Gitiles
Code Review Sign In
gerrit-public.fairphone.software / platform / frameworks / base / 2db1074e4f747ee71e913cd890d385e563f23b5c / . / services / core / java / com / android / server / NetworkManagementService.java
blob: 15932cc2ee0c6ebd33f564c30189ec310a50563e [file] [log] [blame]
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]1/*
2 * Copyright (C) 2007 The Android Open Source Project
3 *
4 * Licensed under the Apache License, Version 2.0 (the "License");
5 * you may not use this file except in compliance with the License.
6 * You may obtain a copy of the License at
7 *
8 * http://www.apache.org/licenses/LICENSE-2.0
9 *
10 * Unless required by applicable law or agreed to in writing, software
11 * distributed under the License is distributed on an "AS IS" BASIS,
12 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13 * See the License for the specific language governing permissions and
14 * limitations under the License.
15 */
16
17package com.android.server;
18
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]19import static android.Manifest.permission.CONNECTIVITY_INTERNAL;
Jeff Sharkey47eb1022011-08-25 17:48:52 -0700[diff] [blame]20import static android.Manifest.permission.DUMP;
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]21import static android.Manifest.permission.SHUTDOWN;
Xiaohui Chenb41c9f72015-06-17 15:55:37 -0700[diff] [blame]22import static android.net.NetworkPolicyManager.FIREWALL_CHAIN_DOZABLE;
23import static android.net.NetworkPolicyManager.FIREWALL_CHAIN_NAME_DOZABLE;
24import static android.net.NetworkPolicyManager.FIREWALL_CHAIN_NAME_NONE;
Felipe Leme011b98f2016-02-10 17:28:31 -0800[diff] [blame]25import static android.net.NetworkPolicyManager.FIREWALL_CHAIN_NAME_POWERSAVE;
Xiaohui Chenb41c9f72015-06-17 15:55:37 -0700[diff] [blame]26import static android.net.NetworkPolicyManager.FIREWALL_CHAIN_NAME_STANDBY;
27import static android.net.NetworkPolicyManager.FIREWALL_CHAIN_NONE;
Felipe Leme011b98f2016-02-10 17:28:31 -0800[diff] [blame]28import static android.net.NetworkPolicyManager.FIREWALL_CHAIN_POWERSAVE;
Xiaohui Chenb41c9f72015-06-17 15:55:37 -0700[diff] [blame]29import static android.net.NetworkPolicyManager.FIREWALL_CHAIN_STANDBY;
30import static android.net.NetworkPolicyManager.FIREWALL_RULE_DEFAULT;
31import static android.net.NetworkPolicyManager.FIREWALL_TYPE_BLACKLIST;
32import static android.net.NetworkPolicyManager.FIREWALL_TYPE_WHITELIST;
Jeff Sharkeyb5d55e32011-08-10 17:53:27 -0700[diff] [blame]33import static android.net.NetworkStats.SET_DEFAULT;
Dianne Hackbornd0c5b9a2014-02-21 16:19:05 -0800[diff] [blame]34import static android.net.NetworkStats.TAG_ALL;
Jeff Sharkey1b5a2a92011-06-18 18:34:16 -0700[diff] [blame]35import static android.net.NetworkStats.TAG_NONE;
36import static android.net.NetworkStats.UID_ALL;
Jeff Sharkeyae2c1812011-10-04 13:11:40 -0700[diff] [blame]37import static android.net.TrafficStats.UID_TETHERING;
Lorenzo Colitti79751842013-02-28 16:16:03 +0900[diff] [blame]38import static com.android.server.NetworkManagementService.NetdResponseCode.ClatdStatusResult;
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]39import static com.android.server.NetworkManagementService.NetdResponseCode.InterfaceGetCfgResult;
40import static com.android.server.NetworkManagementService.NetdResponseCode.InterfaceListResult;
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]41import static com.android.server.NetworkManagementService.NetdResponseCode.IpFwdStatusResult;
42import static com.android.server.NetworkManagementService.NetdResponseCode.TetherDnsFwdTgtListResult;
43import static com.android.server.NetworkManagementService.NetdResponseCode.TetherInterfaceListResult;
44import static com.android.server.NetworkManagementService.NetdResponseCode.TetherStatusResult;
Jeff Sharkeye4984be2013-09-10 21:03:27 -0700[diff] [blame]45import static com.android.server.NetworkManagementService.NetdResponseCode.TetheringStatsListResult;
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]46import static com.android.server.NetworkManagementService.NetdResponseCode.TtyListResult;
Jeff Sharkeya63ba592011-07-19 23:47:12 -0700[diff] [blame]47import static com.android.server.NetworkManagementSocketTagger.PROP_QTAGUID_ENABLED;
Erik Klineb2cfdfb2017-01-18 20:54:14 +0900[diff] [blame]48
Xiaohui Chenb41c9f72015-06-17 15:55:37 -0700[diff] [blame]49import android.annotation.NonNull;
Jeff Sharkey605eb792014-11-04 13:34:06 -0800[diff] [blame]50import android.app.ActivityManagerNative;
Pierre Imai8e48e672016-04-21 13:30:43 +0900[diff] [blame]51import android.content.ContentResolver;
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]52import android.content.Context;
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]53import android.net.ConnectivityManager;
Lorenzo Colitti58967ba2016-02-02 17:21:21 +0900[diff] [blame]54import android.net.INetd;
San Mehat4d02d002010-01-22 16:07:46 -0800[diff] [blame]55import android.net.INetworkManagementEventObserver;
Jeff Sharkeyeedcb952011-05-17 14:55:15 -0700[diff] [blame]56import android.net.InterfaceConfiguration;
Lorenzo Colittic18cbfd2014-06-13 21:21:03 +0900[diff] [blame]57import android.net.IpPrefix;
Robert Greenwalted126402011-01-28 15:34:55 -0800[diff] [blame]58import android.net.LinkAddress;
Lorenzo Colittib57edc52014-08-22 17:10:50 -0700[diff] [blame]59import android.net.Network;
Amith Yamasani15e472352015-04-24 19:06:07 -0700[diff] [blame]60import android.net.NetworkPolicyManager;
Jeff Sharkeyeedcb952011-05-17 14:55:15 -0700[diff] [blame]61import android.net.NetworkStats;
Robert Greenwalted126402011-01-28 15:34:55 -0800[diff] [blame]62import android.net.NetworkUtils;
Robert Greenwalt59b1a4e2011-05-10 15:05:02 -0700[diff] [blame]63import android.net.RouteInfo;
Paul Jensen6bc2c2c2014-05-07 15:27:40 -0400[diff] [blame]64import android.net.UidRange;
Irfan Sheriff9ab518ad2010-03-12 15:48:17 -0800[diff] [blame]65import android.net.wifi.WifiConfiguration;
66import android.net.wifi.WifiConfiguration.KeyMgmt;
Dianne Hackborn91268cf2013-06-13 19:06:50 -0700[diff] [blame]67import android.os.BatteryStats;
Jeff Sharkeyf56e2432012-09-06 17:54:29 -0700[diff] [blame]68import android.os.Binder;
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]69import android.os.Handler;
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]70import android.os.INetworkActivityListener;
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]71import android.os.INetworkManagementService;
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]72import android.os.PowerManager;
Jeff Sharkeyf56e2432012-09-06 17:54:29 -0700[diff] [blame]73import android.os.Process;
Jeff Sharkey3df273e2011-12-15 15:47:12 -0800[diff] [blame]74import android.os.RemoteCallbackList;
75import android.os.RemoteException;
Jeff Sharkey7a1c3fc2013-06-04 12:29:00 -0700[diff] [blame]76import android.os.ServiceManager;
Lorenzo Colitti4cb42402016-04-24 12:52:00 +0900[diff] [blame]77import android.os.ServiceSpecificException;
Jeff Sharkey605eb792014-11-04 13:34:06 -0800[diff] [blame]78import android.os.StrictMode;
Jeff Sharkey9a13f362011-04-26 16:25:36 -0700[diff] [blame]79import android.os.SystemClock;
Marco Nelissen62dbb222010-02-18 10:56:30 -0800[diff] [blame]80import android.os.SystemProperties;
Pierre Imai8e48e672016-04-21 13:30:43 +0900[diff] [blame]81import android.provider.Settings;
Dianne Hackborn2ffa11e2014-04-21 15:56:18 -0700[diff] [blame]82import android.telephony.DataConnectionRealTimeInfo;
83import android.telephony.PhoneStateListener;
Wink Savillefb40dd42014-06-12 17:02:31 -0700[diff] [blame]84import android.telephony.SubscriptionManager;
Wink Saville67e07892014-06-18 16:43:14 -0700[diff] [blame]85import android.telephony.TelephonyManager;
Irfan Sheriff9ab518ad2010-03-12 15:48:17 -0800[diff] [blame]86import android.util.Log;
Joe Onorato8a9b2202010-02-26 18:56:32 -0800[diff] [blame]87import android.util.Slog;
Jeff Sharkeyb3f19ca2011-06-29 23:54:13 -0700[diff] [blame]88import android.util.SparseBooleanArray;
Jeff Sharkey605eb792014-11-04 13:34:06 -0800[diff] [blame]89import android.util.SparseIntArray;
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]90
Jeff Sharkey605eb792014-11-04 13:34:06 -0800[diff] [blame]91import com.android.internal.annotations.GuardedBy;
Jeff Sharkey7a1c3fc2013-06-04 12:29:00 -0700[diff] [blame]92import com.android.internal.app.IBatteryStats;
Jeff Sharkey1059c3c2011-10-04 16:54:49 -0700[diff] [blame]93import com.android.internal.net.NetworkStatsFactory;
Jeff Sharkey605eb792014-11-04 13:34:06 -0800[diff] [blame]94import com.android.internal.util.HexDump;
Jeff Sharkeyc268f0b2012-08-24 10:25:31 -0700[diff] [blame]95import com.android.internal.util.Preconditions;
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]96import com.android.server.NativeDaemonConnector.Command;
Jeff Sharkey56cd6462013-06-07 15:09:15 -0700[diff] [blame]97import com.android.server.NativeDaemonConnector.SensitiveArg;
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]98import com.google.android.collect.Maps;
Jeff Sharkey4414cea2011-06-24 17:05:24 -0700[diff] [blame]99
Robert Greenwalt59b1a4e2011-05-10 15:05:02 -0700[diff] [blame]100import java.io.BufferedReader;
101import java.io.DataInputStream;
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]102import java.io.File;
Jeff Sharkey47eb1022011-08-25 17:48:52 -0700[diff] [blame]103import java.io.FileDescriptor;
Jeff Sharkey9a13f362011-04-26 16:25:36 -0700[diff] [blame]104import java.io.FileInputStream;
Jeff Sharkey9a13f362011-04-26 16:25:36 -0700[diff] [blame]105import java.io.IOException;
Jeff Sharkey9a13f362011-04-26 16:25:36 -0700[diff] [blame]106import java.io.InputStreamReader;
Jeff Sharkey47eb1022011-08-25 17:48:52 -0700[diff] [blame]107import java.io.PrintWriter;
Jeff Sharkeyeedcb952011-05-17 14:55:15 -0700[diff] [blame]108import java.net.InetAddress;
Robert Greenwalt3b28e9a2011-11-02 14:37:19 -0700[diff] [blame]109import java.net.InterfaceAddress;
110import java.net.NetworkInterface;
111import java.net.SocketException;
Jeff Sharkeyeedcb952011-05-17 14:55:15 -0700[diff] [blame]112import java.util.ArrayList;
Paul Jensen6bc2c2c2014-05-07 15:27:40 -0400[diff] [blame]113import java.util.Arrays;
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]114import java.util.HashMap;
jiaguo1da35f72014-01-09 16:39:59 +0800[diff] [blame]115import java.util.List;
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]116import java.util.Map;
Jeff Sharkeyeedcb952011-05-17 14:55:15 -0700[diff] [blame]117import java.util.NoSuchElementException;
118import java.util.StringTokenizer;
Robert Greenwalte5c3afb2010-09-22 14:32:35 -0700[diff] [blame]119import java.util.concurrent.CountDownLatch;
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]120
121/**
122 * @hide
123 */
Jeff Sharkey8e9992a2011-08-23 18:37:23 -0700[diff] [blame]124public class NetworkManagementService extends INetworkManagementService.Stub
125 implements Watchdog.Monitor {
Amith Yamasani15e472352015-04-24 19:06:07 -0700[diff] [blame]126 private static final String TAG = "NetworkManagement";
127 private static final boolean DBG = Log.isLoggable(TAG, Log.DEBUG);
Kenny Root305bcbf2010-09-03 07:56:38 -0700[diff] [blame]128 private static final String NETD_TAG = "NetdConnector";
Lorenzo Colitti58967ba2016-02-02 17:21:21 +0900[diff] [blame]129 private static final String NETD_SERVICE_NAME = "netd";
Kenny Root305bcbf2010-09-03 07:56:38 -0700[diff] [blame]130
Paul Jensen6bc2c2c2014-05-07 15:27:40 -0400[diff] [blame]131 private static final int MAX_UID_RANGES_PER_COMMAND = 10;
132
Jeff Sharkey8e9992a2011-08-23 18:37:23 -0700[diff] [blame]133 /**
134 * Name representing {@link #setGlobalAlert(long)} limit when delivered to
135 * {@link INetworkManagementEventObserver#limitReached(String, String)}.
136 */
137 public static final String LIMIT_GLOBAL_ALERT = "globalAlert";
138
Paul Jensen487ffe72015-07-24 15:57:11 -0400[diff] [blame]139 /**
140 * String to pass to netd to indicate that a network is only accessible
141 * to apps that have the CHANGE_NETWORK_STATE permission.
142 */
143 public static final String PERMISSION_NETWORK = "NETWORK";
144
145 /**
146 * String to pass to netd to indicate that a network is only
147 * accessible to system apps and those with the CONNECTIVITY_INTERNAL
148 * permission.
149 */
150 public static final String PERMISSION_SYSTEM = "SYSTEM";
151
Andrew Scull45f533c2017-05-19 15:37:20 +0100[diff] [blame]152 static class NetdResponseCode {
Sreeram Ramachandran03666c72014-07-19 23:21:46 -0700[diff] [blame]153 /* Keep in sync with system/netd/server/ResponseCode.h */
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]154 public static final int InterfaceListResult = 110;
155 public static final int TetherInterfaceListResult = 111;
156 public static final int TetherDnsFwdTgtListResult = 112;
San Mehat72759df2010-01-19 13:50:37 -0800[diff] [blame]157 public static final int TtyListResult = 113;
Jeff Sharkeye4984be2013-09-10 21:03:27 -0700[diff] [blame]158 public static final int TetheringStatsListResult = 114;
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]159
160 public static final int TetherStatusResult = 210;
161 public static final int IpFwdStatusResult = 211;
San Mehated4fc8a2010-01-22 12:28:36 -0800[diff] [blame]162 public static final int InterfaceGetCfgResult = 213;
Robert Greenwalte3253922010-02-18 09:23:25 -0800[diff] [blame]163 public static final int SoftapStatusResult = 214;
San Mehat91cac642010-03-31 14:31:36 -0700[diff] [blame]164 public static final int InterfaceRxCounterResult = 216;
165 public static final int InterfaceTxCounterResult = 217;
Jeff Sharkeycdd02c5d2011-09-16 01:52:49 -0700[diff] [blame]166 public static final int QuotaCounterResult = 220;
167 public static final int TetheringStatsResult = 221;
Selim Gurun84c00c62012-02-27 15:42:38 -0800[diff] [blame]168 public static final int DnsProxyQueryResult = 222;
Lorenzo Colitti79751842013-02-28 16:16:03 +0900[diff] [blame]169 public static final int ClatdStatusResult = 223;
Robert Greenwalte3253922010-02-18 09:23:25 -0800[diff] [blame]170
171 public static final int InterfaceChange = 600;
JP Abgrall12b933d2011-07-14 18:09:22 -0700[diff] [blame]172 public static final int BandwidthControl = 601;
Haoyu Bai6b7358d2012-07-17 16:36:50 -0700[diff] [blame]173 public static final int InterfaceClassActivity = 613;
Lorenzo Colitti5c7daac2013-08-05 10:39:37 +0900[diff] [blame]174 public static final int InterfaceAddressChange = 614;
Lorenzo Colitti5ae4a532013-10-31 11:59:46 +0900[diff] [blame]175 public static final int InterfaceDnsServerInfo = 615;
Lorenzo Colittic18cbfd2014-06-13 21:21:03 +0900[diff] [blame]176 public static final int RouteChange = 616;
Jeff Sharkey605eb792014-11-04 13:34:06 -0800[diff] [blame]177 public static final int StrictCleartext = 617;
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]178 }
179
Pierre Imai8e48e672016-04-21 13:30:43 +0900[diff] [blame]180 /* Defaults for resolver parameters. */
181 public static final int DNS_RESOLVER_DEFAULT_SAMPLE_VALIDITY_SECONDS = 1800;
182 public static final int DNS_RESOLVER_DEFAULT_SUCCESS_THRESHOLD_PERCENT = 25;
183 public static final int DNS_RESOLVER_DEFAULT_MIN_SAMPLES = 8;
184 public static final int DNS_RESOLVER_DEFAULT_MAX_SAMPLES = 64;
185
Rebecca Silbersteine2ec94f2016-03-24 13:29:00 -0700[diff] [blame]186 /**
187 * String indicating a softap command.
188 */
189 static final String SOFT_AP_COMMAND = "softap";
190
191 /**
192 * String passed back to netd connector indicating softap command success.
