Gitiles
Code Review Sign In
gerrit-public.fairphone.software / platform / frameworks / base / 62f5c178378be82d15fcb6d0b3a95be154f062bd / . / services / core / java / com / android / server / NetworkManagementService.java
blob: 74328c0b55d9cbbfde8b3d99b09cb6b72304bd33 [file] [log] [blame]
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]1/*
2 * Copyright (C) 2007 The Android Open Source Project
3 *
4 * Licensed under the Apache License, Version 2.0 (the "License");
5 * you may not use this file except in compliance with the License.
6 * You may obtain a copy of the License at
7 *
8 * http://www.apache.org/licenses/LICENSE-2.0
9 *
10 * Unless required by applicable law or agreed to in writing, software
11 * distributed under the License is distributed on an "AS IS" BASIS,
12 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13 * See the License for the specific language governing permissions and
14 * limitations under the License.
15 */
16
17package com.android.server;
18
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]19import static android.Manifest.permission.CONNECTIVITY_INTERNAL;
Jeff Sharkey47eb1022011-08-25 17:48:52 -0700[diff] [blame]20import static android.Manifest.permission.DUMP;
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]21import static android.Manifest.permission.SHUTDOWN;
Xiaohui Chenb41c9f72015-06-17 15:55:37 -0700[diff] [blame]22import static android.net.NetworkPolicyManager.FIREWALL_CHAIN_DOZABLE;
23import static android.net.NetworkPolicyManager.FIREWALL_CHAIN_NAME_DOZABLE;
24import static android.net.NetworkPolicyManager.FIREWALL_CHAIN_NAME_NONE;
Felipe Leme011b98f2016-02-10 17:28:31 -0800[diff] [blame]25import static android.net.NetworkPolicyManager.FIREWALL_CHAIN_NAME_POWERSAVE;
Xiaohui Chenb41c9f72015-06-17 15:55:37 -0700[diff] [blame]26import static android.net.NetworkPolicyManager.FIREWALL_CHAIN_NAME_STANDBY;
27import static android.net.NetworkPolicyManager.FIREWALL_CHAIN_NONE;
Felipe Leme011b98f2016-02-10 17:28:31 -0800[diff] [blame]28import static android.net.NetworkPolicyManager.FIREWALL_CHAIN_POWERSAVE;
Xiaohui Chenb41c9f72015-06-17 15:55:37 -0700[diff] [blame]29import static android.net.NetworkPolicyManager.FIREWALL_CHAIN_STANDBY;
Sudheer Shanka62f5c172017-03-17 16:25:55 -0700[diff] [blame^]30import static android.net.NetworkPolicyManager.FIREWALL_RULE_ALLOW;
Xiaohui Chenb41c9f72015-06-17 15:55:37 -0700[diff] [blame]31import static android.net.NetworkPolicyManager.FIREWALL_RULE_DEFAULT;
Sudheer Shanka62f5c172017-03-17 16:25:55 -0700[diff] [blame^]32import static android.net.NetworkPolicyManager.FIREWALL_RULE_DENY;
Xiaohui Chenb41c9f72015-06-17 15:55:37 -0700[diff] [blame]33import static android.net.NetworkPolicyManager.FIREWALL_TYPE_BLACKLIST;
34import static android.net.NetworkPolicyManager.FIREWALL_TYPE_WHITELIST;
Jeff Sharkeyb5d55e32011-08-10 17:53:27 -0700[diff] [blame]35import static android.net.NetworkStats.SET_DEFAULT;
Dianne Hackbornd0c5b9a2014-02-21 16:19:05 -0800[diff] [blame]36import static android.net.NetworkStats.TAG_ALL;
Jeff Sharkey1b5a2a92011-06-18 18:34:16 -0700[diff] [blame]37import static android.net.NetworkStats.TAG_NONE;
38import static android.net.NetworkStats.UID_ALL;
Jeff Sharkeyae2c1812011-10-04 13:11:40 -0700[diff] [blame]39import static android.net.TrafficStats.UID_TETHERING;
Lorenzo Colitti79751842013-02-28 16:16:03 +0900[diff] [blame]40import static com.android.server.NetworkManagementService.NetdResponseCode.ClatdStatusResult;
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]41import static com.android.server.NetworkManagementService.NetdResponseCode.InterfaceGetCfgResult;
42import static com.android.server.NetworkManagementService.NetdResponseCode.InterfaceListResult;
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]43import static com.android.server.NetworkManagementService.NetdResponseCode.IpFwdStatusResult;
44import static com.android.server.NetworkManagementService.NetdResponseCode.TetherDnsFwdTgtListResult;
45import static com.android.server.NetworkManagementService.NetdResponseCode.TetherInterfaceListResult;
46import static com.android.server.NetworkManagementService.NetdResponseCode.TetherStatusResult;
Jeff Sharkeye4984be2013-09-10 21:03:27 -0700[diff] [blame]47import static com.android.server.NetworkManagementService.NetdResponseCode.TetheringStatsListResult;
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]48import static com.android.server.NetworkManagementService.NetdResponseCode.TtyListResult;
Jeff Sharkeya63ba592011-07-19 23:47:12 -0700[diff] [blame]49import static com.android.server.NetworkManagementSocketTagger.PROP_QTAGUID_ENABLED;
Erik Klineb2cfdfb2017-01-18 20:54:14 +0900[diff] [blame]50
Xiaohui Chenb41c9f72015-06-17 15:55:37 -0700[diff] [blame]51import android.annotation.NonNull;
Sudheer Shankadc589ac2016-11-10 15:30:17 -0800[diff] [blame]52import android.app.ActivityManager;
Pierre Imai8e48e672016-04-21 13:30:43 +0900[diff] [blame]53import android.content.ContentResolver;
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]54import android.content.Context;
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]55import android.net.ConnectivityManager;
Lorenzo Colitti58967ba2016-02-02 17:21:21 +0900[diff] [blame]56import android.net.INetd;
San Mehat4d02d002010-01-22 16:07:46 -0800[diff] [blame]57import android.net.INetworkManagementEventObserver;
Jeff Sharkeyeedcb952011-05-17 14:55:15 -0700[diff] [blame]58import android.net.InterfaceConfiguration;
Lorenzo Colittic18cbfd2014-06-13 21:21:03 +0900[diff] [blame]59import android.net.IpPrefix;
Robert Greenwalted126402011-01-28 15:34:55 -0800[diff] [blame]60import android.net.LinkAddress;
Lorenzo Colittib57edc52014-08-22 17:10:50 -0700[diff] [blame]61import android.net.Network;
Amith Yamasani15e472352015-04-24 19:06:07 -0700[diff] [blame]62import android.net.NetworkPolicyManager;
Jeff Sharkeyeedcb952011-05-17 14:55:15 -0700[diff] [blame]63import android.net.NetworkStats;
Robert Greenwalted126402011-01-28 15:34:55 -0800[diff] [blame]64import android.net.NetworkUtils;
Robert Greenwalt59b1a4e2011-05-10 15:05:02 -0700[diff] [blame]65import android.net.RouteInfo;
Paul Jensen6bc2c2c2014-05-07 15:27:40 -0400[diff] [blame]66import android.net.UidRange;
Irfan Sheriff9ab518ad2010-03-12 15:48:17 -0800[diff] [blame]67import android.net.wifi.WifiConfiguration;
68import android.net.wifi.WifiConfiguration.KeyMgmt;
Dianne Hackborn91268cf2013-06-13 19:06:50 -0700[diff] [blame]69import android.os.BatteryStats;
Jeff Sharkeyf56e2432012-09-06 17:54:29 -0700[diff] [blame]70import android.os.Binder;
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]71import android.os.Handler;
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]72import android.os.INetworkActivityListener;
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]73import android.os.INetworkManagementService;
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]74import android.os.PowerManager;
Jeff Sharkeyf56e2432012-09-06 17:54:29 -0700[diff] [blame]75import android.os.Process;
Jeff Sharkey3df273e2011-12-15 15:47:12 -0800[diff] [blame]76import android.os.RemoteCallbackList;
77import android.os.RemoteException;
Jeff Sharkey7a1c3fc2013-06-04 12:29:00 -0700[diff] [blame]78import android.os.ServiceManager;
Lorenzo Colitti4cb42402016-04-24 12:52:00 +0900[diff] [blame]79import android.os.ServiceSpecificException;
Jeff Sharkey605eb792014-11-04 13:34:06 -0800[diff] [blame]80import android.os.StrictMode;
Jeff Sharkey9a13f362011-04-26 16:25:36 -0700[diff] [blame]81import android.os.SystemClock;
Marco Nelissen62dbb222010-02-18 10:56:30 -0800[diff] [blame]82import android.os.SystemProperties;
Felipe Leme29e72ea2016-09-08 13:26:55 -0700[diff] [blame]83import android.os.Trace;
Pierre Imai8e48e672016-04-21 13:30:43 +0900[diff] [blame]84import android.provider.Settings;
Dianne Hackborn2ffa11e2014-04-21 15:56:18 -0700[diff] [blame]85import android.telephony.DataConnectionRealTimeInfo;
86import android.telephony.PhoneStateListener;
Wink Savillefb40dd42014-06-12 17:02:31 -0700[diff] [blame]87import android.telephony.SubscriptionManager;
Wink Saville67e07892014-06-18 16:43:14 -0700[diff] [blame]88import android.telephony.TelephonyManager;
Irfan Sheriff9ab518ad2010-03-12 15:48:17 -0800[diff] [blame]89import android.util.Log;
Joe Onorato8a9b2202010-02-26 18:56:32 -0800[diff] [blame]90import android.util.Slog;
Jeff Sharkeyb3f19ca2011-06-29 23:54:13 -0700[diff] [blame]91import android.util.SparseBooleanArray;
Jeff Sharkey605eb792014-11-04 13:34:06 -0800[diff] [blame]92import android.util.SparseIntArray;
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]93
Jeff Sharkey605eb792014-11-04 13:34:06 -0800[diff] [blame]94import com.android.internal.annotations.GuardedBy;
Sudheer Shanka62f5c172017-03-17 16:25:55 -0700[diff] [blame^]95import com.android.internal.annotations.VisibleForTesting;
Jeff Sharkey7a1c3fc2013-06-04 12:29:00 -0700[diff] [blame]96import com.android.internal.app.IBatteryStats;
Jeff Sharkey1059c3c2011-10-04 16:54:49 -0700[diff] [blame]97import com.android.internal.net.NetworkStatsFactory;
Jeff Sharkey605eb792014-11-04 13:34:06 -0800[diff] [blame]98import com.android.internal.util.HexDump;
Jeff Sharkeyc268f0b2012-08-24 10:25:31 -0700[diff] [blame]99import com.android.internal.util.Preconditions;
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]100import com.android.server.NativeDaemonConnector.Command;
Jeff Sharkey56cd6462013-06-07 15:09:15 -0700[diff] [blame]101import com.android.server.NativeDaemonConnector.SensitiveArg;
Jeff Sharkey69ddab42012-08-25 00:05:46 -0700[diff] [blame]102import com.android.server.net.LockdownVpnTracker;
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]103import com.google.android.collect.Maps;
Jeff Sharkey4414cea2011-06-24 17:05:24 -0700[diff] [blame]104
Robert Greenwalt59b1a4e2011-05-10 15:05:02 -0700[diff] [blame]105import java.io.BufferedReader;
106import java.io.DataInputStream;
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]107import java.io.File;
Jeff Sharkey47eb1022011-08-25 17:48:52 -0700[diff] [blame]108import java.io.FileDescriptor;
Jeff Sharkey9a13f362011-04-26 16:25:36 -0700[diff] [blame]109import java.io.FileInputStream;
Jeff Sharkey9a13f362011-04-26 16:25:36 -0700[diff] [blame]110import java.io.IOException;
Jeff Sharkey9a13f362011-04-26 16:25:36 -0700[diff] [blame]111import java.io.InputStreamReader;
Jeff Sharkey47eb1022011-08-25 17:48:52 -0700[diff] [blame]112import java.io.PrintWriter;
Jeff Sharkeyeedcb952011-05-17 14:55:15 -0700[diff] [blame]113import java.net.InetAddress;
Robert Greenwalt3b28e9a2011-11-02 14:37:19 -0700[diff] [blame]114import java.net.InterfaceAddress;
115import java.net.NetworkInterface;
116import java.net.SocketException;
Jeff Sharkeyeedcb952011-05-17 14:55:15 -0700[diff] [blame]117import java.util.ArrayList;
Paul Jensen6bc2c2c2014-05-07 15:27:40 -0400[diff] [blame]118import java.util.Arrays;
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]119import java.util.HashMap;
jiaguo1da35f72014-01-09 16:39:59 +0800[diff] [blame]120import java.util.List;
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]121import java.util.Map;
Jeff Sharkeyeedcb952011-05-17 14:55:15 -0700[diff] [blame]122import java.util.NoSuchElementException;
123import java.util.StringTokenizer;
Robert Greenwalte5c3afb2010-09-22 14:32:35 -0700[diff] [blame]124import java.util.concurrent.CountDownLatch;
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]125
126/**
127 * @hide
128 */
Jeff Sharkey8e9992a2011-08-23 18:37:23 -0700[diff] [blame]129public class NetworkManagementService extends INetworkManagementService.Stub
130 implements Watchdog.Monitor {
Amith Yamasani15e472352015-04-24 19:06:07 -0700[diff] [blame]131 private static final String TAG = "NetworkManagement";
132 private static final boolean DBG = Log.isLoggable(TAG, Log.DEBUG);
Kenny Root305bcbf2010-09-03 07:56:38 -0700[diff] [blame]133 private static final String NETD_TAG = "NetdConnector";
Lorenzo Colitti58967ba2016-02-02 17:21:21 +0900[diff] [blame]134 private static final String NETD_SERVICE_NAME = "netd";
Kenny Root305bcbf2010-09-03 07:56:38 -0700[diff] [blame]135
Paul Jensen6bc2c2c2014-05-07 15:27:40 -0400[diff] [blame]136 private static final int MAX_UID_RANGES_PER_COMMAND = 10;
137
Jeff Sharkey8e9992a2011-08-23 18:37:23 -0700[diff] [blame]138 /**
139 * Name representing {@link #setGlobalAlert(long)} limit when delivered to
140 * {@link INetworkManagementEventObserver#limitReached(String, String)}.
141 */
142 public static final String LIMIT_GLOBAL_ALERT = "globalAlert";
143
Paul Jensen487ffe72015-07-24 15:57:11 -0400[diff] [blame]144 /**
145 * String to pass to netd to indicate that a network is only accessible
146 * to apps that have the CHANGE_NETWORK_STATE permission.
147 */
148 public static final String PERMISSION_NETWORK = "NETWORK";
149
150 /**
151 * String to pass to netd to indicate that a network is only
152 * accessible to system apps and those with the CONNECTIVITY_INTERNAL
153 * permission.
154 */
155 public static final String PERMISSION_SYSTEM = "SYSTEM";
156
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]157 class NetdResponseCode {
Sreeram Ramachandran03666c72014-07-19 23:21:46 -0700[diff] [blame]158 /* Keep in sync with system/netd/server/ResponseCode.h */
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]159 public static final int InterfaceListResult = 110;
160 public static final int TetherInterfaceListResult = 111;
161 public static final int TetherDnsFwdTgtListResult = 112;
San Mehat72759df2010-01-19 13:50:37 -0800[diff] [blame]162 public static final int TtyListResult = 113;
Jeff Sharkeye4984be2013-09-10 21:03:27 -0700[diff] [blame]163 public static final int TetheringStatsListResult = 114;
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]164
165 public static final int TetherStatusResult = 210;
166 public static final int IpFwdStatusResult = 211;
San Mehated4fc8a2010-01-22 12:28:36 -0800[diff] [blame]167 public static final int InterfaceGetCfgResult = 213;
Robert Greenwalte3253922010-02-18 09:23:25 -0800[diff] [blame]168 public static final int SoftapStatusResult = 214;
San Mehat91cac642010-03-31 14:31:36 -0700[diff] [blame]169 public static final int InterfaceRxCounterResult = 216;
170 public static final int InterfaceTxCounterResult = 217;
Jeff Sharkeycdd02c5d2011-09-16 01:52:49 -0700[diff] [blame]171 public static final int QuotaCounterResult = 220;
172 public static final int TetheringStatsResult = 221;
Selim Gurun84c00c62012-02-27 15:42:38 -0800[diff] [blame]173 public static final int DnsProxyQueryResult = 222;
Lorenzo Colitti79751842013-02-28 16:16:03 +0900[diff] [blame]174 public static final int ClatdStatusResult = 223;
Robert Greenwalte3253922010-02-18 09:23:25 -0800[diff] [blame]175
176 public static final int InterfaceChange = 600;
JP Abgrall12b933d2011-07-14 18:09:22 -0700[diff] [blame]177 public static final int BandwidthControl = 601;
Haoyu Bai6b7358d2012-07-17 16:36:50 -0700[diff] [blame]178 public static final int InterfaceClassActivity = 613;
Lorenzo Colitti5c7daac2013-08-05 10:39:37 +0900[diff] [blame]179 public static final int InterfaceAddressChange = 614;
Lorenzo Colitti5ae4a532013-10-31 11:59:46 +0900[diff] [blame]180 public static final int InterfaceDnsServerInfo = 615;
Lorenzo Colittic18cbfd2014-06-13 21:21:03 +0900[diff] [blame]181 public static final int RouteChange = 616;
Jeff Sharkey605eb792014-11-04 13:34:06 -0800[diff] [blame]182 public static final int StrictCleartext = 617;
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]183 }
184
Pierre Imai8e48e672016-04-21 13:30:43 +0900[diff] [blame]185 /* Defaults for resolver parameters. */
186 public static final int DNS_RESOLVER_DEFAULT_SAMPLE_VALIDITY_SECONDS = 1800;
187 public static final int DNS_RESOLVER_DEFAULT_SUCCESS_THRESHOLD_PERCENT = 25;
188 public static final int DNS_RESOLVER_DEFAULT_MIN_SAMPLES = 8;
189 public static final int DNS_RESOLVER_DEFAULT_MAX_SAMPLES = 64;
190
Rebecca Silbersteine2ec94f2016-03-24 13:29:00 -0700[diff] [blame]191 /**
192 * String indicating a softap command.
193 */
194 static final String SOFT_AP_COMMAND = "softap";
195
196 /**
197 * String passed back to netd connector indicating softap command success.
198 */
199 static final String SOFT_AP_COMMAND_SUCCESS = "Ok";
200
Dianne Hackborn2ffa11e2014-04-21 15:56:18 -0700[diff] [blame]201 static final int DAEMON_MSG_MOBILE_CONN_REAL_TIME_INFO = 1;
202
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]203 /**
204 * Binder context for this service
205 */
Dianne Hackborn2ffa11e2014-04-21 15:56:18 -0700[diff] [blame]206 private final Context mContext;
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]207
208 /**
209 * connector object for communicating with netd
210 */
Dianne Hackborn2ffa11e2014-04-21 15:56:18 -0700[diff] [blame]211 private final NativeDaemonConnector mConnector;
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]212
Robert Greenwalt2c9f5472014-04-21 14:50:28 -0700[diff] [blame]213 private final Handler mFgHandler;
Dianne Hackborn2ffa11e2014-04-21 15:56:18 -0700[diff] [blame]214 private final Handler mDaemonHandler;
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]215
Lorenzo Colitti58967ba2016-02-02 17:21:21 +0900[diff] [blame]216 private INetd mNetdService;
217
Dianne Hackborne13c4c02014-02-11 17:18:35 -0800[diff] [blame]218 private IBatteryStats mBatteryStats;
219
Dianne Hackborn2ffa11e2014-04-21 15:56:18 -0700[diff] [blame]220 private final Thread mThread;
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]221 private CountDownLatch mConnectedSignal = new CountDownLatch(1);
Robert Greenwalte5c3afb2010-09-22 14:32:35 -0700[diff] [blame]222
Jeff Sharkey3df273e2011-12-15 15:47:12 -0800[diff] [blame]223 private final RemoteCallbackList<INetworkManagementEventObserver> mObservers =
Christopher Wiley212b95f2016-08-02 11:38:57 -0700[diff] [blame]224 new RemoteCallbackList<>();
San Mehat4d02d002010-01-22 16:07:46 -0800[diff] [blame]225
Jeff Sharkey1059c3c2011-10-04 16:54:49 -0700[diff] [blame]226 private final NetworkStatsFactory mStatsFactory = new NetworkStatsFactory();
227
Sudheer Shanka62f5c172017-03-17 16:25:55 -0700[diff] [blame^]228 /**
229 * If both locks need to be held, then they should be obtained in the order:
230 * first {@link #mQuotaLock} and then {@link #mRulesLock}.
