Gitiles
Code Review Sign In
gerrit-public.fairphone.software / platform / frameworks / base / 29e72ea036a4ec9b68d05296a95d84a4ab7ad935 / . / services / core / java / com / android / server / NetworkManagementService.java
blob: e64aa160b2e2514a7f2bb48b46cf7e647d0f1bc8 [file] [log] [blame]
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]1/*
2 * Copyright (C) 2007 The Android Open Source Project
3 *
4 * Licensed under the Apache License, Version 2.0 (the "License");
5 * you may not use this file except in compliance with the License.
6 * You may obtain a copy of the License at
7 *
8 * http://www.apache.org/licenses/LICENSE-2.0
9 *
10 * Unless required by applicable law or agreed to in writing, software
11 * distributed under the License is distributed on an "AS IS" BASIS,
12 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13 * See the License for the specific language governing permissions and
14 * limitations under the License.
15 */
16
17package com.android.server;
18
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]19import static android.Manifest.permission.CONNECTIVITY_INTERNAL;
Jeff Sharkey47eb1022011-08-25 17:48:52 -0700[diff] [blame]20import static android.Manifest.permission.DUMP;
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]21import static android.Manifest.permission.SHUTDOWN;
Xiaohui Chenb41c9f72015-06-17 15:55:37 -0700[diff] [blame]22import static android.net.NetworkPolicyManager.FIREWALL_CHAIN_DOZABLE;
23import static android.net.NetworkPolicyManager.FIREWALL_CHAIN_NAME_DOZABLE;
24import static android.net.NetworkPolicyManager.FIREWALL_CHAIN_NAME_NONE;
Felipe Leme011b98f2016-02-10 17:28:31 -0800[diff] [blame]25import static android.net.NetworkPolicyManager.FIREWALL_CHAIN_NAME_POWERSAVE;
Xiaohui Chenb41c9f72015-06-17 15:55:37 -0700[diff] [blame]26import static android.net.NetworkPolicyManager.FIREWALL_CHAIN_NAME_STANDBY;
27import static android.net.NetworkPolicyManager.FIREWALL_CHAIN_NONE;
Felipe Leme011b98f2016-02-10 17:28:31 -0800[diff] [blame]28import static android.net.NetworkPolicyManager.FIREWALL_CHAIN_POWERSAVE;
Xiaohui Chenb41c9f72015-06-17 15:55:37 -0700[diff] [blame]29import static android.net.NetworkPolicyManager.FIREWALL_CHAIN_STANDBY;
30import static android.net.NetworkPolicyManager.FIREWALL_RULE_DEFAULT;
31import static android.net.NetworkPolicyManager.FIREWALL_TYPE_BLACKLIST;
32import static android.net.NetworkPolicyManager.FIREWALL_TYPE_WHITELIST;
Jeff Sharkeyb5d55e32011-08-10 17:53:27 -0700[diff] [blame]33import static android.net.NetworkStats.SET_DEFAULT;
Dianne Hackbornd0c5b9a2014-02-21 16:19:05 -0800[diff] [blame]34import static android.net.NetworkStats.TAG_ALL;
Jeff Sharkey1b5a2a92011-06-18 18:34:16 -0700[diff] [blame]35import static android.net.NetworkStats.TAG_NONE;
36import static android.net.NetworkStats.UID_ALL;
Jeff Sharkeyae2c1812011-10-04 13:11:40 -0700[diff] [blame]37import static android.net.TrafficStats.UID_TETHERING;
Lorenzo Colitti79751842013-02-28 16:16:03 +0900[diff] [blame]38import static com.android.server.NetworkManagementService.NetdResponseCode.ClatdStatusResult;
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]39import static com.android.server.NetworkManagementService.NetdResponseCode.InterfaceGetCfgResult;
40import static com.android.server.NetworkManagementService.NetdResponseCode.InterfaceListResult;
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]41import static com.android.server.NetworkManagementService.NetdResponseCode.IpFwdStatusResult;
42import static com.android.server.NetworkManagementService.NetdResponseCode.TetherDnsFwdTgtListResult;
43import static com.android.server.NetworkManagementService.NetdResponseCode.TetherInterfaceListResult;
44import static com.android.server.NetworkManagementService.NetdResponseCode.TetherStatusResult;
Jeff Sharkeye4984be2013-09-10 21:03:27 -0700[diff] [blame]45import static com.android.server.NetworkManagementService.NetdResponseCode.TetheringStatsListResult;
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]46import static com.android.server.NetworkManagementService.NetdResponseCode.TtyListResult;
Jeff Sharkeya63ba592011-07-19 23:47:12 -0700[diff] [blame]47import static com.android.server.NetworkManagementSocketTagger.PROP_QTAGUID_ENABLED;
Xiaohui Chenb41c9f72015-06-17 15:55:37 -0700[diff] [blame]48import android.annotation.NonNull;
Jeff Sharkey605eb792014-11-04 13:34:06 -0800[diff] [blame]49import android.app.ActivityManagerNative;
Pierre Imai8e48e672016-04-21 13:30:43 +0900[diff] [blame]50import android.content.ContentResolver;
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]51import android.content.Context;
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]52import android.net.ConnectivityManager;
Lorenzo Colitti58967ba2016-02-02 17:21:21 +0900[diff] [blame]53import android.net.INetd;
San Mehat4d02d002010-01-22 16:07:46 -0800[diff] [blame]54import android.net.INetworkManagementEventObserver;
Jeff Sharkeyeedcb952011-05-17 14:55:15 -0700[diff] [blame]55import android.net.InterfaceConfiguration;
Lorenzo Colittic18cbfd2014-06-13 21:21:03 +0900[diff] [blame]56import android.net.IpPrefix;
Robert Greenwalted126402011-01-28 15:34:55 -0800[diff] [blame]57import android.net.LinkAddress;
Lorenzo Colittib57edc52014-08-22 17:10:50 -0700[diff] [blame]58import android.net.Network;
Amith Yamasani15e472352015-04-24 19:06:07 -0700[diff] [blame]59import android.net.NetworkPolicyManager;
Jeff Sharkeyeedcb952011-05-17 14:55:15 -0700[diff] [blame]60import android.net.NetworkStats;
Robert Greenwalted126402011-01-28 15:34:55 -0800[diff] [blame]61import android.net.NetworkUtils;
Robert Greenwalt59b1a4e2011-05-10 15:05:02 -0700[diff] [blame]62import android.net.RouteInfo;
Paul Jensen6bc2c2c2014-05-07 15:27:40 -0400[diff] [blame]63import android.net.UidRange;
Irfan Sheriff9ab518ad2010-03-12 15:48:17 -0800[diff] [blame]64import android.net.wifi.WifiConfiguration;
65import android.net.wifi.WifiConfiguration.KeyMgmt;
Dianne Hackborn91268cf2013-06-13 19:06:50 -0700[diff] [blame]66import android.os.BatteryStats;
Jeff Sharkeyf56e2432012-09-06 17:54:29 -0700[diff] [blame]67import android.os.Binder;
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]68import android.os.Handler;
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]69import android.os.INetworkActivityListener;
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]70import android.os.INetworkManagementService;
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]71import android.os.PowerManager;
Jeff Sharkeyf56e2432012-09-06 17:54:29 -0700[diff] [blame]72import android.os.Process;
Jeff Sharkey3df273e2011-12-15 15:47:12 -0800[diff] [blame]73import android.os.RemoteCallbackList;
74import android.os.RemoteException;
Jeff Sharkey7a1c3fc2013-06-04 12:29:00 -0700[diff] [blame]75import android.os.ServiceManager;
Lorenzo Colitti4cb42402016-04-24 12:52:00 +0900[diff] [blame]76import android.os.ServiceSpecificException;
Jeff Sharkey605eb792014-11-04 13:34:06 -0800[diff] [blame]77import android.os.StrictMode;
Jeff Sharkey9a13f362011-04-26 16:25:36 -0700[diff] [blame]78import android.os.SystemClock;
Marco Nelissen62dbb222010-02-18 10:56:30 -0800[diff] [blame]79import android.os.SystemProperties;
Felipe Leme29e72ea2016-09-08 13:26:55 -0700[diff] [blame^]80import android.os.Trace;
Pierre Imai8e48e672016-04-21 13:30:43 +0900[diff] [blame]81import android.provider.Settings;
Dianne Hackborn2ffa11e2014-04-21 15:56:18 -0700[diff] [blame]82import android.telephony.DataConnectionRealTimeInfo;
83import android.telephony.PhoneStateListener;
Wink Savillefb40dd42014-06-12 17:02:31 -0700[diff] [blame]84import android.telephony.SubscriptionManager;
Wink Saville67e07892014-06-18 16:43:14 -0700[diff] [blame]85import android.telephony.TelephonyManager;
Irfan Sheriff9ab518ad2010-03-12 15:48:17 -0800[diff] [blame]86import android.util.Log;
Joe Onorato8a9b2202010-02-26 18:56:32 -0800[diff] [blame]87import android.util.Slog;
Jeff Sharkeyb3f19ca2011-06-29 23:54:13 -0700[diff] [blame]88import android.util.SparseBooleanArray;
Jeff Sharkey605eb792014-11-04 13:34:06 -0800[diff] [blame]89import android.util.SparseIntArray;
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]90
Jeff Sharkey605eb792014-11-04 13:34:06 -0800[diff] [blame]91import com.android.internal.annotations.GuardedBy;
Jeff Sharkey7a1c3fc2013-06-04 12:29:00 -0700[diff] [blame]92import com.android.internal.app.IBatteryStats;
Jeff Sharkey1059c3c2011-10-04 16:54:49 -0700[diff] [blame]93import com.android.internal.net.NetworkStatsFactory;
Jeff Sharkey605eb792014-11-04 13:34:06 -0800[diff] [blame]94import com.android.internal.util.HexDump;
Jeff Sharkeyc268f0b2012-08-24 10:25:31 -0700[diff] [blame]95import com.android.internal.util.Preconditions;
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]96import com.android.server.NativeDaemonConnector.Command;
Jeff Sharkey56cd6462013-06-07 15:09:15 -0700[diff] [blame]97import com.android.server.NativeDaemonConnector.SensitiveArg;
Jeff Sharkey69ddab42012-08-25 00:05:46 -0700[diff] [blame]98import com.android.server.net.LockdownVpnTracker;
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]99import com.google.android.collect.Maps;
Jeff Sharkey4414cea2011-06-24 17:05:24 -0700[diff] [blame]100
Robert Greenwalt59b1a4e2011-05-10 15:05:02 -0700[diff] [blame]101import java.io.BufferedReader;
102import java.io.DataInputStream;
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]103import java.io.File;
Jeff Sharkey47eb1022011-08-25 17:48:52 -0700[diff] [blame]104import java.io.FileDescriptor;
Jeff Sharkey9a13f362011-04-26 16:25:36 -0700[diff] [blame]105import java.io.FileInputStream;
Jeff Sharkey9a13f362011-04-26 16:25:36 -0700[diff] [blame]106import java.io.IOException;
Jeff Sharkey9a13f362011-04-26 16:25:36 -0700[diff] [blame]107import java.io.InputStreamReader;
Jeff Sharkey47eb1022011-08-25 17:48:52 -0700[diff] [blame]108import java.io.PrintWriter;
Jeff Sharkeyeedcb952011-05-17 14:55:15 -0700[diff] [blame]109import java.net.InetAddress;
Robert Greenwalt3b28e9a2011-11-02 14:37:19 -0700[diff] [blame]110import java.net.InterfaceAddress;
111import java.net.NetworkInterface;
112import java.net.SocketException;
Jeff Sharkeyeedcb952011-05-17 14:55:15 -0700[diff] [blame]113import java.util.ArrayList;
Paul Jensen6bc2c2c2014-05-07 15:27:40 -0400[diff] [blame]114import java.util.Arrays;
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]115import java.util.HashMap;
jiaguo1da35f72014-01-09 16:39:59 +0800[diff] [blame]116import java.util.List;
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]117import java.util.Map;
Jeff Sharkeyeedcb952011-05-17 14:55:15 -0700[diff] [blame]118import java.util.NoSuchElementException;
119import java.util.StringTokenizer;
Robert Greenwalte5c3afb2010-09-22 14:32:35 -0700[diff] [blame]120import java.util.concurrent.CountDownLatch;
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]121
122/**
123 * @hide
124 */
Jeff Sharkey8e9992a2011-08-23 18:37:23 -0700[diff] [blame]125public class NetworkManagementService extends INetworkManagementService.Stub
126 implements Watchdog.Monitor {
Amith Yamasani15e472352015-04-24 19:06:07 -0700[diff] [blame]127 private static final String TAG = "NetworkManagement";
128 private static final boolean DBG = Log.isLoggable(TAG, Log.DEBUG);
Kenny Root305bcbf2010-09-03 07:56:38 -0700[diff] [blame]129 private static final String NETD_TAG = "NetdConnector";
Lorenzo Colitti58967ba2016-02-02 17:21:21 +0900[diff] [blame]130 private static final String NETD_SERVICE_NAME = "netd";
Kenny Root305bcbf2010-09-03 07:56:38 -0700[diff] [blame]131
Paul Jensen6bc2c2c2014-05-07 15:27:40 -0400[diff] [blame]132 private static final int MAX_UID_RANGES_PER_COMMAND = 10;
133
Jeff Sharkey8e9992a2011-08-23 18:37:23 -0700[diff] [blame]134 /**
135 * Name representing {@link #setGlobalAlert(long)} limit when delivered to
136 * {@link INetworkManagementEventObserver#limitReached(String, String)}.
137 */
138 public static final String LIMIT_GLOBAL_ALERT = "globalAlert";
139
Paul Jensen487ffe72015-07-24 15:57:11 -0400[diff] [blame]140 /**
141 * String to pass to netd to indicate that a network is only accessible
142 * to apps that have the CHANGE_NETWORK_STATE permission.
143 */
144 public static final String PERMISSION_NETWORK = "NETWORK";
145
146 /**
147 * String to pass to netd to indicate that a network is only
148 * accessible to system apps and those with the CONNECTIVITY_INTERNAL
149 * permission.
150 */
151 public static final String PERMISSION_SYSTEM = "SYSTEM";
152
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]153 class NetdResponseCode {
Sreeram Ramachandran03666c72014-07-19 23:21:46 -0700[diff] [blame]154 /* Keep in sync with system/netd/server/ResponseCode.h */
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]155 public static final int InterfaceListResult = 110;
156 public static final int TetherInterfaceListResult = 111;
157 public static final int TetherDnsFwdTgtListResult = 112;
San Mehat72759df2010-01-19 13:50:37 -0800[diff] [blame]158 public static final int TtyListResult = 113;
Jeff Sharkeye4984be2013-09-10 21:03:27 -0700[diff] [blame]159 public static final int TetheringStatsListResult = 114;
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]160
161 public static final int TetherStatusResult = 210;
162 public static final int IpFwdStatusResult = 211;
San Mehated4fc8a2010-01-22 12:28:36 -0800[diff] [blame]163 public static final int InterfaceGetCfgResult = 213;
Robert Greenwalte3253922010-02-18 09:23:25 -0800[diff] [blame]164 public static final int SoftapStatusResult = 214;
San Mehat91cac642010-03-31 14:31:36 -0700[diff] [blame]165 public static final int InterfaceRxCounterResult = 216;
166 public static final int InterfaceTxCounterResult = 217;
Jeff Sharkeycdd02c5d2011-09-16 01:52:49 -0700[diff] [blame]167 public static final int QuotaCounterResult = 220;
168 public static final int TetheringStatsResult = 221;
Selim Gurun84c00c62012-02-27 15:42:38 -0800[diff] [blame]169 public static final int DnsProxyQueryResult = 222;
Lorenzo Colitti79751842013-02-28 16:16:03 +0900[diff] [blame]170 public static final int ClatdStatusResult = 223;
Robert Greenwalte3253922010-02-18 09:23:25 -0800[diff] [blame]171
172 public static final int InterfaceChange = 600;
JP Abgrall12b933d2011-07-14 18:09:22 -0700[diff] [blame]173 public static final int BandwidthControl = 601;
Haoyu Bai6b7358d2012-07-17 16:36:50 -0700[diff] [blame]174 public static final int InterfaceClassActivity = 613;
Lorenzo Colitti5c7daac2013-08-05 10:39:37 +0900[diff] [blame]175 public static final int InterfaceAddressChange = 614;
Lorenzo Colitti5ae4a532013-10-31 11:59:46 +0900[diff] [blame]176 public static final int InterfaceDnsServerInfo = 615;
Lorenzo Colittic18cbfd2014-06-13 21:21:03 +0900[diff] [blame]177 public static final int RouteChange = 616;
Jeff Sharkey605eb792014-11-04 13:34:06 -0800[diff] [blame]178 public static final int StrictCleartext = 617;
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]179 }
180
Pierre Imai8e48e672016-04-21 13:30:43 +0900[diff] [blame]181 /* Defaults for resolver parameters. */
182 public static final int DNS_RESOLVER_DEFAULT_SAMPLE_VALIDITY_SECONDS = 1800;
183 public static final int DNS_RESOLVER_DEFAULT_SUCCESS_THRESHOLD_PERCENT = 25;
184 public static final int DNS_RESOLVER_DEFAULT_MIN_SAMPLES = 8;
185 public static final int DNS_RESOLVER_DEFAULT_MAX_SAMPLES = 64;
186
Rebecca Silbersteine2ec94f2016-03-24 13:29:00 -0700[diff] [blame]187 /**
188 * String indicating a softap command.
189 */
190 static final String SOFT_AP_COMMAND = "softap";
191
192 /**
193 * String passed back to netd connector indicating softap command success.
194 */
195 static final String SOFT_AP_COMMAND_SUCCESS = "Ok";
196
Dianne Hackborn2ffa11e2014-04-21 15:56:18 -0700[diff] [blame]197 static final int DAEMON_MSG_MOBILE_CONN_REAL_TIME_INFO = 1;
198
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]199 /**
200 * Binder context for this service
201 */
Dianne Hackborn2ffa11e2014-04-21 15:56:18 -0700[diff] [blame]202 private final Context mContext;
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]203
204 /**
205 * connector object for communicating with netd
206 */
Dianne Hackborn2ffa11e2014-04-21 15:56:18 -0700[diff] [blame]207 private final NativeDaemonConnector mConnector;
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]208
Robert Greenwalt2c9f5472014-04-21 14:50:28 -0700[diff] [blame]209 private final Handler mFgHandler;
Dianne Hackborn2ffa11e2014-04-21 15:56:18 -0700[diff] [blame]210 private final Handler mDaemonHandler;
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]211
Lorenzo Colitti58967ba2016-02-02 17:21:21 +0900[diff] [blame]212 private INetd mNetdService;
213
Dianne Hackborne13c4c02014-02-11 17:18:35 -0800[diff] [blame]214 private IBatteryStats mBatteryStats;
215
Dianne Hackborn2ffa11e2014-04-21 15:56:18 -0700[diff] [blame]216 private final Thread mThread;
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]217 private CountDownLatch mConnectedSignal = new CountDownLatch(1);
Robert Greenwalte5c3afb2010-09-22 14:32:35 -0700[diff] [blame]218
Jeff Sharkey3df273e2011-12-15 15:47:12 -0800[diff] [blame]219 private final RemoteCallbackList<INetworkManagementEventObserver> mObservers =
Christopher Wiley212b95f2016-08-02 11:38:57 -0700[diff] [blame]220 new RemoteCallbackList<>();
San Mehat4d02d002010-01-22 16:07:46 -0800[diff] [blame]221
Jeff Sharkey1059c3c2011-10-04 16:54:49 -0700[diff] [blame]222 private final NetworkStatsFactory mStatsFactory = new NetworkStatsFactory();
223
Jeff Sharkey41ff7ec2011-07-25 15:21:22 -0700[diff] [blame]224 private Object mQuotaLock = new Object();
Jeff Sharkey605eb792014-11-04 13:34:06 -0800[diff] [blame]225
Jeff Sharkeyb3f19ca2011-06-29 23:54:13 -0700[diff] [blame]226 /** Set of interfaces with active quotas. */
Jeff Sharkey605eb792014-11-04 13:34:06 -0800[diff] [blame]227 @GuardedBy("mQuotaLock")
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]228 private HashMap<String, Long> mActiveQuotas = Maps.newHashMap();
Jeff Sharkey41ff7ec2011-07-25 15:21:22 -0700[diff] [blame]229 /** Set of interfaces with active alerts. */
Jeff Sharkey605eb792014-11-04 13:34:06 -0800[diff] [blame]230 @GuardedBy("mQuotaLock")
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]231 private HashMap<String, Long> mActiveAlerts = Maps.newHashMap();
Felipe Leme65be3022016-03-22 14:53:13 -0700[diff] [blame]232 /** Set of UIDs blacklisted on metered networks. */
Jeff Sharkey605eb792014-11-04 13:34:06 -0800[diff] [blame]233 @GuardedBy("mQuotaLock")
Felipe Leme65be3022016-03-22 14:53:13 -0700[diff] [blame]234 private SparseBooleanArray mUidRejectOnMetered = new SparseBooleanArray();
235 /** Set of UIDs whitelisted on metered networks. */
236 @GuardedBy("mQuotaLock")
237 private SparseBooleanArray mUidAllowOnMetered = new SparseBooleanArray();
Jeff Sharkey605eb792014-11-04 13:34:06 -0800[diff] [blame]238 /** Set of UIDs with cleartext penalties. */
239 @GuardedBy("mQuotaLock")
240 private SparseIntArray mUidCleartextPolicy = new SparseIntArray();
Amith Yamasani15e472352015-04-24 19:06:07 -0700[diff] [blame]241 /** Set of UIDs that are to be blocked/allowed by firewall controller. */
242 @GuardedBy("mQuotaLock")
243 private SparseIntArray mUidFirewallRules = new SparseIntArray();
Xiaohui Chenb41c9f72015-06-17 15:55:37 -0700[diff] [blame]244 /**
245 * Set of UIDs that are to be blocked/allowed by firewall controller. This set of Ids matches
246 * to application idles.