193 */
194 static final String SOFT_AP_COMMAND_SUCCESS = "Ok";
195
Dianne Hackborn2ffa11e2014-04-21 15:56:18 -0700[diff] [blame]196 static final int DAEMON_MSG_MOBILE_CONN_REAL_TIME_INFO = 1;
197
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]198 /**
199 * Binder context for this service
200 */
Dianne Hackborn2ffa11e2014-04-21 15:56:18 -0700[diff] [blame]201 private final Context mContext;
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]202
203 /**
204 * connector object for communicating with netd
205 */
Dianne Hackborn2ffa11e2014-04-21 15:56:18 -0700[diff] [blame]206 private final NativeDaemonConnector mConnector;
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]207
Robert Greenwalt2c9f5472014-04-21 14:50:28 -0700[diff] [blame]208 private final Handler mFgHandler;
Dianne Hackborn2ffa11e2014-04-21 15:56:18 -0700[diff] [blame]209 private final Handler mDaemonHandler;
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]210
Lorenzo Colitti58967ba2016-02-02 17:21:21 +0900[diff] [blame]211 private INetd mNetdService;
212
Dianne Hackborne13c4c02014-02-11 17:18:35 -0800[diff] [blame]213 private IBatteryStats mBatteryStats;
214
Dianne Hackborn2ffa11e2014-04-21 15:56:18 -0700[diff] [blame]215 private final Thread mThread;
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]216 private CountDownLatch mConnectedSignal = new CountDownLatch(1);
Robert Greenwalte5c3afb2010-09-22 14:32:35 -0700[diff] [blame]217
Jeff Sharkey3df273e2011-12-15 15:47:12 -0800[diff] [blame]218 private final RemoteCallbackList<INetworkManagementEventObserver> mObservers =
Christopher Wiley5de073a2016-08-02 11:38:57 -0700[diff] [blame]219 new RemoteCallbackList<>();
San Mehat4d02d002010-01-22 16:07:46 -0800[diff] [blame]220
Jeff Sharkey1059c3c2011-10-04 16:54:49 -0700[diff] [blame]221 private final NetworkStatsFactory mStatsFactory = new NetworkStatsFactory();
222
Andrew Scull45f533c2017-05-19 15:37:20 +0100[diff] [blame]223 private final Object mQuotaLock = new Object();
Jeff Sharkey605eb792014-11-04 13:34:06 -0800[diff] [blame]224
Jeff Sharkeyb3f19ca2011-06-29 23:54:13 -0700[diff] [blame]225 /** Set of interfaces with active quotas. */
Jeff Sharkey605eb792014-11-04 13:34:06 -0800[diff] [blame]226 @GuardedBy("mQuotaLock")
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]227 private HashMap<String, Long> mActiveQuotas = Maps.newHashMap();
Jeff Sharkey41ff7ec2011-07-25 15:21:22 -0700[diff] [blame]228 /** Set of interfaces with active alerts. */
Jeff Sharkey605eb792014-11-04 13:34:06 -0800[diff] [blame]229 @GuardedBy("mQuotaLock")
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]230 private HashMap<String, Long> mActiveAlerts = Maps.newHashMap();
Felipe Leme65be3022016-03-22 14:53:13 -0700[diff] [blame]231 /** Set of UIDs blacklisted on metered networks. */
Jeff Sharkey605eb792014-11-04 13:34:06 -0800[diff] [blame]232 @GuardedBy("mQuotaLock")
Felipe Leme65be3022016-03-22 14:53:13 -0700[diff] [blame]233 private SparseBooleanArray mUidRejectOnMetered = new SparseBooleanArray();
234 /** Set of UIDs whitelisted on metered networks. */
235 @GuardedBy("mQuotaLock")
236 private SparseBooleanArray mUidAllowOnMetered = new SparseBooleanArray();
Jeff Sharkey605eb792014-11-04 13:34:06 -0800[diff] [blame]237 /** Set of UIDs with cleartext penalties. */
238 @GuardedBy("mQuotaLock")
239 private SparseIntArray mUidCleartextPolicy = new SparseIntArray();
Amith Yamasani15e472352015-04-24 19:06:07 -0700[diff] [blame]240 /** Set of UIDs that are to be blocked/allowed by firewall controller. */
241 @GuardedBy("mQuotaLock")
242 private SparseIntArray mUidFirewallRules = new SparseIntArray();
Xiaohui Chenb41c9f72015-06-17 15:55:37 -0700[diff] [blame]243 /**
244 * Set of UIDs that are to be blocked/allowed by firewall controller. This set of Ids matches
245 * to application idles.
246 */
247 @GuardedBy("mQuotaLock")
248 private SparseIntArray mUidFirewallStandbyRules = new SparseIntArray();
249 /**
250 * Set of UIDs that are to be blocked/allowed by firewall controller. This set of Ids matches
251 * to device idles.
252 */
253 @GuardedBy("mQuotaLock")
254 private SparseIntArray mUidFirewallDozableRules = new SparseIntArray();
Felipe Leme011b98f2016-02-10 17:28:31 -0800[diff] [blame]255 /**
256 * Set of UIDs that are to be blocked/allowed by firewall controller. This set of Ids matches
257 * to device on power-save mode.
258 */
259 @GuardedBy("mQuotaLock")
260 private SparseIntArray mUidFirewallPowerSaveRules = new SparseIntArray();
Xiaohui Chen8dca36d2015-06-19 12:44:59 -0700[diff] [blame]261 /** Set of states for the child firewall chains. True if the chain is active. */
262 @GuardedBy("mQuotaLock")
263 final SparseBooleanArray mFirewallChainStates = new SparseBooleanArray();
Jeff Sharkeyb3f19ca2011-06-29 23:54:13 -0700[diff] [blame]264
Felipe Leme65be3022016-03-22 14:53:13 -0700[diff] [blame]265 @GuardedBy("mQuotaLock")
266 private boolean mDataSaverMode;
267
Andrew Scull45f533c2017-05-19 15:37:20 +0100[diff] [blame]268 private final Object mIdleTimerLock = new Object();
Haoyu Bai04124232012-06-28 15:26:19 -0700[diff] [blame]269 /** Set of interfaces with active idle timers. */
270 private static class IdleTimerParams {
271 public final int timeout;
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]272 public final int type;
Haoyu Bai04124232012-06-28 15:26:19 -0700[diff] [blame]273 public int networkCount;
274
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]275 IdleTimerParams(int timeout, int type) {
Haoyu Bai04124232012-06-28 15:26:19 -0700[diff] [blame]276 this.timeout = timeout;
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]277 this.type = type;
Haoyu Bai04124232012-06-28 15:26:19 -0700[diff] [blame]278 this.networkCount = 1;
279 }
280 }
281 private HashMap<String, IdleTimerParams> mActiveIdleTimers = Maps.newHashMap();
282
Jeff Sharkeyfa23c5a2011-08-09 21:44:24 -0700[diff] [blame]283 private volatile boolean mBandwidthControlEnabled;
Jeff Sharkeyc268f0b2012-08-24 10:25:31 -0700[diff] [blame]284 private volatile boolean mFirewallEnabled;
Jeff Sharkey605eb792014-11-04 13:34:06 -0800[diff] [blame]285 private volatile boolean mStrictEnabled;
Jeff Sharkey350083e2011-06-29 10:45:16 -0700[diff] [blame]286
Dianne Hackborn2ffa11e2014-04-21 15:56:18 -0700[diff] [blame]287 private boolean mMobileActivityFromRadio = false;
288 private int mLastPowerStateFromRadio = DataConnectionRealTimeInfo.DC_POWER_STATE_LOW;
Adam Lesinskie08af192015-03-25 16:42:59 -0700[diff] [blame]289 private int mLastPowerStateFromWifi = DataConnectionRealTimeInfo.DC_POWER_STATE_LOW;
Dianne Hackborn2ffa11e2014-04-21 15:56:18 -0700[diff] [blame]290
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]291 private final RemoteCallbackList<INetworkActivityListener> mNetworkActivityListeners =
Christopher Wiley5de073a2016-08-02 11:38:57 -0700[diff] [blame]292 new RemoteCallbackList<>();
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]293 private boolean mNetworkActive;
294
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]295 /**
296 * Constructs a new NetworkManagementService instance
297 *
298 * @param context Binder context for this service
299 */
Lorenzo Colitti7421a012013-08-20 22:51:24 +0900[diff] [blame]300 private NetworkManagementService(Context context, String socket) {
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]301 mContext = context;
San Mehat4d02d002010-01-22 16:07:46 -0800[diff] [blame]302
Robert Greenwalt2c9f5472014-04-21 14:50:28 -0700[diff] [blame]303 // make sure this is on the same looper as our NativeDaemonConnector for sync purposes
304 mFgHandler = new Handler(FgThread.get().getLooper());
305
Dianne Hackborn4590e522014-03-24 13:36:46 -0700[diff] [blame]306 // Don't need this wake lock, since we now have a time stamp for when
307 // the network actually went inactive. (It might be nice to still do this,
308 // but I don't want to do it through the power manager because that pollutes the
309 // battery stats history with pointless noise.)
Dianne Hackborn2ffa11e2014-04-21 15:56:18 -0700[diff] [blame]310 //PowerManager pm = (PowerManager)context.getSystemService(Context.POWER_SERVICE);
Dianne Hackborn4590e522014-03-24 13:36:46 -0700[diff] [blame]311 PowerManager.WakeLock wl = null; //pm.newWakeLock(PowerManager.PARTIAL_WAKE_LOCK, NETD_TAG);
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]312
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]313 mConnector = new NativeDaemonConnector(
Dianne Hackborn2ffa11e2014-04-21 15:56:18 -0700[diff] [blame]314 new NetdCallbackReceiver(), socket, 10, NETD_TAG, 160, wl,
315 FgThread.get().getLooper());
Robert Greenwalte5c3afb2010-09-22 14:32:35 -0700[diff] [blame]316 mThread = new Thread(mConnector, NETD_TAG);
Jeff Sharkeyfa23c5a2011-08-09 21:44:24 -0700[diff] [blame]317
Dianne Hackborn2ffa11e2014-04-21 15:56:18 -0700[diff] [blame]318 mDaemonHandler = new Handler(FgThread.get().getLooper());
Wink Saville67e07892014-06-18 16:43:14 -0700[diff] [blame]319
Jeff Sharkeyfa23c5a2011-08-09 21:44:24 -0700[diff] [blame]320 // Add ourself to the Watchdog monitors.
321 Watchdog.getInstance().addMonitor(this);
Robert Greenwalte5c3afb2010-09-22 14:32:35 -0700[diff] [blame]322 }
323
Felipe Leme03e689d2016-03-02 16:17:38 -0800[diff] [blame]324 static NetworkManagementService create(Context context, String socket)
325 throws InterruptedException {
Lorenzo Colitti7421a012013-08-20 22:51:24 +0900[diff] [blame]326 final NetworkManagementService service = new NetworkManagementService(context, socket);
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]327 final CountDownLatch connectedSignal = service.mConnectedSignal;
Robert Greenwalte5c3afb2010-09-22 14:32:35 -0700[diff] [blame]328 if (DBG) Slog.d(TAG, "Creating NetworkManagementService");
329 service.mThread.start();
330 if (DBG) Slog.d(TAG, "Awaiting socket connection");
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]331 connectedSignal.await();
Robert Greenwalte5c3afb2010-09-22 14:32:35 -0700[diff] [blame]332 if (DBG) Slog.d(TAG, "Connected");
bohu07cc3bb2016-05-03 15:58:01 -0700[diff] [blame]333 service.connectNativeNetdService();
Robert Greenwalte5c3afb2010-09-22 14:32:35 -0700[diff] [blame]334 return service;
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]335 }
336
Lorenzo Colitti7421a012013-08-20 22:51:24 +0900[diff] [blame]337 public static NetworkManagementService create(Context context) throws InterruptedException {
Lorenzo Colitti58967ba2016-02-02 17:21:21 +0900[diff] [blame]338 return create(context, NETD_SERVICE_NAME);
Lorenzo Colitti7421a012013-08-20 22:51:24 +0900[diff] [blame]339 }
340
Jeff Sharkey350083e2011-06-29 10:45:16 -0700[diff] [blame]341 public void systemReady() {
Felipe Leme03e689d2016-03-02 16:17:38 -0800[diff] [blame]342 if (DBG) {
343 final long start = System.currentTimeMillis();
344 prepareNativeDaemon();
345 final long delta = System.currentTimeMillis() - start;
346 Slog.d(TAG, "Prepared in " + delta + "ms");
347 return;
348 } else {
349 prepareNativeDaemon();
350 }
Jeff Sharkey350083e2011-06-29 10:45:16 -0700[diff] [blame]351 }
352
Dianne Hackborne13c4c02014-02-11 17:18:35 -0800[diff] [blame]353 private IBatteryStats getBatteryStats() {
354 synchronized (this) {
355 if (mBatteryStats != null) {
356 return mBatteryStats;
357 }
358 mBatteryStats = IBatteryStats.Stub.asInterface(ServiceManager.getService(
359 BatteryStats.SERVICE_NAME));
360 return mBatteryStats;
361 }
362 }
363
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]364 @Override
Jeff Sharkey3df273e2011-12-15 15:47:12 -0800[diff] [blame]365 public void registerObserver(INetworkManagementEventObserver observer) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]366 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Jeff Sharkey3df273e2011-12-15 15:47:12 -0800[diff] [blame]367 mObservers.register(observer);
San Mehat4d02d002010-01-22 16:07:46 -0800[diff] [blame]368 }
369
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]370 @Override
Jeff Sharkey3df273e2011-12-15 15:47:12 -0800[diff] [blame]371 public void unregisterObserver(INetworkManagementEventObserver observer) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]372 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Jeff Sharkey3df273e2011-12-15 15:47:12 -0800[diff] [blame]373 mObservers.unregister(observer);
San Mehat4d02d002010-01-22 16:07:46 -0800[diff] [blame]374 }
375
Erik Klineb2cfdfb2017-01-18 20:54:14 +0900[diff] [blame]376 @FunctionalInterface
377 private interface NetworkManagementEventCallback {
378 public void sendCallback(INetworkManagementEventObserver o) throws RemoteException;
379 }
380
381 private void invokeForAllObservers(NetworkManagementEventCallback eventCallback) {
Jeff Sharkey3df273e2011-12-15 15:47:12 -0800[diff] [blame]382 final int length = mObservers.beginBroadcast();
Robert Greenwalt2c9f5472014-04-21 14:50:28 -0700[diff] [blame]383 try {
384 for (int i = 0; i < length; i++) {
385 try {
Erik Klineb2cfdfb2017-01-18 20:54:14 +0900[diff] [blame]386 eventCallback.sendCallback(mObservers.getBroadcastItem(i));
Felipe Leme03e689d2016-03-02 16:17:38 -0800[diff] [blame]387 } catch (RemoteException | RuntimeException e) {
Robert Greenwalt2c9f5472014-04-21 14:50:28 -0700[diff] [blame]388 }
Mike J. Chen6143f5f2011-06-23 15:17:51 -0700[diff] [blame]389 }
Robert Greenwalt2c9f5472014-04-21 14:50:28 -0700[diff] [blame]390 } finally {
391 mObservers.finishBroadcast();
Mike J. Chen6143f5f2011-06-23 15:17:51 -0700[diff] [blame]392 }
393 }
394
395 /**
Erik Klineb2cfdfb2017-01-18 20:54:14 +0900[diff] [blame]396 * Notify our observers of an interface status change
397 */
398 private void notifyInterfaceStatusChanged(String iface, boolean up) {
399 invokeForAllObservers(o -> o.interfaceStatusChanged(iface, up));
400 }
401
402 /**
Mike J. Chenf59c7d02011-06-23 15:33:15 -0700[diff] [blame]403 * Notify our observers of an interface link state change
Mike J. Chen6143f5f2011-06-23 15:17:51 -0700[diff] [blame]404 * (typically, an Ethernet cable has been plugged-in or unplugged).
405 */
406 private void notifyInterfaceLinkStateChanged(String iface, boolean up) {
Erik Klineb2cfdfb2017-01-18 20:54:14 +0900[diff] [blame]407 invokeForAllObservers(o -> o.interfaceLinkStateChanged(iface, up));
San Mehat4d02d002010-01-22 16:07:46 -0800[diff] [blame]408 }
409
410 /**
411 * Notify our observers of an interface addition.
412 */
413 private void notifyInterfaceAdded(String iface) {
Erik Klineb2cfdfb2017-01-18 20:54:14 +0900[diff] [blame]414 invokeForAllObservers(o -> o.interfaceAdded(iface));
San Mehat4d02d002010-01-22 16:07:46 -0800[diff] [blame]415 }
416
417 /**
418 * Notify our observers of an interface removal.
419 */
420 private void notifyInterfaceRemoved(String iface) {
Jeff Sharkey89b8a212011-10-11 11:58:11 -0700[diff] [blame]421 // netd already clears out quota and alerts for removed ifaces; update
422 // our sanity-checking state.
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]423 mActiveAlerts.remove(iface);
424 mActiveQuotas.remove(iface);
Jeff Sharkey89b8a212011-10-11 11:58:11 -0700[diff] [blame]425
Erik Klineb2cfdfb2017-01-18 20:54:14 +0900[diff] [blame]426 invokeForAllObservers(o -> o.interfaceRemoved(iface));
San Mehat4d02d002010-01-22 16:07:46 -0800[diff] [blame]427 }
428
Robert Greenwalte5c3afb2010-09-22 14:32:35 -0700[diff] [blame]429 /**
JP Abgrall12b933d2011-07-14 18:09:22 -0700[diff] [blame]430 * Notify our observers of a limit reached.
431 */
432 private void notifyLimitReached(String limitName, String iface) {
Erik Klineb2cfdfb2017-01-18 20:54:14 +0900[diff] [blame]433 invokeForAllObservers(o -> o.limitReached(limitName, iface));
JP Abgrall12b933d2011-07-14 18:09:22 -0700[diff] [blame]434 }
435
436 /**
Haoyu Baidb3c8672012-06-20 14:29:57 -0700[diff] [blame]437 * Notify our observers of a change in the data activity state of the interface
438 */
Dianne Hackborn2ffa11e2014-04-21 15:56:18 -0700[diff] [blame]439 private void notifyInterfaceClassActivity(int type, int powerState, long tsNanos,
Ruchi Kandoifa97fcf2016-05-13 15:10:39 -0700[diff] [blame]440 int uid, boolean fromRadio) {
Dianne Hackborn2ffa11e2014-04-21 15:56:18 -0700[diff] [blame]441 final boolean isMobile = ConnectivityManager.isNetworkTypeMobile(type);
442 if (isMobile) {
443 if (!fromRadio) {
444 if (mMobileActivityFromRadio) {
445 // If this call is not coming from a report from the radio itself, but we
446 // have previously received reports from the radio, then we will take the
447 // power state to just be whatever the radio last reported.
448 powerState = mLastPowerStateFromRadio;
449 }
450 } else {
451 mMobileActivityFromRadio = true;
452 }
453 if (mLastPowerStateFromRadio != powerState) {
454 mLastPowerStateFromRadio = powerState;
Robert Greenwalt2c9f5472014-04-21 14:50:28 -0700[diff] [blame]455 try {
Ruchi Kandoifa97fcf2016-05-13 15:10:39 -0700[diff] [blame]456 getBatteryStats().noteMobileRadioPowerState(powerState, tsNanos, uid);
Robert Greenwalt2c9f5472014-04-21 14:50:28 -0700[diff] [blame]457 } catch (RemoteException e) {
Robert Greenwalt2c9f5472014-04-21 14:50:28 -0700[diff] [blame]458 }
Haoyu Baidb3c8672012-06-20 14:29:57 -0700[diff] [blame]459 }
Dianne Hackborn2ffa11e2014-04-21 15:56:18 -0700[diff] [blame]460 }
461
Adam Lesinskie08af192015-03-25 16:42:59 -0700[diff] [blame]462 if (ConnectivityManager.isNetworkTypeWifi(type)) {
463 if (mLastPowerStateFromWifi != powerState) {
464 mLastPowerStateFromWifi = powerState;
465 try {
Adam Lesinski5f056f62016-07-14 16:56:08 -0700[diff] [blame]466 getBatteryStats().noteWifiRadioPowerState(powerState, tsNanos, uid);
Adam Lesinskie08af192015-03-25 16:42:59 -0700[diff] [blame]467 } catch (RemoteException e) {
468 }
469 }
470 }
471
Dianne Hackborn2ffa11e2014-04-21 15:56:18 -0700[diff] [blame]472 boolean isActive = powerState == DataConnectionRealTimeInfo.DC_POWER_STATE_MEDIUM
473 || powerState == DataConnectionRealTimeInfo.DC_POWER_STATE_HIGH;
474
475 if (!isMobile || fromRadio || !mMobileActivityFromRadio) {
476 // Report the change in data activity. We don't do this if this is a change
477 // on the mobile network, that is not coming from the radio itself, and we
478 // have previously seen change reports from the radio. In that case only
479 // the radio is the authority for the current state.
Erik Klineb2cfdfb2017-01-18 20:54:14 +0900[diff] [blame]480 final boolean active = isActive;
481 invokeForAllObservers(o -> o.interfaceClassDataActivityChanged(
482 Integer.toString(type), active, tsNanos));
Haoyu Baidb3c8672012-06-20 14:29:57 -0700[diff] [blame]483 }
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]484
485 boolean report = false;
486 synchronized (mIdleTimerLock) {
487 if (mActiveIdleTimers.isEmpty()) {
Dianne Hackborn2ffa11e2014-04-21 15:56:18 -0700[diff] [blame]488 // If there are no idle timers, we are not monitoring activity, so we
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]489 // are always considered active.