231 */
Jeff Sharkey41ff7ec2011-07-25 15:21:22 -0700[diff] [blame]232 private Object mQuotaLock = new Object();
Sudheer Shanka62f5c172017-03-17 16:25:55 -0700[diff] [blame^]233 private Object mRulesLock = new Object();
Jeff Sharkey605eb792014-11-04 13:34:06 -0800[diff] [blame]234
Jeff Sharkeyb3f19ca2011-06-29 23:54:13 -0700[diff] [blame]235 /** Set of interfaces with active quotas. */
Jeff Sharkey605eb792014-11-04 13:34:06 -0800[diff] [blame]236 @GuardedBy("mQuotaLock")
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]237 private HashMap<String, Long> mActiveQuotas = Maps.newHashMap();
Jeff Sharkey41ff7ec2011-07-25 15:21:22 -0700[diff] [blame]238 /** Set of interfaces with active alerts. */
Jeff Sharkey605eb792014-11-04 13:34:06 -0800[diff] [blame]239 @GuardedBy("mQuotaLock")
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]240 private HashMap<String, Long> mActiveAlerts = Maps.newHashMap();
Felipe Leme65be3022016-03-22 14:53:13 -0700[diff] [blame]241 /** Set of UIDs blacklisted on metered networks. */
Sudheer Shanka62f5c172017-03-17 16:25:55 -0700[diff] [blame^]242 @GuardedBy("mRulesLock")
Felipe Leme65be3022016-03-22 14:53:13 -0700[diff] [blame]243 private SparseBooleanArray mUidRejectOnMetered = new SparseBooleanArray();
244 /** Set of UIDs whitelisted on metered networks. */
Sudheer Shanka62f5c172017-03-17 16:25:55 -0700[diff] [blame^]245 @GuardedBy("mRulesLock")
Felipe Leme65be3022016-03-22 14:53:13 -0700[diff] [blame]246 private SparseBooleanArray mUidAllowOnMetered = new SparseBooleanArray();
Jeff Sharkey605eb792014-11-04 13:34:06 -0800[diff] [blame]247 /** Set of UIDs with cleartext penalties. */
248 @GuardedBy("mQuotaLock")
249 private SparseIntArray mUidCleartextPolicy = new SparseIntArray();
Amith Yamasani15e472352015-04-24 19:06:07 -0700[diff] [blame]250 /** Set of UIDs that are to be blocked/allowed by firewall controller. */
Sudheer Shanka62f5c172017-03-17 16:25:55 -0700[diff] [blame^]251 @GuardedBy("mRulesLock")
Amith Yamasani15e472352015-04-24 19:06:07 -0700[diff] [blame]252 private SparseIntArray mUidFirewallRules = new SparseIntArray();
Xiaohui Chenb41c9f72015-06-17 15:55:37 -0700[diff] [blame]253 /**
254 * Set of UIDs that are to be blocked/allowed by firewall controller. This set of Ids matches
255 * to application idles.
256 */
Sudheer Shanka62f5c172017-03-17 16:25:55 -0700[diff] [blame^]257 @GuardedBy("mRulesLock")
Xiaohui Chenb41c9f72015-06-17 15:55:37 -0700[diff] [blame]258 private SparseIntArray mUidFirewallStandbyRules = new SparseIntArray();
259 /**
260 * Set of UIDs that are to be blocked/allowed by firewall controller. This set of Ids matches
261 * to device idles.
262 */
Sudheer Shanka62f5c172017-03-17 16:25:55 -0700[diff] [blame^]263 @GuardedBy("mRulesLock")
Xiaohui Chenb41c9f72015-06-17 15:55:37 -0700[diff] [blame]264 private SparseIntArray mUidFirewallDozableRules = new SparseIntArray();
Felipe Leme011b98f2016-02-10 17:28:31 -0800[diff] [blame]265 /**
266 * Set of UIDs that are to be blocked/allowed by firewall controller. This set of Ids matches
267 * to device on power-save mode.
268 */
Sudheer Shanka62f5c172017-03-17 16:25:55 -0700[diff] [blame^]269 @GuardedBy("mRulesLock")
Felipe Leme011b98f2016-02-10 17:28:31 -0800[diff] [blame]270 private SparseIntArray mUidFirewallPowerSaveRules = new SparseIntArray();
Xiaohui Chen8dca36d2015-06-19 12:44:59 -0700[diff] [blame]271 /** Set of states for the child firewall chains. True if the chain is active. */
Sudheer Shanka62f5c172017-03-17 16:25:55 -0700[diff] [blame^]272 @GuardedBy("mRulesLock")
Xiaohui Chen8dca36d2015-06-19 12:44:59 -0700[diff] [blame]273 final SparseBooleanArray mFirewallChainStates = new SparseBooleanArray();
Jeff Sharkeyb3f19ca2011-06-29 23:54:13 -0700[diff] [blame]274
Felipe Leme65be3022016-03-22 14:53:13 -0700[diff] [blame]275 @GuardedBy("mQuotaLock")
Sudheer Shanka62f5c172017-03-17 16:25:55 -0700[diff] [blame^]276 private volatile boolean mDataSaverMode;
Felipe Leme65be3022016-03-22 14:53:13 -0700[diff] [blame]277
Haoyu Bai04124232012-06-28 15:26:19 -0700[diff] [blame]278 private Object mIdleTimerLock = new Object();
279 /** Set of interfaces with active idle timers. */
280 private static class IdleTimerParams {
281 public final int timeout;
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]282 public final int type;
Haoyu Bai04124232012-06-28 15:26:19 -0700[diff] [blame]283 public int networkCount;
284
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]285 IdleTimerParams(int timeout, int type) {
Haoyu Bai04124232012-06-28 15:26:19 -0700[diff] [blame]286 this.timeout = timeout;
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]287 this.type = type;
Haoyu Bai04124232012-06-28 15:26:19 -0700[diff] [blame]288 this.networkCount = 1;
289 }
290 }
291 private HashMap<String, IdleTimerParams> mActiveIdleTimers = Maps.newHashMap();
292
Jeff Sharkeyfa23c5a2011-08-09 21:44:24 -0700[diff] [blame]293 private volatile boolean mBandwidthControlEnabled;
Jeff Sharkeyc268f0b2012-08-24 10:25:31 -0700[diff] [blame]294 private volatile boolean mFirewallEnabled;
Jeff Sharkey605eb792014-11-04 13:34:06 -0800[diff] [blame]295 private volatile boolean mStrictEnabled;
Jeff Sharkey350083e2011-06-29 10:45:16 -0700[diff] [blame]296
Dianne Hackborn2ffa11e2014-04-21 15:56:18 -0700[diff] [blame]297 private boolean mMobileActivityFromRadio = false;
298 private int mLastPowerStateFromRadio = DataConnectionRealTimeInfo.DC_POWER_STATE_LOW;
Adam Lesinskie08af192015-03-25 16:42:59 -0700[diff] [blame]299 private int mLastPowerStateFromWifi = DataConnectionRealTimeInfo.DC_POWER_STATE_LOW;
Dianne Hackborn2ffa11e2014-04-21 15:56:18 -0700[diff] [blame]300
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]301 private final RemoteCallbackList<INetworkActivityListener> mNetworkActivityListeners =
Christopher Wiley212b95f2016-08-02 11:38:57 -0700[diff] [blame]302 new RemoteCallbackList<>();
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]303 private boolean mNetworkActive;
304
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]305 /**
306 * Constructs a new NetworkManagementService instance
307 *
308 * @param context Binder context for this service
309 */
Lorenzo Colitti7421a012013-08-20 22:51:24 +0900[diff] [blame]310 private NetworkManagementService(Context context, String socket) {
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]311 mContext = context;
San Mehat4d02d002010-01-22 16:07:46 -0800[diff] [blame]312
Robert Greenwalt2c9f5472014-04-21 14:50:28 -0700[diff] [blame]313 // make sure this is on the same looper as our NativeDaemonConnector for sync purposes
314 mFgHandler = new Handler(FgThread.get().getLooper());
315
Dianne Hackborn4590e522014-03-24 13:36:46 -0700[diff] [blame]316 // Don't need this wake lock, since we now have a time stamp for when
317 // the network actually went inactive. (It might be nice to still do this,
318 // but I don't want to do it through the power manager because that pollutes the
319 // battery stats history with pointless noise.)
Dianne Hackborn2ffa11e2014-04-21 15:56:18 -0700[diff] [blame]320 //PowerManager pm = (PowerManager)context.getSystemService(Context.POWER_SERVICE);
Dianne Hackborn4590e522014-03-24 13:36:46 -0700[diff] [blame]321 PowerManager.WakeLock wl = null; //pm.newWakeLock(PowerManager.PARTIAL_WAKE_LOCK, NETD_TAG);
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]322
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]323 mConnector = new NativeDaemonConnector(
Dianne Hackborn2ffa11e2014-04-21 15:56:18 -0700[diff] [blame]324 new NetdCallbackReceiver(), socket, 10, NETD_TAG, 160, wl,
325 FgThread.get().getLooper());
Robert Greenwalte5c3afb2010-09-22 14:32:35 -0700[diff] [blame]326 mThread = new Thread(mConnector, NETD_TAG);
Jeff Sharkeyfa23c5a2011-08-09 21:44:24 -0700[diff] [blame]327
Dianne Hackborn2ffa11e2014-04-21 15:56:18 -0700[diff] [blame]328 mDaemonHandler = new Handler(FgThread.get().getLooper());
Wink Saville67e07892014-06-18 16:43:14 -0700[diff] [blame]329
Jeff Sharkeyfa23c5a2011-08-09 21:44:24 -0700[diff] [blame]330 // Add ourself to the Watchdog monitors.
331 Watchdog.getInstance().addMonitor(this);
Sudheer Shanka62f5c172017-03-17 16:25:55 -0700[diff] [blame^]332
333 LocalServices.addService(NetworkManagementInternal.class, new LocalService());
334 }
335
336 @VisibleForTesting
337 NetworkManagementService() {
338 mConnector = null;
339 mContext = null;
340 mDaemonHandler = null;
341 mFgHandler = null;
342 mThread = null;
Robert Greenwalte5c3afb2010-09-22 14:32:35 -0700[diff] [blame]343 }
344
Felipe Leme03e689d2016-03-02 16:17:38 -0800[diff] [blame]345 static NetworkManagementService create(Context context, String socket)
346 throws InterruptedException {
Lorenzo Colitti7421a012013-08-20 22:51:24 +0900[diff] [blame]347 final NetworkManagementService service = new NetworkManagementService(context, socket);
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]348 final CountDownLatch connectedSignal = service.mConnectedSignal;
Robert Greenwalte5c3afb2010-09-22 14:32:35 -0700[diff] [blame]349 if (DBG) Slog.d(TAG, "Creating NetworkManagementService");
350 service.mThread.start();
351 if (DBG) Slog.d(TAG, "Awaiting socket connection");
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]352 connectedSignal.await();
Robert Greenwalte5c3afb2010-09-22 14:32:35 -0700[diff] [blame]353 if (DBG) Slog.d(TAG, "Connected");
bohu07cc3bb2016-05-03 15:58:01 -0700[diff] [blame]354 service.connectNativeNetdService();
Robert Greenwalte5c3afb2010-09-22 14:32:35 -0700[diff] [blame]355 return service;
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]356 }
357
Lorenzo Colitti7421a012013-08-20 22:51:24 +0900[diff] [blame]358 public static NetworkManagementService create(Context context) throws InterruptedException {
Lorenzo Colitti58967ba2016-02-02 17:21:21 +0900[diff] [blame]359 return create(context, NETD_SERVICE_NAME);
Lorenzo Colitti7421a012013-08-20 22:51:24 +0900[diff] [blame]360 }
361
Jeff Sharkey350083e2011-06-29 10:45:16 -0700[diff] [blame]362 public void systemReady() {
Felipe Leme03e689d2016-03-02 16:17:38 -0800[diff] [blame]363 if (DBG) {
364 final long start = System.currentTimeMillis();
365 prepareNativeDaemon();
366 final long delta = System.currentTimeMillis() - start;
367 Slog.d(TAG, "Prepared in " + delta + "ms");
368 return;
369 } else {
370 prepareNativeDaemon();
371 }
Jeff Sharkey350083e2011-06-29 10:45:16 -0700[diff] [blame]372 }
373
Dianne Hackborne13c4c02014-02-11 17:18:35 -0800[diff] [blame]374 private IBatteryStats getBatteryStats() {
375 synchronized (this) {
376 if (mBatteryStats != null) {
377 return mBatteryStats;
378 }
379 mBatteryStats = IBatteryStats.Stub.asInterface(ServiceManager.getService(
380 BatteryStats.SERVICE_NAME));
381 return mBatteryStats;
382 }
383 }
384
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]385 @Override
Jeff Sharkey3df273e2011-12-15 15:47:12 -0800[diff] [blame]386 public void registerObserver(INetworkManagementEventObserver observer) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]387 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Jeff Sharkey3df273e2011-12-15 15:47:12 -0800[diff] [blame]388 mObservers.register(observer);
San Mehat4d02d002010-01-22 16:07:46 -0800[diff] [blame]389 }
390
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]391 @Override
Jeff Sharkey3df273e2011-12-15 15:47:12 -0800[diff] [blame]392 public void unregisterObserver(INetworkManagementEventObserver observer) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]393 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Jeff Sharkey3df273e2011-12-15 15:47:12 -0800[diff] [blame]394 mObservers.unregister(observer);
San Mehat4d02d002010-01-22 16:07:46 -0800[diff] [blame]395 }
396
Erik Klineb2cfdfb2017-01-18 20:54:14 +0900[diff] [blame]397 @FunctionalInterface
398 private interface NetworkManagementEventCallback {
399 public void sendCallback(INetworkManagementEventObserver o) throws RemoteException;
400 }
401
402 private void invokeForAllObservers(NetworkManagementEventCallback eventCallback) {
Jeff Sharkey3df273e2011-12-15 15:47:12 -0800[diff] [blame]403 final int length = mObservers.beginBroadcast();
Robert Greenwalt2c9f5472014-04-21 14:50:28 -0700[diff] [blame]404 try {
405 for (int i = 0; i < length; i++) {
406 try {
Erik Klineb2cfdfb2017-01-18 20:54:14 +0900[diff] [blame]407 eventCallback.sendCallback(mObservers.getBroadcastItem(i));
Felipe Leme03e689d2016-03-02 16:17:38 -0800[diff] [blame]408 } catch (RemoteException | RuntimeException e) {
Robert Greenwalt2c9f5472014-04-21 14:50:28 -0700[diff] [blame]409 }
Mike J. Chen6143f5f2011-06-23 15:17:51 -0700[diff] [blame]410 }
Robert Greenwalt2c9f5472014-04-21 14:50:28 -0700[diff] [blame]411 } finally {
412 mObservers.finishBroadcast();
Mike J. Chen6143f5f2011-06-23 15:17:51 -0700[diff] [blame]413 }
414 }
415
416 /**
Erik Klineb2cfdfb2017-01-18 20:54:14 +0900[diff] [blame]417 * Notify our observers of an interface status change
418 */
419 private void notifyInterfaceStatusChanged(String iface, boolean up) {
420 invokeForAllObservers(o -> o.interfaceStatusChanged(iface, up));
421 }
422
423 /**
Mike J. Chenf59c7d02011-06-23 15:33:15 -0700[diff] [blame]424 * Notify our observers of an interface link state change
Mike J. Chen6143f5f2011-06-23 15:17:51 -0700[diff] [blame]425 * (typically, an Ethernet cable has been plugged-in or unplugged).
426 */
427 private void notifyInterfaceLinkStateChanged(String iface, boolean up) {
Erik Klineb2cfdfb2017-01-18 20:54:14 +0900[diff] [blame]428 invokeForAllObservers(o -> o.interfaceLinkStateChanged(iface, up));
San Mehat4d02d002010-01-22 16:07:46 -0800[diff] [blame]429 }
430
431 /**
432 * Notify our observers of an interface addition.
433 */
434 private void notifyInterfaceAdded(String iface) {
Erik Klineb2cfdfb2017-01-18 20:54:14 +0900[diff] [blame]435 invokeForAllObservers(o -> o.interfaceAdded(iface));
San Mehat4d02d002010-01-22 16:07:46 -0800[diff] [blame]436 }
437
438 /**
439 * Notify our observers of an interface removal.
440 */
441 private void notifyInterfaceRemoved(String iface) {
Jeff Sharkey89b8a212011-10-11 11:58:11 -0700[diff] [blame]442 // netd already clears out quota and alerts for removed ifaces; update
443 // our sanity-checking state.
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]444 mActiveAlerts.remove(iface);
445 mActiveQuotas.remove(iface);
Jeff Sharkey89b8a212011-10-11 11:58:11 -0700[diff] [blame]446
Erik Klineb2cfdfb2017-01-18 20:54:14 +0900[diff] [blame]447 invokeForAllObservers(o -> o.interfaceRemoved(iface));
San Mehat4d02d002010-01-22 16:07:46 -0800[diff] [blame]448 }
449
Robert Greenwalte5c3afb2010-09-22 14:32:35 -0700[diff] [blame]450 /**
JP Abgrall12b933d2011-07-14 18:09:22 -0700[diff] [blame]451 * Notify our observers of a limit reached.
452 */
453 private void notifyLimitReached(String limitName, String iface) {
Erik Klineb2cfdfb2017-01-18 20:54:14 +0900[diff] [blame]454 invokeForAllObservers(o -> o.limitReached(limitName, iface));
JP Abgrall12b933d2011-07-14 18:09:22 -0700[diff] [blame]455 }
456
457 /**
Haoyu Baidb3c8672012-06-20 14:29:57 -0700[diff] [blame]458 * Notify our observers of a change in the data activity state of the interface
459 */
Dianne Hackborn2ffa11e2014-04-21 15:56:18 -0700[diff] [blame]460 private void notifyInterfaceClassActivity(int type, int powerState, long tsNanos,
Ruchi Kandoifa97fcf2016-05-13 15:10:39 -0700[diff] [blame]461 int uid, boolean fromRadio) {
Dianne Hackborn2ffa11e2014-04-21 15:56:18 -0700[diff] [blame]462 final boolean isMobile = ConnectivityManager.isNetworkTypeMobile(type);
463 if (isMobile) {
464 if (!fromRadio) {
465 if (mMobileActivityFromRadio) {
466 // If this call is not coming from a report from the radio itself, but we
467 // have previously received reports from the radio, then we will take the
468 // power state to just be whatever the radio last reported.
469 powerState = mLastPowerStateFromRadio;
470 }
471 } else {
472 mMobileActivityFromRadio = true;
473 }
474 if (mLastPowerStateFromRadio != powerState) {
475 mLastPowerStateFromRadio = powerState;
Robert Greenwalt2c9f5472014-04-21 14:50:28 -0700[diff] [blame]476 try {
Ruchi Kandoifa97fcf2016-05-13 15:10:39 -0700[diff] [blame]477 getBatteryStats().noteMobileRadioPowerState(powerState, tsNanos, uid);
Robert Greenwalt2c9f5472014-04-21 14:50:28 -0700[diff] [blame]478 } catch (RemoteException e) {
Robert Greenwalt2c9f5472014-04-21 14:50:28 -0700[diff] [blame]479 }
Haoyu Baidb3c8672012-06-20 14:29:57 -0700[diff] [blame]480 }
Dianne Hackborn2ffa11e2014-04-21 15:56:18 -0700[diff] [blame]481 }
482
Adam Lesinskie08af192015-03-25 16:42:59 -0700[diff] [blame]483 if (ConnectivityManager.isNetworkTypeWifi(type)) {
484 if (mLastPowerStateFromWifi != powerState) {
485 mLastPowerStateFromWifi = powerState;
486 try {
Adam Lesinski5f056f62016-07-14 16:56:08 -0700[diff] [blame]487 getBatteryStats().noteWifiRadioPowerState(powerState, tsNanos, uid);
Adam Lesinskie08af192015-03-25 16:42:59 -0700[diff] [blame]488 } catch (RemoteException e) {
489 }
490 }
491 }
492
Dianne Hackborn2ffa11e2014-04-21 15:56:18 -0700[diff] [blame]493 boolean isActive = powerState == DataConnectionRealTimeInfo.DC_POWER_STATE_MEDIUM
494 || powerState == DataConnectionRealTimeInfo.DC_POWER_STATE_HIGH;
495
496 if (!isMobile || fromRadio || !mMobileActivityFromRadio) {
497 // Report the change in data activity. We don't do this if this is a change
498 // on the mobile network, that is not coming from the radio itself, and we
499 // have previously seen change reports from the radio. In that case only
500 // the radio is the authority for the current state.
Erik Klineb2cfdfb2017-01-18 20:54:14 +0900[diff] [blame]501 final boolean active = isActive;
502 invokeForAllObservers(o -> o.interfaceClassDataActivityChanged(
503 Integer.toString(type), active, tsNanos));
Haoyu Baidb3c8672012-06-20 14:29:57 -0700[diff] [blame]504 }
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]505
506 boolean report = false;
507 synchronized (mIdleTimerLock) {
508 if (mActiveIdleTimers.isEmpty()) {
Dianne Hackborn2ffa11e2014-04-21 15:56:18 -0700[diff] [blame]509 // If there are no idle timers, we are not monitoring activity, so we
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]510 // are always considered active.
