The Android Open Source Project | 9066cfe | 2009-03-03 19:31:44 -0800 | [diff] [blame] | 1 | /* |
| 2 | * Copyright (C) 2007 The Android Open Source Project |
| 3 | * |
| 4 | * Licensed under the Apache License, Version 2.0 (the "License"); |
| 5 | * you may not use this file except in compliance with the License. |
| 6 | * You may obtain a copy of the License at |
| 7 | * |
| 8 | * http://www.apache.org/licenses/LICENSE-2.0 |
| 9 | * |
| 10 | * Unless required by applicable law or agreed to in writing, software |
| 11 | * distributed under the License is distributed on an "AS IS" BASIS, |
| 12 | * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. |
| 13 | * See the License for the specific language governing permissions and |
| 14 | * limitations under the License. |
| 15 | */ |
| 16 | |
| 17 | package com.android.internal.os; |
| 18 | |
Narayan Kamath | 6ac7e67 | 2015-01-16 16:26:54 +0000 | [diff] [blame] | 19 | import static android.system.OsConstants.F_SETFD; |
Elliott Hughes | 3fe5951 | 2014-12-12 14:07:34 -0800 | [diff] [blame] | 20 | import static android.system.OsConstants.O_CLOEXEC; |
Andreas Gampe | cbc4214 | 2017-07-12 19:17:52 -0700 | [diff] [blame] | 21 | import static android.system.OsConstants.POLLIN; |
Elliott Hughes | dac83f5 | 2014-12-15 11:00:25 -0800 | [diff] [blame] | 22 | import static android.system.OsConstants.STDERR_FILENO; |
| 23 | import static android.system.OsConstants.STDIN_FILENO; |
| 24 | import static android.system.OsConstants.STDOUT_FILENO; |
Sudheer Shanka | d81b1d7 | 2018-09-05 16:37:30 -0700 | [diff] [blame] | 25 | |
Andreas Gampe | 27497c6 | 2017-07-21 11:41:00 -0700 | [diff] [blame] | 26 | import static com.android.internal.os.ZygoteConnectionConstants.CONNECTION_TIMEOUT_MILLIS; |
Andreas Gampe | 27497c6 | 2017-07-21 11:41:00 -0700 | [diff] [blame] | 27 | import static com.android.internal.os.ZygoteConnectionConstants.WRAPPED_PID_TIMEOUT_MILLIS; |
Elliott Hughes | 3fe5951 | 2014-12-12 14:07:34 -0800 | [diff] [blame] | 28 | |
Martijn Coenen | 7e6fa67 | 2018-11-05 11:45:26 +0100 | [diff] [blame] | 29 | import android.content.pm.ApplicationInfo; |
Andrei Onea | 6cd1b70 | 2019-01-25 16:29:44 +0000 | [diff] [blame] | 30 | import android.metrics.LogMaker; |
The Android Open Source Project | 9066cfe | 2009-03-03 19:31:44 -0800 | [diff] [blame] | 31 | import android.net.Credentials; |
| 32 | import android.net.LocalSocket; |
Martijn Coenen | 7e6fa67 | 2018-11-05 11:45:26 +0100 | [diff] [blame] | 33 | import android.os.Parcel; |
The Android Open Source Project | 9066cfe | 2009-03-03 19:31:44 -0800 | [diff] [blame] | 34 | import android.os.Process; |
Narayan Kamath | fbb32f6 | 2015-06-12 15:34:35 +0100 | [diff] [blame] | 35 | import android.os.Trace; |
Elliott Hughes | 860c591 | 2014-04-28 19:19:13 -0700 | [diff] [blame] | 36 | import android.system.ErrnoException; |
| 37 | import android.system.Os; |
Andreas Gampe | cbc4214 | 2017-07-12 19:17:52 -0700 | [diff] [blame] | 38 | import android.system.StructPollfd; |
The Android Open Source Project | 9066cfe | 2009-03-03 19:31:44 -0800 | [diff] [blame] | 39 | import android.util.Log; |
Andrei Onea | e8e150d | 2019-02-18 18:27:11 +0000 | [diff] [blame] | 40 | import android.util.StatsLog; |
Sudheer Shanka | d81b1d7 | 2018-09-05 16:37:30 -0700 | [diff] [blame] | 41 | |
Andrei Onea | 6cd1b70 | 2019-01-25 16:29:44 +0000 | [diff] [blame] | 42 | import com.android.internal.logging.MetricsLogger; |
| 43 | import com.android.internal.logging.nano.MetricsProto.MetricsEvent; |
| 44 | |
Narayan Kamath | 37ad4b0 | 2015-01-19 16:05:24 +0000 | [diff] [blame] | 45 | import dalvik.system.VMRuntime; |
Sudheer Shanka | d81b1d7 | 2018-09-05 16:37:30 -0700 | [diff] [blame] | 46 | |
| 47 | import libcore.io.IoUtils; |
| 48 | |
The Android Open Source Project | 9066cfe | 2009-03-03 19:31:44 -0800 | [diff] [blame] | 49 | import java.io.BufferedReader; |
Andreas Gampe | cbc4214 | 2017-07-12 19:17:52 -0700 | [diff] [blame] | 50 | import java.io.ByteArrayInputStream; |
Jeff Brown | ebed7d6 | 2011-05-16 17:08:42 -0700 | [diff] [blame] | 51 | import java.io.DataInputStream; |
The Android Open Source Project | 9066cfe | 2009-03-03 19:31:44 -0800 | [diff] [blame] | 52 | import java.io.DataOutputStream; |
| 53 | import java.io.FileDescriptor; |
The Android Open Source Project | 9066cfe | 2009-03-03 19:31:44 -0800 | [diff] [blame] | 54 | import java.io.IOException; |
| 55 | import java.io.InputStreamReader; |
Narayan Kamath | c41638c | 2014-04-07 13:56:15 +0100 | [diff] [blame] | 56 | import java.nio.charset.StandardCharsets; |
Martijn Coenen | 7e6fa67 | 2018-11-05 11:45:26 +0100 | [diff] [blame] | 57 | import java.util.Base64; |
Mathew Inwood | 8faeab8 | 2018-03-16 14:26:08 +0000 | [diff] [blame] | 58 | |
The Android Open Source Project | 9066cfe | 2009-03-03 19:31:44 -0800 | [diff] [blame] | 59 | /** |
| 60 | * A connection that can make spawn requests. |
| 61 | */ |
| 62 | class ZygoteConnection { |
| 63 | private static final String TAG = "Zygote"; |
| 64 | |
The Android Open Source Project | 9066cfe | 2009-03-03 19:31:44 -0800 | [diff] [blame] | 65 | /** |
The Android Open Source Project | 9066cfe | 2009-03-03 19:31:44 -0800 | [diff] [blame] | 66 | * The command socket. |
| 67 | * |
| 68 | * mSocket is retained in the child process in "peer wait" mode, so |
| 69 | * that it closes when the child process terminates. In other cases, |
| 70 | * it is closed in the peer. |
| 71 | */ |
| 72 | private final LocalSocket mSocket; |
| 73 | private final DataOutputStream mSocketOutStream; |
| 74 | private final BufferedReader mSocketReader; |
| 75 | private final Credentials peer; |
Narayan Kamath | c41638c | 2014-04-07 13:56:15 +0100 | [diff] [blame] | 76 | private final String abiList; |
Narayan Kamath | bf99d06 | 2017-07-05 14:45:38 +0100 | [diff] [blame] | 77 | private boolean isEof; |
The Android Open Source Project | 9066cfe | 2009-03-03 19:31:44 -0800 | [diff] [blame] | 78 | |
| 79 | /** |
The Android Open Source Project | 9066cfe | 2009-03-03 19:31:44 -0800 | [diff] [blame] | 80 | * Constructs instance from connected socket. |