Dianne Hackborn2ffa11e2014-04-21 15:56:18 -0700[diff] [blame]490 isActive = true;
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]491 }
Dianne Hackborn2ffa11e2014-04-21 15:56:18 -0700[diff] [blame]492 if (mNetworkActive != isActive) {
493 mNetworkActive = isActive;
494 report = isActive;
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]495 }
496 }
497 if (report) {
498 reportNetworkActive();
499 }
Haoyu Baidb3c8672012-06-20 14:29:57 -0700[diff] [blame]500 }
501
Lorenzo Colitti9eb844e2016-03-23 23:22:49 +0900[diff] [blame]502 // Sync the state of the given chain with the native daemon.
503 private void syncFirewallChainLocked(int chain, SparseIntArray uidFirewallRules, String name) {
504 int size = uidFirewallRules.size();
505 if (size > 0) {
506 // Make a copy of the current rules, and then clear them. This is because
507 // setFirewallUidRuleInternal only pushes down rules to the native daemon if they are
508 // different from the current rules stored in the mUidFirewall*Rules array for the
509 // specified chain. If we don't clear the rules, setFirewallUidRuleInternal will do
510 // nothing.
511 final SparseIntArray rules = uidFirewallRules.clone();
512 uidFirewallRules.clear();
513
514 // Now push the rules. setFirewallUidRuleInternal will push each of these down to the
515 // native daemon, and also add them to the mUidFirewall*Rules array for the specified
516 // chain.
517 if (DBG) Slog.d(TAG, "Pushing " + size + " active firewall " + name + "UID rules");
518 for (int i = 0; i < rules.size(); i++) {
Felipe Lemea701cad2016-05-12 09:58:14 -0700[diff] [blame]519 setFirewallUidRuleLocked(chain, rules.keyAt(i), rules.valueAt(i));
Lorenzo Colitti9eb844e2016-03-23 23:22:49 +0900[diff] [blame]520 }
521 }
522 }
523
bohu07cc3bb2016-05-03 15:58:01 -0700[diff] [blame]524 private void connectNativeNetdService() {
Lorenzo Colitti58967ba2016-02-02 17:21:21 +0900[diff] [blame]525 boolean nativeServiceAvailable = false;
526 try {
527 mNetdService = INetd.Stub.asInterface(ServiceManager.getService(NETD_SERVICE_NAME));
528 nativeServiceAvailable = mNetdService.isAlive();
529 } catch (RemoteException e) {}
530 if (!nativeServiceAvailable) {
531 Slog.wtf(TAG, "Can't connect to NativeNetdService " + NETD_SERVICE_NAME);
532 }
bohu07cc3bb2016-05-03 15:58:01 -0700[diff] [blame]533 }
534
535 /**
536 * Prepare native daemon once connected, enabling modules and pushing any
537 * existing in-memory rules.
538 */
539 private void prepareNativeDaemon() {
Lorenzo Colitti58967ba2016-02-02 17:21:21 +0900[diff] [blame]540
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]541 mBandwidthControlEnabled = false;
Robert Greenwalte5c3afb2010-09-22 14:32:35 -0700[diff] [blame]542
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]543 // only enable bandwidth control when support exists
544 final boolean hasKernelSupport = new File("/proc/net/xt_qtaguid/ctrl").exists();
545 if (hasKernelSupport) {
546 Slog.d(TAG, "enabling bandwidth control");
547 try {
548 mConnector.execute("bandwidth", "enable");
549 mBandwidthControlEnabled = true;
550 } catch (NativeDaemonConnectorException e) {
551 Log.wtf(TAG, "problem enabling bandwidth controls", e);
552 }
553 } else {
Felipe Leme03e689d2016-03-02 16:17:38 -0800[diff] [blame]554 Slog.i(TAG, "not enabling bandwidth control");
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]555 }
556
557 SystemProperties.set(PROP_QTAGUID_ENABLED, mBandwidthControlEnabled ? "1" : "0");
558
Jeff Sharkey7a1c3fc2013-06-04 12:29:00 -0700[diff] [blame]559 if (mBandwidthControlEnabled) {
560 try {
Dianne Hackborne13c4c02014-02-11 17:18:35 -0800[diff] [blame]561 getBatteryStats().noteNetworkStatsEnabled();
Jeff Sharkey7a1c3fc2013-06-04 12:29:00 -0700[diff] [blame]562 } catch (RemoteException e) {
563 }
564 }
565
Jeff Sharkey605eb792014-11-04 13:34:06 -0800[diff] [blame]566 try {
567 mConnector.execute("strict", "enable");
568 mStrictEnabled = true;
569 } catch (NativeDaemonConnectorException e) {
570 Log.wtf(TAG, "Failed strict enable", e);
571 }
572
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]573 // push any existing quota or UID rules
574 synchronized (mQuotaLock) {
Felipe Leme65be3022016-03-22 14:53:13 -0700[diff] [blame]575
576 setDataSaverModeEnabled(mDataSaverMode);
577
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]578 int size = mActiveQuotas.size();
579 if (size > 0) {
Felipe Leme03e689d2016-03-02 16:17:38 -0800[diff] [blame]580 if (DBG) Slog.d(TAG, "Pushing " + size + " active quota rules");
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]581 final HashMap<String, Long> activeQuotas = mActiveQuotas;
582 mActiveQuotas = Maps.newHashMap();
583 for (Map.Entry<String, Long> entry : activeQuotas.entrySet()) {
584 setInterfaceQuota(entry.getKey(), entry.getValue());
585 }
586 }
587
588 size = mActiveAlerts.size();
589 if (size > 0) {
Felipe Leme03e689d2016-03-02 16:17:38 -0800[diff] [blame]590 if (DBG) Slog.d(TAG, "Pushing " + size + " active alert rules");
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]591 final HashMap<String, Long> activeAlerts = mActiveAlerts;
592 mActiveAlerts = Maps.newHashMap();
593 for (Map.Entry<String, Long> entry : activeAlerts.entrySet()) {
594 setInterfaceAlert(entry.getKey(), entry.getValue());
595 }
596 }
597
Felipe Leme65be3022016-03-22 14:53:13 -0700[diff] [blame]598 size = mUidRejectOnMetered.size();
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]599 if (size > 0) {
Felipe Leme65be3022016-03-22 14:53:13 -0700[diff] [blame]600 if (DBG) Slog.d(TAG, "Pushing " + size + " UIDs to metered whitelist rules");
601 final SparseBooleanArray uidRejectOnQuota = mUidRejectOnMetered;
602 mUidRejectOnMetered = new SparseBooleanArray();
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]603 for (int i = 0; i < uidRejectOnQuota.size(); i++) {
Felipe Leme65be3022016-03-22 14:53:13 -0700[diff] [blame]604 setUidMeteredNetworkBlacklist(uidRejectOnQuota.keyAt(i),
605 uidRejectOnQuota.valueAt(i));
606 }
607 }
608
609 size = mUidAllowOnMetered.size();
610 if (size > 0) {
611 if (DBG) Slog.d(TAG, "Pushing " + size + " UIDs to metered blacklist rules");
612 final SparseBooleanArray uidAcceptOnQuota = mUidAllowOnMetered;
613 mUidAllowOnMetered = new SparseBooleanArray();
614 for (int i = 0; i < uidAcceptOnQuota.size(); i++) {
615 setUidMeteredNetworkWhitelist(uidAcceptOnQuota.keyAt(i),
616 uidAcceptOnQuota.valueAt(i));
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]617 }
618 }
Jeff Sharkey605eb792014-11-04 13:34:06 -0800[diff] [blame]619
620 size = mUidCleartextPolicy.size();
621 if (size > 0) {
Felipe Leme03e689d2016-03-02 16:17:38 -0800[diff] [blame]622 if (DBG) Slog.d(TAG, "Pushing " + size + " active UID cleartext policies");
Jeff Sharkey605eb792014-11-04 13:34:06 -0800[diff] [blame]623 final SparseIntArray local = mUidCleartextPolicy;
624 mUidCleartextPolicy = new SparseIntArray();
625 for (int i = 0; i < local.size(); i++) {
626 setUidCleartextNetworkPolicy(local.keyAt(i), local.valueAt(i));
627 }
628 }
Jeff Sharkeyc268f0b2012-08-24 10:25:31 -0700[diff] [blame]629
Robin Leec3736bc2017-03-10 16:19:54 +0000[diff] [blame]630 setFirewallEnabled(mFirewallEnabled);
Amith Yamasani15e472352015-04-24 19:06:07 -0700[diff] [blame]631
Lorenzo Colitti9eb844e2016-03-23 23:22:49 +0900[diff] [blame]632 syncFirewallChainLocked(FIREWALL_CHAIN_NONE, mUidFirewallRules, "");
633 syncFirewallChainLocked(FIREWALL_CHAIN_STANDBY, mUidFirewallStandbyRules, "standby ");
634 syncFirewallChainLocked(FIREWALL_CHAIN_DOZABLE, mUidFirewallDozableRules, "dozable ");
635 syncFirewallChainLocked(FIREWALL_CHAIN_POWERSAVE, mUidFirewallPowerSaveRules,
636 "powersave ");
Xiaohui Chenb41c9f72015-06-17 15:55:37 -0700[diff] [blame]637
Xiaohui Chen8dca36d2015-06-19 12:44:59 -0700[diff] [blame]638 if (mFirewallChainStates.get(FIREWALL_CHAIN_STANDBY)) {
Xiaohui Chenb41c9f72015-06-17 15:55:37 -0700[diff] [blame]639 setFirewallChainEnabled(FIREWALL_CHAIN_STANDBY, true);
640 }
Xiaohui Chen8dca36d2015-06-19 12:44:59 -0700[diff] [blame]641 if (mFirewallChainStates.get(FIREWALL_CHAIN_DOZABLE)) {
Xiaohui Chenb41c9f72015-06-17 15:55:37 -0700[diff] [blame]642 setFirewallChainEnabled(FIREWALL_CHAIN_DOZABLE, true);
643 }
Felipe Leme011b98f2016-02-10 17:28:31 -0800[diff] [blame]644 if (mFirewallChainStates.get(FIREWALL_CHAIN_POWERSAVE)) {
645 setFirewallChainEnabled(FIREWALL_CHAIN_POWERSAVE, true);
646 }
Amith Yamasani15e472352015-04-24 19:06:07 -0700[diff] [blame]647 }
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]648 }
San Mehat4d02d002010-01-22 16:07:46 -0800[diff] [blame]649
Lorenzo Colitti5c7daac2013-08-05 10:39:37 +0900[diff] [blame]650 /**
651 * Notify our observers of a new or updated interface address.
652 */
Lorenzo Colitti64483942013-11-15 18:43:52 +0900[diff] [blame]653 private void notifyAddressUpdated(String iface, LinkAddress address) {
Erik Klineb2cfdfb2017-01-18 20:54:14 +0900[diff] [blame]654 invokeForAllObservers(o -> o.addressUpdated(iface, address));
Lorenzo Colitti5c7daac2013-08-05 10:39:37 +0900[diff] [blame]655 }
656
657 /**
658 * Notify our observers of a deleted interface address.
659 */
Lorenzo Colitti64483942013-11-15 18:43:52 +0900[diff] [blame]660 private void notifyAddressRemoved(String iface, LinkAddress address) {
Erik Klineb2cfdfb2017-01-18 20:54:14 +0900[diff] [blame]661 invokeForAllObservers(o -> o.addressRemoved(iface, address));
Lorenzo Colitti5c7daac2013-08-05 10:39:37 +0900[diff] [blame]662 }
663
Lorenzo Colitti5ae4a532013-10-31 11:59:46 +0900[diff] [blame]664 /**
665 * Notify our observers of DNS server information received.
666 */
667 private void notifyInterfaceDnsServerInfo(String iface, long lifetime, String[] addresses) {
Erik Klineb2cfdfb2017-01-18 20:54:14 +0900[diff] [blame]668 invokeForAllObservers(o -> o.interfaceDnsServerInfo(iface, lifetime, addresses));
Lorenzo Colitti5ae4a532013-10-31 11:59:46 +0900[diff] [blame]669 }
670
Lorenzo Colittic18cbfd2014-06-13 21:21:03 +0900[diff] [blame]671 /**
672 * Notify our observers of a route change.
673 */
674 private void notifyRouteChange(String action, RouteInfo route) {
Erik Klineb2cfdfb2017-01-18 20:54:14 +0900[diff] [blame]675 if (action.equals("updated")) {
676 invokeForAllObservers(o -> o.routeUpdated(route));
677 } else {
678 invokeForAllObservers(o -> o.routeRemoved(route));
Lorenzo Colittic18cbfd2014-06-13 21:21:03 +0900[diff] [blame]679 }
680 }
681
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]682 //
683 // Netd Callback handling
684 //
685
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]686 private class NetdCallbackReceiver implements INativeDaemonConnectorCallbacks {
687 @Override
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]688 public void onDaemonConnected() {
Felipe Leme65be3022016-03-22 14:53:13 -0700[diff] [blame]689 Slog.i(TAG, "onDaemonConnected()");
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]690 // event is dispatched from internal NDC thread, so we prepare the
691 // daemon back on main thread.
692 if (mConnectedSignal != null) {
bohu07cc3bb2016-05-03 15:58:01 -0700[diff] [blame]693 // The system is booting and we're connecting to netd for the first time.
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]694 mConnectedSignal.countDown();
695 mConnectedSignal = null;
696 } else {
bohu07cc3bb2016-05-03 15:58:01 -0700[diff] [blame]697 // We're reconnecting to netd after the socket connection
698 // was interrupted (e.g., if it crashed).
Robert Greenwalt2c9f5472014-04-21 14:50:28 -0700[diff] [blame]699 mFgHandler.post(new Runnable() {
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]700 @Override
701 public void run() {
bohu07cc3bb2016-05-03 15:58:01 -0700[diff] [blame]702 connectNativeNetdService();
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]703 prepareNativeDaemon();
704 }
705 });
706 }
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]707 }
Jeff Sharkeyfa23c5a2011-08-09 21:44:24 -0700[diff] [blame]708
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]709 @Override
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]710 public boolean onCheckHoldWakeLock(int code) {
711 return code == NetdResponseCode.InterfaceClassActivity;
712 }
713
714 @Override
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]715 public boolean onEvent(int code, String raw, String[] cooked) {
Lorenzo Colittia9626c12013-11-04 17:44:09 +0900[diff] [blame]716 String errorMessage = String.format("Invalid event from daemon (%s)", raw);
JP Abgrall12b933d2011-07-14 18:09:22 -0700[diff] [blame]717 switch (code) {
718 case NetdResponseCode.InterfaceChange:
719 /*
720 * a network interface change occured
721 * Format: "NNN Iface added <name>"
722 * "NNN Iface removed <name>"
723 * "NNN Iface changed <name> <up/down>"
724 * "NNN Iface linkstatus <name> <up/down>"
725 */
726 if (cooked.length < 4 || !cooked[1].equals("Iface")) {
Lorenzo Colittia9626c12013-11-04 17:44:09 +0900[diff] [blame]727 throw new IllegalStateException(errorMessage);
JP Abgrall12b933d2011-07-14 18:09:22 -0700[diff] [blame]728 }
729 if (cooked[2].equals("added")) {
730 notifyInterfaceAdded(cooked[3]);
731 return true;
732 } else if (cooked[2].equals("removed")) {
733 notifyInterfaceRemoved(cooked[3]);
734 return true;
735 } else if (cooked[2].equals("changed") && cooked.length == 5) {
736 notifyInterfaceStatusChanged(cooked[3], cooked[4].equals("up"));
737 return true;
738 } else if (cooked[2].equals("linkstate") && cooked.length == 5) {
739 notifyInterfaceLinkStateChanged(cooked[3], cooked[4].equals("up"));
740 return true;
741 }
Lorenzo Colittia9626c12013-11-04 17:44:09 +0900[diff] [blame]742 throw new IllegalStateException(errorMessage);
JP Abgrall12b933d2011-07-14 18:09:22 -0700[diff] [blame]743 // break;
744 case NetdResponseCode.BandwidthControl:
745 /*
746 * Bandwidth control needs some attention
747 * Format: "NNN limit alert <alertName> <ifaceName>"
748 */
749 if (cooked.length < 5 || !cooked[1].equals("limit")) {
Lorenzo Colittia9626c12013-11-04 17:44:09 +0900[diff] [blame]750 throw new IllegalStateException(errorMessage);
JP Abgrall12b933d2011-07-14 18:09:22 -0700[diff] [blame]751 }
752 if (cooked[2].equals("alert")) {
753 notifyLimitReached(cooked[3], cooked[4]);
754 return true;
755 }
Lorenzo Colittia9626c12013-11-04 17:44:09 +0900[diff] [blame]756 throw new IllegalStateException(errorMessage);
JP Abgrall12b933d2011-07-14 18:09:22 -0700[diff] [blame]757 // break;
Haoyu Baidb3c8672012-06-20 14:29:57 -0700[diff] [blame]758 case NetdResponseCode.InterfaceClassActivity:
759 /*
760 * An network interface class state changed (active/idle)
761 * Format: "NNN IfaceClass <active/idle> <label>"
762 */
763 if (cooked.length < 4 || !cooked[1].equals("IfaceClass")) {
Lorenzo Colittia9626c12013-11-04 17:44:09 +0900[diff] [blame]764 throw new IllegalStateException(errorMessage);
Haoyu Baidb3c8672012-06-20 14:29:57 -0700[diff] [blame]765 }
Ashish Sharma0535a9f2014-03-12 18:42:23 -0700[diff] [blame]766 long timestampNanos = 0;
Ruchi Kandoifa97fcf2016-05-13 15:10:39 -0700[diff] [blame]767 int processUid = -1;
768 if (cooked.length >= 5) {
Ashish Sharma0535a9f2014-03-12 18:42:23 -0700[diff] [blame]769 try {
770 timestampNanos = Long.parseLong(cooked[4]);
Ruchi Kandoifa97fcf2016-05-13 15:10:39 -0700[diff] [blame]771 if (cooked.length == 6) {
772 processUid = Integer.parseInt(cooked[5]);
773 }
Ashish Sharma0535a9f2014-03-12 18:42:23 -0700[diff] [blame]774 } catch(NumberFormatException ne) {}
Dianne Hackborn2ffa11e2014-04-21 15:56:18 -0700[diff] [blame]775 } else {
776 timestampNanos = SystemClock.elapsedRealtimeNanos();
Ashish Sharma0535a9f2014-03-12 18:42:23 -0700[diff] [blame]777 }
Haoyu Baidb3c8672012-06-20 14:29:57 -0700[diff] [blame]778 boolean isActive = cooked[2].equals("active");
Ashish Sharma0535a9f2014-03-12 18:42:23 -0700[diff] [blame]779 notifyInterfaceClassActivity(Integer.parseInt(cooked[3]),
Dianne Hackborn2ffa11e2014-04-21 15:56:18 -0700[diff] [blame]780 isActive ? DataConnectionRealTimeInfo.DC_POWER_STATE_HIGH
Ruchi Kandoifa97fcf2016-05-13 15:10:39 -0700[diff] [blame]781 : DataConnectionRealTimeInfo.DC_POWER_STATE_LOW,
782 timestampNanos, processUid, false);
Haoyu Baidb3c8672012-06-20 14:29:57 -0700[diff] [blame]783 return true;
784 // break;
Lorenzo Colitti5c7daac2013-08-05 10:39:37 +0900[diff] [blame]785 case NetdResponseCode.InterfaceAddressChange:
786 /*
787 * A network address change occurred
788 * Format: "NNN Address updated <addr> <iface> <flags> <scope>"
789 * "NNN Address removed <addr> <iface> <flags> <scope>"
790 */
Lorenzo Colittia9626c12013-11-04 17:44:09 +0900[diff] [blame]791 if (cooked.length < 7 || !cooked[1].equals("Address")) {
792 throw new IllegalStateException(errorMessage);
Lorenzo Colitti5c7daac2013-08-05 10:39:37 +0900[diff] [blame]793 }
794
Lorenzo Colitti64483942013-11-15 18:43:52 +0900[diff] [blame]795 String iface = cooked[4];
Lorenzo Colitti5ad421a2013-11-17 15:05:02 +0900[diff] [blame]796 LinkAddress address;
Lorenzo Colitti5c7daac2013-08-05 10:39:37 +0900[diff] [blame]797 try {
Lorenzo Colitti64483942013-11-15 18:43:52 +0900[diff] [blame]798 int flags = Integer.parseInt(cooked[5]);
799 int scope = Integer.parseInt(cooked[6]);
800 address = new LinkAddress(cooked[3], flags, scope);
Lorenzo Colitti5ad421a2013-11-17 15:05:02 +0900[diff] [blame]801 } catch(NumberFormatException e) { // Non-numeric lifetime or scope.