Dianne Hackborn2ffa11e2014-04-21 15:56:18 -0700[diff] [blame]511 isActive = true;
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]512 }
Dianne Hackborn2ffa11e2014-04-21 15:56:18 -0700[diff] [blame]513 if (mNetworkActive != isActive) {
514 mNetworkActive = isActive;
515 report = isActive;
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]516 }
517 }
518 if (report) {
519 reportNetworkActive();
520 }
Haoyu Baidb3c8672012-06-20 14:29:57 -0700[diff] [blame]521 }
522
Lorenzo Colitti9eb844e2016-03-23 23:22:49 +0900[diff] [blame]523 // Sync the state of the given chain with the native daemon.
Sudheer Shanka62f5c172017-03-17 16:25:55 -0700[diff] [blame^]524 private void syncFirewallChainLocked(int chain, String name) {
525 SparseIntArray rules;
526 synchronized (mRulesLock) {
527 final SparseIntArray uidFirewallRules = getUidFirewallRulesLR(chain);
Lorenzo Colitti9eb844e2016-03-23 23:22:49 +0900[diff] [blame]528 // Make a copy of the current rules, and then clear them. This is because
Sudheer Shanka62f5c172017-03-17 16:25:55 -0700[diff] [blame^]529 // setFirewallUidRuleInternal only pushes down rules to the native daemon if they
530 // are different from the current rules stored in the mUidFirewall*Rules array for
531 // the specified chain. If we don't clear the rules, setFirewallUidRuleInternal
532 // will do nothing.
533 rules = uidFirewallRules.clone();
Lorenzo Colitti9eb844e2016-03-23 23:22:49 +0900[diff] [blame]534 uidFirewallRules.clear();
Sudheer Shanka62f5c172017-03-17 16:25:55 -0700[diff] [blame^]535 }
536 if (rules.size() > 0) {
Lorenzo Colitti9eb844e2016-03-23 23:22:49 +0900[diff] [blame]537 // Now push the rules. setFirewallUidRuleInternal will push each of these down to the
538 // native daemon, and also add them to the mUidFirewall*Rules array for the specified
539 // chain.
Sudheer Shanka62f5c172017-03-17 16:25:55 -0700[diff] [blame^]540 if (DBG) Slog.d(TAG, "Pushing " + rules.size() + " active firewall "
541 + name + "UID rules");
Lorenzo Colitti9eb844e2016-03-23 23:22:49 +0900[diff] [blame]542 for (int i = 0; i < rules.size(); i++) {
Felipe Lemea701cad2016-05-12 09:58:14 -0700[diff] [blame]543 setFirewallUidRuleLocked(chain, rules.keyAt(i), rules.valueAt(i));
Lorenzo Colitti9eb844e2016-03-23 23:22:49 +0900[diff] [blame]544 }
545 }
546 }
547
bohu07cc3bb2016-05-03 15:58:01 -0700[diff] [blame]548 private void connectNativeNetdService() {
Lorenzo Colitti58967ba2016-02-02 17:21:21 +0900[diff] [blame]549 boolean nativeServiceAvailable = false;
550 try {
551 mNetdService = INetd.Stub.asInterface(ServiceManager.getService(NETD_SERVICE_NAME));
552 nativeServiceAvailable = mNetdService.isAlive();
553 } catch (RemoteException e) {}
554 if (!nativeServiceAvailable) {
555 Slog.wtf(TAG, "Can't connect to NativeNetdService " + NETD_SERVICE_NAME);
556 }
bohu07cc3bb2016-05-03 15:58:01 -0700[diff] [blame]557 }
558
559 /**
560 * Prepare native daemon once connected, enabling modules and pushing any
561 * existing in-memory rules.
562 */
563 private void prepareNativeDaemon() {
Lorenzo Colitti58967ba2016-02-02 17:21:21 +0900[diff] [blame]564
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]565 mBandwidthControlEnabled = false;
Robert Greenwalte5c3afb2010-09-22 14:32:35 -0700[diff] [blame]566
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]567 // only enable bandwidth control when support exists
568 final boolean hasKernelSupport = new File("/proc/net/xt_qtaguid/ctrl").exists();
569 if (hasKernelSupport) {
570 Slog.d(TAG, "enabling bandwidth control");
571 try {
572 mConnector.execute("bandwidth", "enable");
573 mBandwidthControlEnabled = true;
574 } catch (NativeDaemonConnectorException e) {
575 Log.wtf(TAG, "problem enabling bandwidth controls", e);
576 }
577 } else {
Felipe Leme03e689d2016-03-02 16:17:38 -0800[diff] [blame]578 Slog.i(TAG, "not enabling bandwidth control");
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]579 }
580
581 SystemProperties.set(PROP_QTAGUID_ENABLED, mBandwidthControlEnabled ? "1" : "0");
582
Jeff Sharkey7a1c3fc2013-06-04 12:29:00 -0700[diff] [blame]583 if (mBandwidthControlEnabled) {
584 try {
Dianne Hackborne13c4c02014-02-11 17:18:35 -0800[diff] [blame]585 getBatteryStats().noteNetworkStatsEnabled();
Jeff Sharkey7a1c3fc2013-06-04 12:29:00 -0700[diff] [blame]586 } catch (RemoteException e) {
587 }
588 }
589
Jeff Sharkey605eb792014-11-04 13:34:06 -0800[diff] [blame]590 try {
591 mConnector.execute("strict", "enable");
592 mStrictEnabled = true;
593 } catch (NativeDaemonConnectorException e) {
594 Log.wtf(TAG, "Failed strict enable", e);
595 }
596
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]597 // push any existing quota or UID rules
598 synchronized (mQuotaLock) {
Felipe Leme65be3022016-03-22 14:53:13 -0700[diff] [blame]599
600 setDataSaverModeEnabled(mDataSaverMode);
601
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]602 int size = mActiveQuotas.size();
603 if (size > 0) {
Felipe Leme03e689d2016-03-02 16:17:38 -0800[diff] [blame]604 if (DBG) Slog.d(TAG, "Pushing " + size + " active quota rules");
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]605 final HashMap<String, Long> activeQuotas = mActiveQuotas;
606 mActiveQuotas = Maps.newHashMap();
607 for (Map.Entry<String, Long> entry : activeQuotas.entrySet()) {
608 setInterfaceQuota(entry.getKey(), entry.getValue());
609 }
610 }
611
612 size = mActiveAlerts.size();
613 if (size > 0) {
Felipe Leme03e689d2016-03-02 16:17:38 -0800[diff] [blame]614 if (DBG) Slog.d(TAG, "Pushing " + size + " active alert rules");
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]615 final HashMap<String, Long> activeAlerts = mActiveAlerts;
616 mActiveAlerts = Maps.newHashMap();
617 for (Map.Entry<String, Long> entry : activeAlerts.entrySet()) {
618 setInterfaceAlert(entry.getKey(), entry.getValue());
619 }
620 }
621
Sudheer Shanka62f5c172017-03-17 16:25:55 -0700[diff] [blame^]622 SparseBooleanArray uidRejectOnQuota = null;
623 SparseBooleanArray uidAcceptOnQuota = null;
624 synchronized (mRulesLock) {
625 size = mUidRejectOnMetered.size();
626 if (size > 0) {
627 if (DBG) Slog.d(TAG, "Pushing " + size + " UIDs to metered blacklist rules");
628 uidRejectOnQuota = mUidRejectOnMetered;
629 mUidRejectOnMetered = new SparseBooleanArray();
630 }
631
632 size = mUidAllowOnMetered.size();
633 if (size > 0) {
634 if (DBG) Slog.d(TAG, "Pushing " + size + " UIDs to metered whitelist rules");
635 uidAcceptOnQuota = mUidAllowOnMetered;
636 mUidAllowOnMetered = new SparseBooleanArray();
637 }
638 }
639 if (uidRejectOnQuota != null) {
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]640 for (int i = 0; i < uidRejectOnQuota.size(); i++) {
Felipe Leme65be3022016-03-22 14:53:13 -0700[diff] [blame]641 setUidMeteredNetworkBlacklist(uidRejectOnQuota.keyAt(i),
642 uidRejectOnQuota.valueAt(i));
643 }
644 }
Sudheer Shanka62f5c172017-03-17 16:25:55 -0700[diff] [blame^]645 if (uidAcceptOnQuota != null) {
Felipe Leme65be3022016-03-22 14:53:13 -0700[diff] [blame]646 for (int i = 0; i < uidAcceptOnQuota.size(); i++) {
647 setUidMeteredNetworkWhitelist(uidAcceptOnQuota.keyAt(i),
648 uidAcceptOnQuota.valueAt(i));
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]649 }
650 }
Jeff Sharkey605eb792014-11-04 13:34:06 -0800[diff] [blame]651
652 size = mUidCleartextPolicy.size();
653 if (size > 0) {
Felipe Leme03e689d2016-03-02 16:17:38 -0800[diff] [blame]654 if (DBG) Slog.d(TAG, "Pushing " + size + " active UID cleartext policies");
Jeff Sharkey605eb792014-11-04 13:34:06 -0800[diff] [blame]655 final SparseIntArray local = mUidCleartextPolicy;
656 mUidCleartextPolicy = new SparseIntArray();
657 for (int i = 0; i < local.size(); i++) {
658 setUidCleartextNetworkPolicy(local.keyAt(i), local.valueAt(i));
659 }
660 }
Jeff Sharkeyc268f0b2012-08-24 10:25:31 -0700[diff] [blame]661
Amith Yamasani15e472352015-04-24 19:06:07 -0700[diff] [blame]662 setFirewallEnabled(mFirewallEnabled || LockdownVpnTracker.isEnabled());
663
Sudheer Shanka62f5c172017-03-17 16:25:55 -0700[diff] [blame^]664 syncFirewallChainLocked(FIREWALL_CHAIN_NONE, "");
665 syncFirewallChainLocked(FIREWALL_CHAIN_STANDBY, "standby ");
666 syncFirewallChainLocked(FIREWALL_CHAIN_DOZABLE, "dozable ");
667 syncFirewallChainLocked(FIREWALL_CHAIN_POWERSAVE, "powersave ");
Xiaohui Chenb41c9f72015-06-17 15:55:37 -0700[diff] [blame]668
Sudheer Shanka62f5c172017-03-17 16:25:55 -0700[diff] [blame^]669 final int[] chains =
670 {FIREWALL_CHAIN_STANDBY, FIREWALL_CHAIN_DOZABLE, FIREWALL_CHAIN_POWERSAVE};
671 for (int chain : chains) {
672 if (getFirewallChainState(chain)) {
673 setFirewallChainEnabled(chain, true);
674 }
Felipe Leme011b98f2016-02-10 17:28:31 -0800[diff] [blame]675 }
Amith Yamasani15e472352015-04-24 19:06:07 -0700[diff] [blame]676 }
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]677 }
San Mehat4d02d002010-01-22 16:07:46 -0800[diff] [blame]678
Lorenzo Colitti5c7daac2013-08-05 10:39:37 +0900[diff] [blame]679 /**
680 * Notify our observers of a new or updated interface address.
681 */
Lorenzo Colitti64483942013-11-15 18:43:52 +0900[diff] [blame]682 private void notifyAddressUpdated(String iface, LinkAddress address) {
Erik Klineb2cfdfb2017-01-18 20:54:14 +0900[diff] [blame]683 invokeForAllObservers(o -> o.addressUpdated(iface, address));
Lorenzo Colitti5c7daac2013-08-05 10:39:37 +0900[diff] [blame]684 }
685
686 /**
687 * Notify our observers of a deleted interface address.
688 */
Lorenzo Colitti64483942013-11-15 18:43:52 +0900[diff] [blame]689 private void notifyAddressRemoved(String iface, LinkAddress address) {
Erik Klineb2cfdfb2017-01-18 20:54:14 +0900[diff] [blame]690 invokeForAllObservers(o -> o.addressRemoved(iface, address));
Lorenzo Colitti5c7daac2013-08-05 10:39:37 +0900[diff] [blame]691 }
692
Lorenzo Colitti5ae4a532013-10-31 11:59:46 +0900[diff] [blame]693 /**
694 * Notify our observers of DNS server information received.
695 */
696 private void notifyInterfaceDnsServerInfo(String iface, long lifetime, String[] addresses) {
Erik Klineb2cfdfb2017-01-18 20:54:14 +0900[diff] [blame]697 invokeForAllObservers(o -> o.interfaceDnsServerInfo(iface, lifetime, addresses));
Lorenzo Colitti5ae4a532013-10-31 11:59:46 +0900[diff] [blame]698 }
699
Lorenzo Colittic18cbfd2014-06-13 21:21:03 +0900[diff] [blame]700 /**
701 * Notify our observers of a route change.
702 */
703 private void notifyRouteChange(String action, RouteInfo route) {
Erik Klineb2cfdfb2017-01-18 20:54:14 +0900[diff] [blame]704 if (action.equals("updated")) {
705 invokeForAllObservers(o -> o.routeUpdated(route));
706 } else {
707 invokeForAllObservers(o -> o.routeRemoved(route));
Lorenzo Colittic18cbfd2014-06-13 21:21:03 +0900[diff] [blame]708 }
709 }
710
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]711 //
712 // Netd Callback handling
713 //
714
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]715 private class NetdCallbackReceiver implements INativeDaemonConnectorCallbacks {
716 @Override
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]717 public void onDaemonConnected() {
Felipe Leme65be3022016-03-22 14:53:13 -0700[diff] [blame]718 Slog.i(TAG, "onDaemonConnected()");
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]719 // event is dispatched from internal NDC thread, so we prepare the
720 // daemon back on main thread.
721 if (mConnectedSignal != null) {
bohu07cc3bb2016-05-03 15:58:01 -0700[diff] [blame]722 // The system is booting and we're connecting to netd for the first time.
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]723 mConnectedSignal.countDown();
724 mConnectedSignal = null;
725 } else {
bohu07cc3bb2016-05-03 15:58:01 -0700[diff] [blame]726 // We're reconnecting to netd after the socket connection
727 // was interrupted (e.g., if it crashed).
Robert Greenwalt2c9f5472014-04-21 14:50:28 -0700[diff] [blame]728 mFgHandler.post(new Runnable() {
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]729 @Override
730 public void run() {
bohu07cc3bb2016-05-03 15:58:01 -0700[diff] [blame]731 connectNativeNetdService();
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]732 prepareNativeDaemon();
733 }
734 });
735 }
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]736 }
Jeff Sharkeyfa23c5a2011-08-09 21:44:24 -0700[diff] [blame]737
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]738 @Override
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]739 public boolean onCheckHoldWakeLock(int code) {
740 return code == NetdResponseCode.InterfaceClassActivity;
741 }
742
743 @Override
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]744 public boolean onEvent(int code, String raw, String[] cooked) {
Lorenzo Colittia9626c12013-11-04 17:44:09 +0900[diff] [blame]745 String errorMessage = String.format("Invalid event from daemon (%s)", raw);
JP Abgrall12b933d2011-07-14 18:09:22 -0700[diff] [blame]746 switch (code) {
747 case NetdResponseCode.InterfaceChange:
748 /*
749 * a network interface change occured
750 * Format: "NNN Iface added <name>"
751 * "NNN Iface removed <name>"
752 * "NNN Iface changed <name> <up/down>"
753 * "NNN Iface linkstatus <name> <up/down>"
754 */
755 if (cooked.length < 4 || !cooked[1].equals("Iface")) {
Lorenzo Colittia9626c12013-11-04 17:44:09 +0900[diff] [blame]756 throw new IllegalStateException(errorMessage);
JP Abgrall12b933d2011-07-14 18:09:22 -0700[diff] [blame]757 }
758 if (cooked[2].equals("added")) {
759 notifyInterfaceAdded(cooked[3]);
760 return true;
761 } else if (cooked[2].equals("removed")) {
762 notifyInterfaceRemoved(cooked[3]);
763 return true;
764 } else if (cooked[2].equals("changed") && cooked.length == 5) {
765 notifyInterfaceStatusChanged(cooked[3], cooked[4].equals("up"));
766 return true;
767 } else if (cooked[2].equals("linkstate") && cooked.length == 5) {
768 notifyInterfaceLinkStateChanged(cooked[3], cooked[4].equals("up"));
769 return true;
770 }
Lorenzo Colittia9626c12013-11-04 17:44:09 +0900[diff] [blame]771 throw new IllegalStateException(errorMessage);
JP Abgrall12b933d2011-07-14 18:09:22 -0700[diff] [blame]772 // break;
773 case NetdResponseCode.BandwidthControl:
774 /*
775 * Bandwidth control needs some attention
776 * Format: "NNN limit alert <alertName> <ifaceName>"
777 */
778 if (cooked.length < 5 || !cooked[1].equals("limit")) {
Lorenzo Colittia9626c12013-11-04 17:44:09 +0900[diff] [blame]779 throw new IllegalStateException(errorMessage);
JP Abgrall12b933d2011-07-14 18:09:22 -0700[diff] [blame]780 }
781 if (cooked[2].equals("alert")) {
782 notifyLimitReached(cooked[3], cooked[4]);
783 return true;
784 }
Lorenzo Colittia9626c12013-11-04 17:44:09 +0900[diff] [blame]785 throw new IllegalStateException(errorMessage);
JP Abgrall12b933d2011-07-14 18:09:22 -0700[diff] [blame]786 // break;
Haoyu Baidb3c8672012-06-20 14:29:57 -0700[diff] [blame]787 case NetdResponseCode.InterfaceClassActivity:
788 /*
789 * An network interface class state changed (active/idle)
790 * Format: "NNN IfaceClass <active/idle> <label>"
791 */
792 if (cooked.length < 4 || !cooked[1].equals("IfaceClass")) {
Lorenzo Colittia9626c12013-11-04 17:44:09 +0900[diff] [blame]793 throw new IllegalStateException(errorMessage);
Haoyu Baidb3c8672012-06-20 14:29:57 -0700[diff] [blame]794 }
Ashish Sharma0535a9f2014-03-12 18:42:23 -0700[diff] [blame]795 long timestampNanos = 0;
Ruchi Kandoifa97fcf2016-05-13 15:10:39 -0700[diff] [blame]796 int processUid = -1;
797 if (cooked.length >= 5) {
Ashish Sharma0535a9f2014-03-12 18:42:23 -0700[diff] [blame]798 try {
799 timestampNanos = Long.parseLong(cooked[4]);
Ruchi Kandoifa97fcf2016-05-13 15:10:39 -0700[diff] [blame]800 if (cooked.length == 6) {
801 processUid = Integer.parseInt(cooked[5]);
802 }
Ashish Sharma0535a9f2014-03-12 18:42:23 -0700[diff] [blame]803 } catch(NumberFormatException ne) {}
Dianne Hackborn2ffa11e2014-04-21 15:56:18 -0700[diff] [blame]804 } else {
805 timestampNanos = SystemClock.elapsedRealtimeNanos();
Ashish Sharma0535a9f2014-03-12 18:42:23 -0700[diff] [blame]806 }
Haoyu Baidb3c8672012-06-20 14:29:57 -0700[diff] [blame]807 boolean isActive = cooked[2].equals("active");
Ashish Sharma0535a9f2014-03-12 18:42:23 -0700[diff] [blame]808 notifyInterfaceClassActivity(Integer.parseInt(cooked[3]),
Dianne Hackborn2ffa11e2014-04-21 15:56:18 -0700[diff] [blame]809 isActive ? DataConnectionRealTimeInfo.DC_POWER_STATE_HIGH
Ruchi Kandoifa97fcf2016-05-13 15:10:39 -0700[diff] [blame]810 : DataConnectionRealTimeInfo.DC_POWER_STATE_LOW,
811 timestampNanos, processUid, false);
Haoyu Baidb3c8672012-06-20 14:29:57 -0700[diff] [blame]812 return true;
813 // break;
Lorenzo Colitti5c7daac2013-08-05 10:39:37 +0900[diff] [blame]814 case NetdResponseCode.InterfaceAddressChange:
815 /*
816 * A network address change occurred
817 * Format: "NNN Address updated <addr> <iface> <flags> <scope>"
818 * "NNN Address removed <addr> <iface> <flags> <scope>"
819 */
Lorenzo Colittia9626c12013-11-04 17:44:09 +0900[diff] [blame]820 if (cooked.length < 7 || !cooked[1].equals("Address")) {
821 throw new IllegalStateException(errorMessage);
Lorenzo Colitti5c7daac2013-08-05 10:39:37 +0900[diff] [blame]822 }
823
Lorenzo Colitti64483942013-11-15 18:43:52 +0900[diff] [blame]824 String iface = cooked[4];
Lorenzo Colitti5ad421a2013-11-17 15:05:02 +0900[diff] [blame]825 LinkAddress address;
Lorenzo Colitti5c7daac2013-08-05 10:39:37 +0900[diff] [blame]826 try {
Lorenzo Colitti64483942013-11-15 18:43:52 +0900[diff] [blame]827 int flags = Integer.parseInt(cooked[5]);
828 int scope = Integer.parseInt(cooked[6]);
829 address = new LinkAddress(cooked[3], flags, scope);
Lorenzo Colitti5ad421a2013-11-17 15:05:02 +0900[diff] [blame]830 } catch(NumberFormatException e) { // Non-numeric lifetime or scope.