247 */
248 @GuardedBy("mQuotaLock")
249 private SparseIntArray mUidFirewallStandbyRules = new SparseIntArray();
250 /**
251 * Set of UIDs that are to be blocked/allowed by firewall controller. This set of Ids matches
252 * to device idles.
253 */
254 @GuardedBy("mQuotaLock")
255 private SparseIntArray mUidFirewallDozableRules = new SparseIntArray();
Felipe Leme011b98f2016-02-10 17:28:31 -0800[diff] [blame]256 /**
257 * Set of UIDs that are to be blocked/allowed by firewall controller. This set of Ids matches
258 * to device on power-save mode.
259 */
260 @GuardedBy("mQuotaLock")
261 private SparseIntArray mUidFirewallPowerSaveRules = new SparseIntArray();
Xiaohui Chen8dca36d2015-06-19 12:44:59 -0700[diff] [blame]262 /** Set of states for the child firewall chains. True if the chain is active. */
263 @GuardedBy("mQuotaLock")
264 final SparseBooleanArray mFirewallChainStates = new SparseBooleanArray();
Jeff Sharkeyb3f19ca2011-06-29 23:54:13 -0700[diff] [blame]265
Felipe Leme65be3022016-03-22 14:53:13 -0700[diff] [blame]266 @GuardedBy("mQuotaLock")
267 private boolean mDataSaverMode;
268
Haoyu Bai04124232012-06-28 15:26:19 -0700[diff] [blame]269 private Object mIdleTimerLock = new Object();
270 /** Set of interfaces with active idle timers. */
271 private static class IdleTimerParams {
272 public final int timeout;
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]273 public final int type;
Haoyu Bai04124232012-06-28 15:26:19 -0700[diff] [blame]274 public int networkCount;
275
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]276 IdleTimerParams(int timeout, int type) {
Haoyu Bai04124232012-06-28 15:26:19 -0700[diff] [blame]277 this.timeout = timeout;
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]278 this.type = type;
Haoyu Bai04124232012-06-28 15:26:19 -0700[diff] [blame]279 this.networkCount = 1;
280 }
281 }
282 private HashMap<String, IdleTimerParams> mActiveIdleTimers = Maps.newHashMap();
283
Jeff Sharkeyfa23c5a2011-08-09 21:44:24 -0700[diff] [blame]284 private volatile boolean mBandwidthControlEnabled;
Jeff Sharkeyc268f0b2012-08-24 10:25:31 -0700[diff] [blame]285 private volatile boolean mFirewallEnabled;
Jeff Sharkey605eb792014-11-04 13:34:06 -0800[diff] [blame]286 private volatile boolean mStrictEnabled;
Jeff Sharkey350083e2011-06-29 10:45:16 -0700[diff] [blame]287
Dianne Hackborn2ffa11e2014-04-21 15:56:18 -0700[diff] [blame]288 private boolean mMobileActivityFromRadio = false;
289 private int mLastPowerStateFromRadio = DataConnectionRealTimeInfo.DC_POWER_STATE_LOW;
Adam Lesinskie08af192015-03-25 16:42:59 -0700[diff] [blame]290 private int mLastPowerStateFromWifi = DataConnectionRealTimeInfo.DC_POWER_STATE_LOW;
Dianne Hackborn2ffa11e2014-04-21 15:56:18 -0700[diff] [blame]291
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]292 private final RemoteCallbackList<INetworkActivityListener> mNetworkActivityListeners =
Christopher Wiley212b95f2016-08-02 11:38:57 -0700[diff] [blame]293 new RemoteCallbackList<>();
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]294 private boolean mNetworkActive;
295
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]296 /**
297 * Constructs a new NetworkManagementService instance
298 *
299 * @param context Binder context for this service
300 */
Lorenzo Colitti7421a012013-08-20 22:51:24 +0900[diff] [blame]301 private NetworkManagementService(Context context, String socket) {
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]302 mContext = context;
San Mehat4d02d002010-01-22 16:07:46 -0800[diff] [blame]303
Robert Greenwalt2c9f5472014-04-21 14:50:28 -0700[diff] [blame]304 // make sure this is on the same looper as our NativeDaemonConnector for sync purposes
305 mFgHandler = new Handler(FgThread.get().getLooper());
306
Dianne Hackborn4590e522014-03-24 13:36:46 -0700[diff] [blame]307 // Don't need this wake lock, since we now have a time stamp for when
308 // the network actually went inactive. (It might be nice to still do this,
309 // but I don't want to do it through the power manager because that pollutes the
310 // battery stats history with pointless noise.)
Dianne Hackborn2ffa11e2014-04-21 15:56:18 -0700[diff] [blame]311 //PowerManager pm = (PowerManager)context.getSystemService(Context.POWER_SERVICE);
Dianne Hackborn4590e522014-03-24 13:36:46 -0700[diff] [blame]312 PowerManager.WakeLock wl = null; //pm.newWakeLock(PowerManager.PARTIAL_WAKE_LOCK, NETD_TAG);
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]313
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]314 mConnector = new NativeDaemonConnector(
Dianne Hackborn2ffa11e2014-04-21 15:56:18 -0700[diff] [blame]315 new NetdCallbackReceiver(), socket, 10, NETD_TAG, 160, wl,
316 FgThread.get().getLooper());
Robert Greenwalte5c3afb2010-09-22 14:32:35 -0700[diff] [blame]317 mThread = new Thread(mConnector, NETD_TAG);
Jeff Sharkeyfa23c5a2011-08-09 21:44:24 -0700[diff] [blame]318
Dianne Hackborn2ffa11e2014-04-21 15:56:18 -0700[diff] [blame]319 mDaemonHandler = new Handler(FgThread.get().getLooper());
Wink Saville67e07892014-06-18 16:43:14 -0700[diff] [blame]320
Jeff Sharkeyfa23c5a2011-08-09 21:44:24 -0700[diff] [blame]321 // Add ourself to the Watchdog monitors.
322 Watchdog.getInstance().addMonitor(this);
Robert Greenwalte5c3afb2010-09-22 14:32:35 -0700[diff] [blame]323 }
324
Felipe Leme03e689d2016-03-02 16:17:38 -0800[diff] [blame]325 static NetworkManagementService create(Context context, String socket)
326 throws InterruptedException {
Lorenzo Colitti7421a012013-08-20 22:51:24 +0900[diff] [blame]327 final NetworkManagementService service = new NetworkManagementService(context, socket);
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]328 final CountDownLatch connectedSignal = service.mConnectedSignal;
Robert Greenwalte5c3afb2010-09-22 14:32:35 -0700[diff] [blame]329 if (DBG) Slog.d(TAG, "Creating NetworkManagementService");
330 service.mThread.start();
331 if (DBG) Slog.d(TAG, "Awaiting socket connection");
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]332 connectedSignal.await();
Robert Greenwalte5c3afb2010-09-22 14:32:35 -0700[diff] [blame]333 if (DBG) Slog.d(TAG, "Connected");
bohu07cc3bb2016-05-03 15:58:01 -0700[diff] [blame]334 service.connectNativeNetdService();
Robert Greenwalte5c3afb2010-09-22 14:32:35 -0700[diff] [blame]335 return service;
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]336 }
337
Lorenzo Colitti7421a012013-08-20 22:51:24 +0900[diff] [blame]338 public static NetworkManagementService create(Context context) throws InterruptedException {
Lorenzo Colitti58967ba2016-02-02 17:21:21 +0900[diff] [blame]339 return create(context, NETD_SERVICE_NAME);
Lorenzo Colitti7421a012013-08-20 22:51:24 +0900[diff] [blame]340 }
341
Jeff Sharkey350083e2011-06-29 10:45:16 -0700[diff] [blame]342 public void systemReady() {
Felipe Leme03e689d2016-03-02 16:17:38 -0800[diff] [blame]343 if (DBG) {
344 final long start = System.currentTimeMillis();
345 prepareNativeDaemon();
346 final long delta = System.currentTimeMillis() - start;
347 Slog.d(TAG, "Prepared in " + delta + "ms");
348 return;
349 } else {
350 prepareNativeDaemon();
351 }
Jeff Sharkey350083e2011-06-29 10:45:16 -0700[diff] [blame]352 }
353
Dianne Hackborne13c4c02014-02-11 17:18:35 -0800[diff] [blame]354 private IBatteryStats getBatteryStats() {
355 synchronized (this) {
356 if (mBatteryStats != null) {
357 return mBatteryStats;
358 }
359 mBatteryStats = IBatteryStats.Stub.asInterface(ServiceManager.getService(
360 BatteryStats.SERVICE_NAME));
361 return mBatteryStats;
362 }
363 }
364
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]365 @Override
Jeff Sharkey3df273e2011-12-15 15:47:12 -0800[diff] [blame]366 public void registerObserver(INetworkManagementEventObserver observer) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]367 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Jeff Sharkey3df273e2011-12-15 15:47:12 -0800[diff] [blame]368 mObservers.register(observer);
San Mehat4d02d002010-01-22 16:07:46 -0800[diff] [blame]369 }
370
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]371 @Override
Jeff Sharkey3df273e2011-12-15 15:47:12 -0800[diff] [blame]372 public void unregisterObserver(INetworkManagementEventObserver observer) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]373 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Jeff Sharkey3df273e2011-12-15 15:47:12 -0800[diff] [blame]374 mObservers.unregister(observer);
San Mehat4d02d002010-01-22 16:07:46 -0800[diff] [blame]375 }
376
377 /**
Mike J. Chen6143f5f2011-06-23 15:17:51 -0700[diff] [blame]378 * Notify our observers of an interface status change
San Mehat4d02d002010-01-22 16:07:46 -0800[diff] [blame]379 */
Mike J. Chen6143f5f2011-06-23 15:17:51 -0700[diff] [blame]380 private void notifyInterfaceStatusChanged(String iface, boolean up) {
Jeff Sharkey3df273e2011-12-15 15:47:12 -0800[diff] [blame]381 final int length = mObservers.beginBroadcast();
Robert Greenwalt2c9f5472014-04-21 14:50:28 -0700[diff] [blame]382 try {
383 for (int i = 0; i < length; i++) {
384 try {
385 mObservers.getBroadcastItem(i).interfaceStatusChanged(iface, up);
Felipe Leme03e689d2016-03-02 16:17:38 -0800[diff] [blame]386 } catch (RemoteException | RuntimeException e) {
Robert Greenwalt2c9f5472014-04-21 14:50:28 -0700[diff] [blame]387 }
Mike J. Chen6143f5f2011-06-23 15:17:51 -0700[diff] [blame]388 }
Robert Greenwalt2c9f5472014-04-21 14:50:28 -0700[diff] [blame]389 } finally {
390 mObservers.finishBroadcast();
Mike J. Chen6143f5f2011-06-23 15:17:51 -0700[diff] [blame]391 }
392 }
393
394 /**
Mike J. Chenf59c7d02011-06-23 15:33:15 -0700[diff] [blame]395 * Notify our observers of an interface link state change
Mike J. Chen6143f5f2011-06-23 15:17:51 -0700[diff] [blame]396 * (typically, an Ethernet cable has been plugged-in or unplugged).
397 */
398 private void notifyInterfaceLinkStateChanged(String iface, boolean up) {
Jeff Sharkey3df273e2011-12-15 15:47:12 -0800[diff] [blame]399 final int length = mObservers.beginBroadcast();
Robert Greenwalt2c9f5472014-04-21 14:50:28 -0700[diff] [blame]400 try {
401 for (int i = 0; i < length; i++) {
402 try {
403 mObservers.getBroadcastItem(i).interfaceLinkStateChanged(iface, up);
Felipe Leme03e689d2016-03-02 16:17:38 -0800[diff] [blame]404 } catch (RemoteException | RuntimeException e) {
Robert Greenwalt2c9f5472014-04-21 14:50:28 -0700[diff] [blame]405 }
San Mehat4d02d002010-01-22 16:07:46 -0800[diff] [blame]406 }
Robert Greenwalt2c9f5472014-04-21 14:50:28 -0700[diff] [blame]407 } finally {
408 mObservers.finishBroadcast();
San Mehat4d02d002010-01-22 16:07:46 -0800[diff] [blame]409 }
410 }
411
412 /**
413 * Notify our observers of an interface addition.
414 */
415 private void notifyInterfaceAdded(String iface) {
Jeff Sharkey3df273e2011-12-15 15:47:12 -0800[diff] [blame]416 final int length = mObservers.beginBroadcast();
Robert Greenwalt2c9f5472014-04-21 14:50:28 -0700[diff] [blame]417 try {
418 for (int i = 0; i < length; i++) {
419 try {
420 mObservers.getBroadcastItem(i).interfaceAdded(iface);
Felipe Leme03e689d2016-03-02 16:17:38 -0800[diff] [blame]421 } catch (RemoteException | RuntimeException e) {
Robert Greenwalt2c9f5472014-04-21 14:50:28 -0700[diff] [blame]422 }
San Mehat4d02d002010-01-22 16:07:46 -0800[diff] [blame]423 }
Robert Greenwalt2c9f5472014-04-21 14:50:28 -0700[diff] [blame]424 } finally {
425 mObservers.finishBroadcast();
San Mehat4d02d002010-01-22 16:07:46 -0800[diff] [blame]426 }
427 }
428
429 /**
430 * Notify our observers of an interface removal.
431 */
432 private void notifyInterfaceRemoved(String iface) {
Jeff Sharkey89b8a212011-10-11 11:58:11 -0700[diff] [blame]433 // netd already clears out quota and alerts for removed ifaces; update
434 // our sanity-checking state.
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]435 mActiveAlerts.remove(iface);
436 mActiveQuotas.remove(iface);
Jeff Sharkey89b8a212011-10-11 11:58:11 -0700[diff] [blame]437
Jeff Sharkey3df273e2011-12-15 15:47:12 -0800[diff] [blame]438 final int length = mObservers.beginBroadcast();
Robert Greenwalt2c9f5472014-04-21 14:50:28 -0700[diff] [blame]439 try {
440 for (int i = 0; i < length; i++) {
441 try {
442 mObservers.getBroadcastItem(i).interfaceRemoved(iface);
Felipe Leme03e689d2016-03-02 16:17:38 -0800[diff] [blame]443 } catch (RemoteException | RuntimeException e) {
Robert Greenwalt2c9f5472014-04-21 14:50:28 -0700[diff] [blame]444 }
San Mehat4d02d002010-01-22 16:07:46 -0800[diff] [blame]445 }
Robert Greenwalt2c9f5472014-04-21 14:50:28 -0700[diff] [blame]446 } finally {
447 mObservers.finishBroadcast();
San Mehat4d02d002010-01-22 16:07:46 -0800[diff] [blame]448 }
449 }
450
Robert Greenwalte5c3afb2010-09-22 14:32:35 -0700[diff] [blame]451 /**
JP Abgrall12b933d2011-07-14 18:09:22 -0700[diff] [blame]452 * Notify our observers of a limit reached.
453 */
454 private void notifyLimitReached(String limitName, String iface) {
Jeff Sharkey3df273e2011-12-15 15:47:12 -0800[diff] [blame]455 final int length = mObservers.beginBroadcast();
Robert Greenwalt2c9f5472014-04-21 14:50:28 -0700[diff] [blame]456 try {
457 for (int i = 0; i < length; i++) {
458 try {
459 mObservers.getBroadcastItem(i).limitReached(limitName, iface);
Felipe Leme03e689d2016-03-02 16:17:38 -0800[diff] [blame]460 } catch (RemoteException | RuntimeException e) {
Robert Greenwalt2c9f5472014-04-21 14:50:28 -0700[diff] [blame]461 }
JP Abgrall12b933d2011-07-14 18:09:22 -0700[diff] [blame]462 }
Robert Greenwalt2c9f5472014-04-21 14:50:28 -0700[diff] [blame]463 } finally {
464 mObservers.finishBroadcast();
JP Abgrall12b933d2011-07-14 18:09:22 -0700[diff] [blame]465 }
466 }
467
468 /**
Haoyu Baidb3c8672012-06-20 14:29:57 -0700[diff] [blame]469 * Notify our observers of a change in the data activity state of the interface
470 */
Dianne Hackborn2ffa11e2014-04-21 15:56:18 -0700[diff] [blame]471 private void notifyInterfaceClassActivity(int type, int powerState, long tsNanos,
Ruchi Kandoifa97fcf2016-05-13 15:10:39 -0700[diff] [blame]472 int uid, boolean fromRadio) {
Dianne Hackborn2ffa11e2014-04-21 15:56:18 -0700[diff] [blame]473 final boolean isMobile = ConnectivityManager.isNetworkTypeMobile(type);
474 if (isMobile) {
475 if (!fromRadio) {
476 if (mMobileActivityFromRadio) {
477 // If this call is not coming from a report from the radio itself, but we
478 // have previously received reports from the radio, then we will take the
479 // power state to just be whatever the radio last reported.
480 powerState = mLastPowerStateFromRadio;
481 }
482 } else {
483 mMobileActivityFromRadio = true;
484 }
485 if (mLastPowerStateFromRadio != powerState) {
486 mLastPowerStateFromRadio = powerState;
Robert Greenwalt2c9f5472014-04-21 14:50:28 -0700[diff] [blame]487 try {
Ruchi Kandoifa97fcf2016-05-13 15:10:39 -0700[diff] [blame]488 getBatteryStats().noteMobileRadioPowerState(powerState, tsNanos, uid);
Robert Greenwalt2c9f5472014-04-21 14:50:28 -0700[diff] [blame]489 } catch (RemoteException e) {
Robert Greenwalt2c9f5472014-04-21 14:50:28 -0700[diff] [blame]490 }
Haoyu Baidb3c8672012-06-20 14:29:57 -0700[diff] [blame]491 }
Dianne Hackborn2ffa11e2014-04-21 15:56:18 -0700[diff] [blame]492 }
493
Adam Lesinskie08af192015-03-25 16:42:59 -0700[diff] [blame]494 if (ConnectivityManager.isNetworkTypeWifi(type)) {
495 if (mLastPowerStateFromWifi != powerState) {
496 mLastPowerStateFromWifi = powerState;
497 try {
Adam Lesinski5f056f62016-07-14 16:56:08 -0700[diff] [blame]498 getBatteryStats().noteWifiRadioPowerState(powerState, tsNanos, uid);
Adam Lesinskie08af192015-03-25 16:42:59 -0700[diff] [blame]499 } catch (RemoteException e) {
500 }
501 }
502 }
503
Dianne Hackborn2ffa11e2014-04-21 15:56:18 -0700[diff] [blame]504 boolean isActive = powerState == DataConnectionRealTimeInfo.DC_POWER_STATE_MEDIUM
505 || powerState == DataConnectionRealTimeInfo.DC_POWER_STATE_HIGH;
506
507 if (!isMobile || fromRadio || !mMobileActivityFromRadio) {
508 // Report the change in data activity. We don't do this if this is a change
509 // on the mobile network, that is not coming from the radio itself, and we
510 // have previously seen change reports from the radio. In that case only
511 // the radio is the authority for the current state.
512 final int length = mObservers.beginBroadcast();
513 try {
514 for (int i = 0; i < length; i++) {
515 try {
516 mObservers.getBroadcastItem(i).interfaceClassDataActivityChanged(
517 Integer.toString(type), isActive, tsNanos);
Felipe Leme03e689d2016-03-02 16:17:38 -0800[diff] [blame]518 } catch (RemoteException | RuntimeException e) {
Dianne Hackborn2ffa11e2014-04-21 15:56:18 -0700[diff] [blame]519 }
520 }
521 } finally {
522 mObservers.finishBroadcast();
523 }
Haoyu Baidb3c8672012-06-20 14:29:57 -0700[diff] [blame]524 }
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]525
526 boolean report = false;
527 synchronized (mIdleTimerLock) {
528 if (mActiveIdleTimers.isEmpty()) {
Dianne Hackborn2ffa11e2014-04-21 15:56:18 -0700[diff] [blame]529 // If there are no idle timers, we are not monitoring activity, so we
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]530 // are always considered active.