| 81 | * |
| 82 | * @param socket non-null; connected socket |
Narayan Kamath | c41638c | 2014-04-07 13:56:15 +0100 | [diff] [blame] | 83 | * @param abiList non-null; a list of ABIs this zygote supports. |
The Android Open Source Project | 9066cfe | 2009-03-03 19:31:44 -0800 | [diff] [blame] | 84 | * @throws IOException |
| 85 | */ |
Narayan Kamath | c41638c | 2014-04-07 13:56:15 +0100 | [diff] [blame] | 86 | ZygoteConnection(LocalSocket socket, String abiList) throws IOException { |
The Android Open Source Project | 9066cfe | 2009-03-03 19:31:44 -0800 | [diff] [blame] | 87 | mSocket = socket; |
Narayan Kamath | c41638c | 2014-04-07 13:56:15 +0100 | [diff] [blame] | 88 | this.abiList = abiList; |
The Android Open Source Project | 9066cfe | 2009-03-03 19:31:44 -0800 | [diff] [blame] | 89 | |
| 90 | mSocketOutStream |
| 91 | = new DataOutputStream(socket.getOutputStream()); |
| 92 | |
| 93 | mSocketReader = new BufferedReader( |
| 94 | new InputStreamReader(socket.getInputStream()), 256); |
| 95 | |
| 96 | mSocket.setSoTimeout(CONNECTION_TIMEOUT_MILLIS); |
dcashman | fc4c0bf8 | 2015-03-05 17:17:47 -0800 | [diff] [blame] | 97 | |
The Android Open Source Project | 9066cfe | 2009-03-03 19:31:44 -0800 | [diff] [blame] | 98 | try { |
| 99 | peer = mSocket.getPeerCredentials(); |
| 100 | } catch (IOException ex) { |
| 101 | Log.e(TAG, "Cannot read peer credentials", ex); |
| 102 | throw ex; |
| 103 | } |
Narayan Kamath | bf99d06 | 2017-07-05 14:45:38 +0100 | [diff] [blame] | 104 | |
| 105 | isEof = false; |
The Android Open Source Project | 9066cfe | 2009-03-03 19:31:44 -0800 | [diff] [blame] | 106 | } |
| 107 | |
| 108 | /** |
| 109 | * Returns the file descriptor of the associated socket. |
| 110 | * |
| 111 | * @return null-ok; file descriptor |
| 112 | */ |
Chris Wailes | 2be2626 | 2019-01-11 16:14:43 -0800 | [diff] [blame] | 113 | FileDescriptor getFileDescriptor() { |
The Android Open Source Project | 9066cfe | 2009-03-03 19:31:44 -0800 | [diff] [blame] | 114 | return mSocket.getFileDescriptor(); |
| 115 | } |
| 116 | |
| 117 | /** |
Narayan Kamath | bf99d06 | 2017-07-05 14:45:38 +0100 | [diff] [blame] | 118 | * Reads one start command from the command socket. If successful, a child is forked and a |
| 119 | * {@code Runnable} that calls the childs main method (or equivalent) is returned in the child |
| 120 | * process. {@code null} is always returned in the parent process (the zygote). |
The Android Open Source Project | 9066cfe | 2009-03-03 19:31:44 -0800 | [diff] [blame] | 121 | * |
Narayan Kamath | bf99d06 | 2017-07-05 14:45:38 +0100 | [diff] [blame] | 122 | * If the client closes the socket, an {@code EOF} condition is set, which callers can test |
| 123 | * for by calling {@code ZygoteConnection.isClosedByPeer}. |
The Android Open Source Project | 9066cfe | 2009-03-03 19:31:44 -0800 | [diff] [blame] | 124 | */ |
Narayan Kamath | bf99d06 | 2017-07-05 14:45:38 +0100 | [diff] [blame] | 125 | Runnable processOneCommand(ZygoteServer zygoteServer) { |
The Android Open Source Project | 9066cfe | 2009-03-03 19:31:44 -0800 | [diff] [blame] | 126 | String args[]; |
Chris Wailes | 2be2626 | 2019-01-11 16:14:43 -0800 | [diff] [blame] | 127 | ZygoteArguments parsedArgs = null; |
The Android Open Source Project | 9066cfe | 2009-03-03 19:31:44 -0800 | [diff] [blame] | 128 | FileDescriptor[] descriptors; |
| 129 | |
| 130 | try { |
Chris Wailes | 2be2626 | 2019-01-11 16:14:43 -0800 | [diff] [blame] | 131 | args = Zygote.readArgumentList(mSocketReader); |
| 132 | |
| 133 | // TODO (chriswailes): Remove this and add an assert. |
The Android Open Source Project | 9066cfe | 2009-03-03 19:31:44 -0800 | [diff] [blame] | 134 | descriptors = mSocket.getAncillaryFileDescriptors(); |
| 135 | } catch (IOException ex) { |
Narayan Kamath | bf99d06 | 2017-07-05 14:45:38 +0100 | [diff] [blame] | 136 | throw new IllegalStateException("IOException on command socket", ex); |
The Android Open Source Project | 9066cfe | 2009-03-03 19:31:44 -0800 | [diff] [blame] | 137 | } |
| 138 | |
Narayan Kamath | bf99d06 | 2017-07-05 14:45:38 +0100 | [diff] [blame] | 139 | // readArgumentList returns null only when it has reached EOF with no available |
| 140 | // data to read. This will only happen when the remote socket has disconnected. |
The Android Open Source Project | 9066cfe | 2009-03-03 19:31:44 -0800 | [diff] [blame] | 141 | if (args == null) { |
Narayan Kamath | bf99d06 | 2017-07-05 14:45:38 +0100 | [diff] [blame] | 142 | isEof = true; |
| 143 | return null; |
The Android Open Source Project | 9066cfe | 2009-03-03 19:31:44 -0800 | [diff] [blame] | 144 | } |
| 145 | |
Jeff Brown | ebed7d6 | 2011-05-16 17:08:42 -0700 | [diff] [blame] | 146 | int pid = -1; |
| 147 | FileDescriptor childPipeFd = null; |
| 148 | FileDescriptor serverPipeFd = null; |
The Android Open Source Project | 9066cfe | 2009-03-03 19:31:44 -0800 | [diff] [blame] | 149 | |
Chris Wailes | 2be2626 | 2019-01-11 16:14:43 -0800 | [diff] [blame] | 150 | parsedArgs = new ZygoteArguments(args); |
Narayan Kamath | c41638c | 2014-04-07 13:56:15 +0100 | [diff] [blame] | 151 | |
Chris Wailes | 2be2626 | 2019-01-11 16:14:43 -0800 | [diff] [blame] | 152 | if (parsedArgs.mAbiListQuery) { |
Narayan Kamath | bf99d06 | 2017-07-05 14:45:38 +0100 | [diff] [blame] | 153 | handleAbiListQuery(); |
| 154 | return null; |
| 155 | } |
Narayan Kamath | c41638c | 2014-04-07 13:56:15 +0100 | [diff] [blame] | 156 | |
Chris Wailes | 2be2626 | 2019-01-11 16:14:43 -0800 | [diff] [blame] | 157 | if (parsedArgs.mPidQuery) { |
Andreas Gampe | 8444dca | 2018-05-01 13:31:28 -0700 | [diff] [blame] | 158 | handlePidQuery(); |
| 159 | return null; |
| 160 | } |
| 161 | |
Chris Wailes | 7e797b6 | 2019-02-22 18:29:22 -0800 | [diff] [blame] | 162 | if (parsedArgs.mUsapPoolStatusSpecified) { |
| 163 | return handleUsapPoolStatusChange(zygoteServer, parsedArgs.mUsapPoolEnabled); |
Chris Wailes | db132a3 | 2019-02-20 10:49:27 -0800 | [diff] [blame] | 164 | } |