831 throw new IllegalStateException(errorMessage, e);
Lorenzo Colitti64483942013-11-15 18:43:52 +0900[diff] [blame]832 } catch(IllegalArgumentException e) { // Malformed/invalid IP address.
Lorenzo Colitti5ad421a2013-11-17 15:05:02 +0900[diff] [blame]833 throw new IllegalStateException(errorMessage, e);
Lorenzo Colitti5c7daac2013-08-05 10:39:37 +0900[diff] [blame]834 }
835
836 if (cooked[2].equals("updated")) {
Lorenzo Colitti64483942013-11-15 18:43:52 +0900[diff] [blame]837 notifyAddressUpdated(iface, address);
Lorenzo Colitti5c7daac2013-08-05 10:39:37 +0900[diff] [blame]838 } else {
Lorenzo Colitti64483942013-11-15 18:43:52 +0900[diff] [blame]839 notifyAddressRemoved(iface, address);
Lorenzo Colitti5c7daac2013-08-05 10:39:37 +0900[diff] [blame]840 }
841 return true;
842 // break;
Lorenzo Colitti5ae4a532013-10-31 11:59:46 +0900[diff] [blame]843 case NetdResponseCode.InterfaceDnsServerInfo:
844 /*
845 * Information about available DNS servers has been received.
846 * Format: "NNN DnsInfo servers <interface> <lifetime> <servers>"
847 */
848 long lifetime; // Actually a 32-bit unsigned integer.
849
850 if (cooked.length == 6 &&
851 cooked[1].equals("DnsInfo") &&
852 cooked[2].equals("servers")) {
853 try {
854 lifetime = Long.parseLong(cooked[4]);
855 } catch (NumberFormatException e) {
856 throw new IllegalStateException(errorMessage);
857 }
858 String[] servers = cooked[5].split(",");
859 notifyInterfaceDnsServerInfo(cooked[3], lifetime, servers);
860 }
861 return true;
862 // break;
Lorenzo Colittic18cbfd2014-06-13 21:21:03 +0900[diff] [blame]863 case NetdResponseCode.RouteChange:
864 /*
865 * A route has been updated or removed.
866 * Format: "NNN Route <updated|removed> <dst> [via <gateway] [dev <iface>]"
867 */
868 if (!cooked[1].equals("Route") || cooked.length < 6) {
869 throw new IllegalStateException(errorMessage);
870 }
871
872 String via = null;
873 String dev = null;
874 boolean valid = true;
875 for (int i = 4; (i + 1) < cooked.length && valid; i += 2) {
876 if (cooked[i].equals("dev")) {
877 if (dev == null) {
878 dev = cooked[i+1];
879 } else {
880 valid = false; // Duplicate interface.
881 }
882 } else if (cooked[i].equals("via")) {
883 if (via == null) {
884 via = cooked[i+1];
885 } else {
886 valid = false; // Duplicate gateway.
887 }
888 } else {
889 valid = false; // Unknown syntax.
890 }
891 }
892 if (valid) {
893 try {
894 // InetAddress.parseNumericAddress(null) inexplicably returns ::1.
895 InetAddress gateway = null;
896 if (via != null) gateway = InetAddress.parseNumericAddress(via);
897 RouteInfo route = new RouteInfo(new IpPrefix(cooked[3]), gateway, dev);
898 notifyRouteChange(cooked[2], route);
899 return true;
900 } catch (IllegalArgumentException e) {}
901 }
902 throw new IllegalStateException(errorMessage);
903 // break;
Jeff Sharkey605eb792014-11-04 13:34:06 -0800[diff] [blame]904 case NetdResponseCode.StrictCleartext:
905 final int uid = Integer.parseInt(cooked[1]);
906 final byte[] firstPacket = HexDump.hexStringToByteArray(cooked[2]);
907 try {
Sudheer Shankadc589ac2016-11-10 15:30:17 -0800[diff] [blame]908 ActivityManager.getService().notifyCleartextNetwork(uid, firstPacket);
Jeff Sharkey605eb792014-11-04 13:34:06 -0800[diff] [blame]909 } catch (RemoteException ignored) {
910 }
911 break;
JP Abgrall12b933d2011-07-14 18:09:22 -0700[diff] [blame]912 default: break;
Robert Greenwalte3253922010-02-18 09:23:25 -0800[diff] [blame]913 }
914 return false;
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]915 }
916 }
917
San Mehated4fc8a2010-01-22 12:28:36 -0800[diff] [blame]918
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]919 //
920 // INetworkManagementService members
921 //
Erik Kline4e37b702016-07-05 11:34:21 +0900[diff] [blame]922 @Override
923 public INetd getNetdService() throws RemoteException {
924 final CountDownLatch connectedSignal = mConnectedSignal;
925 if (connectedSignal != null) {
926 try {
927 connectedSignal.await();
928 } catch (InterruptedException ignored) {}
929 }
930
931 return mNetdService;
932 }
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]933
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]934 @Override
935 public String[] listInterfaces() {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]936 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]937 try {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]938 return NativeDaemonEvent.filterMessageList(
939 mConnector.executeForList("interface", "list"), InterfaceListResult);
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]940 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]941 throw e.rethrowAsParcelableException();
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]942 }
San Mehated4fc8a2010-01-22 12:28:36 -0800[diff] [blame]943 }
944
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]945 @Override
946 public InterfaceConfiguration getInterfaceConfig(String iface) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]947 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]948
949 final NativeDaemonEvent event;
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]950 try {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]951 event = mConnector.execute("interface", "getcfg", iface);
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]952 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]953 throw e.rethrowAsParcelableException();
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]954 }
San Mehated4fc8a2010-01-22 12:28:36 -0800[diff] [blame]955
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]956 event.checkCode(InterfaceGetCfgResult);
957
958 // Rsp: 213 xx:xx:xx:xx:xx:xx yyy.yyy.yyy.yyy zzz flag1 flag2 flag3
959 final StringTokenizer st = new StringTokenizer(event.getMessage());
San Mehated4fc8a2010-01-22 12:28:36 -0800[diff] [blame]960
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]961 InterfaceConfiguration cfg;
San Mehated4fc8a2010-01-22 12:28:36 -0800[diff] [blame]962 try {
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]963 cfg = new InterfaceConfiguration();
Jeff Sharkeyddba1062011-11-29 18:37:04 -0800[diff] [blame]964 cfg.setHardwareAddress(st.nextToken(" "));
Robert Greenwalted126402011-01-28 15:34:55 -0800[diff] [blame]965 InetAddress addr = null;
Robert Greenwalt2d2afd12011-02-01 15:30:46 -0800[diff] [blame]966 int prefixLength = 0;
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]967 try {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]968 addr = NetworkUtils.numericToInetAddress(st.nextToken());
Robert Greenwalte5903732011-02-22 16:00:42 -0800[diff] [blame]969 } catch (IllegalArgumentException iae) {
970 Slog.e(TAG, "Failed to parse ipaddr", iae);
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]971 }
972
973 try {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]974 prefixLength = Integer.parseInt(st.nextToken());
Robert Greenwalt2d2afd12011-02-01 15:30:46 -0800[diff] [blame]975 } catch (NumberFormatException nfe) {
976 Slog.e(TAG, "Failed to parse prefixLength", nfe);
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]977 }
Robert Greenwalt04808c22010-12-13 17:01:41 -0800[diff] [blame]978
Jeff Sharkeyddba1062011-11-29 18:37:04 -0800[diff] [blame]979 cfg.setLinkAddress(new LinkAddress(addr, prefixLength));
980 while (st.hasMoreTokens()) {
981 cfg.setFlag(st.nextToken());
982 }
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]983 } catch (NoSuchElementException nsee) {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]984 throw new IllegalStateException("Invalid response from daemon: " + event);
San Mehated4fc8a2010-01-22 12:28:36 -0800[diff] [blame]985 }
San Mehated4fc8a2010-01-22 12:28:36 -0800[diff] [blame]986 return cfg;
987 }
988
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]989 @Override
990 public void setInterfaceConfig(String iface, InterfaceConfiguration cfg) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]991 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Jeff Sharkeyddba1062011-11-29 18:37:04 -0800[diff] [blame]992 LinkAddress linkAddr = cfg.getLinkAddress();
Robert Greenwalt2d2afd12011-02-01 15:30:46 -0800[diff] [blame]993 if (linkAddr == null || linkAddr.getAddress() == null) {
994 throw new IllegalStateException("Null LinkAddress given");
Robert Greenwalted126402011-01-28 15:34:55 -0800[diff] [blame]995 }
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]996
997 final Command cmd = new Command("interface", "setcfg", iface,
Robert Greenwalt2d2afd12011-02-01 15:30:46 -0800[diff] [blame]998 linkAddr.getAddress().getHostAddress(),
Lorenzo Colitti7dc78cf2014-06-09 22:58:46 +0900[diff] [blame]999 linkAddr.getPrefixLength());
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1000 for (String flag : cfg.getFlags()) {
1001 cmd.appendArg(flag);
1002 }
1003
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1004 try {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1005 mConnector.execute(cmd);
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1006 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]1007 throw e.rethrowAsParcelableException();
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1008 }
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]1009 }
1010
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1011 @Override
1012 public void setInterfaceDown(String iface) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1013 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Jeff Sharkey31c6e482011-11-18 17:09:01 -0800[diff] [blame]1014 final InterfaceConfiguration ifcg = getInterfaceConfig(iface);
Jeff Sharkeyddba1062011-11-29 18:37:04 -0800[diff] [blame]1015 ifcg.setInterfaceDown();
Jeff Sharkey31c6e482011-11-18 17:09:01 -0800[diff] [blame]1016 setInterfaceConfig(iface, ifcg);
Irfan Sheriff7244c972011-08-05 20:40:45 -0700[diff] [blame]1017 }
1018
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1019 @Override
1020 public void setInterfaceUp(String iface) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1021 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Jeff Sharkey31c6e482011-11-18 17:09:01 -0800[diff] [blame]1022 final InterfaceConfiguration ifcg = getInterfaceConfig(iface);
Jeff Sharkeyddba1062011-11-29 18:37:04 -0800[diff] [blame]1023 ifcg.setInterfaceUp();
Jeff Sharkey31c6e482011-11-18 17:09:01 -0800[diff] [blame]1024 setInterfaceConfig(iface, ifcg);
Irfan Sheriff7244c972011-08-05 20:40:45 -0700[diff] [blame]1025 }
1026
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1027 @Override
1028 public void setInterfaceIpv6PrivacyExtensions(String iface, boolean enable) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1029 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Irfan Sheriff73293612011-09-14 12:31:56 -0700[diff] [blame]1030 try {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1031 mConnector.execute(
1032 "interface", "ipv6privacyextensions", iface, enable ? "enable" : "disable");
Irfan Sheriff73293612011-09-14 12:31:56 -0700[diff] [blame]1033 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]1034 throw e.rethrowAsParcelableException();
Irfan Sheriff73293612011-09-14 12:31:56 -0700[diff] [blame]1035 }
1036 }
1037
Irfan Sherifff5600612011-06-16 10:26:28 -0700[diff] [blame]1038 /* TODO: This is right now a IPv4 only function. Works for wifi which loses its
1039 IPv6 addresses on interface down, but we need to do full clean up here */
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1040 @Override
1041 public void clearInterfaceAddresses(String iface) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1042 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Irfan Sherifff5600612011-06-16 10:26:28 -0700[diff] [blame]1043 try {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1044 mConnector.execute("interface", "clearaddrs", iface);
Irfan Sherifff5600612011-06-16 10:26:28 -0700[diff] [blame]1045 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]1046 throw e.rethrowAsParcelableException();
Irfan Sherifff5600612011-06-16 10:26:28 -0700[diff] [blame]1047 }
1048 }
1049
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1050 @Override
1051 public void enableIpv6(String iface) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1052 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
repo sync7960d9f2011-09-29 12:40:02 -0700[diff] [blame]1053 try {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1054 mConnector.execute("interface", "ipv6", iface, "enable");
repo sync7960d9f2011-09-29 12:40:02 -0700[diff] [blame]1055 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]1056 throw e.rethrowAsParcelableException();
repo sync7960d9f2011-09-29 12:40:02 -0700[diff] [blame]1057 }
1058 }
1059
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1060 @Override
1061 public void disableIpv6(String iface) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1062 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
repo sync7960d9f2011-09-29 12:40:02 -0700[diff] [blame]1063 try {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1064 mConnector.execute("interface", "ipv6", iface, "disable");
repo sync7960d9f2011-09-29 12:40:02 -0700[diff] [blame]1065 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]1066 throw e.rethrowAsParcelableException();
repo sync7960d9f2011-09-29 12:40:02 -0700[diff] [blame]1067 }
1068 }
1069
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1070 @Override
Lorenzo Colittie21a26b2014-10-28 15:24:03 +0900[diff] [blame]1071 public void setInterfaceIpv6NdOffload(String iface, boolean enable) {
1072 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
1073 try {
1074 mConnector.execute(
1075 "interface", "ipv6ndoffload", iface, (enable ? "enable" : "disable"));
1076 } catch (NativeDaemonConnectorException e) {
1077 throw e.rethrowAsParcelableException();
1078 }
1079 }
1080
1081 @Override
Sreeram Ramachandranb2829fa2014-04-15 19:07:12 -0700[diff] [blame]1082 public void addRoute(int netId, RouteInfo route) {
Sreeram Ramachandrana77760d2014-07-17 17:09:07 -0700[diff] [blame]1083 modifyRoute("add", "" + netId, route);
Robert Greenwalt59b1a4e2011-05-10 15:05:02 -0700[diff] [blame]1084 }
1085
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1086 @Override
Sreeram Ramachandranb2829fa2014-04-15 19:07:12 -0700[diff] [blame]1087 public void removeRoute(int netId, RouteInfo route) {
Sreeram Ramachandrana77760d2014-07-17 17:09:07 -0700[diff] [blame]1088 modifyRoute("remove", "" + netId, route);
Robert Greenwalt59b1a4e2011-05-10 15:05:02 -0700[diff] [blame]1089 }
1090
Sreeram Ramachandrana77760d2014-07-17 17:09:07 -0700[diff] [blame]1091 private void modifyRoute(String action, String netId, RouteInfo route) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1092 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Robert Greenwalt3b28e9a2011-11-02 14:37:19 -0700[diff] [blame]1093
Sreeram Ramachandranb2829fa2014-04-15 19:07:12 -0700[diff] [blame]1094 final Command cmd = new Command("network", "route", action, netId);
Robert Greenwalt3b28e9a2011-11-02 14:37:19 -0700[diff] [blame]1095
Sreeram Ramachandranb2829fa2014-04-15 19:07:12 -0700[diff] [blame]1096 // create triplet: interface dest-ip-addr/prefixlength gateway-ip-addr
Sreeram Ramachandranb2829fa2014-04-15 19:07:12 -0700[diff] [blame]1097 cmd.appendArg(route.getInterface());
Lorenzo Colitti4b0f8e62014-09-19 01:49:05 +0900[diff] [blame]1098 cmd.appendArg(route.getDestination().toString());
1099
1100 switch (route.getType()) {
1101 case RouteInfo.RTN_UNICAST:
1102 if (route.hasGateway()) {
1103 cmd.appendArg(route.getGateway().getHostAddress());
1104 }
1105 break;
1106 case RouteInfo.RTN_UNREACHABLE:
1107 cmd.appendArg("unreachable");
1108 break;
1109 case RouteInfo.RTN_THROW:
1110 cmd.appendArg("throw");
1111 break;
Sreeram Ramachandran1fbcb272014-05-22 16:30:48 -0700[diff] [blame]1112 }
Robert Greenwalt59b1a4e2011-05-10 15:05:02 -0700[diff] [blame]1113
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1114 try {
1115 mConnector.execute(cmd);
1116 } catch (NativeDaemonConnectorException e) {
1117 throw e.rethrowAsParcelableException();
Robert Greenwalt59b1a4e2011-05-10 15:05:02 -0700[diff] [blame]1118 }
1119 }
1120
1121 private ArrayList<String> readRouteList(String filename) {
1122 FileInputStream fstream = null;
Christopher Wiley212b95f2016-08-02 11:38:57 -0700[diff] [blame]1123 ArrayList<String> list = new ArrayList<>();
Robert Greenwalt59b1a4e2011-05-10 15:05:02 -0700[diff] [blame]1124
1125 try {
1126 fstream = new FileInputStream(filename);
1127 DataInputStream in = new DataInputStream(fstream);
1128 BufferedReader br = new BufferedReader(new InputStreamReader(in));
1129 String s;
1130
1131 // throw away the title line
1132
1133 while (((s = br.readLine()) != null) && (s.length() != 0)) {
1134 list.add(s);
1135 }
1136 } catch (IOException ex) {
1137 // return current list, possibly empty
1138 } finally {
1139 if (fstream != null) {
1140 try {
1141 fstream.close();
1142 } catch (IOException ex) {}
1143 }
1144 }
1145
1146 return list;
1147 }
1148
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1149 @Override
sy.yun9d9b74a2013-09-02 05:24:09 +0900[diff] [blame]1150 public void setMtu(String iface, int mtu) {
1151 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
1152
1153 final NativeDaemonEvent event;
1154 try {
1155 event = mConnector.execute("interface", "setmtu", iface, mtu);
1156 } catch (NativeDaemonConnectorException e) {
1157 throw e.rethrowAsParcelableException();
1158 }
1159 }
1160
1161 @Override
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]1162 public void shutdown() {
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1163 // TODO: remove from aidl if nobody calls externally
1164 mContext.enforceCallingOrSelfPermission(SHUTDOWN, TAG);
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]1165
Felipe Leme03e689d2016-03-02 16:17:38 -0800[diff] [blame]1166 Slog.i(TAG, "Shutting down");
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]1167 }
1168
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1169 @Override
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]1170 public boolean getIpForwardingEnabled() throws IllegalStateException{
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1171 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]1172
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1173 final NativeDaemonEvent event;
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1174 try {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1175 event = mConnector.execute("ipfwd", "status");
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1176 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]1177 throw e.rethrowAsParcelableException();
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1178 }
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]1179
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1180 // 211 Forwarding enabled
1181 event.checkCode(IpFwdStatusResult);
1182 return event.getMessage().endsWith("enabled");
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]1183 }
1184
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1185 @Override
1186 public void setIpForwardingEnabled(boolean enable) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1187 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Jeff Sharkey31c6e482011-11-18 17:09:01 -0800[diff] [blame]1188 try {
Nilesh Poddarf3d4a582015-02-24 12:11:11 -0800[diff] [blame]1189 mConnector.execute("ipfwd", enable ? "enable" : "disable", "tethering");
Jeff Sharkey31c6e482011-11-18 17:09:01 -0800[diff] [blame]1190 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]1191 throw e.rethrowAsParcelableException();
Jeff Sharkey31c6e482011-11-18 17:09:01 -0800[diff] [blame]1192 }
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]1193 }
1194
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1195 @Override
1196 public void startTethering(String[] dhcpRange) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1197 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Robert Greenwaltbfb7bfa2010-03-24 16:03:21 -0700[diff] [blame]1198 // cmd is "tether start first_start first_stop second_start second_stop ..."
1199 // an odd number of addrs will fail
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1200
1201 final Command cmd = new Command("tether", "start");
Robert Greenwaltbfb7bfa2010-03-24 16:03:21 -0700[diff] [blame]1202 for (String d : dhcpRange) {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1203 cmd.appendArg(d);
Robert Greenwaltbfb7bfa2010-03-24 16:03:21 -0700[diff] [blame]1204 }
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1205
1206 try {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1207 mConnector.execute(cmd);
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1208 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]1209 throw e.rethrowAsParcelableException();
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1210 }
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]1211 }
1212
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1213 @Override
1214 public void stopTethering() {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1215 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1216 try {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1217 mConnector.execute("tether", "stop");
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1218 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]1219 throw e.rethrowAsParcelableException();
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1220 }
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]1221 }
1222
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1223 @Override
1224 public boolean isTetheringStarted() {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1225 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]1226
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1227 final NativeDaemonEvent event;
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1228 try {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1229 event = mConnector.execute("tether", "status");
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1230 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]1231 throw e.rethrowAsParcelableException();
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1232 }
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]1233
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1234 // 210 Tethering services started
1235 event.checkCode(TetherStatusResult);
1236 return event.getMessage().endsWith("started");
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]1237 }
Matthew Xiefe19f122012-07-12 16:03:32 -0700[diff] [blame]1238
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1239 @Override
1240 public void tetherInterface(String iface) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1241 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1242 try {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1243 mConnector.execute("tether", "interface", "add", iface);
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1244 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]1245 throw e.rethrowAsParcelableException();
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1246 }
Christopher Wiley212b95f2016-08-02 11:38:57 -0700[diff] [blame]1247 List<RouteInfo> routes = new ArrayList<>();
Sreeram Ramachandrana77760d2014-07-17 17:09:07 -0700[diff] [blame]1248 // The RouteInfo constructor truncates the LinkAddress to a network prefix, thus making it
1249 // suitable to use as a route destination.