Dianne Hackborn2ffa11e2014-04-21 15:56:18 -0700[diff] [blame]531 isActive = true;
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]532 }
Dianne Hackborn2ffa11e2014-04-21 15:56:18 -0700[diff] [blame]533 if (mNetworkActive != isActive) {
534 mNetworkActive = isActive;
535 report = isActive;
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]536 }
537 }
538 if (report) {
539 reportNetworkActive();
540 }
Haoyu Baidb3c8672012-06-20 14:29:57 -0700[diff] [blame]541 }
542
Lorenzo Colitti9eb844e2016-03-23 23:22:49 +0900[diff] [blame]543 // Sync the state of the given chain with the native daemon.
544 private void syncFirewallChainLocked(int chain, SparseIntArray uidFirewallRules, String name) {
545 int size = uidFirewallRules.size();
546 if (size > 0) {
547 // Make a copy of the current rules, and then clear them. This is because
548 // setFirewallUidRuleInternal only pushes down rules to the native daemon if they are
549 // different from the current rules stored in the mUidFirewall*Rules array for the
550 // specified chain. If we don't clear the rules, setFirewallUidRuleInternal will do
551 // nothing.
552 final SparseIntArray rules = uidFirewallRules.clone();
553 uidFirewallRules.clear();
554
555 // Now push the rules. setFirewallUidRuleInternal will push each of these down to the
556 // native daemon, and also add them to the mUidFirewall*Rules array for the specified
557 // chain.
558 if (DBG) Slog.d(TAG, "Pushing " + size + " active firewall " + name + "UID rules");
559 for (int i = 0; i < rules.size(); i++) {
Felipe Lemea701cad2016-05-12 09:58:14 -0700[diff] [blame]560 setFirewallUidRuleLocked(chain, rules.keyAt(i), rules.valueAt(i));
Lorenzo Colitti9eb844e2016-03-23 23:22:49 +0900[diff] [blame]561 }
562 }
563 }
564
bohu07cc3bb2016-05-03 15:58:01 -0700[diff] [blame]565 private void connectNativeNetdService() {
Lorenzo Colitti58967ba2016-02-02 17:21:21 +0900[diff] [blame]566 boolean nativeServiceAvailable = false;
567 try {
568 mNetdService = INetd.Stub.asInterface(ServiceManager.getService(NETD_SERVICE_NAME));
569 nativeServiceAvailable = mNetdService.isAlive();
570 } catch (RemoteException e) {}
571 if (!nativeServiceAvailable) {
572 Slog.wtf(TAG, "Can't connect to NativeNetdService " + NETD_SERVICE_NAME);
573 }
bohu07cc3bb2016-05-03 15:58:01 -0700[diff] [blame]574 }
575
576 /**
577 * Prepare native daemon once connected, enabling modules and pushing any
578 * existing in-memory rules.
579 */
580 private void prepareNativeDaemon() {
Lorenzo Colitti58967ba2016-02-02 17:21:21 +0900[diff] [blame]581
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]582 mBandwidthControlEnabled = false;
Robert Greenwalte5c3afb2010-09-22 14:32:35 -0700[diff] [blame]583
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]584 // only enable bandwidth control when support exists
585 final boolean hasKernelSupport = new File("/proc/net/xt_qtaguid/ctrl").exists();
586 if (hasKernelSupport) {
587 Slog.d(TAG, "enabling bandwidth control");
588 try {
589 mConnector.execute("bandwidth", "enable");
590 mBandwidthControlEnabled = true;
591 } catch (NativeDaemonConnectorException e) {
592 Log.wtf(TAG, "problem enabling bandwidth controls", e);
593 }
594 } else {
Felipe Leme03e689d2016-03-02 16:17:38 -0800[diff] [blame]595 Slog.i(TAG, "not enabling bandwidth control");
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]596 }
597
598 SystemProperties.set(PROP_QTAGUID_ENABLED, mBandwidthControlEnabled ? "1" : "0");
599
Jeff Sharkey7a1c3fc2013-06-04 12:29:00 -0700[diff] [blame]600 if (mBandwidthControlEnabled) {
601 try {
Dianne Hackborne13c4c02014-02-11 17:18:35 -0800[diff] [blame]602 getBatteryStats().noteNetworkStatsEnabled();
Jeff Sharkey7a1c3fc2013-06-04 12:29:00 -0700[diff] [blame]603 } catch (RemoteException e) {
604 }
605 }
606
Jeff Sharkey605eb792014-11-04 13:34:06 -0800[diff] [blame]607 try {
608 mConnector.execute("strict", "enable");
609 mStrictEnabled = true;
610 } catch (NativeDaemonConnectorException e) {
611 Log.wtf(TAG, "Failed strict enable", e);
612 }
613
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]614 // push any existing quota or UID rules
615 synchronized (mQuotaLock) {
Felipe Leme65be3022016-03-22 14:53:13 -0700[diff] [blame]616
617 setDataSaverModeEnabled(mDataSaverMode);
618
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]619 int size = mActiveQuotas.size();
620 if (size > 0) {
Felipe Leme03e689d2016-03-02 16:17:38 -0800[diff] [blame]621 if (DBG) Slog.d(TAG, "Pushing " + size + " active quota rules");
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]622 final HashMap<String, Long> activeQuotas = mActiveQuotas;
623 mActiveQuotas = Maps.newHashMap();
624 for (Map.Entry<String, Long> entry : activeQuotas.entrySet()) {
625 setInterfaceQuota(entry.getKey(), entry.getValue());
626 }
627 }
628
629 size = mActiveAlerts.size();
630 if (size > 0) {
Felipe Leme03e689d2016-03-02 16:17:38 -0800[diff] [blame]631 if (DBG) Slog.d(TAG, "Pushing " + size + " active alert rules");
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]632 final HashMap<String, Long> activeAlerts = mActiveAlerts;
633 mActiveAlerts = Maps.newHashMap();
634 for (Map.Entry<String, Long> entry : activeAlerts.entrySet()) {
635 setInterfaceAlert(entry.getKey(), entry.getValue());
636 }
637 }
638
Felipe Leme65be3022016-03-22 14:53:13 -0700[diff] [blame]639 size = mUidRejectOnMetered.size();
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]640 if (size > 0) {
Felipe Leme65be3022016-03-22 14:53:13 -0700[diff] [blame]641 if (DBG) Slog.d(TAG, "Pushing " + size + " UIDs to metered whitelist rules");
642 final SparseBooleanArray uidRejectOnQuota = mUidRejectOnMetered;
643 mUidRejectOnMetered = new SparseBooleanArray();
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]644 for (int i = 0; i < uidRejectOnQuota.size(); i++) {
Felipe Leme65be3022016-03-22 14:53:13 -0700[diff] [blame]645 setUidMeteredNetworkBlacklist(uidRejectOnQuota.keyAt(i),
646 uidRejectOnQuota.valueAt(i));
647 }
648 }
649
650 size = mUidAllowOnMetered.size();
651 if (size > 0) {
652 if (DBG) Slog.d(TAG, "Pushing " + size + " UIDs to metered blacklist rules");
653 final SparseBooleanArray uidAcceptOnQuota = mUidAllowOnMetered;
654 mUidAllowOnMetered = new SparseBooleanArray();
655 for (int i = 0; i < uidAcceptOnQuota.size(); i++) {
656 setUidMeteredNetworkWhitelist(uidAcceptOnQuota.keyAt(i),
657 uidAcceptOnQuota.valueAt(i));
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]658 }
659 }
Jeff Sharkey605eb792014-11-04 13:34:06 -0800[diff] [blame]660
661 size = mUidCleartextPolicy.size();
662 if (size > 0) {
Felipe Leme03e689d2016-03-02 16:17:38 -0800[diff] [blame]663 if (DBG) Slog.d(TAG, "Pushing " + size + " active UID cleartext policies");
Jeff Sharkey605eb792014-11-04 13:34:06 -0800[diff] [blame]664 final SparseIntArray local = mUidCleartextPolicy;
665 mUidCleartextPolicy = new SparseIntArray();
666 for (int i = 0; i < local.size(); i++) {
667 setUidCleartextNetworkPolicy(local.keyAt(i), local.valueAt(i));
668 }
669 }
Jeff Sharkeyc268f0b2012-08-24 10:25:31 -0700[diff] [blame]670
Amith Yamasani15e472352015-04-24 19:06:07 -0700[diff] [blame]671 setFirewallEnabled(mFirewallEnabled || LockdownVpnTracker.isEnabled());
672
Lorenzo Colitti9eb844e2016-03-23 23:22:49 +0900[diff] [blame]673 syncFirewallChainLocked(FIREWALL_CHAIN_NONE, mUidFirewallRules, "");
674 syncFirewallChainLocked(FIREWALL_CHAIN_STANDBY, mUidFirewallStandbyRules, "standby ");
675 syncFirewallChainLocked(FIREWALL_CHAIN_DOZABLE, mUidFirewallDozableRules, "dozable ");
676 syncFirewallChainLocked(FIREWALL_CHAIN_POWERSAVE, mUidFirewallPowerSaveRules,
677 "powersave ");
Xiaohui Chenb41c9f72015-06-17 15:55:37 -0700[diff] [blame]678
Xiaohui Chen8dca36d2015-06-19 12:44:59 -0700[diff] [blame]679 if (mFirewallChainStates.get(FIREWALL_CHAIN_STANDBY)) {
Xiaohui Chenb41c9f72015-06-17 15:55:37 -0700[diff] [blame]680 setFirewallChainEnabled(FIREWALL_CHAIN_STANDBY, true);
681 }
Xiaohui Chen8dca36d2015-06-19 12:44:59 -0700[diff] [blame]682 if (mFirewallChainStates.get(FIREWALL_CHAIN_DOZABLE)) {
Xiaohui Chenb41c9f72015-06-17 15:55:37 -0700[diff] [blame]683 setFirewallChainEnabled(FIREWALL_CHAIN_DOZABLE, true);
684 }
Felipe Leme011b98f2016-02-10 17:28:31 -0800[diff] [blame]685 if (mFirewallChainStates.get(FIREWALL_CHAIN_POWERSAVE)) {
686 setFirewallChainEnabled(FIREWALL_CHAIN_POWERSAVE, true);
687 }
Amith Yamasani15e472352015-04-24 19:06:07 -0700[diff] [blame]688 }
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]689 }
San Mehat4d02d002010-01-22 16:07:46 -0800[diff] [blame]690
Lorenzo Colitti5c7daac2013-08-05 10:39:37 +0900[diff] [blame]691 /**
692 * Notify our observers of a new or updated interface address.
693 */
Lorenzo Colitti64483942013-11-15 18:43:52 +0900[diff] [blame]694 private void notifyAddressUpdated(String iface, LinkAddress address) {
Lorenzo Colitti5c7daac2013-08-05 10:39:37 +0900[diff] [blame]695 final int length = mObservers.beginBroadcast();
Robert Greenwalt2c9f5472014-04-21 14:50:28 -0700[diff] [blame]696 try {
697 for (int i = 0; i < length; i++) {
698 try {
699 mObservers.getBroadcastItem(i).addressUpdated(iface, address);
Felipe Leme03e689d2016-03-02 16:17:38 -0800[diff] [blame]700 } catch (RemoteException | RuntimeException e) {
Robert Greenwalt2c9f5472014-04-21 14:50:28 -0700[diff] [blame]701 }
Lorenzo Colitti5c7daac2013-08-05 10:39:37 +0900[diff] [blame]702 }
Robert Greenwalt2c9f5472014-04-21 14:50:28 -0700[diff] [blame]703 } finally {
704 mObservers.finishBroadcast();
Lorenzo Colitti5c7daac2013-08-05 10:39:37 +0900[diff] [blame]705 }
Lorenzo Colitti5c7daac2013-08-05 10:39:37 +0900[diff] [blame]706 }
707
708 /**
709 * Notify our observers of a deleted interface address.
710 */
Lorenzo Colitti64483942013-11-15 18:43:52 +0900[diff] [blame]711 private void notifyAddressRemoved(String iface, LinkAddress address) {
Lorenzo Colitti5c7daac2013-08-05 10:39:37 +0900[diff] [blame]712 final int length = mObservers.beginBroadcast();
Robert Greenwalt2c9f5472014-04-21 14:50:28 -0700[diff] [blame]713 try {
714 for (int i = 0; i < length; i++) {
715 try {
716 mObservers.getBroadcastItem(i).addressRemoved(iface, address);
Felipe Leme03e689d2016-03-02 16:17:38 -0800[diff] [blame]717 } catch (RemoteException | RuntimeException e) {
Robert Greenwalt2c9f5472014-04-21 14:50:28 -0700[diff] [blame]718 }
Lorenzo Colitti5c7daac2013-08-05 10:39:37 +0900[diff] [blame]719 }
Robert Greenwalt2c9f5472014-04-21 14:50:28 -0700[diff] [blame]720 } finally {
721 mObservers.finishBroadcast();
Lorenzo Colitti5c7daac2013-08-05 10:39:37 +0900[diff] [blame]722 }
Lorenzo Colitti5c7daac2013-08-05 10:39:37 +0900[diff] [blame]723 }
724
Lorenzo Colitti5ae4a532013-10-31 11:59:46 +0900[diff] [blame]725 /**
726 * Notify our observers of DNS server information received.
727 */
728 private void notifyInterfaceDnsServerInfo(String iface, long lifetime, String[] addresses) {
729 final int length = mObservers.beginBroadcast();
Robert Greenwalt2c9f5472014-04-21 14:50:28 -0700[diff] [blame]730 try {
731 for (int i = 0; i < length; i++) {
732 try {
733 mObservers.getBroadcastItem(i).interfaceDnsServerInfo(iface, lifetime,
734 addresses);
Felipe Leme03e689d2016-03-02 16:17:38 -0800[diff] [blame]735 } catch (RemoteException | RuntimeException e) {
Robert Greenwalt2c9f5472014-04-21 14:50:28 -0700[diff] [blame]736 }
Lorenzo Colitti5ae4a532013-10-31 11:59:46 +0900[diff] [blame]737 }
Robert Greenwalt2c9f5472014-04-21 14:50:28 -0700[diff] [blame]738 } finally {
739 mObservers.finishBroadcast();
Lorenzo Colitti5ae4a532013-10-31 11:59:46 +0900[diff] [blame]740 }
Lorenzo Colitti5ae4a532013-10-31 11:59:46 +0900[diff] [blame]741 }
742
Lorenzo Colittic18cbfd2014-06-13 21:21:03 +0900[diff] [blame]743 /**
744 * Notify our observers of a route change.
745 */
746 private void notifyRouteChange(String action, RouteInfo route) {
747 final int length = mObservers.beginBroadcast();
748 try {
749 for (int i = 0; i < length; i++) {
750 try {
751 if (action.equals("updated")) {
752 mObservers.getBroadcastItem(i).routeUpdated(route);
753 } else {
754 mObservers.getBroadcastItem(i).routeRemoved(route);
755 }
Felipe Leme03e689d2016-03-02 16:17:38 -0800[diff] [blame]756 } catch (RemoteException | RuntimeException e) {
Lorenzo Colittic18cbfd2014-06-13 21:21:03 +0900[diff] [blame]757 }
758 }
759 } finally {
760 mObservers.finishBroadcast();
761 }
762 }
763
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]764 //
765 // Netd Callback handling
766 //
767
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]768 private class NetdCallbackReceiver implements INativeDaemonConnectorCallbacks {
769 @Override
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]770 public void onDaemonConnected() {
Felipe Leme65be3022016-03-22 14:53:13 -0700[diff] [blame]771 Slog.i(TAG, "onDaemonConnected()");
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]772 // event is dispatched from internal NDC thread, so we prepare the
773 // daemon back on main thread.
774 if (mConnectedSignal != null) {
bohu07cc3bb2016-05-03 15:58:01 -0700[diff] [blame]775 // The system is booting and we're connecting to netd for the first time.
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]776 mConnectedSignal.countDown();
777 mConnectedSignal = null;
778 } else {
bohu07cc3bb2016-05-03 15:58:01 -0700[diff] [blame]779 // We're reconnecting to netd after the socket connection
780 // was interrupted (e.g., if it crashed).
Robert Greenwalt2c9f5472014-04-21 14:50:28 -0700[diff] [blame]781 mFgHandler.post(new Runnable() {
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]782 @Override
783 public void run() {
bohu07cc3bb2016-05-03 15:58:01 -0700[diff] [blame]784 connectNativeNetdService();
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]785 prepareNativeDaemon();
786 }
787 });
788 }
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]789 }
Jeff Sharkeyfa23c5a2011-08-09 21:44:24 -0700[diff] [blame]790
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]791 @Override
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]792 public boolean onCheckHoldWakeLock(int code) {
793 return code == NetdResponseCode.InterfaceClassActivity;
794 }
795
796 @Override
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]797 public boolean onEvent(int code, String raw, String[] cooked) {
Lorenzo Colittia9626c12013-11-04 17:44:09 +0900[diff] [blame]798 String errorMessage = String.format("Invalid event from daemon (%s)", raw);
JP Abgrall12b933d2011-07-14 18:09:22 -0700[diff] [blame]799 switch (code) {
800 case NetdResponseCode.InterfaceChange:
801 /*
802 * a network interface change occured
803 * Format: "NNN Iface added <name>"
804 * "NNN Iface removed <name>"
805 * "NNN Iface changed <name> <up/down>"
806 * "NNN Iface linkstatus <name> <up/down>"
807 */
808 if (cooked.length < 4 || !cooked[1].equals("Iface")) {
Lorenzo Colittia9626c12013-11-04 17:44:09 +0900[diff] [blame]809 throw new IllegalStateException(errorMessage);
JP Abgrall12b933d2011-07-14 18:09:22 -0700[diff] [blame]810 }
811 if (cooked[2].equals("added")) {
812 notifyInterfaceAdded(cooked[3]);
813 return true;
814 } else if (cooked[2].equals("removed")) {
815 notifyInterfaceRemoved(cooked[3]);
816 return true;
817 } else if (cooked[2].equals("changed") && cooked.length == 5) {
818 notifyInterfaceStatusChanged(cooked[3], cooked[4].equals("up"));
819 return true;
820 } else if (cooked[2].equals("linkstate") && cooked.length == 5) {
821 notifyInterfaceLinkStateChanged(cooked[3], cooked[4].equals("up"));
822 return true;
823 }
Lorenzo Colittia9626c12013-11-04 17:44:09 +0900[diff] [blame]824 throw new IllegalStateException(errorMessage);
JP Abgrall12b933d2011-07-14 18:09:22 -0700[diff] [blame]825 // break;
826 case NetdResponseCode.BandwidthControl:
827 /*
828 * Bandwidth control needs some attention
829 * Format: "NNN limit alert <alertName> <ifaceName>"
830 */
831 if (cooked.length < 5 || !cooked[1].equals("limit")) {
Lorenzo Colittia9626c12013-11-04 17:44:09 +0900[diff] [blame]832 throw new IllegalStateException(errorMessage);
JP Abgrall12b933d2011-07-14 18:09:22 -0700[diff] [blame]833 }
834 if (cooked[2].equals("alert")) {
835 notifyLimitReached(cooked[3], cooked[4]);
836 return true;
837 }
Lorenzo Colittia9626c12013-11-04 17:44:09 +0900[diff] [blame]838 throw new IllegalStateException(errorMessage);
JP Abgrall12b933d2011-07-14 18:09:22 -0700[diff] [blame]839 // break;
Haoyu Baidb3c8672012-06-20 14:29:57 -0700[diff] [blame]840 case NetdResponseCode.InterfaceClassActivity:
841 /*
842 * An network interface class state changed (active/idle)
843 * Format: "NNN IfaceClass <active/idle> <label>"
844 */
845 if (cooked.length < 4 || !cooked[1].equals("IfaceClass")) {
Lorenzo Colittia9626c12013-11-04 17:44:09 +0900[diff] [blame]846 throw new IllegalStateException(errorMessage);
Haoyu Baidb3c8672012-06-20 14:29:57 -0700[diff] [blame]847 }
Ashish Sharma0535a9f2014-03-12 18:42:23 -0700[diff] [blame]848 long timestampNanos = 0;
Ruchi Kandoifa97fcf2016-05-13 15:10:39 -0700[diff] [blame]849 int processUid = -1;
850 if (cooked.length >= 5) {
Ashish Sharma0535a9f2014-03-12 18:42:23 -0700[diff] [blame]851 try {
852 timestampNanos = Long.parseLong(cooked[4]);
Ruchi Kandoifa97fcf2016-05-13 15:10:39 -0700[diff] [blame]853 if (cooked.length == 6) {
854 processUid = Integer.parseInt(cooked[5]);
855 }
Ashish Sharma0535a9f2014-03-12 18:42:23 -0700[diff] [blame]856 } catch(NumberFormatException ne) {}
Dianne Hackborn2ffa11e2014-04-21 15:56:18 -0700[diff] [blame]857 } else {
858 timestampNanos = SystemClock.elapsedRealtimeNanos();
Ashish Sharma0535a9f2014-03-12 18:42:23 -0700[diff] [blame]859 }
Haoyu Baidb3c8672012-06-20 14:29:57 -0700[diff] [blame]860 boolean isActive = cooked[2].equals("active");
Ashish Sharma0535a9f2014-03-12 18:42:23 -0700[diff] [blame]861 notifyInterfaceClassActivity(Integer.parseInt(cooked[3]),
Dianne Hackborn2ffa11e2014-04-21 15:56:18 -0700[diff] [blame]862 isActive ? DataConnectionRealTimeInfo.DC_POWER_STATE_HIGH
Ruchi Kandoifa97fcf2016-05-13 15:10:39 -0700[diff] [blame]863 : DataConnectionRealTimeInfo.DC_POWER_STATE_LOW,
864 timestampNanos, processUid, false);
Haoyu Baidb3c8672012-06-20 14:29:57 -0700[diff] [blame]865 return true;
866 // break;
Lorenzo Colitti5c7daac2013-08-05 10:39:37 +0900[diff] [blame]867 case NetdResponseCode.InterfaceAddressChange:
868 /*
869 * A network address change occurred
870 * Format: "NNN Address updated <addr> <iface> <flags> <scope>"
871 * "NNN Address removed <addr> <iface> <flags> <scope>"
872 */
Lorenzo Colittia9626c12013-11-04 17:44:09 +0900[diff] [blame]873 if (cooked.length < 7 || !cooked[1].equals("Address")) {
874 throw new IllegalStateException(errorMessage);
Lorenzo Colitti5c7daac2013-08-05 10:39:37 +0900[diff] [blame]875 }
876
Lorenzo Colitti64483942013-11-15 18:43:52 +0900[diff] [blame]877 String iface = cooked[4];
Lorenzo Colitti5ad421a2013-11-17 15:05:02 +0900[diff] [blame]878 LinkAddress address;
Lorenzo Colitti5c7daac2013-08-05 10:39:37 +0900[diff] [blame]879 try {
Lorenzo Colitti64483942013-11-15 18:43:52 +0900[diff] [blame]880 int flags = Integer.parseInt(cooked[5]);
881 int scope = Integer.parseInt(cooked[6]);
882 address = new LinkAddress(cooked[3], flags, scope);
Lorenzo Colitti5ad421a2013-11-17 15:05:02 +0900[diff] [blame]883 } catch(NumberFormatException e) { // Non-numeric lifetime or scope.