| 165 | |
Chris Wailes | 2be2626 | 2019-01-11 16:14:43 -0800 | [diff] [blame] | 166 | if (parsedArgs.mPreloadDefault) { |
Narayan Kamath | bf99d06 | 2017-07-05 14:45:38 +0100 | [diff] [blame] | 167 | handlePreload(); |
| 168 | return null; |
| 169 | } |
Narayan Kamath | 5a3d0c6 | 2016-11-09 15:35:18 +0000 | [diff] [blame] | 170 | |
Chris Wailes | 2be2626 | 2019-01-11 16:14:43 -0800 | [diff] [blame] | 171 | if (parsedArgs.mPreloadPackage != null) { |
| 172 | handlePreloadPackage(parsedArgs.mPreloadPackage, parsedArgs.mPreloadPackageLibs, |
| 173 | parsedArgs.mPreloadPackageLibFileName, parsedArgs.mPreloadPackageCacheKey); |
Narayan Kamath | bf99d06 | 2017-07-05 14:45:38 +0100 | [diff] [blame] | 174 | return null; |
| 175 | } |
Robert Sesek | ded2098 | 2016-08-15 13:59:13 -0400 | [diff] [blame] | 176 | |
Martijn Coenen | 7e6fa67 | 2018-11-05 11:45:26 +0100 | [diff] [blame] | 177 | if (canPreloadApp() && parsedArgs.mPreloadApp != null) { |
| 178 | byte[] rawParcelData = Base64.getDecoder().decode(parsedArgs.mPreloadApp); |
| 179 | Parcel appInfoParcel = Parcel.obtain(); |
| 180 | appInfoParcel.unmarshall(rawParcelData, 0, rawParcelData.length); |
| 181 | appInfoParcel.setDataPosition(0); |
| 182 | ApplicationInfo appInfo = ApplicationInfo.CREATOR.createFromParcel(appInfoParcel); |
| 183 | appInfoParcel.recycle(); |
| 184 | if (appInfo != null) { |
| 185 | handlePreloadApp(appInfo); |
| 186 | } else { |
| 187 | throw new IllegalArgumentException("Failed to deserialize --preload-app"); |
| 188 | } |
| 189 | return null; |
| 190 | } |
| 191 | |
Chris Wailes | 2be2626 | 2019-01-11 16:14:43 -0800 | [diff] [blame] | 192 | if (parsedArgs.mApiBlacklistExemptions != null) { |
Chris Wailes | 01060e6 | 2019-02-21 13:46:52 -0800 | [diff] [blame] | 193 | return handleApiBlacklistExemptions(zygoteServer, parsedArgs.mApiBlacklistExemptions); |
Mathew Inwood | 8faeab8 | 2018-03-16 14:26:08 +0000 | [diff] [blame] | 194 | } |
| 195 | |
Andrei Onea | e8e150d | 2019-02-18 18:27:11 +0000 | [diff] [blame] | 196 | if (parsedArgs.mHiddenApiAccessLogSampleRate != -1 |
| 197 | || parsedArgs.mHiddenApiAccessStatslogSampleRate != -1) { |
Chris Wailes | 01060e6 | 2019-02-21 13:46:52 -0800 | [diff] [blame] | 198 | return handleHiddenApiAccessLogSampleRate(zygoteServer, |
Andrei Onea | e8e150d | 2019-02-18 18:27:11 +0000 | [diff] [blame] | 199 | parsedArgs.mHiddenApiAccessLogSampleRate, |
| 200 | parsedArgs.mHiddenApiAccessStatslogSampleRate); |
Mathew Inwood | 04194fe | 2018-04-04 14:48:03 +0100 | [diff] [blame] | 201 | } |
| 202 | |
Chris Wailes | 2be2626 | 2019-01-11 16:14:43 -0800 | [diff] [blame] | 203 | if (parsedArgs.mPermittedCapabilities != 0 || parsedArgs.mEffectiveCapabilities != 0) { |
| 204 | throw new ZygoteSecurityException("Client may not specify capabilities: " |
| 205 | + "permitted=0x" + Long.toHexString(parsedArgs.mPermittedCapabilities) |
| 206 | + ", effective=0x" + Long.toHexString(parsedArgs.mEffectiveCapabilities)); |
Narayan Kamath | bf99d06 | 2017-07-05 14:45:38 +0100 | [diff] [blame] | 207 | } |
The Android Open Source Project | 9066cfe | 2009-03-03 19:31:44 -0800 | [diff] [blame] | 208 | |
Chris Wailes | 2be2626 | 2019-01-11 16:14:43 -0800 | [diff] [blame] | 209 | Zygote.applyUidSecurityPolicy(parsedArgs, peer); |
| 210 | Zygote.applyInvokeWithSecurityPolicy(parsedArgs, peer); |
Jeff Brown | ebed7d6 | 2011-05-16 17:08:42 -0700 | [diff] [blame] | 211 | |
Chris Wailes | 2be2626 | 2019-01-11 16:14:43 -0800 | [diff] [blame] | 212 | Zygote.applyDebuggerSystemProperty(parsedArgs); |
| 213 | Zygote.applyInvokeWithSystemProperty(parsedArgs); |
The Android Open Source Project | 9066cfe | 2009-03-03 19:31:44 -0800 | [diff] [blame] | 214 | |
Narayan Kamath | bf99d06 | 2017-07-05 14:45:38 +0100 | [diff] [blame] | 215 | int[][] rlimits = null; |
The Android Open Source Project | 9066cfe | 2009-03-03 19:31:44 -0800 | [diff] [blame] | 216 | |
Chris Wailes | 2be2626 | 2019-01-11 16:14:43 -0800 | [diff] [blame] | 217 | if (parsedArgs.mRLimits != null) { |
| 218 | rlimits = parsedArgs.mRLimits.toArray(Zygote.INT_ARRAY_2D); |
Narayan Kamath | bf99d06 | 2017-07-05 14:45:38 +0100 | [diff] [blame] | 219 | } |
The Android Open Source Project | 9066cfe | 2009-03-03 19:31:44 -0800 | [diff] [blame] | 220 | |
Narayan Kamath | bf99d06 | 2017-07-05 14:45:38 +0100 | [diff] [blame] | 221 | int[] fdsToIgnore = null; |
Andreas Gampe | 8dfa178 | 2017-01-05 12:45:58 -0800 | [diff] [blame] | 222 | |
Chris Wailes | 2be2626 | 2019-01-11 16:14:43 -0800 | [diff] [blame] | 223 | if (parsedArgs.mInvokeWith != null) { |
Narayan Kamath | bf99d06 | 2017-07-05 14:45:38 +0100 | [diff] [blame] | 224 | try { |
Elliott Hughes | 3fe5951 | 2014-12-12 14:07:34 -0800 | [diff] [blame] | 225 | FileDescriptor[] pipeFds = Os.pipe2(O_CLOEXEC); |
Jeff Brown | ebed7d6 | 2011-05-16 17:08:42 -0700 | [diff] [blame] | 226 | childPipeFd = pipeFds[1]; |
| 227 | serverPipeFd = pipeFds[0]; |
Narayan Kamath | 6ac7e67 | 2015-01-16 16:26:54 +0000 | [diff] [blame] | 228 | Os.fcntlInt(childPipeFd, F_SETFD, 0); |
Narayan Kamath | bf99d06 | 2017-07-05 14:45:38 +0100 | [diff] [blame] | 229 | fdsToIgnore = new int[]{childPipeFd.getInt$(), serverPipeFd.getInt$()}; |
| 230 | } catch (ErrnoException errnoEx) { |
| 231 | throw new IllegalStateException("Unable to set up pipe for invoke-with", errnoEx); |
Jeff Brown | ebed7d6 | 2011-05-16 17:08:42 -0700 | [diff] [blame] | 232 | } |
The Android Open Source Project | 9066cfe | 2009-03-03 19:31:44 -0800 | [diff] [blame] | 233 | } |
| 234 | |
Narayan Kamath | bf99d06 | 2017-07-05 14:45:38 +0100 | [diff] [blame] | 235 | /** |
| 236 | * In order to avoid leaking descriptors to the Zygote child, |
| 237 | * the native code must close the two Zygote socket descriptors |
| 238 | * in the child process before it switches from Zygote-root to |
| 239 | * the UID and privileges of the application being launched. |
| 240 | * |
| 241 | * In order to avoid "bad file descriptor" errors when the |
| 242 | * two LocalSocket objects are closed, the Posix file |
