and removing from the user list 783 long ident = Binder.clearCallingIdentity(); 784 try { 785 Intent addedIntent = new Intent(Intent.ACTION_USER_REMOVED); 786 addedIntent.putExtra(Intent.EXTRA_USER_HANDLE, userHandle); 787 mContext.sendOrderedBroadcastAsUser(addedIntent, UserHandle.ALL, 788 android.Manifest.permission.MANAGE_USERS, 789 790 new BroadcastReceiver() { 791 @Override 792 public void onReceive(Context context, Intent intent) { 793 if (DBG) { 794 Slog.i(LOG_TAG, 795 "USER_REMOVED broadcast sent, cleaning up user data " 796 + userHandle); 797 } 798 new Thread() { 799 public void run() { 800 synchronized (mInstallLock) { 801 synchronized (mPackagesLock) { 802 removeUserStateLocked(userHandle); 803 } 804 } 805 } 806 }.start(); 807 } 808 }, 809 810 null, Activity.RESULT_OK, null, null); 811 } finally { 812 Binder.restoreCallingIdentity(ident); 813 } 814 } 815 816 private void removeUserStateLocked(int userHandle) { 817 // Cleanup package manager settings 818 mPm.cleanUpUserLILPw(userHandle); 819 820 // Remove this user from the list 821 mUsers.remove(userHandle); 822 mRemovingUserIds.remove(userHandle); 823 // Remove user file 824 AtomicFile userFile = new AtomicFile(new File(mUsersDir, userHandle + ".xml")); 825 userFile.delete(); 826 // Update the user list 827 writeUserListLocked(); 828 updateUserIdsLocked(); 829 removeDirectoryRecursive(Environment.getUserSystemDirectory(userHandle)); 830 } 831 832 private void removeDirectoryRecursive(File parent) { 833 if (parent.isDirectory()) { 834 String[] files = parent.list(); 835 for (String filename : files) { 836 File child = new File(parent, filename); 837 removeDirectoryRecursive(child); 838 } 839 } 840 parent.delete(); 841 } 842 843 @Override 844 public int getUserSerialNumber(int userHandle) { 845 synchronized (mPackagesLock) { 846 if (!exists(userHandle)) return -1; 847 return getUserInfoLocked(userHandle).serialNumber; 848 } 849 } 850 851 @Override 852 public int getUserHandle(int userSerialNumber) { 853 synchronized (mPackagesLock) { 854 for (int userId : mUserIds) { 855 if (getUserInfoLocked(userId).serialNumber == userSerialNumber) return userId; 856 } 857 // Not found 858 return -1; 859 } 860 } 861 862 /** 863 * Caches the list of user ids in an array, adjusting the array size when necessary. 864 */ 865 private void updateUserIdsLocked() { 866 int num = 0; 867 for (int i = 0; i < mUsers.size(); i++) { 868 if (!mUsers.valueAt(i).partial) { 869 num++; 870 } 871 } 872 final int[] newUsers = new int[num]; 873 int n = 0; 874 for (int i = 0; i < mUsers.size(); i++) { 875 if (!mUsers.valueAt(i).partial) { 876 newUsers[n++] = mUsers.keyAt(i); 877 } 878 } 879 mUserIds = newUsers; 880 } 881 882 /** 883 * Make a note of the last started time of a user. 884 * @param userId the user that was just foregrounded 885 */ 886 public void userForeground(int userId) { 887 synchronized (mPackagesLock) { 888 UserInfo user = mUsers.get(userId); 889 long now = System.currentTimeMillis(); 890 if (user == null || user.partial) { 891 Slog.w(LOG_TAG, "userForeground: unknown user #" + userId); 892 return; 893 } 894 if (now > EPOCH_PLUS_30_YEARS) { 895 user.lastLoggedInTime = now; 896 writeUserLocked(user); 897 } 898 } 899 } 900 901 /** 902 * Returns the next available user id, filling in any holes in the ids. 903 * TODO: May not be a good idea to recycle ids, in case it results in confusion 904 * for data and battery stats collection, or unexpected cross-talk. 905 * @return 906 */ 907 private int getNextAvailableIdLocked() { 908 synchronized (mPackagesLock) { 909 int i = mNextUserId; 910 while (i < Integer.MAX_VALUE) { 911 if (mUsers.indexOfKey(i) < 0 && !mRemovingUserIds.contains(i)) { 912 break; 913 } 914 i++; 915 } 916 mNextUserId = i + 1; 917 return i; 918 } 919 } 920 921 @Override 922 protected void dump(FileDescriptor fd, PrintWriter pw, String[] args) { 923 if (mContext.checkCallingOrSelfPermission(android.Manifest.permission.DUMP) 924 != PackageManager.PERMISSION_GRANTED) { 925 pw.println("Permission Denial: can't dump UserManager from from pid=" 926 + Binder.getCallingPid() 927 + ", uid=" + Binder.getCallingUid() 928 + " without permission " 929 + android.Manifest.permission.DUMP); 930 return; 931 } 932 933 long now = System.currentTimeMillis(); 934 StringBuilder sb = new StringBuilder(); 935 synchronized (mPackagesLock) { 936 pw.println("Users:"); 937 for (int i = 0; i < mUsers.size(); i++) { 938 UserInfo user = mUsers.valueAt(i); 939 if (user == null) continue; 940 pw.print(" "); pw.print(user); pw.print(" serialNo="); pw.print(user.serialNumber); 941 if (mRemovingUserIds.contains(mUsers.keyAt(i))) pw.print(" <removing> "); 942 if (user.partial) pw.print(" <partial>"); 943 pw.println(); 944 pw.print(" Created: "); 945 if (user.creationTime == 0) { 946 pw.println("<unknown>"); 947 } else { 948 sb.setLength(0); 949 TimeUtils.formatDuration(now - user.creationTime, sb); 950 sb.append(" ago"); 951 pw.println(sb); 952 } 953 pw.print(" Last logged in: "); 954 if (user.lastLoggedInTime == 0) { 955 pw.println("<unknown>"); 956 } else { 957 sb.setLength(0); 958 TimeUtils.formatDuration(now - user.lastLoggedInTime, sb); 959 sb.append(" ago"); 960 pw.println(sb); 961 } 962 } 963 } 964 } 965} 966