884 throw new IllegalStateException(errorMessage, e);
Lorenzo Colitti64483942013-11-15 18:43:52 +0900[diff] [blame]885 } catch(IllegalArgumentException e) { // Malformed/invalid IP address.
Lorenzo Colitti5ad421a2013-11-17 15:05:02 +0900[diff] [blame]886 throw new IllegalStateException(errorMessage, e);
Lorenzo Colitti5c7daac2013-08-05 10:39:37 +0900[diff] [blame]887 }
888
889 if (cooked[2].equals("updated")) {
Lorenzo Colitti64483942013-11-15 18:43:52 +0900[diff] [blame]890 notifyAddressUpdated(iface, address);
Lorenzo Colitti5c7daac2013-08-05 10:39:37 +0900[diff] [blame]891 } else {
Lorenzo Colitti64483942013-11-15 18:43:52 +0900[diff] [blame]892 notifyAddressRemoved(iface, address);
Lorenzo Colitti5c7daac2013-08-05 10:39:37 +0900[diff] [blame]893 }
894 return true;
895 // break;
Lorenzo Colitti5ae4a532013-10-31 11:59:46 +0900[diff] [blame]896 case NetdResponseCode.InterfaceDnsServerInfo:
897 /*
898 * Information about available DNS servers has been received.
899 * Format: "NNN DnsInfo servers <interface> <lifetime> <servers>"
900 */
901 long lifetime; // Actually a 32-bit unsigned integer.
902
903 if (cooked.length == 6 &&
904 cooked[1].equals("DnsInfo") &&
905 cooked[2].equals("servers")) {
906 try {
907 lifetime = Long.parseLong(cooked[4]);
908 } catch (NumberFormatException e) {
909 throw new IllegalStateException(errorMessage);
910 }
911 String[] servers = cooked[5].split(",");
912 notifyInterfaceDnsServerInfo(cooked[3], lifetime, servers);
913 }
914 return true;
915 // break;
Lorenzo Colittic18cbfd2014-06-13 21:21:03 +0900[diff] [blame]916 case NetdResponseCode.RouteChange:
917 /*
918 * A route has been updated or removed.
919 * Format: "NNN Route <updated|removed> <dst> [via <gateway] [dev <iface>]"
920 */
921 if (!cooked[1].equals("Route") || cooked.length < 6) {
922 throw new IllegalStateException(errorMessage);
923 }
924
925 String via = null;
926 String dev = null;
927 boolean valid = true;
928 for (int i = 4; (i + 1) < cooked.length && valid; i += 2) {
929 if (cooked[i].equals("dev")) {
930 if (dev == null) {
931 dev = cooked[i+1];
932 } else {
933 valid = false; // Duplicate interface.
934 }
935 } else if (cooked[i].equals("via")) {
936 if (via == null) {
937 via = cooked[i+1];
938 } else {
939 valid = false; // Duplicate gateway.
940 }
941 } else {
942 valid = false; // Unknown syntax.
943 }
944 }
945 if (valid) {
946 try {
947 // InetAddress.parseNumericAddress(null) inexplicably returns ::1.
948 InetAddress gateway = null;
949 if (via != null) gateway = InetAddress.parseNumericAddress(via);
950 RouteInfo route = new RouteInfo(new IpPrefix(cooked[3]), gateway, dev);
951 notifyRouteChange(cooked[2], route);
952 return true;
953 } catch (IllegalArgumentException e) {}
954 }
955 throw new IllegalStateException(errorMessage);
956 // break;
Jeff Sharkey605eb792014-11-04 13:34:06 -0800[diff] [blame]957 case NetdResponseCode.StrictCleartext:
958 final int uid = Integer.parseInt(cooked[1]);
959 final byte[] firstPacket = HexDump.hexStringToByteArray(cooked[2]);
960 try {
961 ActivityManagerNative.getDefault().notifyCleartextNetwork(uid, firstPacket);
962 } catch (RemoteException ignored) {
963 }
964 break;
JP Abgrall12b933d2011-07-14 18:09:22 -0700[diff] [blame]965 default: break;
Robert Greenwalte3253922010-02-18 09:23:25 -0800[diff] [blame]966 }
967 return false;
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]968 }
969 }
970
San Mehated4fc8a2010-01-22 12:28:36 -0800[diff] [blame]971
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]972 //
973 // INetworkManagementService members
974 //
Erik Kline4e37b702016-07-05 11:34:21 +0900[diff] [blame]975 @Override
976 public INetd getNetdService() throws RemoteException {
977 final CountDownLatch connectedSignal = mConnectedSignal;
978 if (connectedSignal != null) {
979 try {
980 connectedSignal.await();
981 } catch (InterruptedException ignored) {}
982 }
983
984 return mNetdService;
985 }
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]986
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]987 @Override
988 public String[] listInterfaces() {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]989 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]990 try {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]991 return NativeDaemonEvent.filterMessageList(
992 mConnector.executeForList("interface", "list"), InterfaceListResult);
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]993 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]994 throw e.rethrowAsParcelableException();
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]995 }
San Mehated4fc8a2010-01-22 12:28:36 -0800[diff] [blame]996 }
997
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]998 @Override
999 public InterfaceConfiguration getInterfaceConfig(String iface) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1000 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1001
1002 final NativeDaemonEvent event;
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1003 try {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1004 event = mConnector.execute("interface", "getcfg", iface);
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1005 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]1006 throw e.rethrowAsParcelableException();
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1007 }
San Mehated4fc8a2010-01-22 12:28:36 -0800[diff] [blame]1008
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1009 event.checkCode(InterfaceGetCfgResult);
1010
1011 // Rsp: 213 xx:xx:xx:xx:xx:xx yyy.yyy.yyy.yyy zzz flag1 flag2 flag3
1012 final StringTokenizer st = new StringTokenizer(event.getMessage());
San Mehated4fc8a2010-01-22 12:28:36 -0800[diff] [blame]1013
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1014 InterfaceConfiguration cfg;
San Mehated4fc8a2010-01-22 12:28:36 -0800[diff] [blame]1015 try {
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1016 cfg = new InterfaceConfiguration();
Jeff Sharkeyddba1062011-11-29 18:37:04 -0800[diff] [blame]1017 cfg.setHardwareAddress(st.nextToken(" "));
Robert Greenwalted126402011-01-28 15:34:55 -0800[diff] [blame]1018 InetAddress addr = null;
Robert Greenwalt2d2afd12011-02-01 15:30:46 -0800[diff] [blame]1019 int prefixLength = 0;
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1020 try {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1021 addr = NetworkUtils.numericToInetAddress(st.nextToken());
Robert Greenwalte5903732011-02-22 16:00:42 -0800[diff] [blame]1022 } catch (IllegalArgumentException iae) {
1023 Slog.e(TAG, "Failed to parse ipaddr", iae);
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1024 }
1025
1026 try {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1027 prefixLength = Integer.parseInt(st.nextToken());
Robert Greenwalt2d2afd12011-02-01 15:30:46 -0800[diff] [blame]1028 } catch (NumberFormatException nfe) {
1029 Slog.e(TAG, "Failed to parse prefixLength", nfe);
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1030 }
Robert Greenwalt04808c22010-12-13 17:01:41 -0800[diff] [blame]1031
Jeff Sharkeyddba1062011-11-29 18:37:04 -0800[diff] [blame]1032 cfg.setLinkAddress(new LinkAddress(addr, prefixLength));
1033 while (st.hasMoreTokens()) {
1034 cfg.setFlag(st.nextToken());
1035 }
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1036 } catch (NoSuchElementException nsee) {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1037 throw new IllegalStateException("Invalid response from daemon: " + event);
San Mehated4fc8a2010-01-22 12:28:36 -0800[diff] [blame]1038 }
San Mehated4fc8a2010-01-22 12:28:36 -0800[diff] [blame]1039 return cfg;
1040 }
1041
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1042 @Override
1043 public void setInterfaceConfig(String iface, InterfaceConfiguration cfg) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1044 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Jeff Sharkeyddba1062011-11-29 18:37:04 -0800[diff] [blame]1045 LinkAddress linkAddr = cfg.getLinkAddress();
Robert Greenwalt2d2afd12011-02-01 15:30:46 -0800[diff] [blame]1046 if (linkAddr == null || linkAddr.getAddress() == null) {
1047 throw new IllegalStateException("Null LinkAddress given");
Robert Greenwalted126402011-01-28 15:34:55 -0800[diff] [blame]1048 }
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1049
1050 final Command cmd = new Command("interface", "setcfg", iface,
Robert Greenwalt2d2afd12011-02-01 15:30:46 -0800[diff] [blame]1051 linkAddr.getAddress().getHostAddress(),
Lorenzo Colitti7dc78cf2014-06-09 22:58:46 +0900[diff] [blame]1052 linkAddr.getPrefixLength());
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1053 for (String flag : cfg.getFlags()) {
1054 cmd.appendArg(flag);
1055 }
1056
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1057 try {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1058 mConnector.execute(cmd);
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1059 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]1060 throw e.rethrowAsParcelableException();
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1061 }
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]1062 }
1063
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1064 @Override
1065 public void setInterfaceDown(String iface) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1066 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Jeff Sharkey31c6e482011-11-18 17:09:01 -0800[diff] [blame]1067 final InterfaceConfiguration ifcg = getInterfaceConfig(iface);
Jeff Sharkeyddba1062011-11-29 18:37:04 -0800[diff] [blame]1068 ifcg.setInterfaceDown();
Jeff Sharkey31c6e482011-11-18 17:09:01 -0800[diff] [blame]1069 setInterfaceConfig(iface, ifcg);
Irfan Sheriff7244c972011-08-05 20:40:45 -0700[diff] [blame]1070 }
1071
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1072 @Override
1073 public void setInterfaceUp(String iface) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1074 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Jeff Sharkey31c6e482011-11-18 17:09:01 -0800[diff] [blame]1075 final InterfaceConfiguration ifcg = getInterfaceConfig(iface);
Jeff Sharkeyddba1062011-11-29 18:37:04 -0800[diff] [blame]1076 ifcg.setInterfaceUp();
Jeff Sharkey31c6e482011-11-18 17:09:01 -0800[diff] [blame]1077 setInterfaceConfig(iface, ifcg);
Irfan Sheriff7244c972011-08-05 20:40:45 -0700[diff] [blame]1078 }
1079
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1080 @Override
1081 public void setInterfaceIpv6PrivacyExtensions(String iface, boolean enable) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1082 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Irfan Sheriff73293612011-09-14 12:31:56 -0700[diff] [blame]1083 try {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1084 mConnector.execute(
1085 "interface", "ipv6privacyextensions", iface, enable ? "enable" : "disable");
Irfan Sheriff73293612011-09-14 12:31:56 -0700[diff] [blame]1086 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]1087 throw e.rethrowAsParcelableException();
Irfan Sheriff73293612011-09-14 12:31:56 -0700[diff] [blame]1088 }
1089 }
1090
Irfan Sherifff5600612011-06-16 10:26:28 -0700[diff] [blame]1091 /* TODO: This is right now a IPv4 only function. Works for wifi which loses its
1092 IPv6 addresses on interface down, but we need to do full clean up here */
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1093 @Override
1094 public void clearInterfaceAddresses(String iface) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1095 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Irfan Sherifff5600612011-06-16 10:26:28 -0700[diff] [blame]1096 try {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1097 mConnector.execute("interface", "clearaddrs", iface);
Irfan Sherifff5600612011-06-16 10:26:28 -0700[diff] [blame]1098 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]1099 throw e.rethrowAsParcelableException();
Irfan Sherifff5600612011-06-16 10:26:28 -0700[diff] [blame]1100 }
1101 }
1102
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1103 @Override
1104 public void enableIpv6(String iface) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1105 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
repo sync7960d9f2011-09-29 12:40:02 -0700[diff] [blame]1106 try {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1107 mConnector.execute("interface", "ipv6", iface, "enable");
repo sync7960d9f2011-09-29 12:40:02 -0700[diff] [blame]1108 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]1109 throw e.rethrowAsParcelableException();
repo sync7960d9f2011-09-29 12:40:02 -0700[diff] [blame]1110 }
1111 }
1112
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1113 @Override
1114 public void disableIpv6(String iface) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1115 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
repo sync7960d9f2011-09-29 12:40:02 -0700[diff] [blame]1116 try {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1117 mConnector.execute("interface", "ipv6", iface, "disable");
repo sync7960d9f2011-09-29 12:40:02 -0700[diff] [blame]1118 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]1119 throw e.rethrowAsParcelableException();
repo sync7960d9f2011-09-29 12:40:02 -0700[diff] [blame]1120 }
1121 }
1122
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1123 @Override
Lorenzo Colittie21a26b2014-10-28 15:24:03 +0900[diff] [blame]1124 public void setInterfaceIpv6NdOffload(String iface, boolean enable) {
1125 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
1126 try {
1127 mConnector.execute(
1128 "interface", "ipv6ndoffload", iface, (enable ? "enable" : "disable"));
1129 } catch (NativeDaemonConnectorException e) {
1130 throw e.rethrowAsParcelableException();
1131 }
1132 }
1133
1134 @Override
Sreeram Ramachandranb2829fa2014-04-15 19:07:12 -0700[diff] [blame]1135 public void addRoute(int netId, RouteInfo route) {
Sreeram Ramachandrana77760d2014-07-17 17:09:07 -0700[diff] [blame]1136 modifyRoute("add", "" + netId, route);
Robert Greenwalt59b1a4e2011-05-10 15:05:02 -0700[diff] [blame]1137 }
1138
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1139 @Override
Sreeram Ramachandranb2829fa2014-04-15 19:07:12 -0700[diff] [blame]1140 public void removeRoute(int netId, RouteInfo route) {
Sreeram Ramachandrana77760d2014-07-17 17:09:07 -0700[diff] [blame]1141 modifyRoute("remove", "" + netId, route);
Robert Greenwalt59b1a4e2011-05-10 15:05:02 -0700[diff] [blame]1142 }
1143
Sreeram Ramachandrana77760d2014-07-17 17:09:07 -0700[diff] [blame]1144 private void modifyRoute(String action, String netId, RouteInfo route) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1145 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Robert Greenwalt3b28e9a2011-11-02 14:37:19 -0700[diff] [blame]1146
Sreeram Ramachandranb2829fa2014-04-15 19:07:12 -0700[diff] [blame]1147 final Command cmd = new Command("network", "route", action, netId);
Robert Greenwalt3b28e9a2011-11-02 14:37:19 -0700[diff] [blame]1148
Sreeram Ramachandranb2829fa2014-04-15 19:07:12 -0700[diff] [blame]1149 // create triplet: interface dest-ip-addr/prefixlength gateway-ip-addr
Sreeram Ramachandranb2829fa2014-04-15 19:07:12 -0700[diff] [blame]1150 cmd.appendArg(route.getInterface());
Lorenzo Colitti4b0f8e62014-09-19 01:49:05 +0900[diff] [blame]1151 cmd.appendArg(route.getDestination().toString());
1152
1153 switch (route.getType()) {
1154 case RouteInfo.RTN_UNICAST:
1155 if (route.hasGateway()) {
1156 cmd.appendArg(route.getGateway().getHostAddress());
1157 }
1158 break;
1159 case RouteInfo.RTN_UNREACHABLE:
1160 cmd.appendArg("unreachable");
1161 break;
1162 case RouteInfo.RTN_THROW:
1163 cmd.appendArg("throw");
1164 break;
Sreeram Ramachandran1fbcb272014-05-22 16:30:48 -0700[diff] [blame]1165 }
Robert Greenwalt59b1a4e2011-05-10 15:05:02 -0700[diff] [blame]1166
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1167 try {
1168 mConnector.execute(cmd);
1169 } catch (NativeDaemonConnectorException e) {
1170 throw e.rethrowAsParcelableException();
Robert Greenwalt59b1a4e2011-05-10 15:05:02 -0700[diff] [blame]1171 }
1172 }
1173
1174 private ArrayList<String> readRouteList(String filename) {
1175 FileInputStream fstream = null;
Christopher Wiley212b95f2016-08-02 11:38:57 -0700[diff] [blame]1176 ArrayList<String> list = new ArrayList<>();
Robert Greenwalt59b1a4e2011-05-10 15:05:02 -0700[diff] [blame]1177
1178 try {
1179 fstream = new FileInputStream(filename);
1180 DataInputStream in = new DataInputStream(fstream);
1181 BufferedReader br = new BufferedReader(new InputStreamReader(in));
1182 String s;
1183
1184 // throw away the title line
1185
1186 while (((s = br.readLine()) != null) && (s.length() != 0)) {
1187 list.add(s);
1188 }
1189 } catch (IOException ex) {
1190 // return current list, possibly empty
1191 } finally {
1192 if (fstream != null) {
1193 try {
1194 fstream.close();
1195 } catch (IOException ex) {}
1196 }
1197 }
1198
1199 return list;
1200 }
1201
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1202 @Override
sy.yun9d9b74a2013-09-02 05:24:09 +0900[diff] [blame]1203 public void setMtu(String iface, int mtu) {
1204 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
1205
1206 final NativeDaemonEvent event;
1207 try {
1208 event = mConnector.execute("interface", "setmtu", iface, mtu);
1209 } catch (NativeDaemonConnectorException e) {
1210 throw e.rethrowAsParcelableException();
1211 }
1212 }
1213
1214 @Override
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]1215 public void shutdown() {
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1216 // TODO: remove from aidl if nobody calls externally
1217 mContext.enforceCallingOrSelfPermission(SHUTDOWN, TAG);
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]1218
Felipe Leme03e689d2016-03-02 16:17:38 -0800[diff] [blame]1219 Slog.i(TAG, "Shutting down");
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]1220 }
1221
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1222 @Override
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]1223 public boolean getIpForwardingEnabled() throws IllegalStateException{
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1224 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]1225
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1226 final NativeDaemonEvent event;
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1227 try {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1228 event = mConnector.execute("ipfwd", "status");
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1229 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]1230 throw e.rethrowAsParcelableException();
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1231 }
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]1232
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1233 // 211 Forwarding enabled
1234 event.checkCode(IpFwdStatusResult);
1235 return event.getMessage().endsWith("enabled");
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]1236 }
1237
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1238 @Override
1239 public void setIpForwardingEnabled(boolean enable) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1240 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Jeff Sharkey31c6e482011-11-18 17:09:01 -0800[diff] [blame]1241 try {
Nilesh Poddarf3d4a582015-02-24 12:11:11 -0800[diff] [blame]1242 mConnector.execute("ipfwd", enable ? "enable" : "disable", "tethering");
Jeff Sharkey31c6e482011-11-18 17:09:01 -0800[diff] [blame]1243 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]1244 throw e.rethrowAsParcelableException();
Jeff Sharkey31c6e482011-11-18 17:09:01 -0800[diff] [blame]1245 }
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]1246 }
1247
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1248 @Override
1249 public void startTethering(String[] dhcpRange) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1250 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Robert Greenwaltbfb7bfa2010-03-24 16:03:21 -0700[diff] [blame]1251 // cmd is "tether start first_start first_stop second_start second_stop ..."