| 243 | * descriptors are released via a dup2() call which closes |
| 244 | * the socket and substitutes an open descriptor to /dev/null. |
| 245 | */ |
| 246 | |
| 247 | int [] fdsToClose = { -1, -1 }; |
| 248 | |
| 249 | FileDescriptor fd = mSocket.getFileDescriptor(); |
| 250 | |
| 251 | if (fd != null) { |
| 252 | fdsToClose[0] = fd.getInt$(); |
| 253 | } |
| 254 | |
Chris Wailes | ba4c2eb | 2019-01-11 17:13:00 -0800 | [diff] [blame] | 255 | fd = zygoteServer.getZygoteSocketFileDescriptor(); |
Narayan Kamath | bf99d06 | 2017-07-05 14:45:38 +0100 | [diff] [blame] | 256 | |
| 257 | if (fd != null) { |
| 258 | fdsToClose[1] = fd.getInt$(); |
| 259 | } |
| 260 | |
| 261 | fd = null; |
| 262 | |
Chris Wailes | 2be2626 | 2019-01-11 16:14:43 -0800 | [diff] [blame] | 263 | pid = Zygote.forkAndSpecialize(parsedArgs.mUid, parsedArgs.mGid, parsedArgs.mGids, |
| 264 | parsedArgs.mRuntimeFlags, rlimits, parsedArgs.mMountExternal, parsedArgs.mSeInfo, |
| 265 | parsedArgs.mNiceName, fdsToClose, fdsToIgnore, parsedArgs.mStartChildZygote, |
| 266 | parsedArgs.mInstructionSet, parsedArgs.mAppDataDir, parsedArgs.mPackageName, |
Sudheer Shanka | e51005d | 2019-02-24 10:24:09 -0800 | [diff] [blame] | 267 | parsedArgs.mPackagesForUid, parsedArgs.mSandboxId); |
Narayan Kamath | bf99d06 | 2017-07-05 14:45:38 +0100 | [diff] [blame] | 268 | |
Jeff Brown | ebed7d6 | 2011-05-16 17:08:42 -0700 | [diff] [blame] | 269 | try { |
| 270 | if (pid == 0) { |
| 271 | // in child |
Narayan Kamath | bf99d06 | 2017-07-05 14:45:38 +0100 | [diff] [blame] | 272 | zygoteServer.setForkChild(); |
| 273 | |
Simon Baldwin | ba816e0 | 2016-01-19 16:34:54 +0000 | [diff] [blame] | 274 | zygoteServer.closeServerSocket(); |
Jeff Brown | ebed7d6 | 2011-05-16 17:08:42 -0700 | [diff] [blame] | 275 | IoUtils.closeQuietly(serverPipeFd); |
| 276 | serverPipeFd = null; |
Jeff Brown | ebed7d6 | 2011-05-16 17:08:42 -0700 | [diff] [blame] | 277 | |
Robert Sesek | d0a190df | 2018-02-12 18:46:01 -0500 | [diff] [blame] | 278 | return handleChildProc(parsedArgs, descriptors, childPipeFd, |
Chris Wailes | 2be2626 | 2019-01-11 16:14:43 -0800 | [diff] [blame] | 279 | parsedArgs.mStartChildZygote); |
Jeff Brown | ebed7d6 | 2011-05-16 17:08:42 -0700 | [diff] [blame] | 280 | } else { |
Narayan Kamath | bf99d06 | 2017-07-05 14:45:38 +0100 | [diff] [blame] | 281 | // In the parent. A pid < 0 indicates a failure and will be handled in |
| 282 | // handleParentProc. |
Jeff Brown | ebed7d6 | 2011-05-16 17:08:42 -0700 | [diff] [blame] | 283 | IoUtils.closeQuietly(childPipeFd); |
| 284 | childPipeFd = null; |
Narayan Kamath | bf99d06 | 2017-07-05 14:45:38 +0100 | [diff] [blame] | 285 | handleParentProc(pid, descriptors, serverPipeFd); |
| 286 | return null; |
Jeff Brown | ebed7d6 | 2011-05-16 17:08:42 -0700 | [diff] [blame] | 287 | } |
| 288 | } finally { |
| 289 | IoUtils.closeQuietly(childPipeFd); |
| 290 | IoUtils.closeQuietly(serverPipeFd); |
The Android Open Source Project | 9066cfe | 2009-03-03 19:31:44 -0800 | [diff] [blame] | 291 | } |
| 292 | } |
| 293 | |
Narayan Kamath | bf99d06 | 2017-07-05 14:45:38 +0100 | [diff] [blame] | 294 | private void handleAbiListQuery() { |
Narayan Kamath | c41638c | 2014-04-07 13:56:15 +0100 | [diff] [blame] | 295 | try { |
| 296 | final byte[] abiListBytes = abiList.getBytes(StandardCharsets.US_ASCII); |
| 297 | mSocketOutStream.writeInt(abiListBytes.length); |
| 298 | mSocketOutStream.write(abiListBytes); |
Narayan Kamath | c41638c | 2014-04-07 13:56:15 +0100 | [diff] [blame] | 299 | } catch (IOException ioe) { |
Narayan Kamath | bf99d06 | 2017-07-05 14:45:38 +0100 | [diff] [blame] | 300 | throw new IllegalStateException("Error writing to command socket", ioe); |
Narayan Kamath | c41638c | 2014-04-07 13:56:15 +0100 | [diff] [blame] | 301 | } |
| 302 | } |
| 303 | |
Andreas Gampe | 8444dca | 2018-05-01 13:31:28 -0700 | [diff] [blame] | 304 | private void handlePidQuery() { |
| 305 | try { |
| 306 | String pidString = String.valueOf(Process.myPid()); |
| 307 | final byte[] pidStringBytes = pidString.getBytes(StandardCharsets.US_ASCII); |
| 308 | mSocketOutStream.writeInt(pidStringBytes.length); |
| 309 | mSocketOutStream.write(pidStringBytes); |
| 310 | } catch (IOException ioe) { |
| 311 | throw new IllegalStateException("Error writing to command socket", ioe); |
| 312 | } |
| 313 | } |
| 314 | |
Narayan Kamath | 669afcc | 2017-02-06 20:24:08 +0000 | [diff] [blame] | 315 | /** |
| 316 | * Preloads resources if the zygote is in lazily preload mode. Writes the result of the |
| 317 | * preload operation; {@code 0} when a preload was initiated due to this request and {@code 1} |
| 318 | * if no preload was initiated. The latter implies that the zygote is not configured to load |
| 319 | * resources lazy or that the zygote has already handled a previous request to handlePreload. |
| 320 | */ |
Narayan Kamath | bf99d06 | 2017-07-05 14:45:38 +0100 | [diff] [blame] | 321 | private void handlePreload() { |
Narayan Kamath | 669afcc | 2017-02-06 20:24:08 +0000 | [diff] [blame] | 322 | try { |
| 323 | if (isPreloadComplete()) { |
| 324 | mSocketOutStream.writeInt(1); |
| 325 | } else { |
| 326 | preload(); |
| 327 | mSocketOutStream.writeInt(0); |
| 328 | } |
Narayan Kamath | 669afcc | 2017-02-06 20:24:08 +0000 | [diff] [blame] | 329 | } catch (IOException ioe) { |
Narayan Kamath | bf99d06 | 2017-07-05 14:45:38 +0100 | [diff] [blame] | 330 | throw new IllegalStateException("Error writing to command socket", ioe); |
Narayan Kamath | 669afcc | 2017-02-06 20:24:08 +0000 | [diff] [blame] | 331 | } |
| 332 | } |
| 333 | |
Chris Wailes | 7e797b6 | 2019-02-22 18:29:22 -0800 | [diff] [blame] | 334 | private Runnable stateChangeWithUsapPoolReset(ZygoteServer zygoteServer, |
Chris Wailes | 01060e6 | 2019-02-21 13:46:52 -0800 | [diff] [blame] | 335 | Runnable stateChangeCode) { |
Mathew Inwood | 8faeab8 | 2018-03-16 14:26:08 +0000 | [diff] [blame] | 336 | try { |
Chris Wailes | 7e797b6 | 2019-02-22 18:29:22 -0800 | [diff] [blame] | 337 | if (zygoteServer.isUsapPoolEnabled()) { |