802 throw new IllegalStateException(errorMessage, e);
Lorenzo Colitti64483942013-11-15 18:43:52 +0900[diff] [blame]803 } catch(IllegalArgumentException e) { // Malformed/invalid IP address.
Lorenzo Colitti5ad421a2013-11-17 15:05:02 +0900[diff] [blame]804 throw new IllegalStateException(errorMessage, e);
Lorenzo Colitti5c7daac2013-08-05 10:39:37 +0900[diff] [blame]805 }
806
807 if (cooked[2].equals("updated")) {
Lorenzo Colitti64483942013-11-15 18:43:52 +0900[diff] [blame]808 notifyAddressUpdated(iface, address);
Lorenzo Colitti5c7daac2013-08-05 10:39:37 +0900[diff] [blame]809 } else {
Lorenzo Colitti64483942013-11-15 18:43:52 +0900[diff] [blame]810 notifyAddressRemoved(iface, address);
Lorenzo Colitti5c7daac2013-08-05 10:39:37 +0900[diff] [blame]811 }
812 return true;
813 // break;
Lorenzo Colitti5ae4a532013-10-31 11:59:46 +0900[diff] [blame]814 case NetdResponseCode.InterfaceDnsServerInfo:
815 /*
816 * Information about available DNS servers has been received.
817 * Format: "NNN DnsInfo servers <interface> <lifetime> <servers>"
818 */
819 long lifetime; // Actually a 32-bit unsigned integer.
820
821 if (cooked.length == 6 &&
822 cooked[1].equals("DnsInfo") &&
823 cooked[2].equals("servers")) {
824 try {
825 lifetime = Long.parseLong(cooked[4]);
826 } catch (NumberFormatException e) {
827 throw new IllegalStateException(errorMessage);
828 }
829 String[] servers = cooked[5].split(",");
830 notifyInterfaceDnsServerInfo(cooked[3], lifetime, servers);
831 }
832 return true;
833 // break;
Lorenzo Colittic18cbfd2014-06-13 21:21:03 +0900[diff] [blame]834 case NetdResponseCode.RouteChange:
835 /*
836 * A route has been updated or removed.
837 * Format: "NNN Route <updated|removed> <dst> [via <gateway] [dev <iface>]"
838 */
839 if (!cooked[1].equals("Route") || cooked.length < 6) {
840 throw new IllegalStateException(errorMessage);
841 }
842
843 String via = null;
844 String dev = null;
845 boolean valid = true;
846 for (int i = 4; (i + 1) < cooked.length && valid; i += 2) {
847 if (cooked[i].equals("dev")) {
848 if (dev == null) {
849 dev = cooked[i+1];
850 } else {
851 valid = false; // Duplicate interface.
852 }
853 } else if (cooked[i].equals("via")) {
854 if (via == null) {
855 via = cooked[i+1];
856 } else {
857 valid = false; // Duplicate gateway.
858 }
859 } else {
860 valid = false; // Unknown syntax.
861 }
862 }
863 if (valid) {
864 try {
865 // InetAddress.parseNumericAddress(null) inexplicably returns ::1.
866 InetAddress gateway = null;
867 if (via != null) gateway = InetAddress.parseNumericAddress(via);
868 RouteInfo route = new RouteInfo(new IpPrefix(cooked[3]), gateway, dev);
869 notifyRouteChange(cooked[2], route);
870 return true;
871 } catch (IllegalArgumentException e) {}
872 }
873 throw new IllegalStateException(errorMessage);
874 // break;
Jeff Sharkey605eb792014-11-04 13:34:06 -0800[diff] [blame]875 case NetdResponseCode.StrictCleartext:
876 final int uid = Integer.parseInt(cooked[1]);
877 final byte[] firstPacket = HexDump.hexStringToByteArray(cooked[2]);
878 try {
879 ActivityManagerNative.getDefault().notifyCleartextNetwork(uid, firstPacket);
880 } catch (RemoteException ignored) {
881 }
882 break;
JP Abgrall12b933d2011-07-14 18:09:22 -0700[diff] [blame]883 default: break;
Robert Greenwalte3253922010-02-18 09:23:25 -0800[diff] [blame]884 }
885 return false;
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]886 }
887 }
888
San Mehated4fc8a2010-01-22 12:28:36 -0800[diff] [blame]889
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]890 //
891 // INetworkManagementService members
892 //
Erik Kline4e37b702016-07-05 11:34:21 +0900[diff] [blame]893 @Override
894 public INetd getNetdService() throws RemoteException {
895 final CountDownLatch connectedSignal = mConnectedSignal;
896 if (connectedSignal != null) {
897 try {
898 connectedSignal.await();
899 } catch (InterruptedException ignored) {}
900 }
901
902 return mNetdService;
903 }
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]904
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]905 @Override
906 public String[] listInterfaces() {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]907 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]908 try {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]909 return NativeDaemonEvent.filterMessageList(
910 mConnector.executeForList("interface", "list"), InterfaceListResult);
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]911 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]912 throw e.rethrowAsParcelableException();
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]913 }
San Mehated4fc8a2010-01-22 12:28:36 -0800[diff] [blame]914 }
915
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]916 @Override
917 public InterfaceConfiguration getInterfaceConfig(String iface) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]918 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]919
920 final NativeDaemonEvent event;
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]921 try {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]922 event = mConnector.execute("interface", "getcfg", iface);
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]923 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]924 throw e.rethrowAsParcelableException();
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]925 }
San Mehated4fc8a2010-01-22 12:28:36 -0800[diff] [blame]926
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]927 event.checkCode(InterfaceGetCfgResult);
928
929 // Rsp: 213 xx:xx:xx:xx:xx:xx yyy.yyy.yyy.yyy zzz flag1 flag2 flag3
930 final StringTokenizer st = new StringTokenizer(event.getMessage());
San Mehated4fc8a2010-01-22 12:28:36 -0800[diff] [blame]931
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]932 InterfaceConfiguration cfg;
San Mehated4fc8a2010-01-22 12:28:36 -0800[diff] [blame]933 try {
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]934 cfg = new InterfaceConfiguration();
Jeff Sharkeyddba1062011-11-29 18:37:04 -0800[diff] [blame]935 cfg.setHardwareAddress(st.nextToken(" "));
Robert Greenwalted126402011-01-28 15:34:55 -0800[diff] [blame]936 InetAddress addr = null;
Robert Greenwalt2d2afd12011-02-01 15:30:46 -0800[diff] [blame]937 int prefixLength = 0;
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]938 try {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]939 addr = NetworkUtils.numericToInetAddress(st.nextToken());
Robert Greenwalte5903732011-02-22 16:00:42 -0800[diff] [blame]940 } catch (IllegalArgumentException iae) {
941 Slog.e(TAG, "Failed to parse ipaddr", iae);
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]942 }
943
944 try {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]945 prefixLength = Integer.parseInt(st.nextToken());
Robert Greenwalt2d2afd12011-02-01 15:30:46 -0800[diff] [blame]946 } catch (NumberFormatException nfe) {
947 Slog.e(TAG, "Failed to parse prefixLength", nfe);
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]948 }
Robert Greenwalt04808c22010-12-13 17:01:41 -0800[diff] [blame]949
Jeff Sharkeyddba1062011-11-29 18:37:04 -0800[diff] [blame]950 cfg.setLinkAddress(new LinkAddress(addr, prefixLength));
951 while (st.hasMoreTokens()) {
952 cfg.setFlag(st.nextToken());
953 }
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]954 } catch (NoSuchElementException nsee) {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]955 throw new IllegalStateException("Invalid response from daemon: " + event);
San Mehated4fc8a2010-01-22 12:28:36 -0800[diff] [blame]956 }
San Mehated4fc8a2010-01-22 12:28:36 -0800[diff] [blame]957 return cfg;
958 }
959
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]960 @Override
961 public void setInterfaceConfig(String iface, InterfaceConfiguration cfg) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]962 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Jeff Sharkeyddba1062011-11-29 18:37:04 -0800[diff] [blame]963 LinkAddress linkAddr = cfg.getLinkAddress();
Robert Greenwalt2d2afd12011-02-01 15:30:46 -0800[diff] [blame]964 if (linkAddr == null || linkAddr.getAddress() == null) {
965 throw new IllegalStateException("Null LinkAddress given");
Robert Greenwalted126402011-01-28 15:34:55 -0800[diff] [blame]966 }
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]967
968 final Command cmd = new Command("interface", "setcfg", iface,
Robert Greenwalt2d2afd12011-02-01 15:30:46 -0800[diff] [blame]969 linkAddr.getAddress().getHostAddress(),
Lorenzo Colitti7dc78cf2014-06-09 22:58:46 +0900[diff] [blame]970 linkAddr.getPrefixLength());
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]971 for (String flag : cfg.getFlags()) {
972 cmd.appendArg(flag);
973 }
974
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]975 try {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]976 mConnector.execute(cmd);
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]977 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]978 throw e.rethrowAsParcelableException();
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]979 }
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]980 }
981
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]982 @Override
983 public void setInterfaceDown(String iface) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]984 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Jeff Sharkey31c6e482011-11-18 17:09:01 -0800[diff] [blame]985 final InterfaceConfiguration ifcg = getInterfaceConfig(iface);
Jeff Sharkeyddba1062011-11-29 18:37:04 -0800[diff] [blame]986 ifcg.setInterfaceDown();
Jeff Sharkey31c6e482011-11-18 17:09:01 -0800[diff] [blame]987 setInterfaceConfig(iface, ifcg);
Irfan Sheriff7244c972011-08-05 20:40:45 -0700[diff] [blame]988 }
989
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]990 @Override
991 public void setInterfaceUp(String iface) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]992 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Jeff Sharkey31c6e482011-11-18 17:09:01 -0800[diff] [blame]993 final InterfaceConfiguration ifcg = getInterfaceConfig(iface);
Jeff Sharkeyddba1062011-11-29 18:37:04 -0800[diff] [blame]994 ifcg.setInterfaceUp();
Jeff Sharkey31c6e482011-11-18 17:09:01 -0800[diff] [blame]995 setInterfaceConfig(iface, ifcg);
Irfan Sheriff7244c972011-08-05 20:40:45 -0700[diff] [blame]996 }
997
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]998 @Override
999 public void setInterfaceIpv6PrivacyExtensions(String iface, boolean enable) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1000 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Irfan Sheriff73293612011-09-14 12:31:56 -0700[diff] [blame]1001 try {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1002 mConnector.execute(
1003 "interface", "ipv6privacyextensions", iface, enable ? "enable" : "disable");
Irfan Sheriff73293612011-09-14 12:31:56 -0700[diff] [blame]1004 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]1005 throw e.rethrowAsParcelableException();
Irfan Sheriff73293612011-09-14 12:31:56 -0700[diff] [blame]1006 }
1007 }
1008
Irfan Sherifff5600612011-06-16 10:26:28 -0700[diff] [blame]1009 /* TODO: This is right now a IPv4 only function. Works for wifi which loses its
1010 IPv6 addresses on interface down, but we need to do full clean up here */
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1011 @Override
1012 public void clearInterfaceAddresses(String iface) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1013 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Irfan Sherifff5600612011-06-16 10:26:28 -0700[diff] [blame]1014 try {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1015 mConnector.execute("interface", "clearaddrs", iface);
Irfan Sherifff5600612011-06-16 10:26:28 -0700[diff] [blame]1016 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]1017 throw e.rethrowAsParcelableException();
Irfan Sherifff5600612011-06-16 10:26:28 -0700[diff] [blame]1018 }
1019 }
1020
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1021 @Override
1022 public void enableIpv6(String iface) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1023 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
repo sync7960d9f2011-09-29 12:40:02 -0700[diff] [blame]1024 try {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1025 mConnector.execute("interface", "ipv6", iface, "enable");
repo sync7960d9f2011-09-29 12:40:02 -0700[diff] [blame]1026 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]1027 throw e.rethrowAsParcelableException();
repo sync7960d9f2011-09-29 12:40:02 -0700[diff] [blame]1028 }
1029 }
1030
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1031 @Override
Joel Scherpelz2db10742017-06-07 15:38:38 +0900[diff] [blame^]1032 public void setIPv6AddrGenMode(String iface, int mode) throws ServiceSpecificException {
1033 try {
1034 mNetdService.setIPv6AddrGenMode(iface, mode);
1035 } catch (RemoteException e) {
1036 throw e.rethrowAsRuntimeException();
1037 }
1038 }
1039
1040 @Override
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1041 public void disableIpv6(String iface) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1042 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
repo sync7960d9f2011-09-29 12:40:02 -0700[diff] [blame]1043 try {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1044 mConnector.execute("interface", "ipv6", iface, "disable");
repo sync7960d9f2011-09-29 12:40:02 -0700[diff] [blame]1045 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]1046 throw e.rethrowAsParcelableException();
repo sync7960d9f2011-09-29 12:40:02 -0700[diff] [blame]1047 }
1048 }
1049
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1050 @Override
Lorenzo Colittie21a26b2014-10-28 15:24:03 +0900[diff] [blame]1051 public void setInterfaceIpv6NdOffload(String iface, boolean enable) {
1052 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
1053 try {
1054 mConnector.execute(
1055 "interface", "ipv6ndoffload", iface, (enable ? "enable" : "disable"));
1056 } catch (NativeDaemonConnectorException e) {
1057 throw e.rethrowAsParcelableException();
1058 }
1059 }
1060
1061 @Override
Sreeram Ramachandranb2829fa2014-04-15 19:07:12 -0700[diff] [blame]1062 public void addRoute(int netId, RouteInfo route) {
Sreeram Ramachandrana77760d2014-07-17 17:09:07 -0700[diff] [blame]1063 modifyRoute("add", "" + netId, route);
Robert Greenwalt59b1a4e2011-05-10 15:05:02 -0700[diff] [blame]1064 }
1065
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1066 @Override
Sreeram Ramachandranb2829fa2014-04-15 19:07:12 -0700[diff] [blame]1067 public void removeRoute(int netId, RouteInfo route) {
Sreeram Ramachandrana77760d2014-07-17 17:09:07 -0700[diff] [blame]1068 modifyRoute("remove", "" + netId, route);
Robert Greenwalt59b1a4e2011-05-10 15:05:02 -0700[diff] [blame]1069 }
1070
Sreeram Ramachandrana77760d2014-07-17 17:09:07 -0700[diff] [blame]1071 private void modifyRoute(String action, String netId, RouteInfo route) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1072 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Robert Greenwalt3b28e9a2011-11-02 14:37:19 -0700[diff] [blame]1073
Sreeram Ramachandranb2829fa2014-04-15 19:07:12 -0700[diff] [blame]1074 final Command cmd = new Command("network", "route", action, netId);
Robert Greenwalt3b28e9a2011-11-02 14:37:19 -0700[diff] [blame]1075
Sreeram Ramachandranb2829fa2014-04-15 19:07:12 -0700[diff] [blame]1076 // create triplet: interface dest-ip-addr/prefixlength gateway-ip-addr
Sreeram Ramachandranb2829fa2014-04-15 19:07:12 -0700[diff] [blame]1077 cmd.appendArg(route.getInterface());
Lorenzo Colitti4b0f8e62014-09-19 01:49:05 +0900[diff] [blame]1078 cmd.appendArg(route.getDestination().toString());
1079
1080 switch (route.getType()) {
1081 case RouteInfo.RTN_UNICAST:
1082 if (route.hasGateway()) {
1083 cmd.appendArg(route.getGateway().getHostAddress());
1084 }
1085 break;
1086 case RouteInfo.RTN_UNREACHABLE:
1087 cmd.appendArg("unreachable");
1088 break;
1089 case RouteInfo.RTN_THROW:
1090 cmd.appendArg("throw");
1091 break;
Sreeram Ramachandran1fbcb272014-05-22 16:30:48 -0700[diff] [blame]1092 }
Robert Greenwalt59b1a4e2011-05-10 15:05:02 -0700[diff] [blame]1093
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1094 try {
1095 mConnector.execute(cmd);
1096 } catch (NativeDaemonConnectorException e) {
1097 throw e.rethrowAsParcelableException();
Robert Greenwalt59b1a4e2011-05-10 15:05:02 -0700[diff] [blame]1098 }
1099 }
1100
1101 private ArrayList<String> readRouteList(String filename) {
1102 FileInputStream fstream = null;
Christopher Wiley5de073a2016-08-02 11:38:57 -0700[diff] [blame]1103 ArrayList<String> list = new ArrayList<>();
Robert Greenwalt59b1a4e2011-05-10 15:05:02 -0700[diff] [blame]1104
1105 try {
1106 fstream = new FileInputStream(filename);
1107 DataInputStream in = new DataInputStream(fstream);
1108 BufferedReader br = new BufferedReader(new InputStreamReader(in));
1109 String s;
1110
1111 // throw away the title line
1112
1113 while (((s = br.readLine()) != null) && (s.length() != 0)) {
1114 list.add(s);
1115 }
1116 } catch (IOException ex) {
1117 // return current list, possibly empty
1118 } finally {
1119 if (fstream != null) {
1120 try {
1121 fstream.close();
1122 } catch (IOException ex) {}
1123 }
1124 }
1125
1126 return list;
1127 }
1128
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1129 @Override
sy.yun9d9b74a2013-09-02 05:24:09 +0900[diff] [blame]1130 public void setMtu(String iface, int mtu) {
1131 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
1132
1133 final NativeDaemonEvent event;
1134 try {
1135 event = mConnector.execute("interface", "setmtu", iface, mtu);
1136 } catch (NativeDaemonConnectorException e) {
1137 throw e.rethrowAsParcelableException();
1138 }
1139 }
1140
1141 @Override
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]1142 public void shutdown() {
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1143 // TODO: remove from aidl if nobody calls externally
1144 mContext.enforceCallingOrSelfPermission(SHUTDOWN, TAG);
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]1145
Felipe Leme03e689d2016-03-02 16:17:38 -0800[diff] [blame]1146 Slog.i(TAG, "Shutting down");
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]1147 }
1148
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1149 @Override
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]1150 public boolean getIpForwardingEnabled() throws IllegalStateException{
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1151 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]1152
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1153 final NativeDaemonEvent event;
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1154 try {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1155 event = mConnector.execute("ipfwd", "status");
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1156 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]1157 throw e.rethrowAsParcelableException();
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1158 }
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]1159
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1160 // 211 Forwarding enabled
1161 event.checkCode(IpFwdStatusResult);
1162 return event.getMessage().endsWith("enabled");
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]1163 }
1164
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1165 @Override
1166 public void setIpForwardingEnabled(boolean enable) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1167 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Jeff Sharkey31c6e482011-11-18 17:09:01 -0800[diff] [blame]1168 try {
Nilesh Poddarf3d4a582015-02-24 12:11:11 -0800[diff] [blame]1169 mConnector.execute("ipfwd", enable ? "enable" : "disable", "tethering");
Jeff Sharkey31c6e482011-11-18 17:09:01 -0800[diff] [blame]1170 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]1171 throw e.rethrowAsParcelableException();
Jeff Sharkey31c6e482011-11-18 17:09:01 -0800[diff] [blame]1172 }
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]1173 }
1174
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1175 @Override
1176 public void startTethering(String[] dhcpRange) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1177 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Robert Greenwaltbfb7bfa2010-03-24 16:03:21 -0700[diff] [blame]1178 // cmd is "tether start first_start first_stop second_start second_stop ..."