1250 routes.add(new RouteInfo(getInterfaceConfig(iface).getLinkAddress(), null, iface));
1251 addInterfaceToLocalNetwork(iface, routes);
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]1252 }
1253
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1254 @Override
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]1255 public void untetherInterface(String iface) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1256 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1257 try {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1258 mConnector.execute("tether", "interface", "remove", iface);
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1259 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]1260 throw e.rethrowAsParcelableException();
Erik Kline1f4278a2016-08-16 16:46:33 +0900[diff] [blame]1261 } finally {
1262 removeInterfaceFromLocalNetwork(iface);
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1263 }
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]1264 }
1265
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1266 @Override
1267 public String[] listTetheredInterfaces() {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1268 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1269 try {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1270 return NativeDaemonEvent.filterMessageList(
1271 mConnector.executeForList("tether", "interface", "list"),
1272 TetherInterfaceListResult);
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1273 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]1274 throw e.rethrowAsParcelableException();
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1275 }
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]1276 }
1277
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1278 @Override
Lorenzo Colittib57edc52014-08-22 17:10:50 -0700[diff] [blame]1279 public void setDnsForwarders(Network network, String[] dns) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1280 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1281
Lorenzo Colittib57edc52014-08-22 17:10:50 -0700[diff] [blame]1282 int netId = (network != null) ? network.netId : ConnectivityManager.NETID_UNSET;
1283 final Command cmd = new Command("tether", "dns", "set", netId);
1284
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1285 for (String s : dns) {
1286 cmd.appendArg(NetworkUtils.numericToInetAddress(s).getHostAddress());
1287 }
1288
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]1289 try {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1290 mConnector.execute(cmd);
1291 } catch (NativeDaemonConnectorException e) {
1292 throw e.rethrowAsParcelableException();
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]1293 }
1294 }
1295
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1296 @Override
1297 public String[] getDnsForwarders() {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1298 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1299 try {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1300 return NativeDaemonEvent.filterMessageList(
1301 mConnector.executeForList("tether", "dns", "list"), TetherDnsFwdTgtListResult);
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1302 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]1303 throw e.rethrowAsParcelableException();
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1304 }
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]1305 }
1306
jiaguo1da35f72014-01-09 16:39:59 +0800[diff] [blame]1307 private List<InterfaceAddress> excludeLinkLocal(List<InterfaceAddress> addresses) {
Christopher Wiley212b95f2016-08-02 11:38:57 -0700[diff] [blame]1308 ArrayList<InterfaceAddress> filtered = new ArrayList<>(addresses.size());
jiaguo1da35f72014-01-09 16:39:59 +0800[diff] [blame]1309 for (InterfaceAddress ia : addresses) {
1310 if (!ia.getAddress().isLinkLocalAddress())
1311 filtered.add(ia);
1312 }
1313 return filtered;
1314 }
1315
Lorenzo Colitti35e36db2015-02-26 01:25:36 +0900[diff] [blame]1316 private void modifyInterfaceForward(boolean add, String fromIface, String toIface) {
1317 final Command cmd = new Command("ipfwd", add ? "add" : "remove", fromIface, toIface);
1318 try {
1319 mConnector.execute(cmd);
1320 } catch (NativeDaemonConnectorException e) {
1321 throw e.rethrowAsParcelableException();
1322 }
1323 }
1324
1325 @Override
1326 public void startInterfaceForwarding(String fromIface, String toIface) {
1327 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
1328 modifyInterfaceForward(true, fromIface, toIface);
1329 }
1330
1331 @Override
1332 public void stopInterfaceForwarding(String fromIface, String toIface) {
1333 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
1334 modifyInterfaceForward(false, fromIface, toIface);
1335 }
1336
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1337 private void modifyNat(String action, String internalInterface, String externalInterface)
Robert Greenwalt3b28e9a2011-11-02 14:37:19 -0700[diff] [blame]1338 throws SocketException {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1339 final Command cmd = new Command("nat", action, internalInterface, externalInterface);
Robert Greenwalt3b28e9a2011-11-02 14:37:19 -0700[diff] [blame]1340
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1341 final NetworkInterface internalNetworkInterface = NetworkInterface.getByName(
1342 internalInterface);
Robert Greenwalte83d1812011-11-21 14:44:39 -0800[diff] [blame]1343 if (internalNetworkInterface == null) {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1344 cmd.appendArg("0");
Robert Greenwalte83d1812011-11-21 14:44:39 -0800[diff] [blame]1345 } else {
jiaguo1da35f72014-01-09 16:39:59 +0800[diff] [blame]1346 // Don't touch link-local routes, as link-local addresses aren't routable,
1347 // kernel creates link-local routes on all interfaces automatically
1348 List<InterfaceAddress> interfaceAddresses = excludeLinkLocal(
1349 internalNetworkInterface.getInterfaceAddresses());
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1350 cmd.appendArg(interfaceAddresses.size());
Robert Greenwalte83d1812011-11-21 14:44:39 -0800[diff] [blame]1351 for (InterfaceAddress ia : interfaceAddresses) {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1352 InetAddress addr = NetworkUtils.getNetworkPart(
1353 ia.getAddress(), ia.getNetworkPrefixLength());
1354 cmd.appendArg(addr.getHostAddress() + "/" + ia.getNetworkPrefixLength());
Robert Greenwalte83d1812011-11-21 14:44:39 -0800[diff] [blame]1355 }
Robert Greenwalt3b28e9a2011-11-02 14:37:19 -0700[diff] [blame]1356 }
1357
Jeff Sharkey31c6e482011-11-18 17:09:01 -0800[diff] [blame]1358 try {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1359 mConnector.execute(cmd);
Jeff Sharkey31c6e482011-11-18 17:09:01 -0800[diff] [blame]1360 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]1361 throw e.rethrowAsParcelableException();
Jeff Sharkey31c6e482011-11-18 17:09:01 -0800[diff] [blame]1362 }
Robert Greenwalt3b28e9a2011-11-02 14:37:19 -0700[diff] [blame]1363 }
1364
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1365 @Override
1366 public void enableNat(String internalInterface, String externalInterface) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1367 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1368 try {
Robert Greenwalt3b28e9a2011-11-02 14:37:19 -0700[diff] [blame]1369 modifyNat("enable", internalInterface, externalInterface);
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1370 } catch (SocketException e) {
1371 throw new IllegalStateException(e);
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1372 }
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]1373 }
1374
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1375 @Override
1376 public void disableNat(String internalInterface, String externalInterface) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1377 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1378 try {
Robert Greenwalt3b28e9a2011-11-02 14:37:19 -0700[diff] [blame]1379 modifyNat("disable", internalInterface, externalInterface);
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1380 } catch (SocketException e) {
1381 throw new IllegalStateException(e);
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1382 }
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]1383 }
San Mehat72759df2010-01-19 13:50:37 -0800[diff] [blame]1384
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1385 @Override
1386 public String[] listTtys() {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1387 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1388 try {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1389 return NativeDaemonEvent.filterMessageList(
1390 mConnector.executeForList("list_ttys"), TtyListResult);
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1391 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]1392 throw e.rethrowAsParcelableException();
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1393 }
San Mehat72759df2010-01-19 13:50:37 -0800[diff] [blame]1394 }
1395
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1396 @Override
1397 public void attachPppd(
1398 String tty, String localAddr, String remoteAddr, String dns1Addr, String dns2Addr) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1399 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
San Mehat72759df2010-01-19 13:50:37 -0800[diff] [blame]1400 try {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1401 mConnector.execute("pppd", "attach", tty,
Robert Greenwalte5903732011-02-22 16:00:42 -0800[diff] [blame]1402 NetworkUtils.numericToInetAddress(localAddr).getHostAddress(),
1403 NetworkUtils.numericToInetAddress(remoteAddr).getHostAddress(),
1404 NetworkUtils.numericToInetAddress(dns1Addr).getHostAddress(),
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1405 NetworkUtils.numericToInetAddress(dns2Addr).getHostAddress());
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1406 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]1407 throw e.rethrowAsParcelableException();
San Mehat72759df2010-01-19 13:50:37 -0800[diff] [blame]1408 }
1409 }
1410
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1411 @Override
1412 public void detachPppd(String tty) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1413 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1414 try {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1415 mConnector.execute("pppd", "detach", tty);
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1416 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]1417 throw e.rethrowAsParcelableException();
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1418 }
San Mehat72759df2010-01-19 13:50:37 -0800[diff] [blame]1419 }
Robert Greenwaltce1200d2010-02-18 11:25:54 -0800[diff] [blame]1420
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1421 @Override
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]1422 public void addIdleTimer(String iface, int timeout, final int type) {
Haoyu Bai04124232012-06-28 15:26:19 -0700[diff] [blame]1423 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
1424
1425 if (DBG) Slog.d(TAG, "Adding idletimer");
1426
1427 synchronized (mIdleTimerLock) {
1428 IdleTimerParams params = mActiveIdleTimers.get(iface);
1429 if (params != null) {
1430 // the interface already has idletimer, update network count
1431 params.networkCount++;
1432 return;
1433 }
1434
1435 try {
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]1436 mConnector.execute("idletimer", "add", iface, Integer.toString(timeout),
1437 Integer.toString(type));
Haoyu Bai04124232012-06-28 15:26:19 -0700[diff] [blame]1438 } catch (NativeDaemonConnectorException e) {
1439 throw e.rethrowAsParcelableException();
1440 }
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]1441 mActiveIdleTimers.put(iface, new IdleTimerParams(timeout, type));
1442
Dianne Hackborne13c4c02014-02-11 17:18:35 -0800[diff] [blame]1443 // Networks start up.
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]1444 if (ConnectivityManager.isNetworkTypeMobile(type)) {
1445 mNetworkActive = false;
1446 }
Dianne Hackborn2ffa11e2014-04-21 15:56:18 -0700[diff] [blame]1447 mDaemonHandler.post(new Runnable() {
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]1448 @Override public void run() {
Dianne Hackborn2ffa11e2014-04-21 15:56:18 -0700[diff] [blame]1449 notifyInterfaceClassActivity(type,
1450 DataConnectionRealTimeInfo.DC_POWER_STATE_HIGH,
Ruchi Kandoifa97fcf2016-05-13 15:10:39 -0700[diff] [blame]1451 SystemClock.elapsedRealtimeNanos(), -1, false);
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]1452 }
1453 });
Haoyu Bai04124232012-06-28 15:26:19 -0700[diff] [blame]1454 }
1455 }
1456
1457 @Override
1458 public void removeIdleTimer(String iface) {
1459 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
1460
1461 if (DBG) Slog.d(TAG, "Removing idletimer");
1462
1463 synchronized (mIdleTimerLock) {
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]1464 final IdleTimerParams params = mActiveIdleTimers.get(iface);
Haoyu Bai04124232012-06-28 15:26:19 -0700[diff] [blame]1465 if (params == null || --(params.networkCount) > 0) {
1466 return;
1467 }
1468
1469 try {
1470 mConnector.execute("idletimer", "remove", iface,
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]1471 Integer.toString(params.timeout), Integer.toString(params.type));
Haoyu Bai04124232012-06-28 15:26:19 -0700[diff] [blame]1472 } catch (NativeDaemonConnectorException e) {
1473 throw e.rethrowAsParcelableException();
1474 }
1475 mActiveIdleTimers.remove(iface);
Dianne Hackborn2ffa11e2014-04-21 15:56:18 -0700[diff] [blame]1476 mDaemonHandler.post(new Runnable() {
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]1477 @Override public void run() {
Dianne Hackborn2ffa11e2014-04-21 15:56:18 -0700[diff] [blame]1478 notifyInterfaceClassActivity(params.type,
1479 DataConnectionRealTimeInfo.DC_POWER_STATE_LOW,
Ruchi Kandoifa97fcf2016-05-13 15:10:39 -0700[diff] [blame]1480 SystemClock.elapsedRealtimeNanos(), -1, false);
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]1481 }
1482 });
Haoyu Bai04124232012-06-28 15:26:19 -0700[diff] [blame]1483 }
1484 }
1485
1486 @Override
Jeff Sharkeye8914c32012-05-01 16:26:09 -0700[diff] [blame]1487 public NetworkStats getNetworkStatsSummaryDev() {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1488 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Jeff Sharkey9a2c2a62013-01-14 16:48:51 -0800[diff] [blame]1489 try {
1490 return mStatsFactory.readNetworkStatsSummaryDev();
1491 } catch (IOException e) {
1492 throw new IllegalStateException(e);
1493 }
Jeff Sharkeye8914c32012-05-01 16:26:09 -0700[diff] [blame]1494 }
1495
1496 @Override
1497 public NetworkStats getNetworkStatsSummaryXt() {
1498 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Jeff Sharkey9a2c2a62013-01-14 16:48:51 -0800[diff] [blame]1499 try {
1500 return mStatsFactory.readNetworkStatsSummaryXt();
1501 } catch (IOException e) {
1502 throw new IllegalStateException(e);
1503 }
Jeff Sharkeyae2c1812011-10-04 13:11:40 -0700[diff] [blame]1504 }
1505
Jeff Sharkeyeedcb952011-05-17 14:55:15 -0700[diff] [blame]1506 @Override
Jeff Sharkey9a13f362011-04-26 16:25:36 -0700[diff] [blame]1507 public NetworkStats getNetworkStatsDetail() {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1508 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Jeff Sharkey9a2c2a62013-01-14 16:48:51 -0800[diff] [blame]1509 try {
Dianne Hackbornd0c5b9a2014-02-21 16:19:05 -0800[diff] [blame]1510 return mStatsFactory.readNetworkStatsDetail(UID_ALL, null, TAG_ALL, null);
Jeff Sharkey9a2c2a62013-01-14 16:48:51 -0800[diff] [blame]1511 } catch (IOException e) {
1512 throw new IllegalStateException(e);
1513 }
San Mehat91cac642010-03-31 14:31:36 -0700[diff] [blame]1514 }
1515
Jeff Sharkeyeedcb952011-05-17 14:55:15 -0700[diff] [blame]1516 @Override
Jeff Sharkey41ff7ec2011-07-25 15:21:22 -0700[diff] [blame]1517 public void setInterfaceQuota(String iface, long quotaBytes) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1518 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Jeff Sharkeyb3f19ca2011-06-29 23:54:13 -0700[diff] [blame]1519
Jeff Sharkey350083e2011-06-29 10:45:16 -0700[diff] [blame]1520 // silently discard when control disabled
1521 // TODO: eventually migrate to be always enabled
1522 if (!mBandwidthControlEnabled) return;
1523
Jeff Sharkey41ff7ec2011-07-25 15:21:22 -0700[diff] [blame]1524 synchronized (mQuotaLock) {
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]1525 if (mActiveQuotas.containsKey(iface)) {
Jeff Sharkey41ff7ec2011-07-25 15:21:22 -0700[diff] [blame]1526 throw new IllegalStateException("iface " + iface + " already has quota");
Jeff Sharkeyb3f19ca2011-06-29 23:54:13 -0700[diff] [blame]1527 }
1528
Jeff Sharkeyb3f19ca2011-06-29 23:54:13 -0700[diff] [blame]1529 try {
Jeff Sharkey41ff7ec2011-07-25 15:21:22 -0700[diff] [blame]1530 // TODO: support quota shared across interfaces
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1531 mConnector.execute("bandwidth", "setiquota", iface, quotaBytes);
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]1532 mActiveQuotas.put(iface, quotaBytes);
Jeff Sharkeyb3f19ca2011-06-29 23:54:13 -0700[diff] [blame]1533 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]1534 throw e.rethrowAsParcelableException();
Jeff Sharkeyb3f19ca2011-06-29 23:54:13 -0700[diff] [blame]1535 }
Ashish Sharma50fd36d2011-06-15 19:34:53 -0700[diff] [blame]1536 }
1537 }
1538
1539 @Override
Jeff Sharkeyb3f19ca2011-06-29 23:54:13 -0700[diff] [blame]1540 public void removeInterfaceQuota(String iface) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1541 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Jeff Sharkeyb3f19ca2011-06-29 23:54:13 -0700[diff] [blame]1542
Jeff Sharkey350083e2011-06-29 10:45:16 -0700[diff] [blame]1543 // silently discard when control disabled
1544 // TODO: eventually migrate to be always enabled
1545 if (!mBandwidthControlEnabled) return;
1546
Jeff Sharkey41ff7ec2011-07-25 15:21:22 -0700[diff] [blame]1547 synchronized (mQuotaLock) {
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]1548 if (!mActiveQuotas.containsKey(iface)) {
Jeff Sharkeyb3f19ca2011-06-29 23:54:13 -0700[diff] [blame]1549 // TODO: eventually consider throwing
1550 return;
1551 }
1552
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]1553 mActiveQuotas.remove(iface);
1554 mActiveAlerts.remove(iface);
Jeff Sharkey38ddeaa2011-11-08 13:04:22 -0800[diff] [blame]1555
Jeff Sharkeyb3f19ca2011-06-29 23:54:13 -0700[diff] [blame]1556 try {
Jeff Sharkey41ff7ec2011-07-25 15:21:22 -0700[diff] [blame]1557 // TODO: support quota shared across interfaces
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1558 mConnector.execute("bandwidth", "removeiquota", iface);
Jeff Sharkeyb3f19ca2011-06-29 23:54:13 -0700[diff] [blame]1559 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]1560 throw e.rethrowAsParcelableException();
Jeff Sharkeyb3f19ca2011-06-29 23:54:13 -0700[diff] [blame]1561 }
1562 }
1563 }
1564
1565 @Override
Jeff Sharkey41ff7ec2011-07-25 15:21:22 -0700[diff] [blame]1566 public void setInterfaceAlert(String iface, long alertBytes) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1567 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Jeff Sharkey41ff7ec2011-07-25 15:21:22 -0700[diff] [blame]1568
1569 // silently discard when control disabled
1570 // TODO: eventually migrate to be always enabled
1571 if (!mBandwidthControlEnabled) return;
1572
1573 // quick sanity check
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]1574 if (!mActiveQuotas.containsKey(iface)) {