| 338 | Zygote.emptyUsapPool(); |
Chris Wailes | 01060e6 | 2019-02-21 13:46:52 -0800 | [diff] [blame] | 339 | } |
| 340 | |
| 341 | stateChangeCode.run(); |
| 342 | |
Chris Wailes | 7e797b6 | 2019-02-22 18:29:22 -0800 | [diff] [blame] | 343 | if (zygoteServer.isUsapPoolEnabled()) { |
Chris Wailes | 01060e6 | 2019-02-21 13:46:52 -0800 | [diff] [blame] | 344 | Runnable fpResult = |
Chris Wailes | 7e797b6 | 2019-02-22 18:29:22 -0800 | [diff] [blame] | 345 | zygoteServer.fillUsapPool( |
Chris Wailes | 01060e6 | 2019-02-21 13:46:52 -0800 | [diff] [blame] | 346 | new int[]{mSocket.getFileDescriptor().getInt$()}); |
| 347 | |
| 348 | if (fpResult != null) { |
| 349 | zygoteServer.setForkChild(); |
| 350 | return fpResult; |
| 351 | } |
| 352 | } |
| 353 | |
Mathew Inwood | 8faeab8 | 2018-03-16 14:26:08 +0000 | [diff] [blame] | 354 | mSocketOutStream.writeInt(0); |
Chris Wailes | 01060e6 | 2019-02-21 13:46:52 -0800 | [diff] [blame] | 355 | |
| 356 | return null; |
Mathew Inwood | 8faeab8 | 2018-03-16 14:26:08 +0000 | [diff] [blame] | 357 | } catch (IOException ioe) { |
| 358 | throw new IllegalStateException("Error writing to command socket", ioe); |
| 359 | } |
| 360 | } |
| 361 | |
Chris Wailes | 01060e6 | 2019-02-21 13:46:52 -0800 | [diff] [blame] | 362 | /** |
| 363 | * Makes the necessary changes to implement a new API blacklist exemption policy, and then |
| 364 | * responds to the system server, letting it know that the task has been completed. |
| 365 | * |
Chris Wailes | 7e797b6 | 2019-02-22 18:29:22 -0800 | [diff] [blame] | 366 | * This necessitates a change to the internal state of the Zygote. As such, if the USAP |
| 367 | * pool is enabled all existing USAPs have an incorrect API blacklist exemption list. To |
Chris Wailes | 01060e6 | 2019-02-21 13:46:52 -0800 | [diff] [blame] | 368 | * properly handle this request the pool must be emptied and refilled. This process can return |
| 369 | * a Runnable object that must be returned to ZygoteServer.runSelectLoop to be invoked. |
| 370 | * |
| 371 | * @param zygoteServer The server object that received the request |
| 372 | * @param exemptions The new exemption list. |
Chris Wailes | 7e797b6 | 2019-02-22 18:29:22 -0800 | [diff] [blame] | 373 | * @return A Runnable object representing a new app in any USAPs spawned from here; the |
Chris Wailes | 01060e6 | 2019-02-21 13:46:52 -0800 | [diff] [blame] | 374 | * zygote process will always receive a null value from this function. |
| 375 | */ |
| 376 | private Runnable handleApiBlacklistExemptions(ZygoteServer zygoteServer, String[] exemptions) { |
Chris Wailes | 7e797b6 | 2019-02-22 18:29:22 -0800 | [diff] [blame] | 377 | return stateChangeWithUsapPoolReset(zygoteServer, |
Chris Wailes | 01060e6 | 2019-02-21 13:46:52 -0800 | [diff] [blame] | 378 | () -> ZygoteInit.setApiBlacklistExemptions(exemptions)); |
| 379 | } |
| 380 | |
Chris Wailes | 7e797b6 | 2019-02-22 18:29:22 -0800 | [diff] [blame] | 381 | private Runnable handleUsapPoolStatusChange(ZygoteServer zygoteServer, boolean newStatus) { |
Chris Wailes | db132a3 | 2019-02-20 10:49:27 -0800 | [diff] [blame] | 382 | try { |
Chris Wailes | 7e797b6 | 2019-02-22 18:29:22 -0800 | [diff] [blame] | 383 | Runnable fpResult = zygoteServer.setUsapPoolStatus(newStatus, mSocket); |
Chris Wailes | db132a3 | 2019-02-20 10:49:27 -0800 | [diff] [blame] | 384 | |
| 385 | if (fpResult == null) { |
| 386 | mSocketOutStream.writeInt(0); |
| 387 | } else { |
| 388 | zygoteServer.setForkChild(); |
| 389 | } |
| 390 | |
| 391 | return fpResult; |
Narayan Kamath | 669afcc | 2017-02-06 20:24:08 +0000 | [diff] [blame] | 392 | } catch (IOException ioe) { |
| 393 | throw new IllegalStateException("Error writing to command socket", ioe); |
| 394 | } |
| 395 | } |
| 396 | |
Andrei Onea | 07aab08 | 2019-02-06 14:44:22 +0000 | [diff] [blame] | 397 | private static class HiddenApiUsageLogger implements VMRuntime.HiddenApiUsageLogger { |
Andrei Onea | 6cd1b70 | 2019-01-25 16:29:44 +0000 | [diff] [blame] | 398 | |
| 399 | private final MetricsLogger mMetricsLogger = new MetricsLogger(); |
Andrei Onea | 07aab08 | 2019-02-06 14:44:22 +0000 | [diff] [blame] | 400 | private static HiddenApiUsageLogger sInstance = new HiddenApiUsageLogger(); |
Andrei Onea | 31bde16 | 2019-02-15 13:50:47 +0000 | [diff] [blame] | 401 | private int mHiddenApiAccessLogSampleRate = 0; |
Andrei Onea | e8e150d | 2019-02-18 18:27:11 +0000 | [diff] [blame] | 402 | private int mHiddenApiAccessStatslogSampleRate = 0; |
Andrei Onea | 31bde16 | 2019-02-15 13:50:47 +0000 | [diff] [blame] | 403 | |
Andrei Onea | e8e150d | 2019-02-18 18:27:11 +0000 | [diff] [blame] | 404 | public static void setHiddenApiAccessLogSampleRates(int sampleRate, int newSampleRate) { |
Andrei Onea | 31bde16 | 2019-02-15 13:50:47 +0000 | [diff] [blame] | 405 | sInstance.mHiddenApiAccessLogSampleRate = sampleRate; |
Andrei Onea | e8e150d | 2019-02-18 18:27:11 +0000 | [diff] [blame] | 406 | sInstance.mHiddenApiAccessStatslogSampleRate = newSampleRate; |
Andrei Onea | 31bde16 | 2019-02-15 13:50:47 +0000 | [diff] [blame] | 407 | } |
Andrei Onea | 07aab08 | 2019-02-06 14:44:22 +0000 | [diff] [blame] | 408 | |
| 409 | public static HiddenApiUsageLogger getInstance() { |
| 410 | return HiddenApiUsageLogger.sInstance; |
| 411 | } |
Andrei Onea | 6cd1b70 | 2019-01-25 16:29:44 +0000 | [diff] [blame] | 412 | |
Andrei Onea | 31bde16 | 2019-02-15 13:50:47 +0000 | [diff] [blame] | 413 | public void hiddenApiUsed(int sampledValue, String packageName, String signature, |
Andrei Onea | 6cd1b70 | 2019-01-25 16:29:44 +0000 | [diff] [blame] | 414 | int accessMethod, boolean accessDenied) { |
Andrei Onea | 31bde16 | 2019-02-15 13:50:47 +0000 | [diff] [blame] | 415 | if (sampledValue < mHiddenApiAccessLogSampleRate) { |
| 416 | logUsage(packageName, signature, accessMethod, accessDenied); |
| 417 | } |
Andrei Onea | e8e150d | 2019-02-18 18:27:11 +0000 | [diff] [blame] | 418 | if (sampledValue < mHiddenApiAccessStatslogSampleRate) { |
| 419 | newLogUsage(signature, accessMethod, accessDenied); |