1179 // an odd number of addrs will fail
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1180
1181 final Command cmd = new Command("tether", "start");
Robert Greenwaltbfb7bfa2010-03-24 16:03:21 -0700[diff] [blame]1182 for (String d : dhcpRange) {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1183 cmd.appendArg(d);
Robert Greenwaltbfb7bfa2010-03-24 16:03:21 -0700[diff] [blame]1184 }
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1185
1186 try {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1187 mConnector.execute(cmd);
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1188 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]1189 throw e.rethrowAsParcelableException();
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1190 }
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]1191 }
1192
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1193 @Override
1194 public void stopTethering() {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1195 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1196 try {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1197 mConnector.execute("tether", "stop");
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1198 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]1199 throw e.rethrowAsParcelableException();
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1200 }
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]1201 }
1202
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1203 @Override
1204 public boolean isTetheringStarted() {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1205 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]1206
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1207 final NativeDaemonEvent event;
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1208 try {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1209 event = mConnector.execute("tether", "status");
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1210 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]1211 throw e.rethrowAsParcelableException();
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1212 }
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]1213
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1214 // 210 Tethering services started
1215 event.checkCode(TetherStatusResult);
1216 return event.getMessage().endsWith("started");
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]1217 }
Matthew Xiefe19f122012-07-12 16:03:32 -0700[diff] [blame]1218
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1219 @Override
1220 public void tetherInterface(String iface) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1221 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1222 try {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1223 mConnector.execute("tether", "interface", "add", iface);
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1224 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]1225 throw e.rethrowAsParcelableException();
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1226 }
Christopher Wiley5de073a2016-08-02 11:38:57 -0700[diff] [blame]1227 List<RouteInfo> routes = new ArrayList<>();
Sreeram Ramachandrana77760d2014-07-17 17:09:07 -0700[diff] [blame]1228 // The RouteInfo constructor truncates the LinkAddress to a network prefix, thus making it
1229 // suitable to use as a route destination.
1230 routes.add(new RouteInfo(getInterfaceConfig(iface).getLinkAddress(), null, iface));
1231 addInterfaceToLocalNetwork(iface, routes);
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]1232 }
1233
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1234 @Override
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]1235 public void untetherInterface(String iface) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1236 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1237 try {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1238 mConnector.execute("tether", "interface", "remove", iface);
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1239 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]1240 throw e.rethrowAsParcelableException();
Erik Kline1f4278a2016-08-16 16:46:33 +0900[diff] [blame]1241 } finally {
1242 removeInterfaceFromLocalNetwork(iface);
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1243 }
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]1244 }
1245
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1246 @Override
1247 public String[] listTetheredInterfaces() {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1248 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1249 try {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1250 return NativeDaemonEvent.filterMessageList(
1251 mConnector.executeForList("tether", "interface", "list"),
1252 TetherInterfaceListResult);
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1253 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]1254 throw e.rethrowAsParcelableException();
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1255 }
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]1256 }
1257
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1258 @Override
Lorenzo Colittib57edc52014-08-22 17:10:50 -0700[diff] [blame]1259 public void setDnsForwarders(Network network, String[] dns) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1260 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1261
Lorenzo Colittib57edc52014-08-22 17:10:50 -0700[diff] [blame]1262 int netId = (network != null) ? network.netId : ConnectivityManager.NETID_UNSET;
1263 final Command cmd = new Command("tether", "dns", "set", netId);
1264
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1265 for (String s : dns) {
1266 cmd.appendArg(NetworkUtils.numericToInetAddress(s).getHostAddress());
1267 }
1268
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]1269 try {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1270 mConnector.execute(cmd);
1271 } catch (NativeDaemonConnectorException e) {
1272 throw e.rethrowAsParcelableException();
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]1273 }
1274 }
1275
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1276 @Override
1277 public String[] getDnsForwarders() {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1278 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1279 try {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1280 return NativeDaemonEvent.filterMessageList(
1281 mConnector.executeForList("tether", "dns", "list"), TetherDnsFwdTgtListResult);
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1282 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]1283 throw e.rethrowAsParcelableException();
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1284 }
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]1285 }
1286
jiaguo1da35f72014-01-09 16:39:59 +0800[diff] [blame]1287 private List<InterfaceAddress> excludeLinkLocal(List<InterfaceAddress> addresses) {
Christopher Wiley5de073a2016-08-02 11:38:57 -0700[diff] [blame]1288 ArrayList<InterfaceAddress> filtered = new ArrayList<>(addresses.size());
jiaguo1da35f72014-01-09 16:39:59 +0800[diff] [blame]1289 for (InterfaceAddress ia : addresses) {
1290 if (!ia.getAddress().isLinkLocalAddress())
1291 filtered.add(ia);
1292 }
1293 return filtered;
1294 }
1295
Lorenzo Colitti35e36db2015-02-26 01:25:36 +0900[diff] [blame]1296 private void modifyInterfaceForward(boolean add, String fromIface, String toIface) {
1297 final Command cmd = new Command("ipfwd", add ? "add" : "remove", fromIface, toIface);
1298 try {
1299 mConnector.execute(cmd);
1300 } catch (NativeDaemonConnectorException e) {
1301 throw e.rethrowAsParcelableException();
1302 }
1303 }
1304
1305 @Override
1306 public void startInterfaceForwarding(String fromIface, String toIface) {
1307 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
1308 modifyInterfaceForward(true, fromIface, toIface);
1309 }
1310
1311 @Override
1312 public void stopInterfaceForwarding(String fromIface, String toIface) {
1313 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
1314 modifyInterfaceForward(false, fromIface, toIface);
1315 }
1316
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1317 private void modifyNat(String action, String internalInterface, String externalInterface)
Robert Greenwalt3b28e9a2011-11-02 14:37:19 -0700[diff] [blame]1318 throws SocketException {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1319 final Command cmd = new Command("nat", action, internalInterface, externalInterface);
Robert Greenwalt3b28e9a2011-11-02 14:37:19 -0700[diff] [blame]1320
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1321 final NetworkInterface internalNetworkInterface = NetworkInterface.getByName(
1322 internalInterface);
Robert Greenwalte83d1812011-11-21 14:44:39 -0800[diff] [blame]1323 if (internalNetworkInterface == null) {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1324 cmd.appendArg("0");
Robert Greenwalte83d1812011-11-21 14:44:39 -0800[diff] [blame]1325 } else {
jiaguo1da35f72014-01-09 16:39:59 +0800[diff] [blame]1326 // Don't touch link-local routes, as link-local addresses aren't routable,
1327 // kernel creates link-local routes on all interfaces automatically
1328 List<InterfaceAddress> interfaceAddresses = excludeLinkLocal(
1329 internalNetworkInterface.getInterfaceAddresses());
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1330 cmd.appendArg(interfaceAddresses.size());
Robert Greenwalte83d1812011-11-21 14:44:39 -0800[diff] [blame]1331 for (InterfaceAddress ia : interfaceAddresses) {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1332 InetAddress addr = NetworkUtils.getNetworkPart(
1333 ia.getAddress(), ia.getNetworkPrefixLength());
1334 cmd.appendArg(addr.getHostAddress() + "/" + ia.getNetworkPrefixLength());
Robert Greenwalte83d1812011-11-21 14:44:39 -0800[diff] [blame]1335 }
Robert Greenwalt3b28e9a2011-11-02 14:37:19 -0700[diff] [blame]1336 }
1337
Jeff Sharkey31c6e482011-11-18 17:09:01 -0800[diff] [blame]1338 try {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1339 mConnector.execute(cmd);
Jeff Sharkey31c6e482011-11-18 17:09:01 -0800[diff] [blame]1340 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]1341 throw e.rethrowAsParcelableException();
Jeff Sharkey31c6e482011-11-18 17:09:01 -0800[diff] [blame]1342 }
Robert Greenwalt3b28e9a2011-11-02 14:37:19 -0700[diff] [blame]1343 }
1344
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1345 @Override
1346 public void enableNat(String internalInterface, String externalInterface) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1347 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1348 try {
Robert Greenwalt3b28e9a2011-11-02 14:37:19 -0700[diff] [blame]1349 modifyNat("enable", internalInterface, externalInterface);
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1350 } catch (SocketException e) {
1351 throw new IllegalStateException(e);
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1352 }
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]1353 }
1354
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1355 @Override
1356 public void disableNat(String internalInterface, String externalInterface) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1357 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1358 try {
Robert Greenwalt3b28e9a2011-11-02 14:37:19 -0700[diff] [blame]1359 modifyNat("disable", internalInterface, externalInterface);
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1360 } catch (SocketException e) {
1361 throw new IllegalStateException(e);
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1362 }
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]1363 }
San Mehat72759df2010-01-19 13:50:37 -0800[diff] [blame]1364
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1365 @Override
1366 public String[] listTtys() {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1367 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1368 try {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1369 return NativeDaemonEvent.filterMessageList(
1370 mConnector.executeForList("list_ttys"), TtyListResult);
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1371 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]1372 throw e.rethrowAsParcelableException();
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1373 }
San Mehat72759df2010-01-19 13:50:37 -0800[diff] [blame]1374 }
1375
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1376 @Override
1377 public void attachPppd(
1378 String tty, String localAddr, String remoteAddr, String dns1Addr, String dns2Addr) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1379 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
San Mehat72759df2010-01-19 13:50:37 -0800[diff] [blame]1380 try {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1381 mConnector.execute("pppd", "attach", tty,
Robert Greenwalte5903732011-02-22 16:00:42 -0800[diff] [blame]1382 NetworkUtils.numericToInetAddress(localAddr).getHostAddress(),
1383 NetworkUtils.numericToInetAddress(remoteAddr).getHostAddress(),
1384 NetworkUtils.numericToInetAddress(dns1Addr).getHostAddress(),
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1385 NetworkUtils.numericToInetAddress(dns2Addr).getHostAddress());
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1386 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]1387 throw e.rethrowAsParcelableException();
San Mehat72759df2010-01-19 13:50:37 -0800[diff] [blame]1388 }
1389 }
1390
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1391 @Override
1392 public void detachPppd(String tty) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1393 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1394 try {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1395 mConnector.execute("pppd", "detach", tty);
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1396 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]1397 throw e.rethrowAsParcelableException();
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1398 }
San Mehat72759df2010-01-19 13:50:37 -0800[diff] [blame]1399 }
Robert Greenwaltce1200d2010-02-18 11:25:54 -0800[diff] [blame]1400
Jeff Sharkeyeedcb952011-05-17 14:55:15 -0700[diff] [blame]1401 @Override
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]1402 public void addIdleTimer(String iface, int timeout, final int type) {
Haoyu Bai04124232012-06-28 15:26:19 -0700[diff] [blame]1403 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
1404
1405 if (DBG) Slog.d(TAG, "Adding idletimer");
1406
1407 synchronized (mIdleTimerLock) {
1408 IdleTimerParams params = mActiveIdleTimers.get(iface);
1409 if (params != null) {
1410 // the interface already has idletimer, update network count
1411 params.networkCount++;
1412 return;
1413 }
1414
1415 try {
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]1416 mConnector.execute("idletimer", "add", iface, Integer.toString(timeout),
1417 Integer.toString(type));
Haoyu Bai04124232012-06-28 15:26:19 -0700[diff] [blame]1418 } catch (NativeDaemonConnectorException e) {
1419 throw e.rethrowAsParcelableException();
1420 }
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]1421 mActiveIdleTimers.put(iface, new IdleTimerParams(timeout, type));
1422
Dianne Hackborne13c4c02014-02-11 17:18:35 -0800[diff] [blame]1423 // Networks start up.
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]1424 if (ConnectivityManager.isNetworkTypeMobile(type)) {
1425 mNetworkActive = false;
1426 }
Dianne Hackborn2ffa11e2014-04-21 15:56:18 -0700[diff] [blame]1427 mDaemonHandler.post(new Runnable() {
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]1428 @Override public void run() {
Dianne Hackborn2ffa11e2014-04-21 15:56:18 -0700[diff] [blame]1429 notifyInterfaceClassActivity(type,
1430 DataConnectionRealTimeInfo.DC_POWER_STATE_HIGH,
Ruchi Kandoifa97fcf2016-05-13 15:10:39 -0700[diff] [blame]1431 SystemClock.elapsedRealtimeNanos(), -1, false);
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]1432 }
1433 });
Haoyu Bai04124232012-06-28 15:26:19 -0700[diff] [blame]1434 }
1435 }
1436
1437 @Override
1438 public void removeIdleTimer(String iface) {
1439 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
1440
1441 if (DBG) Slog.d(TAG, "Removing idletimer");
1442
1443 synchronized (mIdleTimerLock) {
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]1444 final IdleTimerParams params = mActiveIdleTimers.get(iface);
Haoyu Bai04124232012-06-28 15:26:19 -0700[diff] [blame]1445 if (params == null || --(params.networkCount) > 0) {
1446 return;
1447 }
1448
1449 try {
1450 mConnector.execute("idletimer", "remove", iface,
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]1451 Integer.toString(params.timeout), Integer.toString(params.type));
Haoyu Bai04124232012-06-28 15:26:19 -0700[diff] [blame]1452 } catch (NativeDaemonConnectorException e) {
1453 throw e.rethrowAsParcelableException();
1454 }
1455 mActiveIdleTimers.remove(iface);
Dianne Hackborn2ffa11e2014-04-21 15:56:18 -0700[diff] [blame]1456 mDaemonHandler.post(new Runnable() {
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]1457 @Override public void run() {
Dianne Hackborn2ffa11e2014-04-21 15:56:18 -0700[diff] [blame]1458 notifyInterfaceClassActivity(params.type,
1459 DataConnectionRealTimeInfo.DC_POWER_STATE_LOW,
Ruchi Kandoifa97fcf2016-05-13 15:10:39 -0700[diff] [blame]1460 SystemClock.elapsedRealtimeNanos(), -1, false);
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]1461 }
1462 });
Haoyu Bai04124232012-06-28 15:26:19 -0700[diff] [blame]1463 }
1464 }
1465
1466 @Override
Jeff Sharkeye8914c32012-05-01 16:26:09 -0700[diff] [blame]1467 public NetworkStats getNetworkStatsSummaryDev() {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1468 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Jeff Sharkey9a2c2a62013-01-14 16:48:51 -0800[diff] [blame]1469 try {
1470 return mStatsFactory.readNetworkStatsSummaryDev();
1471 } catch (IOException e) {
1472 throw new IllegalStateException(e);
1473 }
Jeff Sharkeye8914c32012-05-01 16:26:09 -0700[diff] [blame]1474 }
1475
1476 @Override
1477 public NetworkStats getNetworkStatsSummaryXt() {
1478 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Jeff Sharkey9a2c2a62013-01-14 16:48:51 -0800[diff] [blame]1479 try {
1480 return mStatsFactory.readNetworkStatsSummaryXt();
1481 } catch (IOException e) {
1482 throw new IllegalStateException(e);
1483 }
Jeff Sharkeyae2c1812011-10-04 13:11:40 -0700[diff] [blame]1484 }
1485
Jeff Sharkeyeedcb952011-05-17 14:55:15 -0700[diff] [blame]1486 @Override
Jeff Sharkey9a13f362011-04-26 16:25:36 -0700[diff] [blame]1487 public NetworkStats getNetworkStatsDetail() {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1488 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Jeff Sharkey9a2c2a62013-01-14 16:48:51 -0800[diff] [blame]1489 try {
Dianne Hackbornd0c5b9a2014-02-21 16:19:05 -0800[diff] [blame]1490 return mStatsFactory.readNetworkStatsDetail(UID_ALL, null, TAG_ALL, null);