Jeff Sharkey41ff7ec2011-07-25 15:21:22 -0700[diff] [blame]1575 throw new IllegalStateException("setting alert requires existing quota on iface");
1576 }
1577
1578 synchronized (mQuotaLock) {
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]1579 if (mActiveAlerts.containsKey(iface)) {
Jeff Sharkey41ff7ec2011-07-25 15:21:22 -0700[diff] [blame]1580 throw new IllegalStateException("iface " + iface + " already has alert");
1581 }
1582
Jeff Sharkey41ff7ec2011-07-25 15:21:22 -0700[diff] [blame]1583 try {
1584 // TODO: support alert shared across interfaces
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1585 mConnector.execute("bandwidth", "setinterfacealert", iface, alertBytes);
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]1586 mActiveAlerts.put(iface, alertBytes);
Jeff Sharkey41ff7ec2011-07-25 15:21:22 -0700[diff] [blame]1587 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]1588 throw e.rethrowAsParcelableException();
Jeff Sharkey41ff7ec2011-07-25 15:21:22 -0700[diff] [blame]1589 }
1590 }
1591 }
1592
1593 @Override
1594 public void removeInterfaceAlert(String iface) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1595 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Jeff Sharkey41ff7ec2011-07-25 15:21:22 -0700[diff] [blame]1596
1597 // silently discard when control disabled
1598 // TODO: eventually migrate to be always enabled
1599 if (!mBandwidthControlEnabled) return;
1600
1601 synchronized (mQuotaLock) {
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]1602 if (!mActiveAlerts.containsKey(iface)) {
Jeff Sharkey41ff7ec2011-07-25 15:21:22 -0700[diff] [blame]1603 // TODO: eventually consider throwing
1604 return;
1605 }
1606
Jeff Sharkey41ff7ec2011-07-25 15:21:22 -0700[diff] [blame]1607 try {
1608 // TODO: support alert shared across interfaces
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1609 mConnector.execute("bandwidth", "removeinterfacealert", iface);
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]1610 mActiveAlerts.remove(iface);
Jeff Sharkey41ff7ec2011-07-25 15:21:22 -0700[diff] [blame]1611 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]1612 throw e.rethrowAsParcelableException();
Jeff Sharkey41ff7ec2011-07-25 15:21:22 -0700[diff] [blame]1613 }
1614 }
1615 }
1616
1617 @Override
1618 public void setGlobalAlert(long alertBytes) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1619 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Jeff Sharkey41ff7ec2011-07-25 15:21:22 -0700[diff] [blame]1620
1621 // silently discard when control disabled
1622 // TODO: eventually migrate to be always enabled
1623 if (!mBandwidthControlEnabled) return;
1624
Jeff Sharkey41ff7ec2011-07-25 15:21:22 -0700[diff] [blame]1625 try {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1626 mConnector.execute("bandwidth", "setglobalalert", alertBytes);
Jeff Sharkey41ff7ec2011-07-25 15:21:22 -0700[diff] [blame]1627 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]1628 throw e.rethrowAsParcelableException();
Jeff Sharkey41ff7ec2011-07-25 15:21:22 -0700[diff] [blame]1629 }
1630 }
1631
Sudheer Shanka62f5c172017-03-17 16:25:55 -0700[diff] [blame^]1632 private void setUidOnMeteredNetworkList(int uid, boolean blacklist, boolean enable) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1633 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Jeff Sharkeyb3f19ca2011-06-29 23:54:13 -0700[diff] [blame]1634
Jeff Sharkey350083e2011-06-29 10:45:16 -0700[diff] [blame]1635 // silently discard when control disabled
1636 // TODO: eventually migrate to be always enabled
1637 if (!mBandwidthControlEnabled) return;
1638
Felipe Leme65be3022016-03-22 14:53:13 -0700[diff] [blame]1639 final String chain = blacklist ? "naughtyapps" : "niceapps";
1640 final String suffix = enable ? "add" : "remove";
1641
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]1642 synchronized (mQuotaLock) {
Sudheer Shanka62f5c172017-03-17 16:25:55 -0700[diff] [blame^]1643 boolean oldEnable;
1644 SparseBooleanArray quotaList;
1645 synchronized (mRulesLock) {
1646 quotaList = blacklist ? mUidRejectOnMetered : mUidAllowOnMetered;
1647 oldEnable = quotaList.get(uid, false);
1648 }
Felipe Leme65be3022016-03-22 14:53:13 -0700[diff] [blame]1649 if (oldEnable == enable) {
Jeff Sharkeyb3f19ca2011-06-29 23:54:13 -0700[diff] [blame]1650 // TODO: eventually consider throwing
1651 return;
1652 }
1653
Felipe Leme29e72ea2016-09-08 13:26:55 -0700[diff] [blame]1654 Trace.traceBegin(Trace.TRACE_TAG_NETWORK, "inetd bandwidth");
Jeff Sharkeyb3f19ca2011-06-29 23:54:13 -0700[diff] [blame]1655 try {
Felipe Leme65be3022016-03-22 14:53:13 -0700[diff] [blame]1656 mConnector.execute("bandwidth", suffix + chain, uid);
Sudheer Shanka62f5c172017-03-17 16:25:55 -0700[diff] [blame^]1657 synchronized (mRulesLock) {
1658 if (enable) {
1659 quotaList.put(uid, true);
1660 } else {
1661 quotaList.delete(uid);
1662 }
Jeff Sharkeyb3f19ca2011-06-29 23:54:13 -0700[diff] [blame]1663 }
1664 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]1665 throw e.rethrowAsParcelableException();
Felipe Leme29e72ea2016-09-08 13:26:55 -0700[diff] [blame]1666 } finally {
1667 Trace.traceEnd(Trace.TRACE_TAG_NETWORK);
Jeff Sharkeyb3f19ca2011-06-29 23:54:13 -0700[diff] [blame]1668 }
Ashish Sharma50fd36d2011-06-15 19:34:53 -0700[diff] [blame]1669 }
1670 }
1671
Jeff Sharkey63d27a92011-08-03 17:04:22 -0700[diff] [blame]1672 @Override
Felipe Leme65be3022016-03-22 14:53:13 -0700[diff] [blame]1673 public void setUidMeteredNetworkBlacklist(int uid, boolean enable) {
Sudheer Shanka62f5c172017-03-17 16:25:55 -0700[diff] [blame^]1674 setUidOnMeteredNetworkList(uid, true, enable);
Felipe Leme65be3022016-03-22 14:53:13 -0700[diff] [blame]1675 }
1676
1677 @Override
1678 public void setUidMeteredNetworkWhitelist(int uid, boolean enable) {
Sudheer Shanka62f5c172017-03-17 16:25:55 -0700[diff] [blame^]1679 setUidOnMeteredNetworkList(uid, false, enable);
Felipe Leme65be3022016-03-22 14:53:13 -0700[diff] [blame]1680 }
1681
1682 @Override
1683 public boolean setDataSaverModeEnabled(boolean enable) {
1684 if (DBG) Log.d(TAG, "setDataSaverMode: " + enable);
1685 synchronized (mQuotaLock) {
1686 if (mDataSaverMode == enable) {
1687 Log.w(TAG, "setDataSaverMode(): already " + mDataSaverMode);
1688 return true;
1689 }
Felipe Leme29e72ea2016-09-08 13:26:55 -0700[diff] [blame]1690 Trace.traceBegin(Trace.TRACE_TAG_NETWORK, "bandwidthEnableDataSaver");
Felipe Leme65be3022016-03-22 14:53:13 -0700[diff] [blame]1691 try {
1692 final boolean changed = mNetdService.bandwidthEnableDataSaver(enable);
1693 if (changed) {
1694 mDataSaverMode = enable;
1695 } else {
1696 Log.w(TAG, "setDataSaverMode(" + enable + "): netd command silently failed");
1697 }
1698 return changed;
1699 } catch (RemoteException e) {
1700 Log.w(TAG, "setDataSaverMode(" + enable + "): netd command failed", e);
1701 return false;
Felipe Leme29e72ea2016-09-08 13:26:55 -0700[diff] [blame]1702 } finally {
1703 Trace.traceEnd(Trace.TRACE_TAG_NETWORK);
Felipe Leme65be3022016-03-22 14:53:13 -0700[diff] [blame]1704 }
1705 }
1706 }
1707
1708 @Override
Robin Lee17e61832016-05-09 13:46:28 +0100[diff] [blame]1709 public void setAllowOnlyVpnForUids(boolean add, UidRange[] uidRanges)
1710 throws ServiceSpecificException {
1711 try {
1712 mNetdService.networkRejectNonSecureVpn(add, uidRanges);
1713 } catch (ServiceSpecificException e) {
1714 Log.w(TAG, "setAllowOnlyVpnForUids(" + add + ", " + Arrays.toString(uidRanges) + ")"
1715 + ": netd command failed", e);
1716 throw e;
1717 } catch (RemoteException e) {
1718 Log.w(TAG, "setAllowOnlyVpnForUids(" + add + ", " + Arrays.toString(uidRanges) + ")"
1719 + ": netd command failed", e);
1720 throw e.rethrowAsRuntimeException();
1721 }
1722 }
1723
1724 @Override
Jeff Sharkey605eb792014-11-04 13:34:06 -0800[diff] [blame]1725 public void setUidCleartextNetworkPolicy(int uid, int policy) {
1726 if (Binder.getCallingUid() != uid) {
1727 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
1728 }
1729
1730 synchronized (mQuotaLock) {
1731 final int oldPolicy = mUidCleartextPolicy.get(uid, StrictMode.NETWORK_POLICY_ACCEPT);
1732 if (oldPolicy == policy) {
1733 return;
1734 }
1735
1736 if (!mStrictEnabled) {
1737 // Module isn't enabled yet; stash the requested policy away to
1738 // apply later once the daemon is connected.
1739 mUidCleartextPolicy.put(uid, policy);
1740 return;
1741 }
1742
1743 final String policyString;
1744 switch (policy) {
1745 case StrictMode.NETWORK_POLICY_ACCEPT:
1746 policyString = "accept";
1747 break;
1748 case StrictMode.NETWORK_POLICY_LOG:
1749 policyString = "log";
1750 break;
1751 case StrictMode.NETWORK_POLICY_REJECT:
1752 policyString = "reject";
1753 break;
1754 default:
1755 throw new IllegalArgumentException("Unknown policy " + policy);
1756 }
1757
1758 try {
1759 mConnector.execute("strict", "set_uid_cleartext_policy", uid, policyString);
1760 mUidCleartextPolicy.put(uid, policy);
1761 } catch (NativeDaemonConnectorException e) {
1762 throw e.rethrowAsParcelableException();
1763 }
1764 }
1765 }
1766
1767 @Override
Jeff Sharkey63d27a92011-08-03 17:04:22 -0700[diff] [blame]1768 public boolean isBandwidthControlEnabled() {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1769 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Jeff Sharkey63d27a92011-08-03 17:04:22 -0700[diff] [blame]1770 return mBandwidthControlEnabled;
1771 }
1772
1773 @Override
Jeff Sharkeyeedcb952011-05-17 14:55:15 -0700[diff] [blame]1774 public NetworkStats getNetworkStatsUidDetail(int uid) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1775 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Jeff Sharkey9a2c2a62013-01-14 16:48:51 -0800[diff] [blame]1776 try {
Dianne Hackbornd0c5b9a2014-02-21 16:19:05 -0800[diff] [blame]1777 return mStatsFactory.readNetworkStatsDetail(uid, null, TAG_ALL, null);
Jeff Sharkey9a2c2a62013-01-14 16:48:51 -0800[diff] [blame]1778 } catch (IOException e) {
1779 throw new IllegalStateException(e);
1780 }
Jeff Sharkeyeedcb952011-05-17 14:55:15 -0700[diff] [blame]1781 }
1782
Jeff Sharkeycdd02c5d2011-09-16 01:52:49 -0700[diff] [blame]1783 @Override
Jeff Sharkeye4984be2013-09-10 21:03:27 -0700[diff] [blame]1784 public NetworkStats getNetworkStatsTethering() {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1785 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Jeff Sharkeycdd02c5d2011-09-16 01:52:49 -0700[diff] [blame]1786
Jeff Sharkeycdd02c5d2011-09-16 01:52:49 -0700[diff] [blame]1787 final NetworkStats stats = new NetworkStats(SystemClock.elapsedRealtime(), 1);
Jeff Sharkeycdd02c5d2011-09-16 01:52:49 -0700[diff] [blame]1788 try {
Jeff Sharkeye4984be2013-09-10 21:03:27 -0700[diff] [blame]1789 final NativeDaemonEvent[] events = mConnector.executeForList(
1790 "bandwidth", "gettetherstats");
1791 for (NativeDaemonEvent event : events) {
1792 if (event.getCode() != TetheringStatsListResult) continue;
1793
1794 // 114 ifaceIn ifaceOut rx_bytes rx_packets tx_bytes tx_packets
1795 final StringTokenizer tok = new StringTokenizer(event.getMessage());
1796 try {
1797 final String ifaceIn = tok.nextToken();
1798 final String ifaceOut = tok.nextToken();
1799
1800 final NetworkStats.Entry entry = new NetworkStats.Entry();
1801 entry.iface = ifaceOut;
1802 entry.uid = UID_TETHERING;
1803 entry.set = SET_DEFAULT;
1804 entry.tag = TAG_NONE;
1805 entry.rxBytes = Long.parseLong(tok.nextToken());
1806 entry.rxPackets = Long.parseLong(tok.nextToken());
1807 entry.txBytes = Long.parseLong(tok.nextToken());
1808 entry.txPackets = Long.parseLong(tok.nextToken());
1809 stats.combineValues(entry);
1810 } catch (NoSuchElementException e) {
1811 throw new IllegalStateException("problem parsing tethering stats: " + event);
1812 } catch (NumberFormatException e) {
1813 throw new IllegalStateException("problem parsing tethering stats: " + event);
1814 }
1815 }
Jeff Sharkeycdd02c5d2011-09-16 01:52:49 -0700[diff] [blame]1816 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]1817 throw e.rethrowAsParcelableException();
Jeff Sharkeycdd02c5d2011-09-16 01:52:49 -0700[diff] [blame]1818 }
Jeff Sharkeye4984be2013-09-10 21:03:27 -0700[diff] [blame]1819 return stats;
Jeff Sharkeycdd02c5d2011-09-16 01:52:49 -0700[diff] [blame]1820 }
1821
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1822 @Override
Pierre Imai8e48e672016-04-21 13:30:43 +0900[diff] [blame]1823 public void setDnsConfigurationForNetwork(int netId, String[] servers, String domains) {
1824 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
1825
1826 ContentResolver resolver = mContext.getContentResolver();
1827
1828 int sampleValidity = Settings.Global.getInt(resolver,
1829 Settings.Global.DNS_RESOLVER_SAMPLE_VALIDITY_SECONDS,
1830 DNS_RESOLVER_DEFAULT_SAMPLE_VALIDITY_SECONDS);
1831 if (sampleValidity < 0 || sampleValidity > 65535) {
1832 Slog.w(TAG, "Invalid sampleValidity=" + sampleValidity + ", using default=" +
1833 DNS_RESOLVER_DEFAULT_SAMPLE_VALIDITY_SECONDS);
1834 sampleValidity = DNS_RESOLVER_DEFAULT_SAMPLE_VALIDITY_SECONDS;
1835 }
1836
1837 int successThreshold = Settings.Global.getInt(resolver,
1838 Settings.Global.DNS_RESOLVER_SUCCESS_THRESHOLD_PERCENT,
1839 DNS_RESOLVER_DEFAULT_SUCCESS_THRESHOLD_PERCENT);
1840 if (successThreshold < 0 || successThreshold > 100) {
1841 Slog.w(TAG, "Invalid successThreshold=" + successThreshold + ", using default=" +
1842 DNS_RESOLVER_DEFAULT_SUCCESS_THRESHOLD_PERCENT);
1843 successThreshold = DNS_RESOLVER_DEFAULT_SUCCESS_THRESHOLD_PERCENT;
1844 }
1845
1846 int minSamples = Settings.Global.getInt(resolver,
1847 Settings.Global.DNS_RESOLVER_MIN_SAMPLES, DNS_RESOLVER_DEFAULT_MIN_SAMPLES);
1848 int maxSamples = Settings.Global.getInt(resolver,
1849 Settings.Global.DNS_RESOLVER_MAX_SAMPLES, DNS_RESOLVER_DEFAULT_MAX_SAMPLES);
1850 if (minSamples < 0 || minSamples > maxSamples || maxSamples > 64) {
1851 Slog.w(TAG, "Invalid sample count (min, max)=(" + minSamples + ", " + maxSamples +
1852 "), using default=(" + DNS_RESOLVER_DEFAULT_MIN_SAMPLES + ", " +
1853 DNS_RESOLVER_DEFAULT_MAX_SAMPLES + ")");
1854 minSamples = DNS_RESOLVER_DEFAULT_MIN_SAMPLES;
1855 maxSamples = DNS_RESOLVER_DEFAULT_MAX_SAMPLES;
1856 }
1857
1858 final String[] domainStrs = domains == null ? new String[0] : domains.split(" ");
1859 final int[] params = { sampleValidity, successThreshold, minSamples, maxSamples };
1860 try {
1861 mNetdService.setResolverConfiguration(netId, servers, domainStrs, params);
1862 } catch (RemoteException e) {
1863 throw new RuntimeException(e);
1864 }
1865 }
1866
1867 @Override
Paul Jensen6bc2c2c2014-05-07 15:27:40 -0400[diff] [blame]1868 public void addVpnUidRanges(int netId, UidRange[] ranges) {
Chad Brubaker3277620a2013-06-12 13:37:30 -0700[diff] [blame]1869 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Paul Jensen6bc2c2c2014-05-07 15:27:40 -0400[diff] [blame]1870 Object[] argv = new Object[3 + MAX_UID_RANGES_PER_COMMAND];
1871 argv[0] = "users";
1872 argv[1] = "add";
1873 argv[2] = netId;
1874 int argc = 3;
1875 // Avoid overly long commands by limiting number of UID ranges per command.
1876 for (int i = 0; i < ranges.length; i++) {
1877 argv[argc++] = ranges[i].toString();
1878 if (i == (ranges.length - 1) || argc == argv.length) {
1879 try {
1880 mConnector.execute("network", Arrays.copyOf(argv, argc));
1881 } catch (NativeDaemonConnectorException e) {
1882 throw e.rethrowAsParcelableException();
1883 }
1884 argc = 3;
1885 }
Chad Brubaker3277620a2013-06-12 13:37:30 -0700[diff] [blame]1886 }
1887 }
1888
1889 @Override
Paul Jensen6bc2c2c2014-05-07 15:27:40 -0400[diff] [blame]1890 public void removeVpnUidRanges(int netId, UidRange[] ranges) {
Chad Brubaker3277620a2013-06-12 13:37:30 -0700[diff] [blame]1891 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Paul Jensen6bc2c2c2014-05-07 15:27:40 -0400[diff] [blame]1892 Object[] argv = new Object[3 + MAX_UID_RANGES_PER_COMMAND];
1893 argv[0] = "users";
1894 argv[1] = "remove";
1895 argv[2] = netId;
1896 int argc = 3;
1897 // Avoid overly long commands by limiting number of UID ranges per command.
1898 for (int i = 0; i < ranges.length; i++) {
1899 argv[argc++] = ranges[i].toString();
1900 if (i == (ranges.length - 1) || argc == argv.length) {
1901 try {
1902 mConnector.execute("network", Arrays.copyOf(argv, argc));
1903 } catch (NativeDaemonConnectorException e) {
1904 throw e.rethrowAsParcelableException();
1905 }
1906 argc = 3;
1907 }
Chad Brubakercca54c42013-06-27 17:41:38 -0700[diff] [blame]1908 }
1909 }
1910
1911 @Override
Jeff Sharkeyc268f0b2012-08-24 10:25:31 -0700[diff] [blame]1912 public void setFirewallEnabled(boolean enabled) {
Jeff Sharkeyf56e2432012-09-06 17:54:29 -0700[diff] [blame]1913 enforceSystemUid();
Jeff Sharkeyc268f0b2012-08-24 10:25:31 -0700[diff] [blame]1914 try {
Amith Yamasani15e472352015-04-24 19:06:07 -0700[diff] [blame]1915 mConnector.execute("firewall", "enable", enabled ? "whitelist" : "blacklist");
Jeff Sharkeyc268f0b2012-08-24 10:25:31 -0700[diff] [blame]1916 mFirewallEnabled = enabled;
1917 } catch (NativeDaemonConnectorException e) {
1918 throw e.rethrowAsParcelableException();
1919 }
1920 }
1921
1922 @Override
1923 public boolean isFirewallEnabled() {
Jeff Sharkeyf56e2432012-09-06 17:54:29 -0700[diff] [blame]1924 enforceSystemUid();
Jeff Sharkeyc268f0b2012-08-24 10:25:31 -0700[diff] [blame]1925 return mFirewallEnabled;
1926 }
1927
1928 @Override
Jeff Sharkey2c092982012-08-24 11:44:40 -0700[diff] [blame]1929 public void setFirewallInterfaceRule(String iface, boolean allow) {
Jeff Sharkeyf56e2432012-09-06 17:54:29 -0700[diff] [blame]1930 enforceSystemUid();
Jeff Sharkeyc268f0b2012-08-24 10:25:31 -0700[diff] [blame]1931 Preconditions.checkState(mFirewallEnabled);
Sreeram Ramachandrana77760d2014-07-17 17:09:07 -0700[diff] [blame]1932 final String rule = allow ? "allow" : "deny";
Jeff Sharkeyc268f0b2012-08-24 10:25:31 -0700[diff] [blame]1933 try {
1934 mConnector.execute("firewall", "set_interface_rule", iface, rule);
1935 } catch (NativeDaemonConnectorException e) {
1936 throw e.rethrowAsParcelableException();
1937 }
1938 }
1939
1940 @Override
Jeff Sharkey2c092982012-08-24 11:44:40 -0700[diff] [blame]1941 public void setFirewallEgressSourceRule(String addr, boolean allow) {
Jeff Sharkeyf56e2432012-09-06 17:54:29 -0700[diff] [blame]1942 enforceSystemUid();
Jeff Sharkeyc268f0b2012-08-24 10:25:31 -0700[diff] [blame]1943 Preconditions.checkState(mFirewallEnabled);
Sreeram Ramachandrana77760d2014-07-17 17:09:07 -0700[diff] [blame]1944 final String rule = allow ? "allow" : "deny";
Jeff Sharkeyc268f0b2012-08-24 10:25:31 -0700[diff] [blame]1945 try {
1946 mConnector.execute("firewall", "set_egress_source_rule", addr, rule);
1947 } catch (NativeDaemonConnectorException e) {
1948 throw e.rethrowAsParcelableException();
1949 }
1950 }
1951
1952 @Override
Jeff Sharkey2c092982012-08-24 11:44:40 -0700[diff] [blame]1953 public void setFirewallEgressDestRule(String addr, int port, boolean allow) {
Jeff Sharkeyf56e2432012-09-06 17:54:29 -0700[diff] [blame]1954 enforceSystemUid();
Jeff Sharkeyc268f0b2012-08-24 10:25:31 -0700[diff] [blame]1955 Preconditions.checkState(mFirewallEnabled);
Sreeram Ramachandrana77760d2014-07-17 17:09:07 -0700[diff] [blame]1956 final String rule = allow ? "allow" : "deny";
Jeff Sharkeyc268f0b2012-08-24 10:25:31 -0700[diff] [blame]1957 try {
1958 mConnector.execute("firewall", "set_egress_dest_rule", addr, port, rule);
1959 } catch (NativeDaemonConnectorException e) {
1960 throw e.rethrowAsParcelableException();
1961 }
1962 }
1963
Lorenzo Colitti3fef7232016-04-29 18:00:03 +0900[diff] [blame]1964 private void closeSocketsForFirewallChainLocked(int chain, String chainName) {
Lorenzo Colitti4cb42402016-04-24 12:52:00 +0900[diff] [blame]1965 // UID ranges to close sockets on.