| 420 | } |
Andrei Onea | 31bde16 | 2019-02-15 13:50:47 +0000 | [diff] [blame] | 421 | } |
| 422 | |
| 423 | private void logUsage(String packageName, String signature, int accessMethod, |
| 424 | boolean accessDenied) { |
Andrei Onea | 6cd1b70 | 2019-01-25 16:29:44 +0000 | [diff] [blame] | 425 | int accessMethodMetric = HiddenApiUsageLogger.ACCESS_METHOD_NONE; |
| 426 | switch(accessMethod) { |
| 427 | case HiddenApiUsageLogger.ACCESS_METHOD_NONE: |
| 428 | accessMethodMetric = MetricsEvent.ACCESS_METHOD_NONE; |
| 429 | break; |
| 430 | case HiddenApiUsageLogger.ACCESS_METHOD_REFLECTION: |
| 431 | accessMethodMetric = MetricsEvent.ACCESS_METHOD_REFLECTION; |
| 432 | break; |
| 433 | case HiddenApiUsageLogger.ACCESS_METHOD_JNI: |
| 434 | accessMethodMetric = MetricsEvent.ACCESS_METHOD_JNI; |
| 435 | break; |
| 436 | case HiddenApiUsageLogger.ACCESS_METHOD_LINKING: |
| 437 | accessMethodMetric = MetricsEvent.ACCESS_METHOD_LINKING; |
| 438 | break; |
| 439 | } |
| 440 | LogMaker logMaker = new LogMaker(MetricsEvent.ACTION_HIDDEN_API_ACCESSED) |
| 441 | .setPackageName(packageName) |
| 442 | .addTaggedData(MetricsEvent.FIELD_HIDDEN_API_SIGNATURE, signature) |
| 443 | .addTaggedData(MetricsEvent.FIELD_HIDDEN_API_ACCESS_METHOD, |
| 444 | accessMethodMetric); |
| 445 | if (accessDenied) { |
| 446 | logMaker.addTaggedData(MetricsEvent.FIELD_HIDDEN_API_ACCESS_DENIED, 1); |
| 447 | } |
| 448 | mMetricsLogger.write(logMaker); |
| 449 | } |
Andrei Onea | e8e150d | 2019-02-18 18:27:11 +0000 | [diff] [blame] | 450 | |
| 451 | private void newLogUsage(String signature, int accessMethod, boolean accessDenied) { |
| 452 | int accessMethodProto = StatsLog.HIDDEN_API_USED__ACCESS_METHOD__NONE; |
| 453 | switch(accessMethod) { |
| 454 | case HiddenApiUsageLogger.ACCESS_METHOD_NONE: |
| 455 | accessMethodProto = StatsLog.HIDDEN_API_USED__ACCESS_METHOD__NONE; |
| 456 | break; |
| 457 | case HiddenApiUsageLogger.ACCESS_METHOD_REFLECTION: |
| 458 | accessMethodProto = StatsLog.HIDDEN_API_USED__ACCESS_METHOD__REFLECTION; |
| 459 | break; |
| 460 | case HiddenApiUsageLogger.ACCESS_METHOD_JNI: |
| 461 | accessMethodProto = StatsLog.HIDDEN_API_USED__ACCESS_METHOD__JNI; |
| 462 | break; |
| 463 | case HiddenApiUsageLogger.ACCESS_METHOD_LINKING: |
| 464 | accessMethodProto = StatsLog.HIDDEN_API_USED__ACCESS_METHOD__LINKING; |
| 465 | break; |
| 466 | } |
| 467 | int uid = Process.myUid(); |
| 468 | StatsLog.write(StatsLog.HIDDEN_API_USED, uid, signature, |
| 469 | accessMethodProto, accessDenied); |
| 470 | } |
Andrei Onea | 6cd1b70 | 2019-01-25 16:29:44 +0000 | [diff] [blame] | 471 | } |
| 472 | |
Chris Wailes | 01060e6 | 2019-02-21 13:46:52 -0800 | [diff] [blame] | 473 | /** |
| 474 | * Changes the API access log sample rate for the Zygote and processes spawned from it. |
| 475 | * |
Chris Wailes | 7e797b6 | 2019-02-22 18:29:22 -0800 | [diff] [blame] | 476 | * This necessitates a change to the internal state of the Zygote. As such, if the USAP |
| 477 | * pool is enabled all existing USAPs have an incorrect API access log sample rate. To |
Chris Wailes | 01060e6 | 2019-02-21 13:46:52 -0800 | [diff] [blame] | 478 | * properly handle this request the pool must be emptied and refilled. This process can return |
| 479 | * a Runnable object that must be returned to ZygoteServer.runSelectLoop to be invoked. |
| 480 | * |
| 481 | * @param zygoteServer The server object that received the request |
Andrei Onea | e8e150d | 2019-02-18 18:27:11 +0000 | [diff] [blame] | 482 | * @param samplingRate The new sample rate for regular logging |
| 483 | * @param statsdSamplingRate The new sample rate for statslog logging |
Chris Wailes | 01060e6 | 2019-02-21 13:46:52 -0800 | [diff] [blame] | 484 | * @return A Runnable object representing a new app in any blastulas spawned from here; the |
| 485 | * zygote process will always receive a null value from this function. |
| 486 | */ |
| 487 | private Runnable handleHiddenApiAccessLogSampleRate(ZygoteServer zygoteServer, |
Andrei Onea | e8e150d | 2019-02-18 18:27:11 +0000 | [diff] [blame] | 488 | int samplingRate, int statsdSamplingRate) { |
Chris Wailes | 7e797b6 | 2019-02-22 18:29:22 -0800 | [diff] [blame] | 489 | return stateChangeWithUsapPoolReset(zygoteServer, () -> { |
Andrei Onea | e8e150d | 2019-02-18 18:27:11 +0000 | [diff] [blame] | 490 | int maxSamplingRate = Math.max(samplingRate, statsdSamplingRate); |
| 491 | ZygoteInit.setHiddenApiAccessLogSampleRate(maxSamplingRate); |
Chris Wailes | 7e797b6 | 2019-02-22 18:29:22 -0800 | [diff] [blame] | 492 | HiddenApiUsageLogger.setHiddenApiAccessLogSampleRates(samplingRate, statsdSamplingRate); |
Andrei Onea | 07aab08 | 2019-02-06 14:44:22 +0000 | [diff] [blame] | 493 | ZygoteInit.setHiddenApiUsageLogger(HiddenApiUsageLogger.getInstance()); |
Chris Wailes | 01060e6 | 2019-02-21 13:46:52 -0800 | [diff] [blame] | 494 | }); |
Mathew Inwood | 04194fe | 2018-04-04 14:48:03 +0100 | [diff] [blame] | 495 | } |
| 496 | |
Narayan Kamath | 669afcc | 2017-02-06 20:24:08 +0000 | [diff] [blame] | 497 | protected void preload() { |
| 498 | ZygoteInit.lazyPreload(); |
| 499 | } |
| 500 | |
| 501 | protected boolean isPreloadComplete() { |
| 502 | return ZygoteInit.isPreloadComplete(); |
Torne (Richard Coles) | bb65893 | 2017-01-05 16:11:06 +0000 | [diff] [blame] | 503 | } |
| 504 | |
Narayan Kamath | 24a3306 | 2017-07-03 14:12:26 +0100 | [diff] [blame] | 505 | protected DataOutputStream getSocketOutputStream() { |
| 506 | return mSocketOutStream; |
| 507 | } |
| 508 | |
Torne (Richard Coles) | f4f647e | 2018-02-21 16:12:36 -0500 | [diff] [blame] | 509 | protected void handlePreloadPackage(String packagePath, String libsPath, String libFileName, |
| 510 | String cacheKey) { |
Martijn Coenen | 7e6fa67 | 2018-11-05 11:45:26 +0100 | [diff] [blame] | 511 | throw new RuntimeException("Zygote does not support package preloading"); |
| 512 | } |
| 513 | |
| 514 | protected boolean canPreloadApp() { |
| 515 | return false; |
| 516 | } |
| 517 | |