Jeff Sharkey9a2c2a62013-01-14 16:48:51 -0800[diff] [blame]1491 } catch (IOException e) {
1492 throw new IllegalStateException(e);
1493 }
San Mehat91cac642010-03-31 14:31:36 -0700[diff] [blame]1494 }
1495
Jeff Sharkeyeedcb952011-05-17 14:55:15 -0700[diff] [blame]1496 @Override
Jeff Sharkey41ff7ec2011-07-25 15:21:22 -0700[diff] [blame]1497 public void setInterfaceQuota(String iface, long quotaBytes) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1498 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Jeff Sharkeyb3f19ca2011-06-29 23:54:13 -0700[diff] [blame]1499
Jeff Sharkey350083e2011-06-29 10:45:16 -0700[diff] [blame]1500 // silently discard when control disabled
1501 // TODO: eventually migrate to be always enabled
1502 if (!mBandwidthControlEnabled) return;
1503
Jeff Sharkey41ff7ec2011-07-25 15:21:22 -0700[diff] [blame]1504 synchronized (mQuotaLock) {
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]1505 if (mActiveQuotas.containsKey(iface)) {
Jeff Sharkey41ff7ec2011-07-25 15:21:22 -0700[diff] [blame]1506 throw new IllegalStateException("iface " + iface + " already has quota");
Jeff Sharkeyb3f19ca2011-06-29 23:54:13 -0700[diff] [blame]1507 }
1508
Jeff Sharkeyb3f19ca2011-06-29 23:54:13 -0700[diff] [blame]1509 try {
Jeff Sharkey41ff7ec2011-07-25 15:21:22 -0700[diff] [blame]1510 // TODO: support quota shared across interfaces
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1511 mConnector.execute("bandwidth", "setiquota", iface, quotaBytes);
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]1512 mActiveQuotas.put(iface, quotaBytes);
Jeff Sharkeyb3f19ca2011-06-29 23:54:13 -0700[diff] [blame]1513 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]1514 throw e.rethrowAsParcelableException();
Jeff Sharkeyb3f19ca2011-06-29 23:54:13 -0700[diff] [blame]1515 }
Ashish Sharma50fd36d2011-06-15 19:34:53 -0700[diff] [blame]1516 }
1517 }
1518
1519 @Override
Jeff Sharkeyb3f19ca2011-06-29 23:54:13 -0700[diff] [blame]1520 public void removeInterfaceQuota(String iface) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1521 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Jeff Sharkeyb3f19ca2011-06-29 23:54:13 -0700[diff] [blame]1522
Jeff Sharkey350083e2011-06-29 10:45:16 -0700[diff] [blame]1523 // silently discard when control disabled
1524 // TODO: eventually migrate to be always enabled
1525 if (!mBandwidthControlEnabled) return;
1526
Jeff Sharkey41ff7ec2011-07-25 15:21:22 -0700[diff] [blame]1527 synchronized (mQuotaLock) {
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]1528 if (!mActiveQuotas.containsKey(iface)) {
Jeff Sharkeyb3f19ca2011-06-29 23:54:13 -0700[diff] [blame]1529 // TODO: eventually consider throwing
1530 return;
1531 }
1532
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]1533 mActiveQuotas.remove(iface);
1534 mActiveAlerts.remove(iface);
Jeff Sharkey38ddeaa2011-11-08 13:04:22 -0800[diff] [blame]1535
Jeff Sharkeyb3f19ca2011-06-29 23:54:13 -0700[diff] [blame]1536 try {
Jeff Sharkey41ff7ec2011-07-25 15:21:22 -0700[diff] [blame]1537 // TODO: support quota shared across interfaces
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1538 mConnector.execute("bandwidth", "removeiquota", iface);
Jeff Sharkeyb3f19ca2011-06-29 23:54:13 -0700[diff] [blame]1539 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]1540 throw e.rethrowAsParcelableException();
Jeff Sharkeyb3f19ca2011-06-29 23:54:13 -0700[diff] [blame]1541 }
1542 }
1543 }
1544
1545 @Override
Jeff Sharkey41ff7ec2011-07-25 15:21:22 -0700[diff] [blame]1546 public void setInterfaceAlert(String iface, long alertBytes) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1547 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Jeff Sharkey41ff7ec2011-07-25 15:21:22 -0700[diff] [blame]1548
1549 // silently discard when control disabled
1550 // TODO: eventually migrate to be always enabled
1551 if (!mBandwidthControlEnabled) return;
1552
1553 // quick sanity check
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]1554 if (!mActiveQuotas.containsKey(iface)) {
Jeff Sharkey41ff7ec2011-07-25 15:21:22 -0700[diff] [blame]1555 throw new IllegalStateException("setting alert requires existing quota on iface");
1556 }
1557
1558 synchronized (mQuotaLock) {
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]1559 if (mActiveAlerts.containsKey(iface)) {
Jeff Sharkey41ff7ec2011-07-25 15:21:22 -0700[diff] [blame]1560 throw new IllegalStateException("iface " + iface + " already has alert");
1561 }
1562
Jeff Sharkey41ff7ec2011-07-25 15:21:22 -0700[diff] [blame]1563 try {
1564 // TODO: support alert shared across interfaces
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1565 mConnector.execute("bandwidth", "setinterfacealert", iface, alertBytes);
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]1566 mActiveAlerts.put(iface, alertBytes);
Jeff Sharkey41ff7ec2011-07-25 15:21:22 -0700[diff] [blame]1567 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]1568 throw e.rethrowAsParcelableException();
Jeff Sharkey41ff7ec2011-07-25 15:21:22 -0700[diff] [blame]1569 }
1570 }
1571 }
1572
1573 @Override
1574 public void removeInterfaceAlert(String iface) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1575 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Jeff Sharkey41ff7ec2011-07-25 15:21:22 -0700[diff] [blame]1576
1577 // silently discard when control disabled
1578 // TODO: eventually migrate to be always enabled
1579 if (!mBandwidthControlEnabled) return;
1580
1581 synchronized (mQuotaLock) {
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]1582 if (!mActiveAlerts.containsKey(iface)) {
Jeff Sharkey41ff7ec2011-07-25 15:21:22 -0700[diff] [blame]1583 // TODO: eventually consider throwing
1584 return;
1585 }
1586
Jeff Sharkey41ff7ec2011-07-25 15:21:22 -0700[diff] [blame]1587 try {
1588 // TODO: support alert shared across interfaces
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1589 mConnector.execute("bandwidth", "removeinterfacealert", iface);
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]1590 mActiveAlerts.remove(iface);
Jeff Sharkey41ff7ec2011-07-25 15:21:22 -0700[diff] [blame]1591 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]1592 throw e.rethrowAsParcelableException();
Jeff Sharkey41ff7ec2011-07-25 15:21:22 -0700[diff] [blame]1593 }
1594 }
1595 }
1596
1597 @Override
1598 public void setGlobalAlert(long alertBytes) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1599 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Jeff Sharkey41ff7ec2011-07-25 15:21:22 -0700[diff] [blame]1600
1601 // silently discard when control disabled
1602 // TODO: eventually migrate to be always enabled
1603 if (!mBandwidthControlEnabled) return;
1604
Jeff Sharkey41ff7ec2011-07-25 15:21:22 -0700[diff] [blame]1605 try {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1606 mConnector.execute("bandwidth", "setglobalalert", alertBytes);
Jeff Sharkey41ff7ec2011-07-25 15:21:22 -0700[diff] [blame]1607 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]1608 throw e.rethrowAsParcelableException();
Jeff Sharkey41ff7ec2011-07-25 15:21:22 -0700[diff] [blame]1609 }
1610 }
1611
Felipe Leme65be3022016-03-22 14:53:13 -0700[diff] [blame]1612 private void setUidOnMeteredNetworkList(SparseBooleanArray quotaList, int uid,
1613 boolean blacklist, boolean enable) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1614 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Jeff Sharkeyb3f19ca2011-06-29 23:54:13 -0700[diff] [blame]1615
Jeff Sharkey350083e2011-06-29 10:45:16 -0700[diff] [blame]1616 // silently discard when control disabled
1617 // TODO: eventually migrate to be always enabled
1618 if (!mBandwidthControlEnabled) return;
1619
Felipe Leme65be3022016-03-22 14:53:13 -0700[diff] [blame]1620 final String chain = blacklist ? "naughtyapps" : "niceapps";
1621 final String suffix = enable ? "add" : "remove";
1622
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]1623 synchronized (mQuotaLock) {
Felipe Leme65be3022016-03-22 14:53:13 -0700[diff] [blame]1624 final boolean oldEnable = quotaList.get(uid, false);
1625 if (oldEnable == enable) {
Jeff Sharkeyb3f19ca2011-06-29 23:54:13 -0700[diff] [blame]1626 // TODO: eventually consider throwing
1627 return;
1628 }
1629
Jeff Sharkeyb3f19ca2011-06-29 23:54:13 -0700[diff] [blame]1630 try {
Felipe Leme65be3022016-03-22 14:53:13 -0700[diff] [blame]1631 mConnector.execute("bandwidth", suffix + chain, uid);
1632 if (enable) {
1633 quotaList.put(uid, true);
Jeff Sharkeyb3f19ca2011-06-29 23:54:13 -0700[diff] [blame]1634 } else {
Felipe Leme65be3022016-03-22 14:53:13 -0700[diff] [blame]1635 quotaList.delete(uid);
Jeff Sharkeyb3f19ca2011-06-29 23:54:13 -0700[diff] [blame]1636 }
1637 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]1638 throw e.rethrowAsParcelableException();
Jeff Sharkeyb3f19ca2011-06-29 23:54:13 -0700[diff] [blame]1639 }
Ashish Sharma50fd36d2011-06-15 19:34:53 -0700[diff] [blame]1640 }
1641 }
1642
Jeff Sharkey63d27a92011-08-03 17:04:22 -0700[diff] [blame]1643 @Override
Felipe Leme65be3022016-03-22 14:53:13 -0700[diff] [blame]1644 public void setUidMeteredNetworkBlacklist(int uid, boolean enable) {
1645 setUidOnMeteredNetworkList(mUidRejectOnMetered, uid, true, enable);
1646 }
1647
1648 @Override
1649 public void setUidMeteredNetworkWhitelist(int uid, boolean enable) {
1650 setUidOnMeteredNetworkList(mUidAllowOnMetered, uid, false, enable);
1651 }
1652
1653 @Override
1654 public boolean setDataSaverModeEnabled(boolean enable) {
1655 if (DBG) Log.d(TAG, "setDataSaverMode: " + enable);
1656 synchronized (mQuotaLock) {
1657 if (mDataSaverMode == enable) {
1658 Log.w(TAG, "setDataSaverMode(): already " + mDataSaverMode);
1659 return true;
1660 }
1661 try {
1662 final boolean changed = mNetdService.bandwidthEnableDataSaver(enable);
1663 if (changed) {
1664 mDataSaverMode = enable;
1665 } else {
1666 Log.w(TAG, "setDataSaverMode(" + enable + "): netd command silently failed");
1667 }
1668 return changed;
1669 } catch (RemoteException e) {
1670 Log.w(TAG, "setDataSaverMode(" + enable + "): netd command failed", e);
1671 return false;
1672 }
1673 }
1674 }
1675
1676 @Override
Robin Lee17e61832016-05-09 13:46:28 +0100[diff] [blame]1677 public void setAllowOnlyVpnForUids(boolean add, UidRange[] uidRanges)
1678 throws ServiceSpecificException {
1679 try {
1680 mNetdService.networkRejectNonSecureVpn(add, uidRanges);
1681 } catch (ServiceSpecificException e) {
1682 Log.w(TAG, "setAllowOnlyVpnForUids(" + add + ", " + Arrays.toString(uidRanges) + ")"
1683 + ": netd command failed", e);
1684 throw e;
1685 } catch (RemoteException e) {
1686 Log.w(TAG, "setAllowOnlyVpnForUids(" + add + ", " + Arrays.toString(uidRanges) + ")"
1687 + ": netd command failed", e);
1688 throw e.rethrowAsRuntimeException();
1689 }
1690 }
1691
1692 @Override
Jeff Sharkey605eb792014-11-04 13:34:06 -0800[diff] [blame]1693 public void setUidCleartextNetworkPolicy(int uid, int policy) {
1694 if (Binder.getCallingUid() != uid) {
1695 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
1696 }
1697
1698 synchronized (mQuotaLock) {
1699 final int oldPolicy = mUidCleartextPolicy.get(uid, StrictMode.NETWORK_POLICY_ACCEPT);
1700 if (oldPolicy == policy) {
1701 return;
1702 }
1703
1704 if (!mStrictEnabled) {
1705 // Module isn't enabled yet; stash the requested policy away to
1706 // apply later once the daemon is connected.
1707 mUidCleartextPolicy.put(uid, policy);
1708 return;
1709 }
1710
1711 final String policyString;
1712 switch (policy) {
1713 case StrictMode.NETWORK_POLICY_ACCEPT:
1714 policyString = "accept";
1715 break;
1716 case StrictMode.NETWORK_POLICY_LOG:
1717 policyString = "log";
1718 break;
1719 case StrictMode.NETWORK_POLICY_REJECT:
1720 policyString = "reject";
1721 break;
1722 default:
1723 throw new IllegalArgumentException("Unknown policy " + policy);
1724 }
1725
1726 try {
1727 mConnector.execute("strict", "set_uid_cleartext_policy", uid, policyString);
1728 mUidCleartextPolicy.put(uid, policy);
1729 } catch (NativeDaemonConnectorException e) {
1730 throw e.rethrowAsParcelableException();
1731 }
1732 }
1733 }
1734
1735 @Override
Jeff Sharkey63d27a92011-08-03 17:04:22 -0700[diff] [blame]1736 public boolean isBandwidthControlEnabled() {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1737 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Jeff Sharkey63d27a92011-08-03 17:04:22 -0700[diff] [blame]1738 return mBandwidthControlEnabled;
1739 }
1740
1741 @Override
Jeff Sharkeyeedcb952011-05-17 14:55:15 -0700[diff] [blame]1742 public NetworkStats getNetworkStatsUidDetail(int uid) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1743 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Jeff Sharkey9a2c2a62013-01-14 16:48:51 -0800[diff] [blame]1744 try {
Dianne Hackbornd0c5b9a2014-02-21 16:19:05 -0800[diff] [blame]1745 return mStatsFactory.readNetworkStatsDetail(uid, null, TAG_ALL, null);
Jeff Sharkey9a2c2a62013-01-14 16:48:51 -0800[diff] [blame]1746 } catch (IOException e) {
1747 throw new IllegalStateException(e);
1748 }
Jeff Sharkeyeedcb952011-05-17 14:55:15 -0700[diff] [blame]1749 }
1750
Jeff Sharkeycdd02c5d2011-09-16 01:52:49 -0700[diff] [blame]1751 @Override
Jeff Sharkeye4984be2013-09-10 21:03:27 -0700[diff] [blame]1752 public NetworkStats getNetworkStatsTethering() {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1753 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Jeff Sharkeycdd02c5d2011-09-16 01:52:49 -0700[diff] [blame]1754
Jeff Sharkeycdd02c5d2011-09-16 01:52:49 -0700[diff] [blame]1755 final NetworkStats stats = new NetworkStats(SystemClock.elapsedRealtime(), 1);
Jeff Sharkeycdd02c5d2011-09-16 01:52:49 -0700[diff] [blame]1756 try {
Jeff Sharkeye4984be2013-09-10 21:03:27 -0700[diff] [blame]1757 final NativeDaemonEvent[] events = mConnector.executeForList(
1758 "bandwidth", "gettetherstats");
1759 for (NativeDaemonEvent event : events) {
1760 if (event.getCode() != TetheringStatsListResult) continue;
1761
1762 // 114 ifaceIn ifaceOut rx_bytes rx_packets tx_bytes tx_packets
1763 final StringTokenizer tok = new StringTokenizer(event.getMessage());
1764 try {
1765 final String ifaceIn = tok.nextToken();
1766 final String ifaceOut = tok.nextToken();
1767
1768 final NetworkStats.Entry entry = new NetworkStats.Entry();
1769 entry.iface = ifaceOut;
1770 entry.uid = UID_TETHERING;
1771 entry.set = SET_DEFAULT;
1772 entry.tag = TAG_NONE;
1773 entry.rxBytes = Long.parseLong(tok.nextToken());
1774 entry.rxPackets = Long.parseLong(tok.nextToken());
1775 entry.txBytes = Long.parseLong(tok.nextToken());
1776 entry.txPackets = Long.parseLong(tok.nextToken());
1777 stats.combineValues(entry);
1778 } catch (NoSuchElementException e) {
1779 throw new IllegalStateException("problem parsing tethering stats: " + event);
1780 } catch (NumberFormatException e) {
1781 throw new IllegalStateException("problem parsing tethering stats: " + event);
1782 }
1783 }
Jeff Sharkeycdd02c5d2011-09-16 01:52:49 -0700[diff] [blame]1784 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]1785 throw e.rethrowAsParcelableException();
Jeff Sharkeycdd02c5d2011-09-16 01:52:49 -0700[diff] [blame]1786 }
Jeff Sharkeye4984be2013-09-10 21:03:27 -0700[diff] [blame]1787 return stats;
Jeff Sharkeycdd02c5d2011-09-16 01:52:49 -0700[diff] [blame]1788 }
1789
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1790 @Override
Pierre Imai8e48e672016-04-21 13:30:43 +0900[diff] [blame]1791 public void setDnsConfigurationForNetwork(int netId, String[] servers, String domains) {
1792 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
1793
1794 ContentResolver resolver = mContext.getContentResolver();
1795
1796 int sampleValidity = Settings.Global.getInt(resolver,
1797 Settings.Global.DNS_RESOLVER_SAMPLE_VALIDITY_SECONDS,
1798 DNS_RESOLVER_DEFAULT_SAMPLE_VALIDITY_SECONDS);
1799 if (sampleValidity < 0 || sampleValidity > 65535) {
1800 Slog.w(TAG, "Invalid sampleValidity=" + sampleValidity + ", using default=" +
1801 DNS_RESOLVER_DEFAULT_SAMPLE_VALIDITY_SECONDS);
1802 sampleValidity = DNS_RESOLVER_DEFAULT_SAMPLE_VALIDITY_SECONDS;
1803 }
1804
1805 int successThreshold = Settings.Global.getInt(resolver,
1806 Settings.Global.DNS_RESOLVER_SUCCESS_THRESHOLD_PERCENT,
1807 DNS_RESOLVER_DEFAULT_SUCCESS_THRESHOLD_PERCENT);
1808 if (successThreshold < 0 || successThreshold > 100) {
1809 Slog.w(TAG, "Invalid successThreshold=" + successThreshold + ", using default=" +
1810 DNS_RESOLVER_DEFAULT_SUCCESS_THRESHOLD_PERCENT);
1811 successThreshold = DNS_RESOLVER_DEFAULT_SUCCESS_THRESHOLD_PERCENT;
1812 }
1813
1814 int minSamples = Settings.Global.getInt(resolver,
1815 Settings.Global.DNS_RESOLVER_MIN_SAMPLES, DNS_RESOLVER_DEFAULT_MIN_SAMPLES);
1816 int maxSamples = Settings.Global.getInt(resolver,
1817 Settings.Global.DNS_RESOLVER_MAX_SAMPLES, DNS_RESOLVER_DEFAULT_MAX_SAMPLES);
1818 if (minSamples < 0 || minSamples > maxSamples || maxSamples > 64) {
1819 Slog.w(TAG, "Invalid sample count (min, max)=(" + minSamples + ", " + maxSamples +
1820 "), using default=(" + DNS_RESOLVER_DEFAULT_MIN_SAMPLES + ", " +
1821 DNS_RESOLVER_DEFAULT_MAX_SAMPLES + ")");
1822 minSamples = DNS_RESOLVER_DEFAULT_MIN_SAMPLES;
1823 maxSamples = DNS_RESOLVER_DEFAULT_MAX_SAMPLES;
1824 }
1825
1826 final String[] domainStrs = domains == null ? new String[0] : domains.split(" ");
1827 final int[] params = { sampleValidity, successThreshold, minSamples, maxSamples };
1828 try {
1829 mNetdService.setResolverConfiguration(netId, servers, domainStrs, params);
1830 } catch (RemoteException e) {
1831 throw new RuntimeException(e);
1832 }
1833 }
1834
1835 @Override
Paul Jensen6bc2c2c2014-05-07 15:27:40 -0400[diff] [blame]1836 public void addVpnUidRanges(int netId, UidRange[] ranges) {
Chad Brubaker3277620a2013-06-12 13:37:30 -0700[diff] [blame]1837 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Paul Jensen6bc2c2c2014-05-07 15:27:40 -0400[diff] [blame]1838 Object[] argv = new Object[3 + MAX_UID_RANGES_PER_COMMAND];
1839 argv[0] = "users";
1840 argv[1] = "add";
1841 argv[2] = netId;
1842 int argc = 3;
1843 // Avoid overly long commands by limiting number of UID ranges per command.
1844 for (int i = 0; i < ranges.length; i++) {
1845 argv[argc++] = ranges[i].toString();
1846 if (i == (ranges.length - 1) || argc == argv.length) {
1847 try {
1848 mConnector.execute("network", Arrays.copyOf(argv, argc));
1849 } catch (NativeDaemonConnectorException e) {
1850 throw e.rethrowAsParcelableException();
1851 }
1852 argc = 3;
1853 }
Chad Brubaker3277620a2013-06-12 13:37:30 -0700[diff] [blame]1854 }
1855 }
1856
1857 @Override
Paul Jensen6bc2c2c2014-05-07 15:27:40 -0400[diff] [blame]1858 public void removeVpnUidRanges(int netId, UidRange[] ranges) {
Chad Brubaker3277620a2013-06-12 13:37:30 -0700[diff] [blame]1859 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Paul Jensen6bc2c2c2014-05-07 15:27:40 -0400[diff] [blame]1860 Object[] argv = new Object[3 + MAX_UID_RANGES_PER_COMMAND];
1861 argv[0] = "users";
1862 argv[1] = "remove";
1863 argv[2] = netId;
1864 int argc = 3;
1865 // Avoid overly long commands by limiting number of UID ranges per command.