1252 // an odd number of addrs will fail
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1253
1254 final Command cmd = new Command("tether", "start");
Robert Greenwaltbfb7bfa2010-03-24 16:03:21 -0700[diff] [blame]1255 for (String d : dhcpRange) {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1256 cmd.appendArg(d);
Robert Greenwaltbfb7bfa2010-03-24 16:03:21 -0700[diff] [blame]1257 }
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1258
1259 try {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1260 mConnector.execute(cmd);
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1261 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]1262 throw e.rethrowAsParcelableException();
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1263 }
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]1264 }
1265
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1266 @Override
1267 public void stopTethering() {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1268 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1269 try {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1270 mConnector.execute("tether", "stop");
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1271 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]1272 throw e.rethrowAsParcelableException();
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1273 }
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]1274 }
1275
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1276 @Override
1277 public boolean isTetheringStarted() {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1278 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]1279
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1280 final NativeDaemonEvent event;
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1281 try {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1282 event = mConnector.execute("tether", "status");
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1283 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]1284 throw e.rethrowAsParcelableException();
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1285 }
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]1286
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1287 // 210 Tethering services started
1288 event.checkCode(TetherStatusResult);
1289 return event.getMessage().endsWith("started");
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]1290 }
Matthew Xiefe19f122012-07-12 16:03:32 -0700[diff] [blame]1291
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1292 @Override
1293 public void tetherInterface(String iface) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1294 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1295 try {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1296 mConnector.execute("tether", "interface", "add", iface);
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1297 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]1298 throw e.rethrowAsParcelableException();
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1299 }
Christopher Wiley212b95f2016-08-02 11:38:57 -0700[diff] [blame]1300 List<RouteInfo> routes = new ArrayList<>();
Sreeram Ramachandrana77760d2014-07-17 17:09:07 -0700[diff] [blame]1301 // The RouteInfo constructor truncates the LinkAddress to a network prefix, thus making it
1302 // suitable to use as a route destination.
1303 routes.add(new RouteInfo(getInterfaceConfig(iface).getLinkAddress(), null, iface));
1304 addInterfaceToLocalNetwork(iface, routes);
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]1305 }
1306
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1307 @Override
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]1308 public void untetherInterface(String iface) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1309 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1310 try {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1311 mConnector.execute("tether", "interface", "remove", iface);
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1312 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]1313 throw e.rethrowAsParcelableException();
Erik Kline1f4278a2016-08-16 16:46:33 +0900[diff] [blame]1314 } finally {
1315 removeInterfaceFromLocalNetwork(iface);
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1316 }
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]1317 }
1318
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1319 @Override
1320 public String[] listTetheredInterfaces() {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1321 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1322 try {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1323 return NativeDaemonEvent.filterMessageList(
1324 mConnector.executeForList("tether", "interface", "list"),
1325 TetherInterfaceListResult);
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1326 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]1327 throw e.rethrowAsParcelableException();
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1328 }
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]1329 }
1330
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1331 @Override
Lorenzo Colittib57edc52014-08-22 17:10:50 -0700[diff] [blame]1332 public void setDnsForwarders(Network network, String[] dns) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1333 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1334
Lorenzo Colittib57edc52014-08-22 17:10:50 -0700[diff] [blame]1335 int netId = (network != null) ? network.netId : ConnectivityManager.NETID_UNSET;
1336 final Command cmd = new Command("tether", "dns", "set", netId);
1337
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1338 for (String s : dns) {
1339 cmd.appendArg(NetworkUtils.numericToInetAddress(s).getHostAddress());
1340 }
1341
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]1342 try {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1343 mConnector.execute(cmd);
1344 } catch (NativeDaemonConnectorException e) {
1345 throw e.rethrowAsParcelableException();
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]1346 }
1347 }
1348
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1349 @Override
1350 public String[] getDnsForwarders() {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1351 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1352 try {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1353 return NativeDaemonEvent.filterMessageList(
1354 mConnector.executeForList("tether", "dns", "list"), TetherDnsFwdTgtListResult);
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1355 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]1356 throw e.rethrowAsParcelableException();
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1357 }
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]1358 }
1359
jiaguo1da35f72014-01-09 16:39:59 +0800[diff] [blame]1360 private List<InterfaceAddress> excludeLinkLocal(List<InterfaceAddress> addresses) {
Christopher Wiley212b95f2016-08-02 11:38:57 -0700[diff] [blame]1361 ArrayList<InterfaceAddress> filtered = new ArrayList<>(addresses.size());
jiaguo1da35f72014-01-09 16:39:59 +0800[diff] [blame]1362 for (InterfaceAddress ia : addresses) {
1363 if (!ia.getAddress().isLinkLocalAddress())
1364 filtered.add(ia);
1365 }
1366 return filtered;
1367 }
1368
Lorenzo Colitti35e36db2015-02-26 01:25:36 +0900[diff] [blame]1369 private void modifyInterfaceForward(boolean add, String fromIface, String toIface) {
1370 final Command cmd = new Command("ipfwd", add ? "add" : "remove", fromIface, toIface);
1371 try {
1372 mConnector.execute(cmd);
1373 } catch (NativeDaemonConnectorException e) {
1374 throw e.rethrowAsParcelableException();
1375 }
1376 }
1377
1378 @Override
1379 public void startInterfaceForwarding(String fromIface, String toIface) {
1380 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
1381 modifyInterfaceForward(true, fromIface, toIface);
1382 }
1383
1384 @Override
1385 public void stopInterfaceForwarding(String fromIface, String toIface) {
1386 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
1387 modifyInterfaceForward(false, fromIface, toIface);
1388 }
1389
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1390 private void modifyNat(String action, String internalInterface, String externalInterface)
Robert Greenwalt3b28e9a2011-11-02 14:37:19 -0700[diff] [blame]1391 throws SocketException {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1392 final Command cmd = new Command("nat", action, internalInterface, externalInterface);
Robert Greenwalt3b28e9a2011-11-02 14:37:19 -0700[diff] [blame]1393
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1394 final NetworkInterface internalNetworkInterface = NetworkInterface.getByName(
1395 internalInterface);
Robert Greenwalte83d1812011-11-21 14:44:39 -0800[diff] [blame]1396 if (internalNetworkInterface == null) {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1397 cmd.appendArg("0");
Robert Greenwalte83d1812011-11-21 14:44:39 -0800[diff] [blame]1398 } else {
jiaguo1da35f72014-01-09 16:39:59 +0800[diff] [blame]1399 // Don't touch link-local routes, as link-local addresses aren't routable,
1400 // kernel creates link-local routes on all interfaces automatically
1401 List<InterfaceAddress> interfaceAddresses = excludeLinkLocal(
1402 internalNetworkInterface.getInterfaceAddresses());
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1403 cmd.appendArg(interfaceAddresses.size());
Robert Greenwalte83d1812011-11-21 14:44:39 -0800[diff] [blame]1404 for (InterfaceAddress ia : interfaceAddresses) {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1405 InetAddress addr = NetworkUtils.getNetworkPart(
1406 ia.getAddress(), ia.getNetworkPrefixLength());
1407 cmd.appendArg(addr.getHostAddress() + "/" + ia.getNetworkPrefixLength());
Robert Greenwalte83d1812011-11-21 14:44:39 -0800[diff] [blame]1408 }
Robert Greenwalt3b28e9a2011-11-02 14:37:19 -0700[diff] [blame]1409 }
1410
Jeff Sharkey31c6e482011-11-18 17:09:01 -0800[diff] [blame]1411 try {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1412 mConnector.execute(cmd);
Jeff Sharkey31c6e482011-11-18 17:09:01 -0800[diff] [blame]1413 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]1414 throw e.rethrowAsParcelableException();
Jeff Sharkey31c6e482011-11-18 17:09:01 -0800[diff] [blame]1415 }
Robert Greenwalt3b28e9a2011-11-02 14:37:19 -0700[diff] [blame]1416 }
1417
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1418 @Override
1419 public void enableNat(String internalInterface, String externalInterface) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1420 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1421 try {
Robert Greenwalt3b28e9a2011-11-02 14:37:19 -0700[diff] [blame]1422 modifyNat("enable", internalInterface, externalInterface);
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1423 } catch (SocketException e) {
1424 throw new IllegalStateException(e);
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1425 }
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]1426 }
1427
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1428 @Override
1429 public void disableNat(String internalInterface, String externalInterface) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1430 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1431 try {
Robert Greenwalt3b28e9a2011-11-02 14:37:19 -0700[diff] [blame]1432 modifyNat("disable", internalInterface, externalInterface);
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1433 } catch (SocketException e) {
1434 throw new IllegalStateException(e);
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1435 }
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]1436 }
San Mehat72759df2010-01-19 13:50:37 -0800[diff] [blame]1437
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1438 @Override
1439 public String[] listTtys() {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1440 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1441 try {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1442 return NativeDaemonEvent.filterMessageList(
1443 mConnector.executeForList("list_ttys"), TtyListResult);
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1444 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]1445 throw e.rethrowAsParcelableException();
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1446 }
San Mehat72759df2010-01-19 13:50:37 -0800[diff] [blame]1447 }
1448
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1449 @Override
1450 public void attachPppd(
1451 String tty, String localAddr, String remoteAddr, String dns1Addr, String dns2Addr) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1452 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
San Mehat72759df2010-01-19 13:50:37 -0800[diff] [blame]1453 try {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1454 mConnector.execute("pppd", "attach", tty,
Robert Greenwalte5903732011-02-22 16:00:42 -0800[diff] [blame]1455 NetworkUtils.numericToInetAddress(localAddr).getHostAddress(),
1456 NetworkUtils.numericToInetAddress(remoteAddr).getHostAddress(),
1457 NetworkUtils.numericToInetAddress(dns1Addr).getHostAddress(),
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1458 NetworkUtils.numericToInetAddress(dns2Addr).getHostAddress());
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1459 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]1460 throw e.rethrowAsParcelableException();
San Mehat72759df2010-01-19 13:50:37 -0800[diff] [blame]1461 }
1462 }
1463
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1464 @Override
1465 public void detachPppd(String tty) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1466 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1467 try {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1468 mConnector.execute("pppd", "detach", tty);
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1469 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]1470 throw e.rethrowAsParcelableException();
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1471 }
San Mehat72759df2010-01-19 13:50:37 -0800[diff] [blame]1472 }
Robert Greenwaltce1200d2010-02-18 11:25:54 -0800[diff] [blame]1473
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1474 @Override
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]1475 public void addIdleTimer(String iface, int timeout, final int type) {
Haoyu Bai04124232012-06-28 15:26:19 -0700[diff] [blame]1476 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
1477
1478 if (DBG) Slog.d(TAG, "Adding idletimer");
1479
1480 synchronized (mIdleTimerLock) {
1481 IdleTimerParams params = mActiveIdleTimers.get(iface);
1482 if (params != null) {
1483 // the interface already has idletimer, update network count
1484 params.networkCount++;
1485 return;
1486 }
1487
1488 try {
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]1489 mConnector.execute("idletimer", "add", iface, Integer.toString(timeout),
1490 Integer.toString(type));
Haoyu Bai04124232012-06-28 15:26:19 -0700[diff] [blame]1491 } catch (NativeDaemonConnectorException e) {
1492 throw e.rethrowAsParcelableException();
1493 }
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]1494 mActiveIdleTimers.put(iface, new IdleTimerParams(timeout, type));
1495
Dianne Hackborne13c4c02014-02-11 17:18:35 -0800[diff] [blame]1496 // Networks start up.
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]1497 if (ConnectivityManager.isNetworkTypeMobile(type)) {
1498 mNetworkActive = false;
1499 }
Dianne Hackborn2ffa11e2014-04-21 15:56:18 -0700[diff] [blame]1500 mDaemonHandler.post(new Runnable() {
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]1501 @Override public void run() {
Dianne Hackborn2ffa11e2014-04-21 15:56:18 -0700[diff] [blame]1502 notifyInterfaceClassActivity(type,
1503 DataConnectionRealTimeInfo.DC_POWER_STATE_HIGH,
Ruchi Kandoifa97fcf2016-05-13 15:10:39 -0700[diff] [blame]1504 SystemClock.elapsedRealtimeNanos(), -1, false);
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]1505 }
1506 });
Haoyu Bai04124232012-06-28 15:26:19 -0700[diff] [blame]1507 }
1508 }
1509
1510 @Override
1511 public void removeIdleTimer(String iface) {
1512 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
1513
1514 if (DBG) Slog.d(TAG, "Removing idletimer");
1515
1516 synchronized (mIdleTimerLock) {
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]1517 final IdleTimerParams params = mActiveIdleTimers.get(iface);
Haoyu Bai04124232012-06-28 15:26:19 -0700[diff] [blame]1518 if (params == null || --(params.networkCount) > 0) {
1519 return;
1520 }
1521
1522 try {
1523 mConnector.execute("idletimer", "remove", iface,
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]1524 Integer.toString(params.timeout), Integer.toString(params.type));
Haoyu Bai04124232012-06-28 15:26:19 -0700[diff] [blame]1525 } catch (NativeDaemonConnectorException e) {
1526 throw e.rethrowAsParcelableException();
1527 }
1528 mActiveIdleTimers.remove(iface);
Dianne Hackborn2ffa11e2014-04-21 15:56:18 -0700[diff] [blame]1529 mDaemonHandler.post(new Runnable() {
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]1530 @Override public void run() {
Dianne Hackborn2ffa11e2014-04-21 15:56:18 -0700[diff] [blame]1531 notifyInterfaceClassActivity(params.type,
1532 DataConnectionRealTimeInfo.DC_POWER_STATE_LOW,
Ruchi Kandoifa97fcf2016-05-13 15:10:39 -0700[diff] [blame]1533 SystemClock.elapsedRealtimeNanos(), -1, false);
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]1534 }
1535 });
Haoyu Bai04124232012-06-28 15:26:19 -0700[diff] [blame]1536 }
1537 }
1538
1539 @Override
Jeff Sharkeye8914c32012-05-01 16:26:09 -0700[diff] [blame]1540 public NetworkStats getNetworkStatsSummaryDev() {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1541 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Jeff Sharkey9a2c2a62013-01-14 16:48:51 -0800[diff] [blame]1542 try {
1543 return mStatsFactory.readNetworkStatsSummaryDev();
1544 } catch (IOException e) {
1545 throw new IllegalStateException(e);
1546 }
Jeff Sharkeye8914c32012-05-01 16:26:09 -0700[diff] [blame]1547 }
1548
1549 @Override
1550 public NetworkStats getNetworkStatsSummaryXt() {
1551 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Jeff Sharkey9a2c2a62013-01-14 16:48:51 -0800[diff] [blame]1552 try {
1553 return mStatsFactory.readNetworkStatsSummaryXt();
1554 } catch (IOException e) {
1555 throw new IllegalStateException(e);
1556 }
Jeff Sharkeyae2c1812011-10-04 13:11:40 -0700[diff] [blame]1557 }
1558
Jeff Sharkeyeedcb952011-05-17 14:55:15 -0700[diff] [blame]1559 @Override
Jeff Sharkey9a13f362011-04-26 16:25:36 -0700[diff] [blame]1560 public NetworkStats getNetworkStatsDetail() {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1561 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Jeff Sharkey9a2c2a62013-01-14 16:48:51 -0800[diff] [blame]1562 try {
Dianne Hackbornd0c5b9a2014-02-21 16:19:05 -0800[diff] [blame]1563 return mStatsFactory.readNetworkStatsDetail(UID_ALL, null, TAG_ALL, null);
Jeff Sharkey9a2c2a62013-01-14 16:48:51 -0800[diff] [blame]1564 } catch (IOException e) {
1565 throw new IllegalStateException(e);
1566 }
San Mehat91cac642010-03-31 14:31:36 -0700[diff] [blame]1567 }
1568
Jeff Sharkeyeedcb952011-05-17 14:55:15 -0700[diff] [blame]1569 @Override
Jeff Sharkey41ff7ec2011-07-25 15:21:22 -0700[diff] [blame]1570 public void setInterfaceQuota(String iface, long quotaBytes) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1571 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Jeff Sharkeyb3f19ca2011-06-29 23:54:13 -0700[diff] [blame]1572
Jeff Sharkey350083e2011-06-29 10:45:16 -0700[diff] [blame]1573 // silently discard when control disabled
1574 // TODO: eventually migrate to be always enabled
1575 if (!mBandwidthControlEnabled) return;
1576
Jeff Sharkey41ff7ec2011-07-25 15:21:22 -0700[diff] [blame]1577 synchronized (mQuotaLock) {
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]1578 if (mActiveQuotas.containsKey(iface)) {