| 518 | protected void handlePreloadApp(ApplicationInfo aInfo) { |
| 519 | throw new RuntimeException("Zygote does not support app preloading"); |
Robert Sesek | ded2098 | 2016-08-15 13:59:13 -0400 | [diff] [blame] | 520 | } |
| 521 | |
The Android Open Source Project | 9066cfe | 2009-03-03 19:31:44 -0800 | [diff] [blame] | 522 | /** |
| 523 | * Closes socket associated with this connection. |
| 524 | */ |
| 525 | void closeSocket() { |
| 526 | try { |
| 527 | mSocket.close(); |
| 528 | } catch (IOException ex) { |
| 529 | Log.e(TAG, "Exception while closing command " |
| 530 | + "socket in parent", ex); |
| 531 | } |
| 532 | } |
| 533 | |
Narayan Kamath | bf99d06 | 2017-07-05 14:45:38 +0100 | [diff] [blame] | 534 | boolean isClosedByPeer() { |
| 535 | return isEof; |
| 536 | } |
| 537 | |
The Android Open Source Project | 9066cfe | 2009-03-03 19:31:44 -0800 | [diff] [blame] | 538 | /** |
The Android Open Source Project | 9066cfe | 2009-03-03 19:31:44 -0800 | [diff] [blame] | 539 | * Handles post-fork setup of child proc, closing sockets as appropriate, |
| 540 | * reopen stdio as appropriate, and ultimately throwing MethodAndArgsCaller |
| 541 | * if successful or returning if failed. |
| 542 | * |
| 543 | * @param parsedArgs non-null; zygote args |
| 544 | * @param descriptors null-ok; new file descriptors for stdio if available. |
Jeff Brown | ebed7d6 | 2011-05-16 17:08:42 -0700 | [diff] [blame] | 545 | * @param pipeFd null-ok; pipe for communication back to Zygote. |
Robert Sesek | d0a190df | 2018-02-12 18:46:01 -0500 | [diff] [blame] | 546 | * @param isZygote whether this new child process is itself a new Zygote. |
The Android Open Source Project | 9066cfe | 2009-03-03 19:31:44 -0800 | [diff] [blame] | 547 | */ |
Chris Wailes | 2be2626 | 2019-01-11 16:14:43 -0800 | [diff] [blame] | 548 | private Runnable handleChildProc(ZygoteArguments parsedArgs, FileDescriptor[] descriptors, |
Robert Sesek | d0a190df | 2018-02-12 18:46:01 -0500 | [diff] [blame] | 549 | FileDescriptor pipeFd, boolean isZygote) { |
Dave Platt | 89d4c89 | 2014-02-05 17:06:42 -0800 | [diff] [blame] | 550 | /** |
| 551 | * By the time we get here, the native code has closed the two actual Zygote |
| 552 | * socket connections, and substituted /dev/null in their place. The LocalSocket |
| 553 | * objects still need to be closed properly. |
| 554 | */ |
| 555 | |
Nick Kralevich | 468f6c1 | 2013-01-30 08:45:03 -0800 | [diff] [blame] | 556 | closeSocket(); |
The Android Open Source Project | 9066cfe | 2009-03-03 19:31:44 -0800 | [diff] [blame] | 557 | if (descriptors != null) { |
| 558 | try { |
Elliott Hughes | dac83f5 | 2014-12-15 11:00:25 -0800 | [diff] [blame] | 559 | Os.dup2(descriptors[0], STDIN_FILENO); |
| 560 | Os.dup2(descriptors[1], STDOUT_FILENO); |
| 561 | Os.dup2(descriptors[2], STDERR_FILENO); |
The Android Open Source Project | 9066cfe | 2009-03-03 19:31:44 -0800 | [diff] [blame] | 562 | |
| 563 | for (FileDescriptor fd: descriptors) { |
Jeff Brown | ebed7d6 | 2011-05-16 17:08:42 -0700 | [diff] [blame] | 564 | IoUtils.closeQuietly(fd); |
The Android Open Source Project | 9066cfe | 2009-03-03 19:31:44 -0800 | [diff] [blame] | 565 | } |
Elliott Hughes | dac83f5 | 2014-12-15 11:00:25 -0800 | [diff] [blame] | 566 | } catch (ErrnoException ex) { |
The Android Open Source Project | 9066cfe | 2009-03-03 19:31:44 -0800 | [diff] [blame] | 567 | Log.e(TAG, "Error reopening stdio", ex); |
| 568 | } |
| 569 | } |
| 570 | |
Chris Wailes | 2be2626 | 2019-01-11 16:14:43 -0800 | [diff] [blame] | 571 | if (parsedArgs.mNiceName != null) { |
| 572 | Process.setArgV0(parsedArgs.mNiceName); |
Jeff Brown | ebed7d6 | 2011-05-16 17:08:42 -0700 | [diff] [blame] | 573 | } |
| 574 | |
Narayan Kamath | fbb32f6 | 2015-06-12 15:34:35 +0100 | [diff] [blame] | 575 | // End of the postFork event. |
| 576 | Trace.traceEnd(Trace.TRACE_TAG_ACTIVITY_MANAGER); |
Chris Wailes | 2be2626 | 2019-01-11 16:14:43 -0800 | [diff] [blame] | 577 | if (parsedArgs.mInvokeWith != null) { |
| 578 | WrapperInit.execApplication(parsedArgs.mInvokeWith, |
| 579 | parsedArgs.mNiceName, parsedArgs.mTargetSdkVersion, |
Narayan Kamath | 37ad4b0 | 2015-01-19 16:05:24 +0000 | [diff] [blame] | 580 | VMRuntime.getCurrentInstructionSet(), |
Chris Wailes | 2be2626 | 2019-01-11 16:14:43 -0800 | [diff] [blame] | 581 | pipeFd, parsedArgs.mRemainingArgs); |
Narayan Kamath | bf99d06 | 2017-07-05 14:45:38 +0100 | [diff] [blame] | 582 | |
| 583 | // Should not get here. |
| 584 | throw new IllegalStateException("WrapperInit.execApplication unexpectedly returned"); |
Jeff Brown | ebed7d6 | 2011-05-16 17:08:42 -0700 | [diff] [blame] | 585 | } else { |
Robert Sesek | d0a190df | 2018-02-12 18:46:01 -0500 | [diff] [blame] | 586 | if (!isZygote) { |
Chris Wailes | 2be2626 | 2019-01-11 16:14:43 -0800 | [diff] [blame] | 587 | return ZygoteInit.zygoteInit(parsedArgs.mTargetSdkVersion, |
| 588 | parsedArgs.mRemainingArgs, null /* classLoader */); |
Robert Sesek | d0a190df | 2018-02-12 18:46:01 -0500 | [diff] [blame] | 589 | } else { |
Chris Wailes | 2be2626 | 2019-01-11 16:14:43 -0800 | [diff] [blame] | 590 | return ZygoteInit.childZygoteInit(parsedArgs.mTargetSdkVersion, |
| 591 | parsedArgs.mRemainingArgs, null /* classLoader */); |
Robert Sesek | d0a190df | 2018-02-12 18:46:01 -0500 | [diff] [blame] | 592 | } |
The Android Open Source Project | 9066cfe | 2009-03-03 19:31:44 -0800 | [diff] [blame] | 593 | } |
| 594 | } |
| 595 | |
| 596 | /** |
| 597 | * Handles post-fork cleanup of parent proc |
| 598 | * |
| 599 | * @param pid != 0; pid of child if > 0 or indication of failed fork |
| 600 | * if < 0; |
| 601 | * @param descriptors null-ok; file descriptors for child's new stdio if |
| 602 | * specified. |
Jeff Brown | ebed7d6 | 2011-05-16 17:08:42 -0700 | [diff] [blame] | 603 | * @param pipeFd null-ok; pipe for communication with child. |
The Android Open Source Project | 9066cfe | 2009-03-03 19:31:44 -0800 | [diff] [blame] | 604 | */ |
Narayan Kamath | bf99d06 | 2017-07-05 14:45:38 +0100 | [diff] [blame] | 605 | private void handleParentProc(int pid, FileDescriptor[] descriptors, FileDescriptor pipeFd) { |