1866 for (int i = 0; i < ranges.length; i++) {
1867 argv[argc++] = ranges[i].toString();
1868 if (i == (ranges.length - 1) || argc == argv.length) {
1869 try {
1870 mConnector.execute("network", Arrays.copyOf(argv, argc));
1871 } catch (NativeDaemonConnectorException e) {
1872 throw e.rethrowAsParcelableException();
1873 }
1874 argc = 3;
1875 }
Chad Brubakercca54c42013-06-27 17:41:38 -0700[diff] [blame]1876 }
1877 }
1878
1879 @Override
Jeff Sharkeyc268f0b2012-08-24 10:25:31 -0700[diff] [blame]1880 public void setFirewallEnabled(boolean enabled) {
Jeff Sharkeyf56e2432012-09-06 17:54:29 -0700[diff] [blame]1881 enforceSystemUid();
Jeff Sharkeyc268f0b2012-08-24 10:25:31 -0700[diff] [blame]1882 try {
Amith Yamasani15e472352015-04-24 19:06:07 -0700[diff] [blame]1883 mConnector.execute("firewall", "enable", enabled ? "whitelist" : "blacklist");
Jeff Sharkeyc268f0b2012-08-24 10:25:31 -0700[diff] [blame]1884 mFirewallEnabled = enabled;
1885 } catch (NativeDaemonConnectorException e) {
1886 throw e.rethrowAsParcelableException();
1887 }
1888 }
1889
1890 @Override
1891 public boolean isFirewallEnabled() {
Jeff Sharkeyf56e2432012-09-06 17:54:29 -0700[diff] [blame]1892 enforceSystemUid();
Jeff Sharkeyc268f0b2012-08-24 10:25:31 -0700[diff] [blame]1893 return mFirewallEnabled;
1894 }
1895
1896 @Override
Jeff Sharkey2c092982012-08-24 11:44:40 -0700[diff] [blame]1897 public void setFirewallInterfaceRule(String iface, boolean allow) {
Jeff Sharkeyf56e2432012-09-06 17:54:29 -0700[diff] [blame]1898 enforceSystemUid();
Jeff Sharkeyc268f0b2012-08-24 10:25:31 -0700[diff] [blame]1899 Preconditions.checkState(mFirewallEnabled);
Sreeram Ramachandrana77760d2014-07-17 17:09:07 -0700[diff] [blame]1900 final String rule = allow ? "allow" : "deny";
Jeff Sharkeyc268f0b2012-08-24 10:25:31 -0700[diff] [blame]1901 try {
1902 mConnector.execute("firewall", "set_interface_rule", iface, rule);
1903 } catch (NativeDaemonConnectorException e) {
1904 throw e.rethrowAsParcelableException();
1905 }
1906 }
1907
Lorenzo Colitti3fef7232016-04-29 18:00:03 +0900[diff] [blame]1908 private void closeSocketsForFirewallChainLocked(int chain, String chainName) {
Lorenzo Colitti4cb42402016-04-24 12:52:00 +0900[diff] [blame]1909 // UID ranges to close sockets on.
1910 UidRange[] ranges;
1911 // UID ranges whose sockets we won't touch.
1912 int[] exemptUids;
1913
Lorenzo Colitti3fef7232016-04-29 18:00:03 +0900[diff] [blame]1914 final SparseIntArray rules = getUidFirewallRules(chain);
Lorenzo Colitti4cb42402016-04-24 12:52:00 +0900[diff] [blame]1915 int numUids = 0;
1916
1917 if (getFirewallType(chain) == FIREWALL_TYPE_WHITELIST) {
1918 // Close all sockets on all non-system UIDs...
1919 ranges = new UidRange[] {
1920 // TODO: is there a better way of finding all existing users? If so, we could
1921 // specify their ranges here.
1922 new UidRange(Process.FIRST_APPLICATION_UID, Integer.MAX_VALUE),
1923 };
1924 // ... except for the UIDs that have allow rules.
1925 exemptUids = new int[rules.size()];
1926 for (int i = 0; i < exemptUids.length; i++) {
1927 if (rules.valueAt(i) == NetworkPolicyManager.FIREWALL_RULE_ALLOW) {
1928 exemptUids[numUids] = rules.keyAt(i);
1929 numUids++;
1930 }
1931 }
1932 // Normally, whitelist chains only contain deny rules, so numUids == exemptUids.length.
1933 // But the code does not guarantee this in any way, and at least in one case - if we add
1934 // a UID rule to the firewall, and then disable the firewall - the chains can contain
1935 // the wrong type of rule. In this case, don't close connections that we shouldn't.
1936 //
1937 // TODO: tighten up this code by ensuring we never set the wrong type of rule, and
1938 // fix setFirewallEnabled to grab mQuotaLock and clear rules.
1939 if (numUids != exemptUids.length) {
1940 exemptUids = Arrays.copyOf(exemptUids, numUids);
1941 }
1942 } else {
1943 // Close sockets for every UID that has a deny rule...
1944 ranges = new UidRange[rules.size()];
1945 for (int i = 0; i < ranges.length; i++) {
1946 if (rules.valueAt(i) == NetworkPolicyManager.FIREWALL_RULE_DENY) {
1947 int uid = rules.keyAt(i);
1948 ranges[numUids] = new UidRange(uid, uid);
1949 numUids++;
1950 }
1951 }
1952 // As above; usually numUids == ranges.length, but not always.
1953 if (numUids != ranges.length) {
1954 ranges = Arrays.copyOf(ranges, numUids);
1955 }
1956 // ... with no exceptions.
1957 exemptUids = new int[0];
1958 }
1959
1960 try {
1961 mNetdService.socketDestroy(ranges, exemptUids);
1962 } catch(RemoteException | ServiceSpecificException e) {
1963 Slog.e(TAG, "Error closing sockets after enabling chain " + chainName + ": " + e);
1964 }
1965 }
1966
Jeff Sharkeyc268f0b2012-08-24 10:25:31 -0700[diff] [blame]1967 @Override
Xiaohui Chenb41c9f72015-06-17 15:55:37 -0700[diff] [blame]1968 public void setFirewallChainEnabled(int chain, boolean enable) {
Jeff Sharkeyf56e2432012-09-06 17:54:29 -0700[diff] [blame]1969 enforceSystemUid();
Xiaohui Chen8dca36d2015-06-19 12:44:59 -0700[diff] [blame]1970 synchronized (mQuotaLock) {
Xiaohui Chen896b49a2015-07-29 14:12:22 -0700[diff] [blame]1971 if (mFirewallChainStates.get(chain) == enable) {
1972 // All is the same, nothing to do. This relies on the fact that netd has child
1973 // chains default detached.
Xiaohui Chen8dca36d2015-06-19 12:44:59 -0700[diff] [blame]1974 return;
Xiaohui Chenb41c9f72015-06-17 15:55:37 -0700[diff] [blame]1975 }
Xiaohui Chen8dca36d2015-06-19 12:44:59 -0700[diff] [blame]1976 mFirewallChainStates.put(chain, enable);
1977
1978 final String operation = enable ? "enable_chain" : "disable_chain";
Lorenzo Colitti3fef7232016-04-29 18:00:03 +0900[diff] [blame]1979 final String chainName;
Lorenzo Colitti4cb42402016-04-24 12:52:00 +0900[diff] [blame]1980 switch(chain) {
1981 case FIREWALL_CHAIN_STANDBY:
1982 chainName = FIREWALL_CHAIN_NAME_STANDBY;
1983 break;
1984 case FIREWALL_CHAIN_DOZABLE:
1985 chainName = FIREWALL_CHAIN_NAME_DOZABLE;
1986 break;
1987 case FIREWALL_CHAIN_POWERSAVE:
1988 chainName = FIREWALL_CHAIN_NAME_POWERSAVE;
1989 break;
1990 default:
1991 throw new IllegalArgumentException("Bad child chain: " + chain);
1992 }
1993
Xiaohui Chen8dca36d2015-06-19 12:44:59 -0700[diff] [blame]1994 try {
Xiaohui Chen8dca36d2015-06-19 12:44:59 -0700[diff] [blame]1995 mConnector.execute("firewall", operation, chainName);
1996 } catch (NativeDaemonConnectorException e) {
1997 throw e.rethrowAsParcelableException();
1998 }
Lorenzo Colitti4cb42402016-04-24 12:52:00 +0900[diff] [blame]1999
2000 // Close any sockets that were opened by the affected UIDs. This has to be done after
2001 // disabling network connectivity, in case they react to the socket close by reopening
2002 // the connection and race with the iptables commands that enable the firewall. All
2003 // whitelist and blacklist chains allow RSTs through.
2004 if (enable) {
2005 if (DBG) Slog.d(TAG, "Closing sockets after enabling chain " + chainName);
Lorenzo Colitti3fef7232016-04-29 18:00:03 +0900[diff] [blame]2006 closeSocketsForFirewallChainLocked(chain, chainName);
Lorenzo Colitti4cb42402016-04-24 12:52:00 +0900[diff] [blame]2007 }
Amith Yamasani15e472352015-04-24 19:06:07 -0700[diff] [blame]2008 }
Xiaohui Chenb41c9f72015-06-17 15:55:37 -0700[diff] [blame]2009 }
2010
2011 private int getFirewallType(int chain) {
2012 switch (chain) {
2013 case FIREWALL_CHAIN_STANDBY:
2014 return FIREWALL_TYPE_BLACKLIST;
2015 case FIREWALL_CHAIN_DOZABLE:
2016 return FIREWALL_TYPE_WHITELIST;
Felipe Leme011b98f2016-02-10 17:28:31 -0800[diff] [blame]2017 case FIREWALL_CHAIN_POWERSAVE:
2018 return FIREWALL_TYPE_WHITELIST;
Xiaohui Chenb41c9f72015-06-17 15:55:37 -0700[diff] [blame]2019 default:
2020 return isFirewallEnabled() ? FIREWALL_TYPE_WHITELIST : FIREWALL_TYPE_BLACKLIST;
2021 }
2022 }
2023
2024 @Override
2025 public void setFirewallUidRules(int chain, int[] uids, int[] rules) {
2026 enforceSystemUid();
Xiaohui Chen8dca36d2015-06-19 12:44:59 -0700[diff] [blame]2027 synchronized (mQuotaLock) {
2028 SparseIntArray uidFirewallRules = getUidFirewallRules(chain);
2029 SparseIntArray newRules = new SparseIntArray();
2030 // apply new set of rules
2031 for (int index = uids.length - 1; index >= 0; --index) {
2032 int uid = uids[index];
2033 int rule = rules[index];
Felipe Lemea701cad2016-05-12 09:58:14 -0700[diff] [blame]2034 updateFirewallUidRuleLocked(chain, uid, rule);
Xiaohui Chen8dca36d2015-06-19 12:44:59 -0700[diff] [blame]2035 newRules.put(uid, rule);
Xiaohui Chenb41c9f72015-06-17 15:55:37 -0700[diff] [blame]2036 }
Xiaohui Chen8dca36d2015-06-19 12:44:59 -0700[diff] [blame]2037 // collect the rules to remove.
2038 SparseIntArray rulesToRemove = new SparseIntArray();
2039 for (int index = uidFirewallRules.size() - 1; index >= 0; --index) {
2040 int uid = uidFirewallRules.keyAt(index);
2041 if (newRules.indexOfKey(uid) < 0) {
2042 rulesToRemove.put(uid, FIREWALL_RULE_DEFAULT);
2043 }
2044 }
2045 // remove dead rules
2046 for (int index = rulesToRemove.size() - 1; index >= 0; --index) {
2047 int uid = rulesToRemove.keyAt(index);
Felipe Lemea701cad2016-05-12 09:58:14 -0700[diff] [blame]2048 updateFirewallUidRuleLocked(chain, uid, FIREWALL_RULE_DEFAULT);
2049 }
2050 try {
2051 switch (chain) {
2052 case FIREWALL_CHAIN_DOZABLE:
2053 mNetdService.firewallReplaceUidChain("fw_dozable", true, uids);
2054 break;
2055 case FIREWALL_CHAIN_STANDBY:
2056 mNetdService.firewallReplaceUidChain("fw_standby", false, uids);
2057 break;
2058 case FIREWALL_CHAIN_POWERSAVE:
2059 mNetdService.firewallReplaceUidChain("fw_powersave", true, uids);
2060 break;
2061 case FIREWALL_CHAIN_NONE:
2062 default:
2063 Slog.d(TAG, "setFirewallUidRules() called on invalid chain: " + chain);
2064 }
2065 } catch (RemoteException e) {
2066 Slog.w(TAG, "Error flushing firewall chain " + chain, e);
Xiaohui Chen8dca36d2015-06-19 12:44:59 -0700[diff] [blame]2067 }
Xiaohui Chenb41c9f72015-06-17 15:55:37 -0700[diff] [blame]2068 }
2069 }
2070
2071 @Override
2072 public void setFirewallUidRule(int chain, int uid, int rule) {
2073 enforceSystemUid();
Felipe Lemea701cad2016-05-12 09:58:14 -0700[diff] [blame]2074 synchronized (mQuotaLock) {
2075 setFirewallUidRuleLocked(chain, uid, rule);
2076 }
Xiaohui Chenb41c9f72015-06-17 15:55:37 -0700[diff] [blame]2077 }
2078
Felipe Lemea701cad2016-05-12 09:58:14 -0700[diff] [blame]2079 private void setFirewallUidRuleLocked(int chain, int uid, int rule) {
2080 if (updateFirewallUidRuleLocked(chain, uid, rule)) {
Amith Yamasani15e472352015-04-24 19:06:07 -0700[diff] [blame]2081 try {
Felipe Lemea701cad2016-05-12 09:58:14 -0700[diff] [blame]2082 mConnector.execute("firewall", "set_uid_rule", getFirewallChainName(chain), uid,
2083 getFirewallRuleName(chain, rule));
Amith Yamasani15e472352015-04-24 19:06:07 -0700[diff] [blame]2084 } catch (NativeDaemonConnectorException e) {
2085 throw e.rethrowAsParcelableException();
2086 }
Jeff Sharkeyc268f0b2012-08-24 10:25:31 -0700[diff] [blame]2087 }
2088 }
2089
Felipe Lemea701cad2016-05-12 09:58:14 -0700[diff] [blame]2090 // TODO: now that netd supports batching, NMS should not keep these data structures anymore...
2091 private boolean updateFirewallUidRuleLocked(int chain, int uid, int rule) {
2092 SparseIntArray uidFirewallRules = getUidFirewallRules(chain);
2093
2094 final int oldUidFirewallRule = uidFirewallRules.get(uid, FIREWALL_RULE_DEFAULT);
2095 if (DBG) {
2096 Slog.d(TAG, "oldRule = " + oldUidFirewallRule
2097 + ", newRule=" + rule + " for uid=" + uid + " on chain " + chain);
2098 }
2099 if (oldUidFirewallRule == rule) {
2100 if (DBG) Slog.d(TAG, "!!!!! Skipping change");
2101 // TODO: eventually consider throwing
2102 return false;
2103 }
2104
2105 String ruleName = getFirewallRuleName(chain, rule);
2106 String oldRuleName = getFirewallRuleName(chain, oldUidFirewallRule);
2107
2108 if (rule == NetworkPolicyManager.FIREWALL_RULE_DEFAULT) {
2109 uidFirewallRules.delete(uid);
2110 } else {
2111 uidFirewallRules.put(uid, rule);
2112 }
2113 return !ruleName.equals(oldRuleName);
2114 }
2115
Xiaohui Chen8dca36d2015-06-19 12:44:59 -0700[diff] [blame]2116 private @NonNull String getFirewallRuleName(int chain, int rule) {
2117 String ruleName;
2118 if (getFirewallType(chain) == FIREWALL_TYPE_WHITELIST) {
2119 if (rule == NetworkPolicyManager.FIREWALL_RULE_ALLOW) {
2120 ruleName = "allow";
2121 } else {
2122 ruleName = "deny";
2123 }
2124 } else { // Blacklist mode
2125 if (rule == NetworkPolicyManager.FIREWALL_RULE_DENY) {
2126 ruleName = "deny";
2127 } else {
2128 ruleName = "allow";
2129 }
2130 }
2131 return ruleName;
2132 }
2133
Xiaohui Chenb41c9f72015-06-17 15:55:37 -0700[diff] [blame]2134 private @NonNull SparseIntArray getUidFirewallRules(int chain) {
2135 switch (chain) {
2136 case FIREWALL_CHAIN_STANDBY:
2137 return mUidFirewallStandbyRules;
2138 case FIREWALL_CHAIN_DOZABLE:
2139 return mUidFirewallDozableRules;
Felipe Leme011b98f2016-02-10 17:28:31 -0800[diff] [blame]2140 case FIREWALL_CHAIN_POWERSAVE:
2141 return mUidFirewallPowerSaveRules;
Xiaohui Chenb41c9f72015-06-17 15:55:37 -0700[diff] [blame]2142 case FIREWALL_CHAIN_NONE:
2143 return mUidFirewallRules;
2144 default:
2145 throw new IllegalArgumentException("Unknown chain:" + chain);
2146 }
2147 }
2148
2149 public @NonNull String getFirewallChainName(int chain) {
2150 switch (chain) {
2151 case FIREWALL_CHAIN_STANDBY:
2152 return FIREWALL_CHAIN_NAME_STANDBY;
2153 case FIREWALL_CHAIN_DOZABLE:
2154 return FIREWALL_CHAIN_NAME_DOZABLE;
Felipe Leme011b98f2016-02-10 17:28:31 -0800[diff] [blame]2155 case FIREWALL_CHAIN_POWERSAVE:
2156 return FIREWALL_CHAIN_NAME_POWERSAVE;
Xiaohui Chenb41c9f72015-06-17 15:55:37 -0700[diff] [blame]2157 case FIREWALL_CHAIN_NONE:
2158 return FIREWALL_CHAIN_NAME_NONE;
2159 default:
2160 throw new IllegalArgumentException("Unknown chain:" + chain);
2161 }
2162 }
2163
Jeff Sharkeyf56e2432012-09-06 17:54:29 -0700[diff] [blame]2164 private static void enforceSystemUid() {
2165 final int uid = Binder.getCallingUid();
2166 if (uid != Process.SYSTEM_UID) {
2167 throw new SecurityException("Only available to AID_SYSTEM");
2168 }
2169 }
2170
Jeff Sharkeyc268f0b2012-08-24 10:25:31 -0700[diff] [blame]2171 @Override
Lorenzo Colitti79751842013-02-28 16:16:03 +0900[diff] [blame]2172 public void startClatd(String interfaceName) throws IllegalStateException {
2173 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
2174
2175 try {
2176 mConnector.execute("clatd", "start", interfaceName);
2177 } catch (NativeDaemonConnectorException e) {
2178 throw e.rethrowAsParcelableException();
2179 }
2180 }
2181
2182 @Override
Lorenzo Colitti95439462014-10-09 13:44:48 +0900[diff] [blame]2183 public void stopClatd(String interfaceName) throws IllegalStateException {
Lorenzo Colitti79751842013-02-28 16:16:03 +0900[diff] [blame]2184 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
2185
2186 try {
Lorenzo Colitti95439462014-10-09 13:44:48 +0900[diff] [blame]2187 mConnector.execute("clatd", "stop", interfaceName);
Lorenzo Colitti79751842013-02-28 16:16:03 +0900[diff] [blame]2188 } catch (NativeDaemonConnectorException e) {
2189 throw e.rethrowAsParcelableException();
2190 }
2191 }
2192
2193 @Override
Lorenzo Colitti95439462014-10-09 13:44:48 +0900[diff] [blame]2194 public boolean isClatdStarted(String interfaceName) {
Lorenzo Colitti79751842013-02-28 16:16:03 +0900[diff] [blame]2195 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
2196
2197 final NativeDaemonEvent event;
2198 try {
Lorenzo Colitti95439462014-10-09 13:44:48 +0900[diff] [blame]2199 event = mConnector.execute("clatd", "status", interfaceName);
Lorenzo Colitti79751842013-02-28 16:16:03 +0900[diff] [blame]2200 } catch (NativeDaemonConnectorException e) {
2201 throw e.rethrowAsParcelableException();
2202 }
2203
2204 event.checkCode(ClatdStatusResult);
2205 return event.getMessage().endsWith("started");
2206 }
2207
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]2208 @Override
2209 public void registerNetworkActivityListener(INetworkActivityListener listener) {
2210 mNetworkActivityListeners.register(listener);
2211 }
2212
2213 @Override
2214 public void unregisterNetworkActivityListener(INetworkActivityListener listener) {