1966 UidRange[] ranges;
1967 // UID ranges whose sockets we won't touch.
1968 int[] exemptUids;
1969
Lorenzo Colitti4cb42402016-04-24 12:52:00 +0900[diff] [blame]1970 int numUids = 0;
1971
1972 if (getFirewallType(chain) == FIREWALL_TYPE_WHITELIST) {
1973 // Close all sockets on all non-system UIDs...
1974 ranges = new UidRange[] {
1975 // TODO: is there a better way of finding all existing users? If so, we could
1976 // specify their ranges here.
1977 new UidRange(Process.FIRST_APPLICATION_UID, Integer.MAX_VALUE),
1978 };
1979 // ... except for the UIDs that have allow rules.
Sudheer Shanka62f5c172017-03-17 16:25:55 -0700[diff] [blame^]1980 synchronized (mRulesLock) {
1981 final SparseIntArray rules = getUidFirewallRulesLR(chain);
1982 exemptUids = new int[rules.size()];
1983 for (int i = 0; i < exemptUids.length; i++) {
1984 if (rules.valueAt(i) == NetworkPolicyManager.FIREWALL_RULE_ALLOW) {
1985 exemptUids[numUids] = rules.keyAt(i);
1986 numUids++;
1987 }
Lorenzo Colitti4cb42402016-04-24 12:52:00 +0900[diff] [blame]1988 }
1989 }
1990 // Normally, whitelist chains only contain deny rules, so numUids == exemptUids.length.
1991 // But the code does not guarantee this in any way, and at least in one case - if we add
1992 // a UID rule to the firewall, and then disable the firewall - the chains can contain
1993 // the wrong type of rule. In this case, don't close connections that we shouldn't.
1994 //
1995 // TODO: tighten up this code by ensuring we never set the wrong type of rule, and
1996 // fix setFirewallEnabled to grab mQuotaLock and clear rules.
1997 if (numUids != exemptUids.length) {
1998 exemptUids = Arrays.copyOf(exemptUids, numUids);
1999 }
2000 } else {
2001 // Close sockets for every UID that has a deny rule...
Sudheer Shanka62f5c172017-03-17 16:25:55 -0700[diff] [blame^]2002 synchronized (mRulesLock) {
2003 final SparseIntArray rules = getUidFirewallRulesLR(chain);
2004 ranges = new UidRange[rules.size()];
2005 for (int i = 0; i < ranges.length; i++) {
2006 if (rules.valueAt(i) == NetworkPolicyManager.FIREWALL_RULE_DENY) {
2007 int uid = rules.keyAt(i);
2008 ranges[numUids] = new UidRange(uid, uid);
2009 numUids++;
2010 }
Lorenzo Colitti4cb42402016-04-24 12:52:00 +0900[diff] [blame]2011 }
2012 }
2013 // As above; usually numUids == ranges.length, but not always.
2014 if (numUids != ranges.length) {
2015 ranges = Arrays.copyOf(ranges, numUids);
2016 }
2017 // ... with no exceptions.
2018 exemptUids = new int[0];
2019 }
2020
2021 try {
2022 mNetdService.socketDestroy(ranges, exemptUids);
2023 } catch(RemoteException | ServiceSpecificException e) {
2024 Slog.e(TAG, "Error closing sockets after enabling chain " + chainName + ": " + e);
2025 }
2026 }
2027
Jeff Sharkeyc268f0b2012-08-24 10:25:31 -0700[diff] [blame]2028 @Override
Xiaohui Chenb41c9f72015-06-17 15:55:37 -0700[diff] [blame]2029 public void setFirewallChainEnabled(int chain, boolean enable) {
Jeff Sharkeyf56e2432012-09-06 17:54:29 -0700[diff] [blame]2030 enforceSystemUid();
Xiaohui Chen8dca36d2015-06-19 12:44:59 -0700[diff] [blame]2031 synchronized (mQuotaLock) {
Sudheer Shanka62f5c172017-03-17 16:25:55 -0700[diff] [blame^]2032 synchronized (mRulesLock) {
2033 if (getFirewallChainState(chain) == enable) {
2034 // All is the same, nothing to do. This relies on the fact that netd has child
2035 // chains default detached.
2036 return;
2037 }
2038 setFirewallChainState(chain, enable);
Xiaohui Chenb41c9f72015-06-17 15:55:37 -0700[diff] [blame]2039 }
Xiaohui Chen8dca36d2015-06-19 12:44:59 -0700[diff] [blame]2040
2041 final String operation = enable ? "enable_chain" : "disable_chain";
Lorenzo Colitti3fef7232016-04-29 18:00:03 +0900[diff] [blame]2042 final String chainName;
Lorenzo Colitti4cb42402016-04-24 12:52:00 +0900[diff] [blame]2043 switch(chain) {
2044 case FIREWALL_CHAIN_STANDBY:
2045 chainName = FIREWALL_CHAIN_NAME_STANDBY;
2046 break;
2047 case FIREWALL_CHAIN_DOZABLE:
2048 chainName = FIREWALL_CHAIN_NAME_DOZABLE;
2049 break;
2050 case FIREWALL_CHAIN_POWERSAVE:
2051 chainName = FIREWALL_CHAIN_NAME_POWERSAVE;
2052 break;
2053 default:
2054 throw new IllegalArgumentException("Bad child chain: " + chain);
2055 }
2056
Xiaohui Chen8dca36d2015-06-19 12:44:59 -0700[diff] [blame]2057 try {
Xiaohui Chen8dca36d2015-06-19 12:44:59 -0700[diff] [blame]2058 mConnector.execute("firewall", operation, chainName);
2059 } catch (NativeDaemonConnectorException e) {
2060 throw e.rethrowAsParcelableException();
2061 }
Lorenzo Colitti4cb42402016-04-24 12:52:00 +0900[diff] [blame]2062
2063 // Close any sockets that were opened by the affected UIDs. This has to be done after
2064 // disabling network connectivity, in case they react to the socket close by reopening
2065 // the connection and race with the iptables commands that enable the firewall. All
2066 // whitelist and blacklist chains allow RSTs through.
2067 if (enable) {
2068 if (DBG) Slog.d(TAG, "Closing sockets after enabling chain " + chainName);
Lorenzo Colitti3fef7232016-04-29 18:00:03 +0900[diff] [blame]2069 closeSocketsForFirewallChainLocked(chain, chainName);
Lorenzo Colitti4cb42402016-04-24 12:52:00 +0900[diff] [blame]2070 }
Amith Yamasani15e472352015-04-24 19:06:07 -0700[diff] [blame]2071 }
Xiaohui Chenb41c9f72015-06-17 15:55:37 -0700[diff] [blame]2072 }
2073
2074 private int getFirewallType(int chain) {
2075 switch (chain) {
2076 case FIREWALL_CHAIN_STANDBY:
2077 return FIREWALL_TYPE_BLACKLIST;
2078 case FIREWALL_CHAIN_DOZABLE:
2079 return FIREWALL_TYPE_WHITELIST;
Felipe Leme011b98f2016-02-10 17:28:31 -0800[diff] [blame]2080 case FIREWALL_CHAIN_POWERSAVE:
2081 return FIREWALL_TYPE_WHITELIST;
Xiaohui Chenb41c9f72015-06-17 15:55:37 -0700[diff] [blame]2082 default:
2083 return isFirewallEnabled() ? FIREWALL_TYPE_WHITELIST : FIREWALL_TYPE_BLACKLIST;
2084 }
2085 }
2086
2087 @Override
2088 public void setFirewallUidRules(int chain, int[] uids, int[] rules) {
2089 enforceSystemUid();
Xiaohui Chen8dca36d2015-06-19 12:44:59 -0700[diff] [blame]2090 synchronized (mQuotaLock) {
Sudheer Shanka62f5c172017-03-17 16:25:55 -0700[diff] [blame^]2091 synchronized (mRulesLock) {
2092 SparseIntArray uidFirewallRules = getUidFirewallRulesLR(chain);
2093 SparseIntArray newRules = new SparseIntArray();
2094 // apply new set of rules
2095 for (int index = uids.length - 1; index >= 0; --index) {
2096 int uid = uids[index];
2097 int rule = rules[index];
2098 updateFirewallUidRuleLocked(chain, uid, rule);
2099 newRules.put(uid, rule);
Xiaohui Chen8dca36d2015-06-19 12:44:59 -0700[diff] [blame]2100 }
Sudheer Shanka62f5c172017-03-17 16:25:55 -0700[diff] [blame^]2101 // collect the rules to remove.
2102 SparseIntArray rulesToRemove = new SparseIntArray();
2103 for (int index = uidFirewallRules.size() - 1; index >= 0; --index) {
2104 int uid = uidFirewallRules.keyAt(index);
2105 if (newRules.indexOfKey(uid) < 0) {
2106 rulesToRemove.put(uid, FIREWALL_RULE_DEFAULT);
2107 }
2108 }
2109 // remove dead rules
2110 for (int index = rulesToRemove.size() - 1; index >= 0; --index) {
2111 int uid = rulesToRemove.keyAt(index);
2112 updateFirewallUidRuleLocked(chain, uid, FIREWALL_RULE_DEFAULT);
2113 }
Felipe Lemea701cad2016-05-12 09:58:14 -0700[diff] [blame]2114 }
2115 try {
2116 switch (chain) {
2117 case FIREWALL_CHAIN_DOZABLE:
2118 mNetdService.firewallReplaceUidChain("fw_dozable", true, uids);
2119 break;
2120 case FIREWALL_CHAIN_STANDBY:
2121 mNetdService.firewallReplaceUidChain("fw_standby", false, uids);
2122 break;
2123 case FIREWALL_CHAIN_POWERSAVE:
2124 mNetdService.firewallReplaceUidChain("fw_powersave", true, uids);
2125 break;
2126 case FIREWALL_CHAIN_NONE:
2127 default:
2128 Slog.d(TAG, "setFirewallUidRules() called on invalid chain: " + chain);
2129 }
2130 } catch (RemoteException e) {
2131 Slog.w(TAG, "Error flushing firewall chain " + chain, e);
Xiaohui Chen8dca36d2015-06-19 12:44:59 -0700[diff] [blame]2132 }
Xiaohui Chenb41c9f72015-06-17 15:55:37 -0700[diff] [blame]2133 }
2134 }
2135
2136 @Override
2137 public void setFirewallUidRule(int chain, int uid, int rule) {
2138 enforceSystemUid();
Felipe Lemea701cad2016-05-12 09:58:14 -0700[diff] [blame]2139 synchronized (mQuotaLock) {
2140 setFirewallUidRuleLocked(chain, uid, rule);
2141 }
Xiaohui Chenb41c9f72015-06-17 15:55:37 -0700[diff] [blame]2142 }
2143
Felipe Lemea701cad2016-05-12 09:58:14 -0700[diff] [blame]2144 private void setFirewallUidRuleLocked(int chain, int uid, int rule) {
2145 if (updateFirewallUidRuleLocked(chain, uid, rule)) {
Amith Yamasani15e472352015-04-24 19:06:07 -0700[diff] [blame]2146 try {
Felipe Lemea701cad2016-05-12 09:58:14 -0700[diff] [blame]2147 mConnector.execute("firewall", "set_uid_rule", getFirewallChainName(chain), uid,
2148 getFirewallRuleName(chain, rule));
Amith Yamasani15e472352015-04-24 19:06:07 -0700[diff] [blame]2149 } catch (NativeDaemonConnectorException e) {
2150 throw e.rethrowAsParcelableException();
2151 }
Jeff Sharkeyc268f0b2012-08-24 10:25:31 -0700[diff] [blame]2152 }
2153 }
2154
Felipe Lemea701cad2016-05-12 09:58:14 -0700[diff] [blame]2155 // TODO: now that netd supports batching, NMS should not keep these data structures anymore...
2156 private boolean updateFirewallUidRuleLocked(int chain, int uid, int rule) {
Sudheer Shanka62f5c172017-03-17 16:25:55 -0700[diff] [blame^]2157 synchronized (mRulesLock) {
2158 SparseIntArray uidFirewallRules = getUidFirewallRulesLR(chain);
Felipe Lemea701cad2016-05-12 09:58:14 -0700[diff] [blame]2159
Sudheer Shanka62f5c172017-03-17 16:25:55 -0700[diff] [blame^]2160 final int oldUidFirewallRule = uidFirewallRules.get(uid, FIREWALL_RULE_DEFAULT);
2161 if (DBG) {
2162 Slog.d(TAG, "oldRule = " + oldUidFirewallRule
2163 + ", newRule=" + rule + " for uid=" + uid + " on chain " + chain);
2164 }
2165 if (oldUidFirewallRule == rule) {
2166 if (DBG) Slog.d(TAG, "!!!!! Skipping change");
2167 // TODO: eventually consider throwing
2168 return false;
2169 }
Felipe Lemea701cad2016-05-12 09:58:14 -0700[diff] [blame]2170
Sudheer Shanka62f5c172017-03-17 16:25:55 -0700[diff] [blame^]2171 String ruleName = getFirewallRuleName(chain, rule);
2172 String oldRuleName = getFirewallRuleName(chain, oldUidFirewallRule);
Felipe Lemea701cad2016-05-12 09:58:14 -0700[diff] [blame]2173
Sudheer Shanka62f5c172017-03-17 16:25:55 -0700[diff] [blame^]2174 if (rule == NetworkPolicyManager.FIREWALL_RULE_DEFAULT) {
2175 uidFirewallRules.delete(uid);
2176 } else {
2177 uidFirewallRules.put(uid, rule);
2178 }
2179 return !ruleName.equals(oldRuleName);
Felipe Lemea701cad2016-05-12 09:58:14 -0700[diff] [blame]2180 }
Felipe Lemea701cad2016-05-12 09:58:14 -0700[diff] [blame]2181 }
2182
Xiaohui Chen8dca36d2015-06-19 12:44:59 -0700[diff] [blame]2183 private @NonNull String getFirewallRuleName(int chain, int rule) {
2184 String ruleName;
2185 if (getFirewallType(chain) == FIREWALL_TYPE_WHITELIST) {
2186 if (rule == NetworkPolicyManager.FIREWALL_RULE_ALLOW) {
2187 ruleName = "allow";
2188 } else {
2189 ruleName = "deny";
2190 }
2191 } else { // Blacklist mode
2192 if (rule == NetworkPolicyManager.FIREWALL_RULE_DENY) {
2193 ruleName = "deny";
2194 } else {
2195 ruleName = "allow";
2196 }
2197 }
2198 return ruleName;
2199 }
2200
Sudheer Shanka62f5c172017-03-17 16:25:55 -0700[diff] [blame^]2201 private @NonNull SparseIntArray getUidFirewallRulesLR(int chain) {
Xiaohui Chenb41c9f72015-06-17 15:55:37 -0700[diff] [blame]2202 switch (chain) {
2203 case FIREWALL_CHAIN_STANDBY:
2204 return mUidFirewallStandbyRules;
2205 case FIREWALL_CHAIN_DOZABLE:
2206 return mUidFirewallDozableRules;
Felipe Leme011b98f2016-02-10 17:28:31 -0800[diff] [blame]2207 case FIREWALL_CHAIN_POWERSAVE:
2208 return mUidFirewallPowerSaveRules;
Xiaohui Chenb41c9f72015-06-17 15:55:37 -0700[diff] [blame]2209 case FIREWALL_CHAIN_NONE:
2210 return mUidFirewallRules;
2211 default:
2212 throw new IllegalArgumentException("Unknown chain:" + chain);
2213 }
2214 }
2215
2216 public @NonNull String getFirewallChainName(int chain) {
2217 switch (chain) {
2218 case FIREWALL_CHAIN_STANDBY:
2219 return FIREWALL_CHAIN_NAME_STANDBY;
2220 case FIREWALL_CHAIN_DOZABLE:
2221 return FIREWALL_CHAIN_NAME_DOZABLE;
Felipe Leme011b98f2016-02-10 17:28:31 -0800[diff] [blame]2222 case FIREWALL_CHAIN_POWERSAVE:
2223 return FIREWALL_CHAIN_NAME_POWERSAVE;
Xiaohui Chenb41c9f72015-06-17 15:55:37 -0700[diff] [blame]2224 case FIREWALL_CHAIN_NONE:
2225 return FIREWALL_CHAIN_NAME_NONE;
2226 default:
2227 throw new IllegalArgumentException("Unknown chain:" + chain);
2228 }
2229 }
2230
Jeff Sharkeyf56e2432012-09-06 17:54:29 -0700[diff] [blame]2231 private static void enforceSystemUid() {
2232 final int uid = Binder.getCallingUid();
2233 if (uid != Process.SYSTEM_UID) {
2234 throw new SecurityException("Only available to AID_SYSTEM");
2235 }
2236 }
2237
Jeff Sharkeyc268f0b2012-08-24 10:25:31 -0700[diff] [blame]2238 @Override
Lorenzo Colitti79751842013-02-28 16:16:03 +0900[diff] [blame]2239 public void startClatd(String interfaceName) throws IllegalStateException {
2240 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
2241
2242 try {
2243 mConnector.execute("clatd", "start", interfaceName);
2244 } catch (NativeDaemonConnectorException e) {
2245 throw e.rethrowAsParcelableException();
2246 }
2247 }
2248
2249 @Override
Lorenzo Colitti95439462014-10-09 13:44:48 +0900[diff] [blame]2250 public void stopClatd(String interfaceName) throws IllegalStateException {
Lorenzo Colitti79751842013-02-28 16:16:03 +0900[diff] [blame]2251 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
2252
2253 try {
Lorenzo Colitti95439462014-10-09 13:44:48 +0900[diff] [blame]2254 mConnector.execute("clatd", "stop", interfaceName);
Lorenzo Colitti79751842013-02-28 16:16:03 +0900[diff] [blame]2255 } catch (NativeDaemonConnectorException e) {
2256 throw e.rethrowAsParcelableException();
2257 }
2258 }
2259
2260 @Override
Lorenzo Colitti95439462014-10-09 13:44:48 +0900[diff] [blame]2261 public boolean isClatdStarted(String interfaceName) {
Lorenzo Colitti79751842013-02-28 16:16:03 +0900[diff] [blame]2262 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
2263
2264 final NativeDaemonEvent event;
2265 try {
Lorenzo Colitti95439462014-10-09 13:44:48 +0900[diff] [blame]2266 event = mConnector.execute("clatd", "status", interfaceName);
Lorenzo Colitti79751842013-02-28 16:16:03 +0900[diff] [blame]2267 } catch (NativeDaemonConnectorException e) {
2268 throw e.rethrowAsParcelableException();
2269 }
2270
2271 event.checkCode(ClatdStatusResult);
2272 return event.getMessage().endsWith("started");
2273 }
2274
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]2275 @Override
2276 public void registerNetworkActivityListener(INetworkActivityListener listener) {
2277 mNetworkActivityListeners.register(listener);
2278 }
2279
2280 @Override
2281 public void unregisterNetworkActivityListener(INetworkActivityListener listener) {
2282 mNetworkActivityListeners.unregister(listener);
2283 }
2284
2285 @Override
2286 public boolean isNetworkActive() {
2287 synchronized (mNetworkActivityListeners) {
2288 return mNetworkActive || mActiveIdleTimers.isEmpty();
2289 }
2290 }
2291
2292 private void reportNetworkActive() {
2293 final int length = mNetworkActivityListeners.beginBroadcast();
Robert Greenwalt2c9f5472014-04-21 14:50:28 -0700[diff] [blame]2294 try {
2295 for (int i = 0; i < length; i++) {
2296 try {
2297 mNetworkActivityListeners.getBroadcastItem(i).onNetworkActive();
Felipe Leme03e689d2016-03-02 16:17:38 -0800[diff] [blame]2298 } catch (RemoteException | RuntimeException e) {
Robert Greenwalt2c9f5472014-04-21 14:50:28 -0700[diff] [blame]2299 }
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]2300 }
Robert Greenwalt2c9f5472014-04-21 14:50:28 -0700[diff] [blame]2301 } finally {
2302 mNetworkActivityListeners.finishBroadcast();
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]2303 }
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]2304 }
2305
Mattias Falk8b47b362011-08-23 14:15:13 +0200[diff] [blame]2306 /** {@inheritDoc} */
Jeff Sharkey7b4596f2013-02-25 10:55:29 -0800[diff] [blame]2307 @Override
Jeff Sharkeyfa23c5a2011-08-09 21:44:24 -0700[diff] [blame]2308 public void monitor() {
2309 if (mConnector != null) {
2310 mConnector.monitor();
2311 }
2312 }
Jeff Sharkey47eb1022011-08-25 17:48:52 -0700[diff] [blame]2313
2314 @Override
2315 protected void dump(FileDescriptor fd, PrintWriter pw, String[] args) {
2316 mContext.enforceCallingOrSelfPermission(DUMP, TAG);
2317
Robert Greenwalt470fd722012-01-18 12:51:15 -0800[diff] [blame]2318 pw.println("NetworkManagementService NativeDaemonConnector Log:");
2319 mConnector.dump(fd, pw, args);
2320 pw.println();
2321
Jeff Sharkey47eb1022011-08-25 17:48:52 -0700[diff] [blame]2322 pw.print("Bandwidth control enabled: "); pw.println(mBandwidthControlEnabled);
Dianne Hackborn2ffa11e2014-04-21 15:56:18 -0700[diff] [blame]2323 pw.print("mMobileActivityFromRadio="); pw.print(mMobileActivityFromRadio);