Jeff Brown | ebed7d6 | 2011-05-16 17:08:42 -0700 | [diff] [blame] | 606 | if (pid > 0) { |
| 607 | setChildPgid(pid); |
| 608 | } |
| 609 | |
| 610 | if (descriptors != null) { |
| 611 | for (FileDescriptor fd: descriptors) { |
| 612 | IoUtils.closeQuietly(fd); |
The Android Open Source Project | 9066cfe | 2009-03-03 19:31:44 -0800 | [diff] [blame] | 613 | } |
| 614 | } |
| 615 | |
Jeff Brown | 3f9dd28 | 2011-07-08 20:02:19 -0700 | [diff] [blame] | 616 | boolean usingWrapper = false; |
Jeff Brown | ebed7d6 | 2011-05-16 17:08:42 -0700 | [diff] [blame] | 617 | if (pipeFd != null && pid > 0) { |
Jeff Brown | ebed7d6 | 2011-05-16 17:08:42 -0700 | [diff] [blame] | 618 | int innerPid = -1; |
| 619 | try { |
Andreas Gampe | cbc4214 | 2017-07-12 19:17:52 -0700 | [diff] [blame] | 620 | // Do a busy loop here. We can't guarantee that a failure (and thus an exception |
| 621 | // bail) happens in a timely manner. |
Andreas Gampe | cbc4214 | 2017-07-12 19:17:52 -0700 | [diff] [blame] | 622 | final int BYTES_REQUIRED = 4; // Bytes in an int. |
| 623 | |
| 624 | StructPollfd fds[] = new StructPollfd[] { |
| 625 | new StructPollfd() |
| 626 | }; |
| 627 | |
| 628 | byte data[] = new byte[BYTES_REQUIRED]; |
| 629 | |
Andreas Gampe | 27497c6 | 2017-07-21 11:41:00 -0700 | [diff] [blame] | 630 | int remainingSleepTime = WRAPPED_PID_TIMEOUT_MILLIS; |
Andreas Gampe | cbc4214 | 2017-07-12 19:17:52 -0700 | [diff] [blame] | 631 | int dataIndex = 0; |
| 632 | long startTime = System.nanoTime(); |
| 633 | |
| 634 | while (dataIndex < data.length && remainingSleepTime > 0) { |
| 635 | fds[0].fd = pipeFd; |
| 636 | fds[0].events = (short) POLLIN; |
| 637 | fds[0].revents = 0; |
| 638 | fds[0].userData = null; |
| 639 | |
| 640 | int res = android.system.Os.poll(fds, remainingSleepTime); |
| 641 | long endTime = System.nanoTime(); |
Andreas Gampe | 27497c6 | 2017-07-21 11:41:00 -0700 | [diff] [blame] | 642 | int elapsedTimeMs = (int)((endTime - startTime) / 1000000l); |
| 643 | remainingSleepTime = WRAPPED_PID_TIMEOUT_MILLIS - elapsedTimeMs; |
Andreas Gampe | cbc4214 | 2017-07-12 19:17:52 -0700 | [diff] [blame] | 644 | |
| 645 | if (res > 0) { |
| 646 | if ((fds[0].revents & POLLIN) != 0) { |
| 647 | // Only read one byte, so as not to block. |
| 648 | int readBytes = android.system.Os.read(pipeFd, data, dataIndex, 1); |
| 649 | if (readBytes < 0) { |
| 650 | throw new RuntimeException("Some error"); |
| 651 | } |
| 652 | dataIndex += readBytes; |
| 653 | } else { |
| 654 | // Error case. revents should contain one of the error bits. |
| 655 | break; |
| 656 | } |
| 657 | } else if (res == 0) { |
| 658 | Log.w(TAG, "Timed out waiting for child."); |
| 659 | } |
The Android Open Source Project | 9066cfe | 2009-03-03 19:31:44 -0800 | [diff] [blame] | 660 | } |
Andreas Gampe | cbc4214 | 2017-07-12 19:17:52 -0700 | [diff] [blame] | 661 | |
| 662 | if (dataIndex == data.length) { |
| 663 | DataInputStream is = new DataInputStream(new ByteArrayInputStream(data)); |
| 664 | innerPid = is.readInt(); |
| 665 | } |
| 666 | |
| 667 | if (innerPid == -1) { |
| 668 | Log.w(TAG, "Error reading pid from wrapped process, child may have died"); |
| 669 | } |
| 670 | } catch (Exception ex) { |
| 671 | Log.w(TAG, "Error reading pid from wrapped process, child may have died", ex); |
The Android Open Source Project | 9066cfe | 2009-03-03 19:31:44 -0800 | [diff] [blame] | 672 | } |
Jeff Brown | ebed7d6 | 2011-05-16 17:08:42 -0700 | [diff] [blame] | 673 | |
| 674 | // Ensure that the pid reported by the wrapped process is either the |
| 675 | // child process that we forked, or a descendant of it. |
| 676 | if (innerPid > 0) { |
| 677 | int parentPid = innerPid; |
| 678 | while (parentPid > 0 && parentPid != pid) { |
| 679 | parentPid = Process.getParentPid(parentPid); |
| 680 | } |
| 681 | if (parentPid > 0) { |
| 682 | Log.i(TAG, "Wrapped process has pid " + innerPid); |
| 683 | pid = innerPid; |
Jeff Brown | 3f9dd28 | 2011-07-08 20:02:19 -0700 | [diff] [blame] | 684 | usingWrapper = true; |
Jeff Brown | ebed7d6 | 2011-05-16 17:08:42 -0700 | [diff] [blame] | 685 | } else { |
| 686 | Log.w(TAG, "Wrapped process reported a pid that is not a child of " |
| 687 | + "the process that we forked: childPid=" + pid |
| 688 | + " innerPid=" + innerPid); |
| 689 | } |
| 690 | } |
The Android Open Source Project | 9066cfe | 2009-03-03 19:31:44 -0800 | [diff] [blame] | 691 | } |
| 692 | |
| 693 | try { |
| 694 | mSocketOutStream.writeInt(pid); |
Jeff Brown | 3f9dd28 | 2011-07-08 20:02:19 -0700 | [diff] [blame] | 695 | mSocketOutStream.writeBoolean(usingWrapper); |
The Android Open Source Project | 9066cfe | 2009-03-03 19:31:44 -0800 | [diff] [blame] | 696 | } catch (IOException ex) { |
Narayan Kamath | bf99d06 | 2017-07-05 14:45:38 +0100 | [diff] [blame] | 697 | throw new IllegalStateException("Error writing to command socket", ex); |
The Android Open Source Project | 9066cfe | 2009-03-03 19:31:44 -0800 | [diff] [blame] | 698 | } |
The Android Open Source Project | 9066cfe | 2009-03-03 19:31:44 -0800 | [diff] [blame] | 699 | } |
| 700 | |
Jeff Brown | ebed7d6 | 2011-05-16 17:08:42 -0700 | [diff] [blame] | 701 | private void setChildPgid(int pid) { |
| 702 | // Try to move the new child into the peer's process group. |
| 703 | try { |
Elliott Hughes | 26b56e6 | 2014-12-17 12:28:29 -0800 | [diff] [blame] | 704 | Os.setpgid(pid, Os.getpgid(peer.getPid())); |
| 705 | } catch (ErrnoException ex) { |
Jeff Brown | ebed7d6 | 2011-05-16 17:08:42 -0700 | [diff] [blame] | 706 | // This exception is expected in the case where |
| 707 | // the peer is not in our session |
| 708 | // TODO get rid of this log message in the case where |
| 709 | // getsid(0) != getsid(peer.getPid()) |
| 710 | Log.i(TAG, "Zygote: setpgid failed. This is " |
| 711 | + "normal if peer is not in our session"); |
| 712 | } |
| 713 | } |
The Android Open Source Project | 9066cfe | 2009-03-03 19:31:44 -0800 | [diff] [blame] | 714 | } |