Jeff Sharkey41ff7ec2011-07-25 15:21:22 -0700[diff] [blame]1579 throw new IllegalStateException("iface " + iface + " already has quota");
Jeff Sharkeyb3f19ca2011-06-29 23:54:13 -0700[diff] [blame]1580 }
1581
Jeff Sharkeyb3f19ca2011-06-29 23:54:13 -0700[diff] [blame]1582 try {
Jeff Sharkey41ff7ec2011-07-25 15:21:22 -0700[diff] [blame]1583 // TODO: support quota shared across interfaces
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1584 mConnector.execute("bandwidth", "setiquota", iface, quotaBytes);
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]1585 mActiveQuotas.put(iface, quotaBytes);
Jeff Sharkeyb3f19ca2011-06-29 23:54:13 -0700[diff] [blame]1586 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]1587 throw e.rethrowAsParcelableException();
Jeff Sharkeyb3f19ca2011-06-29 23:54:13 -0700[diff] [blame]1588 }
Ashish Sharma50fd36d2011-06-15 19:34:53 -0700[diff] [blame]1589 }
1590 }
1591
1592 @Override
Jeff Sharkeyb3f19ca2011-06-29 23:54:13 -0700[diff] [blame]1593 public void removeInterfaceQuota(String iface) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1594 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Jeff Sharkeyb3f19ca2011-06-29 23:54:13 -0700[diff] [blame]1595
Jeff Sharkey350083e2011-06-29 10:45:16 -0700[diff] [blame]1596 // silently discard when control disabled
1597 // TODO: eventually migrate to be always enabled
1598 if (!mBandwidthControlEnabled) return;
1599
Jeff Sharkey41ff7ec2011-07-25 15:21:22 -0700[diff] [blame]1600 synchronized (mQuotaLock) {
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]1601 if (!mActiveQuotas.containsKey(iface)) {
Jeff Sharkeyb3f19ca2011-06-29 23:54:13 -0700[diff] [blame]1602 // TODO: eventually consider throwing
1603 return;
1604 }
1605
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]1606 mActiveQuotas.remove(iface);
1607 mActiveAlerts.remove(iface);
Jeff Sharkey38ddeaa2011-11-08 13:04:22 -0800[diff] [blame]1608
Jeff Sharkeyb3f19ca2011-06-29 23:54:13 -0700[diff] [blame]1609 try {
Jeff Sharkey41ff7ec2011-07-25 15:21:22 -0700[diff] [blame]1610 // TODO: support quota shared across interfaces
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1611 mConnector.execute("bandwidth", "removeiquota", iface);
Jeff Sharkeyb3f19ca2011-06-29 23:54:13 -0700[diff] [blame]1612 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]1613 throw e.rethrowAsParcelableException();
Jeff Sharkeyb3f19ca2011-06-29 23:54:13 -0700[diff] [blame]1614 }
1615 }
1616 }
1617
1618 @Override
Jeff Sharkey41ff7ec2011-07-25 15:21:22 -0700[diff] [blame]1619 public void setInterfaceAlert(String iface, long alertBytes) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1620 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Jeff Sharkey41ff7ec2011-07-25 15:21:22 -0700[diff] [blame]1621
1622 // silently discard when control disabled
1623 // TODO: eventually migrate to be always enabled
1624 if (!mBandwidthControlEnabled) return;
1625
1626 // quick sanity check
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]1627 if (!mActiveQuotas.containsKey(iface)) {
Jeff Sharkey41ff7ec2011-07-25 15:21:22 -0700[diff] [blame]1628 throw new IllegalStateException("setting alert requires existing quota on iface");
1629 }
1630
1631 synchronized (mQuotaLock) {
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]1632 if (mActiveAlerts.containsKey(iface)) {
Jeff Sharkey41ff7ec2011-07-25 15:21:22 -0700[diff] [blame]1633 throw new IllegalStateException("iface " + iface + " already has alert");
1634 }
1635
Jeff Sharkey41ff7ec2011-07-25 15:21:22 -0700[diff] [blame]1636 try {
1637 // TODO: support alert shared across interfaces
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1638 mConnector.execute("bandwidth", "setinterfacealert", iface, alertBytes);
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]1639 mActiveAlerts.put(iface, alertBytes);
Jeff Sharkey41ff7ec2011-07-25 15:21:22 -0700[diff] [blame]1640 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]1641 throw e.rethrowAsParcelableException();
Jeff Sharkey41ff7ec2011-07-25 15:21:22 -0700[diff] [blame]1642 }
1643 }
1644 }
1645
1646 @Override
1647 public void removeInterfaceAlert(String iface) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1648 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Jeff Sharkey41ff7ec2011-07-25 15:21:22 -0700[diff] [blame]1649
1650 // silently discard when control disabled
1651 // TODO: eventually migrate to be always enabled
1652 if (!mBandwidthControlEnabled) return;
1653
1654 synchronized (mQuotaLock) {
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]1655 if (!mActiveAlerts.containsKey(iface)) {
Jeff Sharkey41ff7ec2011-07-25 15:21:22 -0700[diff] [blame]1656 // TODO: eventually consider throwing
1657 return;
1658 }
1659
Jeff Sharkey41ff7ec2011-07-25 15:21:22 -0700[diff] [blame]1660 try {
1661 // TODO: support alert shared across interfaces
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1662 mConnector.execute("bandwidth", "removeinterfacealert", iface);
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]1663 mActiveAlerts.remove(iface);
Jeff Sharkey41ff7ec2011-07-25 15:21:22 -0700[diff] [blame]1664 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]1665 throw e.rethrowAsParcelableException();
Jeff Sharkey41ff7ec2011-07-25 15:21:22 -0700[diff] [blame]1666 }
1667 }
1668 }
1669
1670 @Override
1671 public void setGlobalAlert(long alertBytes) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1672 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Jeff Sharkey41ff7ec2011-07-25 15:21:22 -0700[diff] [blame]1673
1674 // silently discard when control disabled
1675 // TODO: eventually migrate to be always enabled
1676 if (!mBandwidthControlEnabled) return;
1677
Jeff Sharkey41ff7ec2011-07-25 15:21:22 -0700[diff] [blame]1678 try {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1679 mConnector.execute("bandwidth", "setglobalalert", alertBytes);
Jeff Sharkey41ff7ec2011-07-25 15:21:22 -0700[diff] [blame]1680 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]1681 throw e.rethrowAsParcelableException();
Jeff Sharkey41ff7ec2011-07-25 15:21:22 -0700[diff] [blame]1682 }
1683 }
1684
Felipe Leme65be3022016-03-22 14:53:13 -0700[diff] [blame]1685 private void setUidOnMeteredNetworkList(SparseBooleanArray quotaList, int uid,
1686 boolean blacklist, boolean enable) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1687 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Jeff Sharkeyb3f19ca2011-06-29 23:54:13 -0700[diff] [blame]1688
Jeff Sharkey350083e2011-06-29 10:45:16 -0700[diff] [blame]1689 // silently discard when control disabled
1690 // TODO: eventually migrate to be always enabled
1691 if (!mBandwidthControlEnabled) return;
1692
Felipe Leme65be3022016-03-22 14:53:13 -0700[diff] [blame]1693 final String chain = blacklist ? "naughtyapps" : "niceapps";
1694 final String suffix = enable ? "add" : "remove";
1695
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]1696 synchronized (mQuotaLock) {
Felipe Leme65be3022016-03-22 14:53:13 -0700[diff] [blame]1697 final boolean oldEnable = quotaList.get(uid, false);
1698 if (oldEnable == enable) {
Jeff Sharkeyb3f19ca2011-06-29 23:54:13 -0700[diff] [blame]1699 // TODO: eventually consider throwing
1700 return;
1701 }
1702
Felipe Leme29e72ea2016-09-08 13:26:55 -0700[diff] [blame^]1703 Trace.traceBegin(Trace.TRACE_TAG_NETWORK, "inetd bandwidth");
Jeff Sharkeyb3f19ca2011-06-29 23:54:13 -0700[diff] [blame]1704 try {
Felipe Leme65be3022016-03-22 14:53:13 -0700[diff] [blame]1705 mConnector.execute("bandwidth", suffix + chain, uid);
1706 if (enable) {
1707 quotaList.put(uid, true);
Jeff Sharkeyb3f19ca2011-06-29 23:54:13 -0700[diff] [blame]1708 } else {
Felipe Leme65be3022016-03-22 14:53:13 -0700[diff] [blame]1709 quotaList.delete(uid);
Jeff Sharkeyb3f19ca2011-06-29 23:54:13 -0700[diff] [blame]1710 }
1711 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]1712 throw e.rethrowAsParcelableException();
Felipe Leme29e72ea2016-09-08 13:26:55 -0700[diff] [blame^]1713 } finally {
1714 Trace.traceEnd(Trace.TRACE_TAG_NETWORK);
Jeff Sharkeyb3f19ca2011-06-29 23:54:13 -0700[diff] [blame]1715 }
Ashish Sharma50fd36d2011-06-15 19:34:53 -0700[diff] [blame]1716 }
1717 }
1718
Jeff Sharkey63d27a92011-08-03 17:04:22 -0700[diff] [blame]1719 @Override
Felipe Leme65be3022016-03-22 14:53:13 -0700[diff] [blame]1720 public void setUidMeteredNetworkBlacklist(int uid, boolean enable) {
1721 setUidOnMeteredNetworkList(mUidRejectOnMetered, uid, true, enable);
1722 }
1723
1724 @Override
1725 public void setUidMeteredNetworkWhitelist(int uid, boolean enable) {
1726 setUidOnMeteredNetworkList(mUidAllowOnMetered, uid, false, enable);
1727 }
1728
1729 @Override
1730 public boolean setDataSaverModeEnabled(boolean enable) {
1731 if (DBG) Log.d(TAG, "setDataSaverMode: " + enable);
1732 synchronized (mQuotaLock) {
1733 if (mDataSaverMode == enable) {
1734 Log.w(TAG, "setDataSaverMode(): already " + mDataSaverMode);
1735 return true;
1736 }
Felipe Leme29e72ea2016-09-08 13:26:55 -0700[diff] [blame^]1737 Trace.traceBegin(Trace.TRACE_TAG_NETWORK, "bandwidthEnableDataSaver");
Felipe Leme65be3022016-03-22 14:53:13 -0700[diff] [blame]1738 try {
1739 final boolean changed = mNetdService.bandwidthEnableDataSaver(enable);
1740 if (changed) {
1741 mDataSaverMode = enable;
1742 } else {
1743 Log.w(TAG, "setDataSaverMode(" + enable + "): netd command silently failed");
1744 }
1745 return changed;
1746 } catch (RemoteException e) {
1747 Log.w(TAG, "setDataSaverMode(" + enable + "): netd command failed", e);
1748 return false;
Felipe Leme29e72ea2016-09-08 13:26:55 -0700[diff] [blame^]1749 } finally {
1750 Trace.traceEnd(Trace.TRACE_TAG_NETWORK);
Felipe Leme65be3022016-03-22 14:53:13 -0700[diff] [blame]1751 }
1752 }
1753 }
1754
1755 @Override
Robin Lee17e61832016-05-09 13:46:28 +0100[diff] [blame]1756 public void setAllowOnlyVpnForUids(boolean add, UidRange[] uidRanges)
1757 throws ServiceSpecificException {
1758 try {
1759 mNetdService.networkRejectNonSecureVpn(add, uidRanges);
1760 } catch (ServiceSpecificException e) {
1761 Log.w(TAG, "setAllowOnlyVpnForUids(" + add + ", " + Arrays.toString(uidRanges) + ")"
1762 + ": netd command failed", e);
1763 throw e;
1764 } catch (RemoteException e) {
1765 Log.w(TAG, "setAllowOnlyVpnForUids(" + add + ", " + Arrays.toString(uidRanges) + ")"
1766 + ": netd command failed", e);
1767 throw e.rethrowAsRuntimeException();
1768 }
1769 }
1770
1771 @Override
Jeff Sharkey605eb792014-11-04 13:34:06 -0800[diff] [blame]1772 public void setUidCleartextNetworkPolicy(int uid, int policy) {
1773 if (Binder.getCallingUid() != uid) {
1774 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
1775 }
1776
1777 synchronized (mQuotaLock) {
1778 final int oldPolicy = mUidCleartextPolicy.get(uid, StrictMode.NETWORK_POLICY_ACCEPT);
1779 if (oldPolicy == policy) {
1780 return;
1781 }
1782
1783 if (!mStrictEnabled) {
1784 // Module isn't enabled yet; stash the requested policy away to
1785 // apply later once the daemon is connected.
1786 mUidCleartextPolicy.put(uid, policy);
1787 return;
1788 }
1789
1790 final String policyString;
1791 switch (policy) {
1792 case StrictMode.NETWORK_POLICY_ACCEPT:
1793 policyString = "accept";
1794 break;
1795 case StrictMode.NETWORK_POLICY_LOG:
1796 policyString = "log";
1797 break;
1798 case StrictMode.NETWORK_POLICY_REJECT:
1799 policyString = "reject";
1800 break;
1801 default:
1802 throw new IllegalArgumentException("Unknown policy " + policy);
1803 }
1804
1805 try {
1806 mConnector.execute("strict", "set_uid_cleartext_policy", uid, policyString);
1807 mUidCleartextPolicy.put(uid, policy);
1808 } catch (NativeDaemonConnectorException e) {
1809 throw e.rethrowAsParcelableException();
1810 }
1811 }
1812 }
1813
1814 @Override
Jeff Sharkey63d27a92011-08-03 17:04:22 -0700[diff] [blame]1815 public boolean isBandwidthControlEnabled() {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1816 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Jeff Sharkey63d27a92011-08-03 17:04:22 -0700[diff] [blame]1817 return mBandwidthControlEnabled;
1818 }
1819
1820 @Override
Jeff Sharkeyeedcb952011-05-17 14:55:15 -0700[diff] [blame]1821 public NetworkStats getNetworkStatsUidDetail(int uid) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1822 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Jeff Sharkey9a2c2a62013-01-14 16:48:51 -0800[diff] [blame]1823 try {
Dianne Hackbornd0c5b9a2014-02-21 16:19:05 -0800[diff] [blame]1824 return mStatsFactory.readNetworkStatsDetail(uid, null, TAG_ALL, null);
Jeff Sharkey9a2c2a62013-01-14 16:48:51 -0800[diff] [blame]1825 } catch (IOException e) {
1826 throw new IllegalStateException(e);
1827 }
Jeff Sharkeyeedcb952011-05-17 14:55:15 -0700[diff] [blame]1828 }
1829
Jeff Sharkeycdd02c5d2011-09-16 01:52:49 -0700[diff] [blame]1830 @Override
Jeff Sharkeye4984be2013-09-10 21:03:27 -0700[diff] [blame]1831 public NetworkStats getNetworkStatsTethering() {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1832 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Jeff Sharkeycdd02c5d2011-09-16 01:52:49 -0700[diff] [blame]1833
Jeff Sharkeycdd02c5d2011-09-16 01:52:49 -0700[diff] [blame]1834 final NetworkStats stats = new NetworkStats(SystemClock.elapsedRealtime(), 1);
Jeff Sharkeycdd02c5d2011-09-16 01:52:49 -0700[diff] [blame]1835 try {
Jeff Sharkeye4984be2013-09-10 21:03:27 -0700[diff] [blame]1836 final NativeDaemonEvent[] events = mConnector.executeForList(
1837 "bandwidth", "gettetherstats");
1838 for (NativeDaemonEvent event : events) {
1839 if (event.getCode() != TetheringStatsListResult) continue;
1840
1841 // 114 ifaceIn ifaceOut rx_bytes rx_packets tx_bytes tx_packets
1842 final StringTokenizer tok = new StringTokenizer(event.getMessage());
1843 try {
1844 final String ifaceIn = tok.nextToken();
1845 final String ifaceOut = tok.nextToken();
1846
1847 final NetworkStats.Entry entry = new NetworkStats.Entry();
1848 entry.iface = ifaceOut;
1849 entry.uid = UID_TETHERING;
1850 entry.set = SET_DEFAULT;
1851 entry.tag = TAG_NONE;
1852 entry.rxBytes = Long.parseLong(tok.nextToken());
1853 entry.rxPackets = Long.parseLong(tok.nextToken());
1854 entry.txBytes = Long.parseLong(tok.nextToken());
1855 entry.txPackets = Long.parseLong(tok.nextToken());
1856 stats.combineValues(entry);
1857 } catch (NoSuchElementException e) {
1858 throw new IllegalStateException("problem parsing tethering stats: " + event);
1859 } catch (NumberFormatException e) {
1860 throw new IllegalStateException("problem parsing tethering stats: " + event);
1861 }
1862 }
Jeff Sharkeycdd02c5d2011-09-16 01:52:49 -0700[diff] [blame]1863 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]1864 throw e.rethrowAsParcelableException();
Jeff Sharkeycdd02c5d2011-09-16 01:52:49 -0700[diff] [blame]1865 }
Jeff Sharkeye4984be2013-09-10 21:03:27 -0700[diff] [blame]1866 return stats;
Jeff Sharkeycdd02c5d2011-09-16 01:52:49 -0700[diff] [blame]1867 }
1868
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1869 @Override
Pierre Imai8e48e672016-04-21 13:30:43 +0900[diff] [blame]1870 public void setDnsConfigurationForNetwork(int netId, String[] servers, String domains) {
1871 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
1872
1873 ContentResolver resolver = mContext.getContentResolver();
1874
1875 int sampleValidity = Settings.Global.getInt(resolver,
1876 Settings.Global.DNS_RESOLVER_SAMPLE_VALIDITY_SECONDS,
1877 DNS_RESOLVER_DEFAULT_SAMPLE_VALIDITY_SECONDS);
1878 if (sampleValidity < 0 || sampleValidity > 65535) {
1879 Slog.w(TAG, "Invalid sampleValidity=" + sampleValidity + ", using default=" +
1880 DNS_RESOLVER_DEFAULT_SAMPLE_VALIDITY_SECONDS);
1881 sampleValidity = DNS_RESOLVER_DEFAULT_SAMPLE_VALIDITY_SECONDS;
1882 }
1883
1884 int successThreshold = Settings.Global.getInt(resolver,
1885 Settings.Global.DNS_RESOLVER_SUCCESS_THRESHOLD_PERCENT,
1886 DNS_RESOLVER_DEFAULT_SUCCESS_THRESHOLD_PERCENT);
1887 if (successThreshold < 0 || successThreshold > 100) {
1888 Slog.w(TAG, "Invalid successThreshold=" + successThreshold + ", using default=" +
1889 DNS_RESOLVER_DEFAULT_SUCCESS_THRESHOLD_PERCENT);
1890 successThreshold = DNS_RESOLVER_DEFAULT_SUCCESS_THRESHOLD_PERCENT;
1891 }
1892
1893 int minSamples = Settings.Global.getInt(resolver,
1894 Settings.Global.DNS_RESOLVER_MIN_SAMPLES, DNS_RESOLVER_DEFAULT_MIN_SAMPLES);
1895 int maxSamples = Settings.Global.getInt(resolver,
1896 Settings.Global.DNS_RESOLVER_MAX_SAMPLES, DNS_RESOLVER_DEFAULT_MAX_SAMPLES);
1897 if (minSamples < 0 || minSamples > maxSamples || maxSamples > 64) {
1898 Slog.w(TAG, "Invalid sample count (min, max)=(" + minSamples + ", " + maxSamples +
1899 "), using default=(" + DNS_RESOLVER_DEFAULT_MIN_SAMPLES + ", " +
1900 DNS_RESOLVER_DEFAULT_MAX_SAMPLES + ")");
1901 minSamples = DNS_RESOLVER_DEFAULT_MIN_SAMPLES;
1902 maxSamples = DNS_RESOLVER_DEFAULT_MAX_SAMPLES;
1903 }
1904
1905 final String[] domainStrs = domains == null ? new String[0] : domains.split(" ");
1906 final int[] params = { sampleValidity, successThreshold, minSamples, maxSamples };
1907 try {
1908 mNetdService.setResolverConfiguration(netId, servers, domainStrs, params);
1909 } catch (RemoteException e) {
1910 throw new RuntimeException(e);
1911 }
1912 }
1913
1914 @Override
Paul Jensen13e817d2014-04-10 14:16:37 -0400[diff] [blame]1915 public void setDnsServersForNetwork(int netId, String[] servers, String domains) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1916 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1917
Lorenzo Colitti829dfa72014-11-28 20:07:46 +0900[diff] [blame]1918 Command cmd;
1919 if (servers.length > 0) {
1920 cmd = new Command("resolver", "setnetdns", netId,
1921 (domains == null ? "" : domains));
1922 for (String s : servers) {
1923 InetAddress a = NetworkUtils.numericToInetAddress(s);
1924 if (a.isAnyLocalAddress() == false) {
1925 cmd.appendArg(a.getHostAddress());
1926 }
Mattias Falk7475c0c2011-04-04 16:10:36 +0200[diff] [blame]1927 }
Lorenzo Colitti829dfa72014-11-28 20:07:46 +0900[diff] [blame]1928 } else {
1929 cmd = new Command("resolver", "clearnetdns", netId);
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1930 }
1931
1932 try {
1933 mConnector.execute(cmd);
Mattias Falk7475c0c2011-04-04 16:10:36 +0200[diff] [blame]1934 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]1935 throw e.rethrowAsParcelableException();
Mattias Falk7475c0c2011-04-04 16:10:36 +0200[diff] [blame]1936 }
1937 }
1938
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1939 @Override
Paul Jensen6bc2c2c2014-05-07 15:27:40 -0400[diff] [blame]1940 public void addVpnUidRanges(int netId, UidRange[] ranges) {
Chad Brubaker3277620a2013-06-12 13:37:30 -0700[diff] [blame]1941 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Paul Jensen6bc2c2c2014-05-07 15:27:40 -0400[diff] [blame]1942 Object[] argv = new Object[3 + MAX_UID_RANGES_PER_COMMAND];
1943 argv[0] = "users";
1944 argv[1] = "add";
1945 argv[2] = netId;
1946 int argc = 3;
1947 // Avoid overly long commands by limiting number of UID ranges per command.
1948 for (int i = 0; i < ranges.length; i++) {
1949 argv[argc++] = ranges[i].toString();
1950 if (i == (ranges.length - 1) || argc == argv.length) {
1951 try {
1952 mConnector.execute("network", Arrays.copyOf(argv, argc));
1953 } catch (NativeDaemonConnectorException e) {
1954 throw e.rethrowAsParcelableException();
1955 }
1956 argc = 3;
1957 }
Chad Brubaker3277620a2013-06-12 13:37:30 -0700[diff] [blame]1958 }
1959 }
1960
1961 @Override
Paul Jensen6bc2c2c2014-05-07 15:27:40 -0400[diff] [blame]1962 public void removeVpnUidRanges(int netId, UidRange[] ranges) {
Chad Brubaker3277620a2013-06-12 13:37:30 -0700[diff] [blame]1963 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Paul Jensen6bc2c2c2014-05-07 15:27:40 -0400[diff] [blame]1964 Object[] argv = new Object[3 + MAX_UID_RANGES_PER_COMMAND];
1965 argv[0] = "users";
1966 argv[1] = "remove";
1967 argv[2] = netId;
1968 int argc = 3;
1969 // Avoid overly long commands by limiting number of UID ranges per command.