2324 pw.print(" mLastPowerStateFromRadio="); pw.println(mLastPowerStateFromRadio);
2325 pw.print("mNetworkActive="); pw.println(mNetworkActive);
Jeff Sharkey47eb1022011-08-25 17:48:52 -0700[diff] [blame]2326
2327 synchronized (mQuotaLock) {
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]2328 pw.print("Active quota ifaces: "); pw.println(mActiveQuotas.toString());
2329 pw.print("Active alert ifaces: "); pw.println(mActiveAlerts.toString());
Felipe Leme65be3022016-03-22 14:53:13 -0700[diff] [blame]2330 pw.print("Data saver mode: "); pw.println(mDataSaverMode);
Sudheer Shanka62f5c172017-03-17 16:25:55 -0700[diff] [blame^]2331 synchronized (mRulesLock) {
2332 dumpUidRuleOnQuotaLocked(pw, "blacklist", mUidRejectOnMetered);
2333 dumpUidRuleOnQuotaLocked(pw, "whitelist", mUidAllowOnMetered);
2334 }
Jeff Sharkey47eb1022011-08-25 17:48:52 -0700[diff] [blame]2335 }
Jeff Sharkeyc268f0b2012-08-24 10:25:31 -0700[diff] [blame]2336
Sudheer Shanka62f5c172017-03-17 16:25:55 -0700[diff] [blame^]2337 synchronized (mRulesLock) {
Felipe Leme011b98f2016-02-10 17:28:31 -0800[diff] [blame]2338 dumpUidFirewallRule(pw, "", mUidFirewallRules);
Amith Yamasani15e472352015-04-24 19:06:07 -0700[diff] [blame]2339
Sudheer Shanka62f5c172017-03-17 16:25:55 -0700[diff] [blame^]2340 pw.print("UID firewall standby chain enabled: "); pw.println(
2341 getFirewallChainState(FIREWALL_CHAIN_STANDBY));
Felipe Leme011b98f2016-02-10 17:28:31 -0800[diff] [blame]2342 dumpUidFirewallRule(pw, FIREWALL_CHAIN_NAME_STANDBY, mUidFirewallStandbyRules);
Xiaohui Chenb41c9f72015-06-17 15:55:37 -0700[diff] [blame]2343
Sudheer Shanka62f5c172017-03-17 16:25:55 -0700[diff] [blame^]2344 pw.print("UID firewall dozable chain enabled: "); pw.println(
2345 getFirewallChainState(FIREWALL_CHAIN_DOZABLE));
Felipe Leme011b98f2016-02-10 17:28:31 -0800[diff] [blame]2346 dumpUidFirewallRule(pw, FIREWALL_CHAIN_NAME_DOZABLE, mUidFirewallDozableRules);
Felipe Leme011b98f2016-02-10 17:28:31 -0800[diff] [blame]2347
Sudheer Shanka62f5c172017-03-17 16:25:55 -0700[diff] [blame^]2348 pw.println("UID firewall powersave chain enabled: " +
2349 getFirewallChainState(FIREWALL_CHAIN_POWERSAVE));
Felipe Leme011b98f2016-02-10 17:28:31 -0800[diff] [blame]2350 dumpUidFirewallRule(pw, FIREWALL_CHAIN_NAME_POWERSAVE, mUidFirewallPowerSaveRules);
Xiaohui Chenb41c9f72015-06-17 15:55:37 -0700[diff] [blame]2351 }
2352
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]2353 synchronized (mIdleTimerLock) {
2354 pw.println("Idle timers:");
2355 for (HashMap.Entry<String, IdleTimerParams> ent : mActiveIdleTimers.entrySet()) {
2356 pw.print(" "); pw.print(ent.getKey()); pw.println(":");
2357 IdleTimerParams params = ent.getValue();
2358 pw.print(" timeout="); pw.print(params.timeout);
2359 pw.print(" type="); pw.print(params.type);
2360 pw.print(" networkCount="); pw.println(params.networkCount);
2361 }
2362 }
2363
Jeff Sharkeyc268f0b2012-08-24 10:25:31 -0700[diff] [blame]2364 pw.print("Firewall enabled: "); pw.println(mFirewallEnabled);
Felipe Leme65be3022016-03-22 14:53:13 -0700[diff] [blame]2365 pw.print("Netd service status: " );
2366 if (mNetdService == null) {
2367 pw.println("disconnected");
2368 } else {
2369 try {
2370 final boolean alive = mNetdService.isAlive();
2371 pw.println(alive ? "alive": "dead");
2372 } catch (RemoteException e) {
2373 pw.println("unreachable");
2374 }
2375 }
2376 }
2377
2378 private void dumpUidRuleOnQuotaLocked(PrintWriter pw, String name, SparseBooleanArray list) {
2379 pw.print("UID bandwith control ");
2380 pw.print(name);
2381 pw.print(" rule: [");
2382 final int size = list.size();
2383 for (int i = 0; i < size; i++) {
2384 pw.print(list.keyAt(i));
2385 if (i < size - 1) pw.print(",");
2386 }
2387 pw.println("]");
Jeff Sharkey47eb1022011-08-25 17:48:52 -0700[diff] [blame]2388 }
Robert Greenwalt9ba9c582014-03-19 17:56:12 -0700[diff] [blame]2389
Felipe Leme011b98f2016-02-10 17:28:31 -0800[diff] [blame]2390 private void dumpUidFirewallRule(PrintWriter pw, String name, SparseIntArray rules) {
Lorenzo Colitti4cb42402016-04-24 12:52:00 +0900[diff] [blame]2391 pw.print("UID firewall ");
Felipe Leme011b98f2016-02-10 17:28:31 -0800[diff] [blame]2392 pw.print(name);
2393 pw.print(" rule: [");
2394 final int size = rules.size();
2395 for (int i = 0; i < size; i++) {
2396 pw.print(rules.keyAt(i));
2397 pw.print(":");
2398 pw.print(rules.valueAt(i));
2399 if (i < size - 1) pw.print(",");
2400 }
2401 pw.println("]");
2402 }
2403
Robert Greenwalt568891d2014-04-04 13:38:00 -0700[diff] [blame]2404 @Override
Paul Jensen487ffe72015-07-24 15:57:11 -0400[diff] [blame]2405 public void createPhysicalNetwork(int netId, String permission) {
Robert Greenwalt9ba9c582014-03-19 17:56:12 -0700[diff] [blame]2406 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
2407
2408 try {
Paul Jensen487ffe72015-07-24 15:57:11 -0400[diff] [blame]2409 if (permission != null) {
2410 mConnector.execute("network", "create", netId, permission);
2411 } else {
2412 mConnector.execute("network", "create", netId);
2413 }
Robert Greenwalt9ba9c582014-03-19 17:56:12 -0700[diff] [blame]2414 } catch (NativeDaemonConnectorException e) {
2415 throw e.rethrowAsParcelableException();
2416 }
2417 }
2418
Robert Greenwalt568891d2014-04-04 13:38:00 -0700[diff] [blame]2419 @Override
Sreeram Ramachandran8cd33ed2014-07-23 15:23:15 -0700[diff] [blame]2420 public void createVirtualNetwork(int netId, boolean hasDNS, boolean secure) {
Paul Jensen6bc2c2c2014-05-07 15:27:40 -0400[diff] [blame]2421 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
2422
2423 try {
Sreeram Ramachandran8cd33ed2014-07-23 15:23:15 -0700[diff] [blame]2424 mConnector.execute("network", "create", netId, "vpn", hasDNS ? "1" : "0",
2425 secure ? "1" : "0");
Paul Jensen6bc2c2c2014-05-07 15:27:40 -0400[diff] [blame]2426 } catch (NativeDaemonConnectorException e) {
2427 throw e.rethrowAsParcelableException();
2428 }
2429 }
2430
2431 @Override
Robert Greenwalt9ba9c582014-03-19 17:56:12 -0700[diff] [blame]2432 public void removeNetwork(int netId) {
2433 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
2434
2435 try {
2436 mConnector.execute("network", "destroy", netId);
2437 } catch (NativeDaemonConnectorException e) {
2438 throw e.rethrowAsParcelableException();
2439 }
2440 }
Robert Greenwalt568891d2014-04-04 13:38:00 -0700[diff] [blame]2441
2442 @Override
Paul Jensen992f2522014-04-28 10:33:11 -0400[diff] [blame]2443 public void addInterfaceToNetwork(String iface, int netId) {
Sreeram Ramachandrana77760d2014-07-17 17:09:07 -0700[diff] [blame]2444 modifyInterfaceInNetwork("add", "" + netId, iface);
Paul Jensen992f2522014-04-28 10:33:11 -0400[diff] [blame]2445 }
2446
2447 @Override
2448 public void removeInterfaceFromNetwork(String iface, int netId) {
Sreeram Ramachandrana77760d2014-07-17 17:09:07 -0700[diff] [blame]2449 modifyInterfaceInNetwork("remove", "" + netId, iface);
2450 }
Paul Jensen992f2522014-04-28 10:33:11 -0400[diff] [blame]2451
Sreeram Ramachandrana77760d2014-07-17 17:09:07 -0700[diff] [blame]2452 private void modifyInterfaceInNetwork(String action, String netId, String iface) {
2453 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Paul Jensen992f2522014-04-28 10:33:11 -0400[diff] [blame]2454 try {
Sreeram Ramachandrana77760d2014-07-17 17:09:07 -0700[diff] [blame]2455 mConnector.execute("network", "interface", action, netId, iface);
Paul Jensen992f2522014-04-28 10:33:11 -0400[diff] [blame]2456 } catch (NativeDaemonConnectorException e) {
2457 throw e.rethrowAsParcelableException();
2458 }
2459 }
2460
2461 @Override
Robert Greenwalt913c8952014-04-07 17:36:35 -0700[diff] [blame]2462 public void addLegacyRouteForNetId(int netId, RouteInfo routeInfo, int uid) {
Robert Greenwalt568891d2014-04-04 13:38:00 -0700[diff] [blame]2463 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
2464
Sreeram Ramachandran03666c72014-07-19 23:21:46 -0700[diff] [blame]2465 final Command cmd = new Command("network", "route", "legacy", uid, "add", netId);
Robert Greenwalt568891d2014-04-04 13:38:00 -0700[diff] [blame]2466
Sreeram Ramachandran1fbcb272014-05-22 16:30:48 -0700[diff] [blame]2467 // create triplet: interface dest-ip-addr/prefixlength gateway-ip-addr
Sreeram Ramachandrancc91c7b2014-06-03 18:41:43 -0700[diff] [blame]2468 final LinkAddress la = routeInfo.getDestinationLinkAddress();
Robert Greenwalt568891d2014-04-04 13:38:00 -0700[diff] [blame]2469 cmd.appendArg(routeInfo.getInterface());
Lorenzo Colitti7dc78cf2014-06-09 22:58:46 +0900[diff] [blame]2470 cmd.appendArg(la.getAddress().getHostAddress() + "/" + la.getPrefixLength());
Sreeram Ramachandran1fbcb272014-05-22 16:30:48 -0700[diff] [blame]2471 if (routeInfo.hasGateway()) {
2472 cmd.appendArg(routeInfo.getGateway().getHostAddress());
2473 }
Robert Greenwalt568891d2014-04-04 13:38:00 -0700[diff] [blame]2474
2475 try {
2476 mConnector.execute(cmd);
2477 } catch (NativeDaemonConnectorException e) {
2478 throw e.rethrowAsParcelableException();
2479 }
2480 }
2481
2482 @Override
Sreeram Ramachandranf047f2a2014-04-15 16:04:26 -0700[diff] [blame]2483 public void setDefaultNetId(int netId) {
Robert Greenwalt568891d2014-04-04 13:38:00 -0700[diff] [blame]2484 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
2485
2486 try {
Sreeram Ramachandranf047f2a2014-04-15 16:04:26 -0700[diff] [blame]2487 mConnector.execute("network", "default", "set", netId);
Robert Greenwalt568891d2014-04-04 13:38:00 -0700[diff] [blame]2488 } catch (NativeDaemonConnectorException e) {
2489 throw e.rethrowAsParcelableException();
2490 }
2491 }
2492
2493 @Override
2494 public void clearDefaultNetId() {
2495 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
2496
2497 try {
2498 mConnector.execute("network", "default", "clear");
2499 } catch (NativeDaemonConnectorException e) {
2500 throw e.rethrowAsParcelableException();
2501 }
2502 }
2503
2504 @Override
Paul Jensen487ffe72015-07-24 15:57:11 -0400[diff] [blame]2505 public void setNetworkPermission(int netId, String permission) {
2506 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
2507
2508 try {
2509 if (permission != null) {
2510 mConnector.execute("network", "permission", "network", "set", permission, netId);
2511 } else {
2512 mConnector.execute("network", "permission", "network", "clear", netId);
2513 }
2514 } catch (NativeDaemonConnectorException e) {
2515 throw e.rethrowAsParcelableException();
2516 }
2517 }
2518
2519
2520 @Override
Sreeram Ramachandrane4a05af2014-09-24 09:16:19 -0700[diff] [blame]2521 public void setPermission(String permission, int[] uids) {
Robert Greenwalt568891d2014-04-04 13:38:00 -0700[diff] [blame]2522 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
2523
Sreeram Ramachandrane4a05af2014-09-24 09:16:19 -0700[diff] [blame]2524 Object[] argv = new Object[4 + MAX_UID_RANGES_PER_COMMAND];
2525 argv[0] = "permission";
2526 argv[1] = "user";
2527 argv[2] = "set";
2528 argv[3] = permission;
2529 int argc = 4;
2530 // Avoid overly long commands by limiting number of UIDs per command.
2531 for (int i = 0; i < uids.length; ++i) {
2532 argv[argc++] = uids[i];
2533 if (i == uids.length - 1 || argc == argv.length) {
2534 try {
2535 mConnector.execute("network", Arrays.copyOf(argv, argc));
2536 } catch (NativeDaemonConnectorException e) {
2537 throw e.rethrowAsParcelableException();
2538 }
2539 argc = 4;
2540 }
Robert Greenwalt568891d2014-04-04 13:38:00 -0700[diff] [blame]2541 }
2542 }
2543
2544 @Override
2545 public void clearPermission(int[] uids) {
2546 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
2547
Sreeram Ramachandrane4a05af2014-09-24 09:16:19 -0700[diff] [blame]2548 Object[] argv = new Object[3 + MAX_UID_RANGES_PER_COMMAND];
2549 argv[0] = "permission";
2550 argv[1] = "user";
2551 argv[2] = "clear";
2552 int argc = 3;
2553 // Avoid overly long commands by limiting number of UIDs per command.
2554 for (int i = 0; i < uids.length; ++i) {
2555 argv[argc++] = uids[i];
2556 if (i == uids.length - 1 || argc == argv.length) {
2557 try {
2558 mConnector.execute("network", Arrays.copyOf(argv, argc));
2559 } catch (NativeDaemonConnectorException e) {
2560 throw e.rethrowAsParcelableException();
2561 }
2562 argc = 3;
2563 }
Robert Greenwalt568891d2014-04-04 13:38:00 -0700[diff] [blame]2564 }
2565 }
Paul Jensen6bc2c2c2014-05-07 15:27:40 -0400[diff] [blame]2566
2567 @Override
2568 public void allowProtect(int uid) {
2569 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
2570
2571 try {
2572 mConnector.execute("network", "protect", "allow", uid);
2573 } catch (NativeDaemonConnectorException e) {
2574 throw e.rethrowAsParcelableException();
2575 }
2576 }
2577
2578 @Override
2579 public void denyProtect(int uid) {
2580 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
2581
2582 try {
2583 mConnector.execute("network", "protect", "deny", uid);
2584 } catch (NativeDaemonConnectorException e) {
2585 throw e.rethrowAsParcelableException();
2586 }
2587 }
2588
Sreeram Ramachandrana77760d2014-07-17 17:09:07 -0700[diff] [blame]2589 @Override
2590 public void addInterfaceToLocalNetwork(String iface, List<RouteInfo> routes) {
2591 modifyInterfaceInNetwork("add", "local", iface);
2592
2593 for (RouteInfo route : routes) {
2594 if (!route.isDefaultRoute()) {
2595 modifyRoute("add", "local", route);
2596 }
2597 }
2598 }
2599
2600 @Override
2601 public void removeInterfaceFromLocalNetwork(String iface) {
2602 modifyInterfaceInNetwork("remove", "local", iface);
2603 }
Erik Kline6599ee82016-07-17 21:28:39 +0900[diff] [blame]2604
2605 @Override
2606 public int removeRoutesFromLocalNetwork(List<RouteInfo> routes) {
2607 int failures = 0;
2608
2609 for (RouteInfo route : routes) {
2610 try {
2611 modifyRoute("remove", "local", route);
2612 } catch (IllegalStateException e) {
2613 failures++;
2614 }
2615 }
2616
2617 return failures;
2618 }
Sudheer Shanka62f5c172017-03-17 16:25:55 -0700[diff] [blame^]2619
2620 private void setFirewallChainState(int chain, boolean state) {
2621 synchronized (mRulesLock) {
2622 mFirewallChainStates.put(chain, state);
2623 }
2624 }
2625
2626 private boolean getFirewallChainState(int chain) {
2627 synchronized (mRulesLock) {
2628 return mFirewallChainStates.get(chain);
2629 }
2630 }
2631
2632 @VisibleForTesting
2633 class LocalService extends NetworkManagementInternal {
2634 @Override
2635 public boolean isNetworkRestrictedForUid(int uid) {
2636 synchronized (mRulesLock) {
2637 if (getFirewallChainState(FIREWALL_CHAIN_STANDBY)
2638 && mUidFirewallStandbyRules.get(uid) == FIREWALL_RULE_DENY) {
2639 if (DBG) Slog.d(TAG, "Uid " + uid + " restricted because of app standby mode");
2640 return true;
2641 }
2642 if (getFirewallChainState(FIREWALL_CHAIN_DOZABLE)
2643 && mUidFirewallDozableRules.get(uid) != FIREWALL_RULE_ALLOW) {
2644 if (DBG) Slog.d(TAG, "Uid " + uid + " restricted because of device idle mode");
2645 return true;
2646 }
2647 if (getFirewallChainState(FIREWALL_CHAIN_POWERSAVE)
2648 && mUidFirewallPowerSaveRules.get(uid) != FIREWALL_RULE_ALLOW) {
2649 if (DBG) Slog.d(TAG, "Uid " + uid + " restricted because of power saver mode");
2650 return true;
2651 }
2652 if (mUidRejectOnMetered.get(uid)) {
2653 if (DBG) Slog.d(TAG, "Uid " + uid + " restricted because of no metered data"
2654 + " in the background");
2655 return true;
2656 }
2657 if (mDataSaverMode && !mUidAllowOnMetered.get(uid)) {
2658 if (DBG) Slog.d(TAG, "Uid " + uid + " restricted because of data saver mode");
2659 return true;
2660 }
2661 return false;
2662 }
2663 }
2664 }
2665
2666 @VisibleForTesting
2667 Injector getInjector() {
2668 return new Injector();
2669 }
2670
2671 @VisibleForTesting
2672 class Injector {
2673 void setDataSaverMode(boolean dataSaverMode) {
2674 mDataSaverMode = dataSaverMode;
2675 }
2676
2677 void setFirewallChainState(int chain, boolean state) {
2678 NetworkManagementService.this.setFirewallChainState(chain, state);
2679 }
2680
2681 void setFirewallRule(int chain, int uid, int rule) {
2682 synchronized (mRulesLock) {
2683 getUidFirewallRulesLR(chain).put(uid, rule);
2684 }
2685 }
2686
2687 void setUidOnMeteredNetworkList(boolean blacklist, int uid, boolean enable) {
2688 synchronized (mRulesLock) {
2689 if (blacklist) {
2690 mUidRejectOnMetered.put(uid, enable);
2691 } else {
2692 mUidAllowOnMetered.put(uid, enable);
2693 }
2694 }
2695 }
2696
2697 void reset() {
2698 synchronized (mRulesLock) {
2699 setDataSaverMode(false);
2700 final int[] chains = {
2701 FIREWALL_CHAIN_DOZABLE,
2702 FIREWALL_CHAIN_STANDBY,
2703 FIREWALL_CHAIN_POWERSAVE
2704 };
2705 for (int chain : chains) {
2706 setFirewallChainState(chain, false);
2707 getUidFirewallRulesLR(chain).clear();
2708 }
2709 mUidAllowOnMetered.clear();
2710 mUidRejectOnMetered.clear();
2711 }
2712 }
2713 }
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]2714}