2215 mNetworkActivityListeners.unregister(listener);
2216 }
2217
2218 @Override
2219 public boolean isNetworkActive() {
2220 synchronized (mNetworkActivityListeners) {
2221 return mNetworkActive || mActiveIdleTimers.isEmpty();
2222 }
2223 }
2224
2225 private void reportNetworkActive() {
2226 final int length = mNetworkActivityListeners.beginBroadcast();
Robert Greenwalt2c9f5472014-04-21 14:50:28 -0700[diff] [blame]2227 try {
2228 for (int i = 0; i < length; i++) {
2229 try {
2230 mNetworkActivityListeners.getBroadcastItem(i).onNetworkActive();
Felipe Leme03e689d2016-03-02 16:17:38 -0800[diff] [blame]2231 } catch (RemoteException | RuntimeException e) {
Robert Greenwalt2c9f5472014-04-21 14:50:28 -0700[diff] [blame]2232 }
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]2233 }
Robert Greenwalt2c9f5472014-04-21 14:50:28 -0700[diff] [blame]2234 } finally {
2235 mNetworkActivityListeners.finishBroadcast();
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]2236 }
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]2237 }
2238
Mattias Falk8b47b362011-08-23 14:15:13 +0200[diff] [blame]2239 /** {@inheritDoc} */
Jeff Sharkey7b4596f2013-02-25 10:55:29 -0800[diff] [blame]2240 @Override
Jeff Sharkeyfa23c5a2011-08-09 21:44:24 -0700[diff] [blame]2241 public void monitor() {
2242 if (mConnector != null) {
2243 mConnector.monitor();
2244 }
2245 }
Jeff Sharkey47eb1022011-08-25 17:48:52 -0700[diff] [blame]2246
2247 @Override
2248 protected void dump(FileDescriptor fd, PrintWriter pw, String[] args) {
2249 mContext.enforceCallingOrSelfPermission(DUMP, TAG);
2250
Robert Greenwalt470fd722012-01-18 12:51:15 -0800[diff] [blame]2251 pw.println("NetworkManagementService NativeDaemonConnector Log:");
2252 mConnector.dump(fd, pw, args);
2253 pw.println();
2254
Jeff Sharkey47eb1022011-08-25 17:48:52 -0700[diff] [blame]2255 pw.print("Bandwidth control enabled: "); pw.println(mBandwidthControlEnabled);
Dianne Hackborn2ffa11e2014-04-21 15:56:18 -0700[diff] [blame]2256 pw.print("mMobileActivityFromRadio="); pw.print(mMobileActivityFromRadio);
2257 pw.print(" mLastPowerStateFromRadio="); pw.println(mLastPowerStateFromRadio);
2258 pw.print("mNetworkActive="); pw.println(mNetworkActive);
Jeff Sharkey47eb1022011-08-25 17:48:52 -0700[diff] [blame]2259
2260 synchronized (mQuotaLock) {
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]2261 pw.print("Active quota ifaces: "); pw.println(mActiveQuotas.toString());
2262 pw.print("Active alert ifaces: "); pw.println(mActiveAlerts.toString());
Felipe Leme65be3022016-03-22 14:53:13 -0700[diff] [blame]2263 pw.print("Data saver mode: "); pw.println(mDataSaverMode);
2264 dumpUidRuleOnQuotaLocked(pw, "blacklist", mUidRejectOnMetered);
2265 dumpUidRuleOnQuotaLocked(pw, "whitelist", mUidAllowOnMetered);
Jeff Sharkey47eb1022011-08-25 17:48:52 -0700[diff] [blame]2266 }
Jeff Sharkeyc268f0b2012-08-24 10:25:31 -0700[diff] [blame]2267
Amith Yamasani15e472352015-04-24 19:06:07 -0700[diff] [blame]2268 synchronized (mUidFirewallRules) {
Felipe Leme011b98f2016-02-10 17:28:31 -0800[diff] [blame]2269 dumpUidFirewallRule(pw, "", mUidFirewallRules);
Amith Yamasani15e472352015-04-24 19:06:07 -0700[diff] [blame]2270 }
2271
Felipe Leme65be3022016-03-22 14:53:13 -0700[diff] [blame]2272 pw.print("UID firewall standby chain enabled: "); pw.println(
Xiaohui Chen8dca36d2015-06-19 12:44:59 -0700[diff] [blame]2273 mFirewallChainStates.get(FIREWALL_CHAIN_STANDBY));
Xiaohui Chenb41c9f72015-06-17 15:55:37 -0700[diff] [blame]2274 synchronized (mUidFirewallStandbyRules) {
Felipe Leme011b98f2016-02-10 17:28:31 -0800[diff] [blame]2275 dumpUidFirewallRule(pw, FIREWALL_CHAIN_NAME_STANDBY, mUidFirewallStandbyRules);
Xiaohui Chenb41c9f72015-06-17 15:55:37 -0700[diff] [blame]2276 }
2277
Felipe Leme65be3022016-03-22 14:53:13 -0700[diff] [blame]2278 pw.print("UID firewall dozable chain enabled: "); pw.println(
Xiaohui Chen8dca36d2015-06-19 12:44:59 -0700[diff] [blame]2279 mFirewallChainStates.get(FIREWALL_CHAIN_DOZABLE));
Xiaohui Chenb41c9f72015-06-17 15:55:37 -0700[diff] [blame]2280 synchronized (mUidFirewallDozableRules) {
Felipe Leme011b98f2016-02-10 17:28:31 -0800[diff] [blame]2281 dumpUidFirewallRule(pw, FIREWALL_CHAIN_NAME_DOZABLE, mUidFirewallDozableRules);
2282 }
2283
2284 pw.println("UID firewall powersave chain enabled: " +
2285 mFirewallChainStates.get(FIREWALL_CHAIN_POWERSAVE));
2286 synchronized (mUidFirewallPowerSaveRules) {
2287 dumpUidFirewallRule(pw, FIREWALL_CHAIN_NAME_POWERSAVE, mUidFirewallPowerSaveRules);
Xiaohui Chenb41c9f72015-06-17 15:55:37 -0700[diff] [blame]2288 }
2289
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]2290 synchronized (mIdleTimerLock) {
2291 pw.println("Idle timers:");
2292 for (HashMap.Entry<String, IdleTimerParams> ent : mActiveIdleTimers.entrySet()) {
2293 pw.print(" "); pw.print(ent.getKey()); pw.println(":");
2294 IdleTimerParams params = ent.getValue();
2295 pw.print(" timeout="); pw.print(params.timeout);
2296 pw.print(" type="); pw.print(params.type);
2297 pw.print(" networkCount="); pw.println(params.networkCount);
2298 }
2299 }
2300
Jeff Sharkeyc268f0b2012-08-24 10:25:31 -0700[diff] [blame]2301 pw.print("Firewall enabled: "); pw.println(mFirewallEnabled);
Felipe Leme65be3022016-03-22 14:53:13 -0700[diff] [blame]2302 pw.print("Netd service status: " );
2303 if (mNetdService == null) {
2304 pw.println("disconnected");
2305 } else {
2306 try {
2307 final boolean alive = mNetdService.isAlive();
2308 pw.println(alive ? "alive": "dead");
2309 } catch (RemoteException e) {
2310 pw.println("unreachable");
2311 }
2312 }
2313 }
2314
2315 private void dumpUidRuleOnQuotaLocked(PrintWriter pw, String name, SparseBooleanArray list) {
2316 pw.print("UID bandwith control ");
2317 pw.print(name);
2318 pw.print(" rule: [");
2319 final int size = list.size();
2320 for (int i = 0; i < size; i++) {
2321 pw.print(list.keyAt(i));
2322 if (i < size - 1) pw.print(",");
2323 }
2324 pw.println("]");
Jeff Sharkey47eb1022011-08-25 17:48:52 -0700[diff] [blame]2325 }
Robert Greenwalt9ba9c582014-03-19 17:56:12 -0700[diff] [blame]2326
Felipe Leme011b98f2016-02-10 17:28:31 -0800[diff] [blame]2327 private void dumpUidFirewallRule(PrintWriter pw, String name, SparseIntArray rules) {
Lorenzo Colitti4cb42402016-04-24 12:52:00 +0900[diff] [blame]2328 pw.print("UID firewall ");
Felipe Leme011b98f2016-02-10 17:28:31 -0800[diff] [blame]2329 pw.print(name);
2330 pw.print(" rule: [");
2331 final int size = rules.size();
2332 for (int i = 0; i < size; i++) {
2333 pw.print(rules.keyAt(i));
2334 pw.print(":");
2335 pw.print(rules.valueAt(i));
2336 if (i < size - 1) pw.print(",");
2337 }
2338 pw.println("]");
2339 }
2340
Robert Greenwalt568891d2014-04-04 13:38:00 -0700[diff] [blame]2341 @Override
Paul Jensen487ffe72015-07-24 15:57:11 -0400[diff] [blame]2342 public void createPhysicalNetwork(int netId, String permission) {
Robert Greenwalt9ba9c582014-03-19 17:56:12 -0700[diff] [blame]2343 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
2344
2345 try {
Paul Jensen487ffe72015-07-24 15:57:11 -0400[diff] [blame]2346 if (permission != null) {
2347 mConnector.execute("network", "create", netId, permission);
2348 } else {
2349 mConnector.execute("network", "create", netId);
2350 }
Robert Greenwalt9ba9c582014-03-19 17:56:12 -0700[diff] [blame]2351 } catch (NativeDaemonConnectorException e) {
2352 throw e.rethrowAsParcelableException();
2353 }
2354 }
2355
Robert Greenwalt568891d2014-04-04 13:38:00 -0700[diff] [blame]2356 @Override
Sreeram Ramachandran8cd33ed2014-07-23 15:23:15 -0700[diff] [blame]2357 public void createVirtualNetwork(int netId, boolean hasDNS, boolean secure) {
Paul Jensen6bc2c2c2014-05-07 15:27:40 -0400[diff] [blame]2358 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
2359
2360 try {
Sreeram Ramachandran8cd33ed2014-07-23 15:23:15 -0700[diff] [blame]2361 mConnector.execute("network", "create", netId, "vpn", hasDNS ? "1" : "0",
2362 secure ? "1" : "0");
Paul Jensen6bc2c2c2014-05-07 15:27:40 -0400[diff] [blame]2363 } catch (NativeDaemonConnectorException e) {
2364 throw e.rethrowAsParcelableException();
2365 }
2366 }
2367
2368 @Override
Robert Greenwalt9ba9c582014-03-19 17:56:12 -0700[diff] [blame]2369 public void removeNetwork(int netId) {
2370 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
2371
2372 try {
2373 mConnector.execute("network", "destroy", netId);
2374 } catch (NativeDaemonConnectorException e) {
2375 throw e.rethrowAsParcelableException();
2376 }
2377 }
Robert Greenwalt568891d2014-04-04 13:38:00 -0700[diff] [blame]2378
2379 @Override
Paul Jensen992f2522014-04-28 10:33:11 -0400[diff] [blame]2380 public void addInterfaceToNetwork(String iface, int netId) {
Sreeram Ramachandrana77760d2014-07-17 17:09:07 -0700[diff] [blame]2381 modifyInterfaceInNetwork("add", "" + netId, iface);
Paul Jensen992f2522014-04-28 10:33:11 -0400[diff] [blame]2382 }
2383
2384 @Override
2385 public void removeInterfaceFromNetwork(String iface, int netId) {
Sreeram Ramachandrana77760d2014-07-17 17:09:07 -0700[diff] [blame]2386 modifyInterfaceInNetwork("remove", "" + netId, iface);
2387 }
Paul Jensen992f2522014-04-28 10:33:11 -0400[diff] [blame]2388
Sreeram Ramachandrana77760d2014-07-17 17:09:07 -0700[diff] [blame]2389 private void modifyInterfaceInNetwork(String action, String netId, String iface) {
2390 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Paul Jensen992f2522014-04-28 10:33:11 -0400[diff] [blame]2391 try {
Sreeram Ramachandrana77760d2014-07-17 17:09:07 -0700[diff] [blame]2392 mConnector.execute("network", "interface", action, netId, iface);
Paul Jensen992f2522014-04-28 10:33:11 -0400[diff] [blame]2393 } catch (NativeDaemonConnectorException e) {
2394 throw e.rethrowAsParcelableException();
2395 }
2396 }
2397
2398 @Override
Robert Greenwalt913c8952014-04-07 17:36:35 -0700[diff] [blame]2399 public void addLegacyRouteForNetId(int netId, RouteInfo routeInfo, int uid) {
Robert Greenwalt568891d2014-04-04 13:38:00 -0700[diff] [blame]2400 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
2401
Sreeram Ramachandran03666c72014-07-19 23:21:46 -0700[diff] [blame]2402 final Command cmd = new Command("network", "route", "legacy", uid, "add", netId);
Robert Greenwalt568891d2014-04-04 13:38:00 -0700[diff] [blame]2403
Sreeram Ramachandran1fbcb272014-05-22 16:30:48 -0700[diff] [blame]2404 // create triplet: interface dest-ip-addr/prefixlength gateway-ip-addr
Sreeram Ramachandrancc91c7b2014-06-03 18:41:43 -0700[diff] [blame]2405 final LinkAddress la = routeInfo.getDestinationLinkAddress();
Robert Greenwalt568891d2014-04-04 13:38:00 -0700[diff] [blame]2406 cmd.appendArg(routeInfo.getInterface());
Lorenzo Colitti7dc78cf2014-06-09 22:58:46 +0900[diff] [blame]2407 cmd.appendArg(la.getAddress().getHostAddress() + "/" + la.getPrefixLength());
Sreeram Ramachandran1fbcb272014-05-22 16:30:48 -0700[diff] [blame]2408 if (routeInfo.hasGateway()) {
2409 cmd.appendArg(routeInfo.getGateway().getHostAddress());
2410 }
Robert Greenwalt568891d2014-04-04 13:38:00 -0700[diff] [blame]2411
2412 try {
2413 mConnector.execute(cmd);
2414 } catch (NativeDaemonConnectorException e) {
2415 throw e.rethrowAsParcelableException();
2416 }
2417 }
2418
2419 @Override
Sreeram Ramachandranf047f2a2014-04-15 16:04:26 -0700[diff] [blame]2420 public void setDefaultNetId(int netId) {
Robert Greenwalt568891d2014-04-04 13:38:00 -0700[diff] [blame]2421 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
2422
2423 try {
Sreeram Ramachandranf047f2a2014-04-15 16:04:26 -0700[diff] [blame]2424 mConnector.execute("network", "default", "set", netId);
Robert Greenwalt568891d2014-04-04 13:38:00 -0700[diff] [blame]2425 } catch (NativeDaemonConnectorException e) {
2426 throw e.rethrowAsParcelableException();
2427 }
2428 }
2429
2430 @Override
2431 public void clearDefaultNetId() {
2432 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
2433
2434 try {
2435 mConnector.execute("network", "default", "clear");
2436 } catch (NativeDaemonConnectorException e) {
2437 throw e.rethrowAsParcelableException();
2438 }
2439 }
2440
2441 @Override
Paul Jensen487ffe72015-07-24 15:57:11 -0400[diff] [blame]2442 public void setNetworkPermission(int netId, String permission) {
2443 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
2444
2445 try {
2446 if (permission != null) {
2447 mConnector.execute("network", "permission", "network", "set", permission, netId);
2448 } else {
2449 mConnector.execute("network", "permission", "network", "clear", netId);
2450 }
2451 } catch (NativeDaemonConnectorException e) {
2452 throw e.rethrowAsParcelableException();
2453 }
2454 }
2455
2456
2457 @Override
Sreeram Ramachandrane4a05af2014-09-24 09:16:19 -0700[diff] [blame]2458 public void setPermission(String permission, int[] uids) {
Robert Greenwalt568891d2014-04-04 13:38:00 -0700[diff] [blame]2459 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
2460
Sreeram Ramachandrane4a05af2014-09-24 09:16:19 -0700[diff] [blame]2461 Object[] argv = new Object[4 + MAX_UID_RANGES_PER_COMMAND];
2462 argv[0] = "permission";
2463 argv[1] = "user";
2464 argv[2] = "set";
2465 argv[3] = permission;
2466 int argc = 4;
2467 // Avoid overly long commands by limiting number of UIDs per command.
2468 for (int i = 0; i < uids.length; ++i) {
2469 argv[argc++] = uids[i];
2470 if (i == uids.length - 1 || argc == argv.length) {
2471 try {
2472 mConnector.execute("network", Arrays.copyOf(argv, argc));
2473 } catch (NativeDaemonConnectorException e) {
2474 throw e.rethrowAsParcelableException();
2475 }
2476 argc = 4;
2477 }
Robert Greenwalt568891d2014-04-04 13:38:00 -0700[diff] [blame]2478 }
2479 }
2480
2481 @Override
2482 public void clearPermission(int[] uids) {
2483 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
2484
Sreeram Ramachandrane4a05af2014-09-24 09:16:19 -0700[diff] [blame]2485 Object[] argv = new Object[3 + MAX_UID_RANGES_PER_COMMAND];
2486 argv[0] = "permission";
2487 argv[1] = "user";
2488 argv[2] = "clear";
2489 int argc = 3;
2490 // Avoid overly long commands by limiting number of UIDs per command.
2491 for (int i = 0; i < uids.length; ++i) {
2492 argv[argc++] = uids[i];
2493 if (i == uids.length - 1 || argc == argv.length) {
2494 try {
2495 mConnector.execute("network", Arrays.copyOf(argv, argc));
2496 } catch (NativeDaemonConnectorException e) {
2497 throw e.rethrowAsParcelableException();
2498 }
2499 argc = 3;
2500 }
Robert Greenwalt568891d2014-04-04 13:38:00 -0700[diff] [blame]2501 }
2502 }
Paul Jensen6bc2c2c2014-05-07 15:27:40 -0400[diff] [blame]2503
2504 @Override
2505 public void allowProtect(int uid) {
2506 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
2507
2508 try {
2509 mConnector.execute("network", "protect", "allow", uid);
2510 } catch (NativeDaemonConnectorException e) {
2511 throw e.rethrowAsParcelableException();
2512 }
2513 }
2514
2515 @Override
2516 public void denyProtect(int uid) {
2517 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
2518
2519 try {
2520 mConnector.execute("network", "protect", "deny", uid);
2521 } catch (NativeDaemonConnectorException e) {
2522 throw e.rethrowAsParcelableException();
2523 }
2524 }
2525
Sreeram Ramachandrana77760d2014-07-17 17:09:07 -0700[diff] [blame]2526 @Override
2527 public void addInterfaceToLocalNetwork(String iface, List<RouteInfo> routes) {
2528 modifyInterfaceInNetwork("add", "local", iface);
2529
2530 for (RouteInfo route : routes) {
2531 if (!route.isDefaultRoute()) {
2532 modifyRoute("add", "local", route);
2533 }
2534 }
2535 }
2536
2537 @Override
2538 public void removeInterfaceFromLocalNetwork(String iface) {
2539 modifyInterfaceInNetwork("remove", "local", iface);
2540 }
Erik Kline6599ee82016-07-17 21:28:39 +0900[diff] [blame]2541
2542 @Override
2543 public int removeRoutesFromLocalNetwork(List<RouteInfo> routes) {
2544 int failures = 0;
2545
2546 for (RouteInfo route : routes) {
2547 try {
2548 modifyRoute("remove", "local", route);
2549 } catch (IllegalStateException e) {
2550 failures++;
2551 }
2552 }
2553
2554 return failures;
2555 }
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]2556}