1970 for (int i = 0; i < ranges.length; i++) {
1971 argv[argc++] = ranges[i].toString();
1972 if (i == (ranges.length - 1) || argc == argv.length) {
1973 try {
1974 mConnector.execute("network", Arrays.copyOf(argv, argc));
1975 } catch (NativeDaemonConnectorException e) {
1976 throw e.rethrowAsParcelableException();
1977 }
1978 argc = 3;
1979 }
Chad Brubakercca54c42013-06-27 17:41:38 -0700[diff] [blame]1980 }
1981 }
1982
1983 @Override
Jeff Sharkeyc268f0b2012-08-24 10:25:31 -0700[diff] [blame]1984 public void setFirewallEnabled(boolean enabled) {
Jeff Sharkeyf56e2432012-09-06 17:54:29 -0700[diff] [blame]1985 enforceSystemUid();
Jeff Sharkeyc268f0b2012-08-24 10:25:31 -0700[diff] [blame]1986 try {
Amith Yamasani15e472352015-04-24 19:06:07 -0700[diff] [blame]1987 mConnector.execute("firewall", "enable", enabled ? "whitelist" : "blacklist");
Jeff Sharkeyc268f0b2012-08-24 10:25:31 -0700[diff] [blame]1988 mFirewallEnabled = enabled;
1989 } catch (NativeDaemonConnectorException e) {
1990 throw e.rethrowAsParcelableException();
1991 }
1992 }
1993
1994 @Override
1995 public boolean isFirewallEnabled() {
Jeff Sharkeyf56e2432012-09-06 17:54:29 -0700[diff] [blame]1996 enforceSystemUid();
Jeff Sharkeyc268f0b2012-08-24 10:25:31 -0700[diff] [blame]1997 return mFirewallEnabled;
1998 }
1999
2000 @Override
Jeff Sharkey2c092982012-08-24 11:44:40 -0700[diff] [blame]2001 public void setFirewallInterfaceRule(String iface, boolean allow) {
Jeff Sharkeyf56e2432012-09-06 17:54:29 -0700[diff] [blame]2002 enforceSystemUid();
Jeff Sharkeyc268f0b2012-08-24 10:25:31 -0700[diff] [blame]2003 Preconditions.checkState(mFirewallEnabled);
Sreeram Ramachandrana77760d2014-07-17 17:09:07 -0700[diff] [blame]2004 final String rule = allow ? "allow" : "deny";
Jeff Sharkeyc268f0b2012-08-24 10:25:31 -0700[diff] [blame]2005 try {
2006 mConnector.execute("firewall", "set_interface_rule", iface, rule);
2007 } catch (NativeDaemonConnectorException e) {
2008 throw e.rethrowAsParcelableException();
2009 }
2010 }
2011
2012 @Override
Jeff Sharkey2c092982012-08-24 11:44:40 -0700[diff] [blame]2013 public void setFirewallEgressSourceRule(String addr, boolean allow) {
Jeff Sharkeyf56e2432012-09-06 17:54:29 -0700[diff] [blame]2014 enforceSystemUid();
Jeff Sharkeyc268f0b2012-08-24 10:25:31 -0700[diff] [blame]2015 Preconditions.checkState(mFirewallEnabled);
Sreeram Ramachandrana77760d2014-07-17 17:09:07 -0700[diff] [blame]2016 final String rule = allow ? "allow" : "deny";
Jeff Sharkeyc268f0b2012-08-24 10:25:31 -0700[diff] [blame]2017 try {
2018 mConnector.execute("firewall", "set_egress_source_rule", addr, rule);
2019 } catch (NativeDaemonConnectorException e) {
2020 throw e.rethrowAsParcelableException();
2021 }
2022 }
2023
2024 @Override
Jeff Sharkey2c092982012-08-24 11:44:40 -0700[diff] [blame]2025 public void setFirewallEgressDestRule(String addr, int port, boolean allow) {
Jeff Sharkeyf56e2432012-09-06 17:54:29 -0700[diff] [blame]2026 enforceSystemUid();
Jeff Sharkeyc268f0b2012-08-24 10:25:31 -0700[diff] [blame]2027 Preconditions.checkState(mFirewallEnabled);
Sreeram Ramachandrana77760d2014-07-17 17:09:07 -0700[diff] [blame]2028 final String rule = allow ? "allow" : "deny";
Jeff Sharkeyc268f0b2012-08-24 10:25:31 -0700[diff] [blame]2029 try {
2030 mConnector.execute("firewall", "set_egress_dest_rule", addr, port, rule);
2031 } catch (NativeDaemonConnectorException e) {
2032 throw e.rethrowAsParcelableException();
2033 }
2034 }
2035
Lorenzo Colitti3fef7232016-04-29 18:00:03 +0900[diff] [blame]2036 private void closeSocketsForFirewallChainLocked(int chain, String chainName) {
Lorenzo Colitti4cb42402016-04-24 12:52:00 +0900[diff] [blame]2037 // UID ranges to close sockets on.
2038 UidRange[] ranges;
2039 // UID ranges whose sockets we won't touch.
2040 int[] exemptUids;
2041
Lorenzo Colitti3fef7232016-04-29 18:00:03 +0900[diff] [blame]2042 final SparseIntArray rules = getUidFirewallRules(chain);
Lorenzo Colitti4cb42402016-04-24 12:52:00 +0900[diff] [blame]2043 int numUids = 0;
2044
2045 if (getFirewallType(chain) == FIREWALL_TYPE_WHITELIST) {
2046 // Close all sockets on all non-system UIDs...
2047 ranges = new UidRange[] {
2048 // TODO: is there a better way of finding all existing users? If so, we could
2049 // specify their ranges here.
2050 new UidRange(Process.FIRST_APPLICATION_UID, Integer.MAX_VALUE),
2051 };
2052 // ... except for the UIDs that have allow rules.
2053 exemptUids = new int[rules.size()];
2054 for (int i = 0; i < exemptUids.length; i++) {
2055 if (rules.valueAt(i) == NetworkPolicyManager.FIREWALL_RULE_ALLOW) {
2056 exemptUids[numUids] = rules.keyAt(i);
2057 numUids++;
2058 }
2059 }
2060 // Normally, whitelist chains only contain deny rules, so numUids == exemptUids.length.
2061 // But the code does not guarantee this in any way, and at least in one case - if we add
2062 // a UID rule to the firewall, and then disable the firewall - the chains can contain
2063 // the wrong type of rule. In this case, don't close connections that we shouldn't.
2064 //
2065 // TODO: tighten up this code by ensuring we never set the wrong type of rule, and
2066 // fix setFirewallEnabled to grab mQuotaLock and clear rules.
2067 if (numUids != exemptUids.length) {
2068 exemptUids = Arrays.copyOf(exemptUids, numUids);
2069 }
2070 } else {
2071 // Close sockets for every UID that has a deny rule...
2072 ranges = new UidRange[rules.size()];
2073 for (int i = 0; i < ranges.length; i++) {
2074 if (rules.valueAt(i) == NetworkPolicyManager.FIREWALL_RULE_DENY) {
2075 int uid = rules.keyAt(i);
2076 ranges[numUids] = new UidRange(uid, uid);
2077 numUids++;
2078 }
2079 }
2080 // As above; usually numUids == ranges.length, but not always.
2081 if (numUids != ranges.length) {
2082 ranges = Arrays.copyOf(ranges, numUids);
2083 }
2084 // ... with no exceptions.
2085 exemptUids = new int[0];
2086 }
2087
2088 try {
2089 mNetdService.socketDestroy(ranges, exemptUids);
2090 } catch(RemoteException | ServiceSpecificException e) {
2091 Slog.e(TAG, "Error closing sockets after enabling chain " + chainName + ": " + e);
2092 }
2093 }
2094
Jeff Sharkeyc268f0b2012-08-24 10:25:31 -0700[diff] [blame]2095 @Override
Xiaohui Chenb41c9f72015-06-17 15:55:37 -0700[diff] [blame]2096 public void setFirewallChainEnabled(int chain, boolean enable) {
Jeff Sharkeyf56e2432012-09-06 17:54:29 -0700[diff] [blame]2097 enforceSystemUid();
Xiaohui Chen8dca36d2015-06-19 12:44:59 -0700[diff] [blame]2098 synchronized (mQuotaLock) {
Xiaohui Chen896b49a2015-07-29 14:12:22 -0700[diff] [blame]2099 if (mFirewallChainStates.get(chain) == enable) {
2100 // All is the same, nothing to do. This relies on the fact that netd has child
2101 // chains default detached.
Xiaohui Chen8dca36d2015-06-19 12:44:59 -0700[diff] [blame]2102 return;
Xiaohui Chenb41c9f72015-06-17 15:55:37 -0700[diff] [blame]2103 }
Xiaohui Chen8dca36d2015-06-19 12:44:59 -0700[diff] [blame]2104 mFirewallChainStates.put(chain, enable);
2105
2106 final String operation = enable ? "enable_chain" : "disable_chain";
Lorenzo Colitti3fef7232016-04-29 18:00:03 +0900[diff] [blame]2107 final String chainName;
Lorenzo Colitti4cb42402016-04-24 12:52:00 +0900[diff] [blame]2108 switch(chain) {
2109 case FIREWALL_CHAIN_STANDBY:
2110 chainName = FIREWALL_CHAIN_NAME_STANDBY;
2111 break;
2112 case FIREWALL_CHAIN_DOZABLE:
2113 chainName = FIREWALL_CHAIN_NAME_DOZABLE;
2114 break;
2115 case FIREWALL_CHAIN_POWERSAVE:
2116 chainName = FIREWALL_CHAIN_NAME_POWERSAVE;
2117 break;
2118 default:
2119 throw new IllegalArgumentException("Bad child chain: " + chain);
2120 }
2121
Xiaohui Chen8dca36d2015-06-19 12:44:59 -0700[diff] [blame]2122 try {
Xiaohui Chen8dca36d2015-06-19 12:44:59 -0700[diff] [blame]2123 mConnector.execute("firewall", operation, chainName);
2124 } catch (NativeDaemonConnectorException e) {
2125 throw e.rethrowAsParcelableException();
2126 }
Lorenzo Colitti4cb42402016-04-24 12:52:00 +0900[diff] [blame]2127
2128 // Close any sockets that were opened by the affected UIDs. This has to be done after
2129 // disabling network connectivity, in case they react to the socket close by reopening
2130 // the connection and race with the iptables commands that enable the firewall. All
2131 // whitelist and blacklist chains allow RSTs through.
2132 if (enable) {
2133 if (DBG) Slog.d(TAG, "Closing sockets after enabling chain " + chainName);
Lorenzo Colitti3fef7232016-04-29 18:00:03 +0900[diff] [blame]2134 closeSocketsForFirewallChainLocked(chain, chainName);
Lorenzo Colitti4cb42402016-04-24 12:52:00 +0900[diff] [blame]2135 }
Amith Yamasani15e472352015-04-24 19:06:07 -0700[diff] [blame]2136 }
Xiaohui Chenb41c9f72015-06-17 15:55:37 -0700[diff] [blame]2137 }
2138
2139 private int getFirewallType(int chain) {
2140 switch (chain) {
2141 case FIREWALL_CHAIN_STANDBY:
2142 return FIREWALL_TYPE_BLACKLIST;
2143 case FIREWALL_CHAIN_DOZABLE:
2144 return FIREWALL_TYPE_WHITELIST;
Felipe Leme011b98f2016-02-10 17:28:31 -0800[diff] [blame]2145 case FIREWALL_CHAIN_POWERSAVE:
2146 return FIREWALL_TYPE_WHITELIST;
Xiaohui Chenb41c9f72015-06-17 15:55:37 -0700[diff] [blame]2147 default:
2148 return isFirewallEnabled() ? FIREWALL_TYPE_WHITELIST : FIREWALL_TYPE_BLACKLIST;
2149 }
2150 }
2151
2152 @Override
2153 public void setFirewallUidRules(int chain, int[] uids, int[] rules) {
2154 enforceSystemUid();
Xiaohui Chen8dca36d2015-06-19 12:44:59 -0700[diff] [blame]2155 synchronized (mQuotaLock) {
2156 SparseIntArray uidFirewallRules = getUidFirewallRules(chain);
2157 SparseIntArray newRules = new SparseIntArray();
2158 // apply new set of rules
2159 for (int index = uids.length - 1; index >= 0; --index) {
2160 int uid = uids[index];
2161 int rule = rules[index];
Felipe Lemea701cad2016-05-12 09:58:14 -0700[diff] [blame]2162 updateFirewallUidRuleLocked(chain, uid, rule);
Xiaohui Chen8dca36d2015-06-19 12:44:59 -0700[diff] [blame]2163 newRules.put(uid, rule);
Xiaohui Chenb41c9f72015-06-17 15:55:37 -0700[diff] [blame]2164 }
Xiaohui Chen8dca36d2015-06-19 12:44:59 -0700[diff] [blame]2165 // collect the rules to remove.
2166 SparseIntArray rulesToRemove = new SparseIntArray();
2167 for (int index = uidFirewallRules.size() - 1; index >= 0; --index) {
2168 int uid = uidFirewallRules.keyAt(index);
2169 if (newRules.indexOfKey(uid) < 0) {
2170 rulesToRemove.put(uid, FIREWALL_RULE_DEFAULT);
2171 }
2172 }
2173 // remove dead rules
2174 for (int index = rulesToRemove.size() - 1; index >= 0; --index) {
2175 int uid = rulesToRemove.keyAt(index);
Felipe Lemea701cad2016-05-12 09:58:14 -0700[diff] [blame]2176 updateFirewallUidRuleLocked(chain, uid, FIREWALL_RULE_DEFAULT);
2177 }
2178 try {
2179 switch (chain) {
2180 case FIREWALL_CHAIN_DOZABLE:
2181 mNetdService.firewallReplaceUidChain("fw_dozable", true, uids);
2182 break;
2183 case FIREWALL_CHAIN_STANDBY:
2184 mNetdService.firewallReplaceUidChain("fw_standby", false, uids);
2185 break;
2186 case FIREWALL_CHAIN_POWERSAVE:
2187 mNetdService.firewallReplaceUidChain("fw_powersave", true, uids);
2188 break;
2189 case FIREWALL_CHAIN_NONE:
2190 default:
2191 Slog.d(TAG, "setFirewallUidRules() called on invalid chain: " + chain);
2192 }
2193 } catch (RemoteException e) {
2194 Slog.w(TAG, "Error flushing firewall chain " + chain, e);
Xiaohui Chen8dca36d2015-06-19 12:44:59 -0700[diff] [blame]2195 }
Xiaohui Chenb41c9f72015-06-17 15:55:37 -0700[diff] [blame]2196 }
2197 }
2198
2199 @Override
2200 public void setFirewallUidRule(int chain, int uid, int rule) {
2201 enforceSystemUid();
Felipe Lemea701cad2016-05-12 09:58:14 -0700[diff] [blame]2202 synchronized (mQuotaLock) {
2203 setFirewallUidRuleLocked(chain, uid, rule);
2204 }
Xiaohui Chenb41c9f72015-06-17 15:55:37 -0700[diff] [blame]2205 }
2206
Felipe Lemea701cad2016-05-12 09:58:14 -0700[diff] [blame]2207 private void setFirewallUidRuleLocked(int chain, int uid, int rule) {
2208 if (updateFirewallUidRuleLocked(chain, uid, rule)) {
Amith Yamasani15e472352015-04-24 19:06:07 -0700[diff] [blame]2209 try {
Felipe Lemea701cad2016-05-12 09:58:14 -0700[diff] [blame]2210 mConnector.execute("firewall", "set_uid_rule", getFirewallChainName(chain), uid,
2211 getFirewallRuleName(chain, rule));
Amith Yamasani15e472352015-04-24 19:06:07 -0700[diff] [blame]2212 } catch (NativeDaemonConnectorException e) {
2213 throw e.rethrowAsParcelableException();
2214 }
Jeff Sharkeyc268f0b2012-08-24 10:25:31 -0700[diff] [blame]2215 }
2216 }
2217
Felipe Lemea701cad2016-05-12 09:58:14 -0700[diff] [blame]2218 // TODO: now that netd supports batching, NMS should not keep these data structures anymore...
2219 private boolean updateFirewallUidRuleLocked(int chain, int uid, int rule) {
2220 SparseIntArray uidFirewallRules = getUidFirewallRules(chain);
2221
2222 final int oldUidFirewallRule = uidFirewallRules.get(uid, FIREWALL_RULE_DEFAULT);
2223 if (DBG) {
2224 Slog.d(TAG, "oldRule = " + oldUidFirewallRule
2225 + ", newRule=" + rule + " for uid=" + uid + " on chain " + chain);
2226 }
2227 if (oldUidFirewallRule == rule) {
2228 if (DBG) Slog.d(TAG, "!!!!! Skipping change");
2229 // TODO: eventually consider throwing
2230 return false;
2231 }
2232
2233 String ruleName = getFirewallRuleName(chain, rule);
2234 String oldRuleName = getFirewallRuleName(chain, oldUidFirewallRule);
2235
2236 if (rule == NetworkPolicyManager.FIREWALL_RULE_DEFAULT) {
2237 uidFirewallRules.delete(uid);
2238 } else {
2239 uidFirewallRules.put(uid, rule);
2240 }
2241 return !ruleName.equals(oldRuleName);
2242 }
2243
Xiaohui Chen8dca36d2015-06-19 12:44:59 -0700[diff] [blame]2244 private @NonNull String getFirewallRuleName(int chain, int rule) {
2245 String ruleName;
2246 if (getFirewallType(chain) == FIREWALL_TYPE_WHITELIST) {
2247 if (rule == NetworkPolicyManager.FIREWALL_RULE_ALLOW) {
2248 ruleName = "allow";
2249 } else {
2250 ruleName = "deny";
2251 }
2252 } else { // Blacklist mode
2253 if (rule == NetworkPolicyManager.FIREWALL_RULE_DENY) {
2254 ruleName = "deny";
2255 } else {
2256 ruleName = "allow";
2257 }
2258 }
2259 return ruleName;
2260 }
2261
Xiaohui Chenb41c9f72015-06-17 15:55:37 -0700[diff] [blame]2262 private @NonNull SparseIntArray getUidFirewallRules(int chain) {
2263 switch (chain) {
2264 case FIREWALL_CHAIN_STANDBY:
2265 return mUidFirewallStandbyRules;
2266 case FIREWALL_CHAIN_DOZABLE:
2267 return mUidFirewallDozableRules;
Felipe Leme011b98f2016-02-10 17:28:31 -0800[diff] [blame]2268 case FIREWALL_CHAIN_POWERSAVE:
2269 return mUidFirewallPowerSaveRules;
Xiaohui Chenb41c9f72015-06-17 15:55:37 -0700[diff] [blame]2270 case FIREWALL_CHAIN_NONE:
2271 return mUidFirewallRules;
2272 default:
2273 throw new IllegalArgumentException("Unknown chain:" + chain);
2274 }
2275 }
2276
2277 public @NonNull String getFirewallChainName(int chain) {
2278 switch (chain) {
2279 case FIREWALL_CHAIN_STANDBY:
2280 return FIREWALL_CHAIN_NAME_STANDBY;
2281 case FIREWALL_CHAIN_DOZABLE:
2282 return FIREWALL_CHAIN_NAME_DOZABLE;
Felipe Leme011b98f2016-02-10 17:28:31 -0800[diff] [blame]2283 case FIREWALL_CHAIN_POWERSAVE:
2284 return FIREWALL_CHAIN_NAME_POWERSAVE;
Xiaohui Chenb41c9f72015-06-17 15:55:37 -0700[diff] [blame]2285 case FIREWALL_CHAIN_NONE:
2286 return FIREWALL_CHAIN_NAME_NONE;
2287 default:
2288 throw new IllegalArgumentException("Unknown chain:" + chain);
2289 }
2290 }
2291
Jeff Sharkeyf56e2432012-09-06 17:54:29 -0700[diff] [blame]2292 private static void enforceSystemUid() {
2293 final int uid = Binder.getCallingUid();
2294 if (uid != Process.SYSTEM_UID) {
2295 throw new SecurityException("Only available to AID_SYSTEM");
2296 }
2297 }
2298
Jeff Sharkeyc268f0b2012-08-24 10:25:31 -0700[diff] [blame]2299 @Override
Lorenzo Colitti79751842013-02-28 16:16:03 +0900[diff] [blame]2300 public void startClatd(String interfaceName) throws IllegalStateException {
2301 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
2302
2303 try {
2304 mConnector.execute("clatd", "start", interfaceName);
2305 } catch (NativeDaemonConnectorException e) {
2306 throw e.rethrowAsParcelableException();
2307 }
2308 }
2309
2310 @Override
Lorenzo Colitti95439462014-10-09 13:44:48 +0900[diff] [blame]2311 public void stopClatd(String interfaceName) throws IllegalStateException {
Lorenzo Colitti79751842013-02-28 16:16:03 +0900[diff] [blame]2312 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
2313
2314 try {
Lorenzo Colitti95439462014-10-09 13:44:48 +0900[diff] [blame]2315 mConnector.execute("clatd", "stop", interfaceName);
Lorenzo Colitti79751842013-02-28 16:16:03 +0900[diff] [blame]2316 } catch (NativeDaemonConnectorException e) {
2317 throw e.rethrowAsParcelableException();
2318 }
2319 }
2320
2321 @Override
Lorenzo Colitti95439462014-10-09 13:44:48 +0900[diff] [blame]2322 public boolean isClatdStarted(String interfaceName) {
Lorenzo Colitti79751842013-02-28 16:16:03 +0900[diff] [blame]2323 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
2324
2325 final NativeDaemonEvent event;
2326 try {
Lorenzo Colitti95439462014-10-09 13:44:48 +0900[diff] [blame]2327 event = mConnector.execute("clatd", "status", interfaceName);
Lorenzo Colitti79751842013-02-28 16:16:03 +0900[diff] [blame]2328 } catch (NativeDaemonConnectorException e) {
2329 throw e.rethrowAsParcelableException();
2330 }
2331
2332 event.checkCode(ClatdStatusResult);
2333 return event.getMessage().endsWith("started");
2334 }
2335
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]2336 @Override
2337 public void registerNetworkActivityListener(INetworkActivityListener listener) {
2338 mNetworkActivityListeners.register(listener);
2339 }
2340
2341 @Override
2342 public void unregisterNetworkActivityListener(INetworkActivityListener listener) {
2343 mNetworkActivityListeners.unregister(listener);
2344 }
2345
2346 @Override
2347 public boolean isNetworkActive() {
2348 synchronized (mNetworkActivityListeners) {
2349 return mNetworkActive || mActiveIdleTimers.isEmpty();
2350 }
2351 }
2352
2353 private void reportNetworkActive() {
2354 final int length = mNetworkActivityListeners.beginBroadcast();
Robert Greenwalt2c9f5472014-04-21 14:50:28 -0700[diff] [blame]2355 try {
2356 for (int i = 0; i < length; i++) {
2357 try {
2358 mNetworkActivityListeners.getBroadcastItem(i).onNetworkActive();
Felipe Leme03e689d2016-03-02 16:17:38 -0800[diff] [blame]2359 } catch (RemoteException | RuntimeException e) {
Robert Greenwalt2c9f5472014-04-21 14:50:28 -0700[diff] [blame]2360 }
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]2361 }
Robert Greenwalt2c9f5472014-04-21 14:50:28 -0700[diff] [blame]2362 } finally {
2363 mNetworkActivityListeners.finishBroadcast();
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]2364 }
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]2365 }
2366
Mattias Falk8b47b362011-08-23 14:15:13 +0200[diff] [blame]2367 /** {@inheritDoc} */
Jeff Sharkey7b4596f2013-02-25 10:55:29 -0800[diff] [blame]2368 @Override
Jeff Sharkeyfa23c5a2011-08-09 21:44:24 -0700[diff] [blame]2369 public void monitor() {
2370 if (mConnector != null) {
2371 mConnector.monitor();
2372 }
2373 }
Jeff Sharkey47eb1022011-08-25 17:48:52 -0700[diff] [blame]2374
2375 @Override
2376 protected void dump(FileDescriptor fd, PrintWriter pw, String[] args) {
2377 mContext.enforceCallingOrSelfPermission(DUMP, TAG);
2378
Robert Greenwalt470fd722012-01-18 12:51:15 -0800[diff] [blame]2379 pw.println("NetworkManagementService NativeDaemonConnector Log:");
2380 mConnector.dump(fd, pw, args);
2381 pw.println();
2382
Jeff Sharkey47eb1022011-08-25 17:48:52 -0700[diff] [blame]2383 pw.print("Bandwidth control enabled: "); pw.println(mBandwidthControlEnabled);
Dianne Hackborn2ffa11e2014-04-21 15:56:18 -0700[diff] [blame]2384 pw.print("mMobileActivityFromRadio="); pw.print(mMobileActivityFromRadio);
2385 pw.print(" mLastPowerStateFromRadio="); pw.println(mLastPowerStateFromRadio);
2386 pw.print("mNetworkActive="); pw.println(mNetworkActive);
Jeff Sharkey47eb1022011-08-25 17:48:52 -0700[diff] [blame]2387
2388 synchronized (mQuotaLock) {
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]2389 pw.print("Active quota ifaces: "); pw.println(mActiveQuotas.toString());
2390 pw.print("Active alert ifaces: "); pw.println(mActiveAlerts.toString());
Felipe Leme65be3022016-03-22 14:53:13 -0700[diff] [blame]2391 pw.print("Data saver mode: "); pw.println(mDataSaverMode);
2392 dumpUidRuleOnQuotaLocked(pw, "blacklist", mUidRejectOnMetered);
2393 dumpUidRuleOnQuotaLocked(pw, "whitelist", mUidAllowOnMetered);
Jeff Sharkey47eb1022011-08-25 17:48:52 -0700[diff] [blame]2394 }
Jeff Sharkeyc268f0b2012-08-24 10:25:31 -0700[diff] [blame]2395
Amith Yamasani15e472352015-04-24 19:06:07 -0700[diff] [blame]2396 synchronized (mUidFirewallRules) {
Felipe Leme011b98f2016-02-10 17:28:31 -0800[diff] [blame]2397 dumpUidFirewallRule(pw, "", mUidFirewallRules);
Amith Yamasani15e472352015-04-24 19:06:07 -0700[diff] [blame]2398 }
2399
Felipe Leme65be3022016-03-22 14:53:13 -0700[diff] [blame]2400 pw.print("UID firewall standby chain enabled: "); pw.println(
Xiaohui Chen8dca36d2015-06-19 12:44:59 -0700[diff] [blame]2401 mFirewallChainStates.get(FIREWALL_CHAIN_STANDBY));
Xiaohui Chenb41c9f72015-06-17 15:55:37 -0700[diff] [blame]2402 synchronized (mUidFirewallStandbyRules) {
Felipe Leme011b98f2016-02-10 17:28:31 -0800[diff] [blame]2403 dumpUidFirewallRule(pw, FIREWALL_CHAIN_NAME_STANDBY, mUidFirewallStandbyRules);
Xiaohui Chenb41c9f72015-06-17 15:55:37 -0700[diff] [blame]2404 }
2405
Felipe Leme65be3022016-03-22 14:53:13 -0700[diff] [blame]2406 pw.print("UID firewall dozable chain enabled: "); pw.println(
Xiaohui Chen8dca36d2015-06-19 12:44:59 -0700[diff] [blame]2407 mFirewallChainStates.get(FIREWALL_CHAIN_DOZABLE));
Xiaohui Chenb41c9f72015-06-17 15:55:37 -0700[diff] [blame]2408 synchronized (mUidFirewallDozableRules) {
Felipe Leme011b98f2016-02-10 17:28:31 -0800[diff] [blame]2409 dumpUidFirewallRule(pw, FIREWALL_CHAIN_NAME_DOZABLE, mUidFirewallDozableRules);
2410 }
2411
2412 pw.println("UID firewall powersave chain enabled: " +
2413 mFirewallChainStates.get(FIREWALL_CHAIN_POWERSAVE));
2414 synchronized (mUidFirewallPowerSaveRules) {
2415 dumpUidFirewallRule(pw, FIREWALL_CHAIN_NAME_POWERSAVE, mUidFirewallPowerSaveRules);
Xiaohui Chenb41c9f72015-06-17 15:55:37 -0700[diff] [blame]2416 }
2417
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]2418 synchronized (mIdleTimerLock) {
2419 pw.println("Idle timers:");
2420 for (HashMap.Entry<String, IdleTimerParams> ent : mActiveIdleTimers.entrySet()) {
2421 pw.print(" "); pw.print(ent.getKey()); pw.println(":");
2422 IdleTimerParams params = ent.getValue();
2423 pw.print(" timeout="); pw.print(params.timeout);
2424 pw.print(" type="); pw.print(params.type);
2425 pw.print(" networkCount="); pw.println(params.networkCount);
2426 }
2427 }
2428
Jeff Sharkeyc268f0b2012-08-24 10:25:31 -0700[diff] [blame]2429 pw.print("Firewall enabled: "); pw.println(mFirewallEnabled);
Felipe Leme65be3022016-03-22 14:53:13 -0700[diff] [blame]2430 pw.print("Netd service status: " );
2431 if (mNetdService == null) {
2432 pw.println("disconnected");
2433 } else {
2434 try {
2435 final boolean alive = mNetdService.isAlive();
2436 pw.println(alive ? "alive": "dead");
2437 } catch (RemoteException e) {
2438 pw.println("unreachable");
2439 }
2440 }
2441 }
2442
2443 private void dumpUidRuleOnQuotaLocked(PrintWriter pw, String name, SparseBooleanArray list) {
2444 pw.print("UID bandwith control ");
2445 pw.print(name);
2446 pw.print(" rule: [");
2447 final int size = list.size();
2448 for (int i = 0; i < size; i++) {
2449 pw.print(list.keyAt(i));
2450 if (i < size - 1) pw.print(",");
2451 }
2452 pw.println("]");
Jeff Sharkey47eb1022011-08-25 17:48:52 -0700[diff] [blame]2453 }
Robert Greenwalt9ba9c582014-03-19 17:56:12 -0700[diff] [blame]2454
Felipe Leme011b98f2016-02-10 17:28:31 -0800[diff] [blame]2455 private void dumpUidFirewallRule(PrintWriter pw, String name, SparseIntArray rules) {
Lorenzo Colitti4cb42402016-04-24 12:52:00 +0900[diff] [blame]2456 pw.print("UID firewall ");
Felipe Leme011b98f2016-02-10 17:28:31 -0800[diff] [blame]2457 pw.print(name);
2458 pw.print(" rule: [");
2459 final int size = rules.size();
2460 for (int i = 0; i < size; i++) {
2461 pw.print(rules.keyAt(i));
2462 pw.print(":");
2463 pw.print(rules.valueAt(i));
2464 if (i < size - 1) pw.print(",");
2465 }
2466 pw.println("]");
2467 }
2468
Robert Greenwalt568891d2014-04-04 13:38:00 -0700[diff] [blame]2469 @Override
Paul Jensen487ffe72015-07-24 15:57:11 -0400[diff] [blame]2470 public void createPhysicalNetwork(int netId, String permission) {
Robert Greenwalt9ba9c582014-03-19 17:56:12 -0700[diff] [blame]2471 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
2472
2473 try {
Paul Jensen487ffe72015-07-24 15:57:11 -0400[diff] [blame]2474 if (permission != null) {
2475 mConnector.execute("network", "create", netId, permission);
2476 } else {
2477 mConnector.execute("network", "create", netId);
2478 }
Robert Greenwalt9ba9c582014-03-19 17:56:12 -0700[diff] [blame]2479 } catch (NativeDaemonConnectorException e) {
2480 throw e.rethrowAsParcelableException();
2481 }
2482 }
2483
Robert Greenwalt568891d2014-04-04 13:38:00 -0700[diff] [blame]2484 @Override
Sreeram Ramachandran8cd33ed2014-07-23 15:23:15 -0700[diff] [blame]2485 public void createVirtualNetwork(int netId, boolean hasDNS, boolean secure) {
Paul Jensen6bc2c2c2014-05-07 15:27:40 -0400[diff] [blame]2486 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
2487
2488 try {
Sreeram Ramachandran8cd33ed2014-07-23 15:23:15 -0700[diff] [blame]2489 mConnector.execute("network", "create", netId, "vpn", hasDNS ? "1" : "0",
2490 secure ? "1" : "0");
Paul Jensen6bc2c2c2014-05-07 15:27:40 -0400[diff] [blame]2491 } catch (NativeDaemonConnectorException e) {
2492 throw e.rethrowAsParcelableException();
2493 }
2494 }
2495
2496 @Override
Robert Greenwalt9ba9c582014-03-19 17:56:12 -0700[diff] [blame]2497 public void removeNetwork(int netId) {
2498 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
2499
2500 try {
2501 mConnector.execute("network", "destroy", netId);
2502 } catch (NativeDaemonConnectorException e) {
2503 throw e.rethrowAsParcelableException();
2504 }
2505 }
Robert Greenwalt568891d2014-04-04 13:38:00 -0700[diff] [blame]2506
2507 @Override
Paul Jensen992f2522014-04-28 10:33:11 -0400[diff] [blame]2508 public void addInterfaceToNetwork(String iface, int netId) {
Sreeram Ramachandrana77760d2014-07-17 17:09:07 -0700[diff] [blame]2509 modifyInterfaceInNetwork("add", "" + netId, iface);
Paul Jensen992f2522014-04-28 10:33:11 -0400[diff] [blame]2510 }
2511
2512 @Override
2513 public void removeInterfaceFromNetwork(String iface, int netId) {
Sreeram Ramachandrana77760d2014-07-17 17:09:07 -0700[diff] [blame]2514 modifyInterfaceInNetwork("remove", "" + netId, iface);
2515 }
Paul Jensen992f2522014-04-28 10:33:11 -0400[diff] [blame]2516
Sreeram Ramachandrana77760d2014-07-17 17:09:07 -0700[diff] [blame]2517 private void modifyInterfaceInNetwork(String action, String netId, String iface) {
2518 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Paul Jensen992f2522014-04-28 10:33:11 -0400[diff] [blame]2519 try {
Sreeram Ramachandrana77760d2014-07-17 17:09:07 -0700[diff] [blame]2520 mConnector.execute("network", "interface", action, netId, iface);
Paul Jensen992f2522014-04-28 10:33:11 -0400[diff] [blame]2521 } catch (NativeDaemonConnectorException e) {
2522 throw e.rethrowAsParcelableException();
2523 }
2524 }
2525
2526 @Override
Robert Greenwalt913c8952014-04-07 17:36:35 -0700[diff] [blame]2527 public void addLegacyRouteForNetId(int netId, RouteInfo routeInfo, int uid) {
Robert Greenwalt568891d2014-04-04 13:38:00 -0700[diff] [blame]2528 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
2529
Sreeram Ramachandran03666c72014-07-19 23:21:46 -0700[diff] [blame]2530 final Command cmd = new Command("network", "route", "legacy", uid, "add", netId);
Robert Greenwalt568891d2014-04-04 13:38:00 -0700[diff] [blame]2531
Sreeram Ramachandran1fbcb272014-05-22 16:30:48 -0700[diff] [blame]2532 // create triplet: interface dest-ip-addr/prefixlength gateway-ip-addr
Sreeram Ramachandrancc91c7b2014-06-03 18:41:43 -0700[diff] [blame]2533 final LinkAddress la = routeInfo.getDestinationLinkAddress();
Robert Greenwalt568891d2014-04-04 13:38:00 -0700[diff] [blame]2534 cmd.appendArg(routeInfo.getInterface());
Lorenzo Colitti7dc78cf2014-06-09 22:58:46 +0900[diff] [blame]2535 cmd.appendArg(la.getAddress().getHostAddress() + "/" + la.getPrefixLength());
Sreeram Ramachandran1fbcb272014-05-22 16:30:48 -0700[diff] [blame]2536 if (routeInfo.hasGateway()) {
2537 cmd.appendArg(routeInfo.getGateway().getHostAddress());
2538 }
Robert Greenwalt568891d2014-04-04 13:38:00 -0700[diff] [blame]2539
2540 try {
2541 mConnector.execute(cmd);
2542 } catch (NativeDaemonConnectorException e) {
2543 throw e.rethrowAsParcelableException();
2544 }
2545 }
2546
2547 @Override
Sreeram Ramachandranf047f2a2014-04-15 16:04:26 -0700[diff] [blame]2548 public void setDefaultNetId(int netId) {
Robert Greenwalt568891d2014-04-04 13:38:00 -0700[diff] [blame]2549 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
2550
2551 try {
Sreeram Ramachandranf047f2a2014-04-15 16:04:26 -0700[diff] [blame]2552 mConnector.execute("network", "default", "set", netId);
Robert Greenwalt568891d2014-04-04 13:38:00 -0700[diff] [blame]2553 } catch (NativeDaemonConnectorException e) {
2554 throw e.rethrowAsParcelableException();
2555 }
2556 }
2557
2558 @Override
2559 public void clearDefaultNetId() {
2560 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
2561
2562 try {
2563 mConnector.execute("network", "default", "clear");
2564 } catch (NativeDaemonConnectorException e) {
2565 throw e.rethrowAsParcelableException();
2566 }
2567 }
2568
2569 @Override
Paul Jensen487ffe72015-07-24 15:57:11 -0400[diff] [blame]2570 public void setNetworkPermission(int netId, String permission) {
2571 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
2572
2573 try {
2574 if (permission != null) {
2575 mConnector.execute("network", "permission", "network", "set", permission, netId);
2576 } else {
2577 mConnector.execute("network", "permission", "network", "clear", netId);
2578 }
2579 } catch (NativeDaemonConnectorException e) {
2580 throw e.rethrowAsParcelableException();
2581 }
2582 }
2583
2584
2585 @Override
Sreeram Ramachandrane4a05af2014-09-24 09:16:19 -0700[diff] [blame]2586 public void setPermission(String permission, int[] uids) {
Robert Greenwalt568891d2014-04-04 13:38:00 -0700[diff] [blame]2587 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
2588
Sreeram Ramachandrane4a05af2014-09-24 09:16:19 -0700[diff] [blame]2589 Object[] argv = new Object[4 + MAX_UID_RANGES_PER_COMMAND];
2590 argv[0] = "permission";
2591 argv[1] = "user";
2592 argv[2] = "set";
2593 argv[3] = permission;
2594 int argc = 4;
2595 // Avoid overly long commands by limiting number of UIDs per command.
2596 for (int i = 0; i < uids.length; ++i) {
2597 argv[argc++] = uids[i];
2598 if (i == uids.length - 1 || argc == argv.length) {
2599 try {
2600 mConnector.execute("network", Arrays.copyOf(argv, argc));
2601 } catch (NativeDaemonConnectorException e) {
2602 throw e.rethrowAsParcelableException();
2603 }
2604 argc = 4;
2605 }
Robert Greenwalt568891d2014-04-04 13:38:00 -0700[diff] [blame]2606 }
2607 }
2608
2609 @Override
2610 public void clearPermission(int[] uids) {
2611 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
2612
Sreeram Ramachandrane4a05af2014-09-24 09:16:19 -0700[diff] [blame]2613 Object[] argv = new Object[3 + MAX_UID_RANGES_PER_COMMAND];
2614 argv[0] = "permission";
2615 argv[1] = "user";
2616 argv[2] = "clear";
2617 int argc = 3;
2618 // Avoid overly long commands by limiting number of UIDs per command.
2619 for (int i = 0; i < uids.length; ++i) {
2620 argv[argc++] = uids[i];
2621 if (i == uids.length - 1 || argc == argv.length) {
2622 try {
2623 mConnector.execute("network", Arrays.copyOf(argv, argc));
2624 } catch (NativeDaemonConnectorException e) {
2625 throw e.rethrowAsParcelableException();
2626 }
2627 argc = 3;
2628 }
Robert Greenwalt568891d2014-04-04 13:38:00 -0700[diff] [blame]2629 }
2630 }
Paul Jensen6bc2c2c2014-05-07 15:27:40 -0400[diff] [blame]2631
2632 @Override
2633 public void allowProtect(int uid) {
2634 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
2635
2636 try {
2637 mConnector.execute("network", "protect", "allow", uid);
2638 } catch (NativeDaemonConnectorException e) {
2639 throw e.rethrowAsParcelableException();
2640 }
2641 }
2642
2643 @Override
2644 public void denyProtect(int uid) {
2645 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
2646
2647 try {
2648 mConnector.execute("network", "protect", "deny", uid);
2649 } catch (NativeDaemonConnectorException e) {
2650 throw e.rethrowAsParcelableException();
2651 }
2652 }
2653
Sreeram Ramachandrana77760d2014-07-17 17:09:07 -0700[diff] [blame]2654 @Override
2655 public void addInterfaceToLocalNetwork(String iface, List<RouteInfo> routes) {
2656 modifyInterfaceInNetwork("add", "local", iface);
2657
2658 for (RouteInfo route : routes) {
2659 if (!route.isDefaultRoute()) {
2660 modifyRoute("add", "local", route);
2661 }
2662 }
2663 }
2664
2665 @Override
2666 public void removeInterfaceFromLocalNetwork(String iface) {
2667 modifyInterfaceInNetwork("remove", "local", iface);
2668 }
Erik Kline6599ee82016-07-17 21:28:39 +0900[diff] [blame]2669
2670 @Override
2671 public int removeRoutesFromLocalNetwork(List<RouteInfo> routes) {
2672 int failures = 0;
2673
2674 for (RouteInfo route : routes) {
2675 try {
2676 modifyRoute("remove", "local", route);
2677 } catch (IllegalStateException e) {
2678 failures++;
2679 }
2680 }
2681
2682 return failures;
2683 }
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]2684}