Gitiles
Code Review Sign In
gerrit-public.fairphone.software / platform / frameworks / base / b2cfdfbbb0c652e759d8cae32d016b01918a3083 / . / services / core / java / com / android / server / NetworkManagementService.java
blob: 87938cb2c8cfd42570f8ac7b659bfd32c7392514 [file] [log] [blame]
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]1/*
2 * Copyright (C) 2007 The Android Open Source Project
3 *
4 * Licensed under the Apache License, Version 2.0 (the "License");
5 * you may not use this file except in compliance with the License.
6 * You may obtain a copy of the License at
7 *
8 * http://www.apache.org/licenses/LICENSE-2.0
9 *
10 * Unless required by applicable law or agreed to in writing, software
11 * distributed under the License is distributed on an "AS IS" BASIS,
12 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13 * See the License for the specific language governing permissions and
14 * limitations under the License.
15 */
16
17package com.android.server;
18
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]19import static android.Manifest.permission.CONNECTIVITY_INTERNAL;
Jeff Sharkey47eb1022011-08-25 17:48:52 -0700[diff] [blame]20import static android.Manifest.permission.DUMP;
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]21import static android.Manifest.permission.SHUTDOWN;
Xiaohui Chenb41c9f72015-06-17 15:55:37 -0700[diff] [blame]22import static android.net.NetworkPolicyManager.FIREWALL_CHAIN_DOZABLE;
23import static android.net.NetworkPolicyManager.FIREWALL_CHAIN_NAME_DOZABLE;
24import static android.net.NetworkPolicyManager.FIREWALL_CHAIN_NAME_NONE;
Felipe Leme011b98f2016-02-10 17:28:31 -0800[diff] [blame]25import static android.net.NetworkPolicyManager.FIREWALL_CHAIN_NAME_POWERSAVE;
Xiaohui Chenb41c9f72015-06-17 15:55:37 -0700[diff] [blame]26import static android.net.NetworkPolicyManager.FIREWALL_CHAIN_NAME_STANDBY;
27import static android.net.NetworkPolicyManager.FIREWALL_CHAIN_NONE;
Felipe Leme011b98f2016-02-10 17:28:31 -0800[diff] [blame]28import static android.net.NetworkPolicyManager.FIREWALL_CHAIN_POWERSAVE;
Xiaohui Chenb41c9f72015-06-17 15:55:37 -0700[diff] [blame]29import static android.net.NetworkPolicyManager.FIREWALL_CHAIN_STANDBY;
30import static android.net.NetworkPolicyManager.FIREWALL_RULE_DEFAULT;
31import static android.net.NetworkPolicyManager.FIREWALL_TYPE_BLACKLIST;
32import static android.net.NetworkPolicyManager.FIREWALL_TYPE_WHITELIST;
Jeff Sharkeyb5d55e32011-08-10 17:53:27 -0700[diff] [blame]33import static android.net.NetworkStats.SET_DEFAULT;
Dianne Hackbornd0c5b9a2014-02-21 16:19:05 -0800[diff] [blame]34import static android.net.NetworkStats.TAG_ALL;
Jeff Sharkey1b5a2a92011-06-18 18:34:16 -0700[diff] [blame]35import static android.net.NetworkStats.TAG_NONE;
36import static android.net.NetworkStats.UID_ALL;
Jeff Sharkeyae2c1812011-10-04 13:11:40 -0700[diff] [blame]37import static android.net.TrafficStats.UID_TETHERING;
Lorenzo Colitti79751842013-02-28 16:16:03 +0900[diff] [blame]38import static com.android.server.NetworkManagementService.NetdResponseCode.ClatdStatusResult;
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]39import static com.android.server.NetworkManagementService.NetdResponseCode.InterfaceGetCfgResult;
40import static com.android.server.NetworkManagementService.NetdResponseCode.InterfaceListResult;
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]41import static com.android.server.NetworkManagementService.NetdResponseCode.IpFwdStatusResult;
42import static com.android.server.NetworkManagementService.NetdResponseCode.TetherDnsFwdTgtListResult;
43import static com.android.server.NetworkManagementService.NetdResponseCode.TetherInterfaceListResult;
44import static com.android.server.NetworkManagementService.NetdResponseCode.TetherStatusResult;
Jeff Sharkeye4984be2013-09-10 21:03:27 -0700[diff] [blame]45import static com.android.server.NetworkManagementService.NetdResponseCode.TetheringStatsListResult;
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]46import static com.android.server.NetworkManagementService.NetdResponseCode.TtyListResult;
Jeff Sharkeya63ba592011-07-19 23:47:12 -0700[diff] [blame]47import static com.android.server.NetworkManagementSocketTagger.PROP_QTAGUID_ENABLED;
Erik Klineb2cfdfb2017-01-18 20:54:14 +0900[diff] [blame^]48
Xiaohui Chenb41c9f72015-06-17 15:55:37 -0700[diff] [blame]49import android.annotation.NonNull;
Jeff Sharkey605eb792014-11-04 13:34:06 -0800[diff] [blame]50import android.app.ActivityManagerNative;
Pierre Imai8e48e672016-04-21 13:30:43 +0900[diff] [blame]51import android.content.ContentResolver;
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]52import android.content.Context;
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]53import android.net.ConnectivityManager;
Lorenzo Colitti58967ba2016-02-02 17:21:21 +0900[diff] [blame]54import android.net.INetd;
San Mehat4d02d002010-01-22 16:07:46 -0800[diff] [blame]55import android.net.INetworkManagementEventObserver;
Jeff Sharkeyeedcb952011-05-17 14:55:15 -0700[diff] [blame]56import android.net.InterfaceConfiguration;
Lorenzo Colittic18cbfd2014-06-13 21:21:03 +0900[diff] [blame]57import android.net.IpPrefix;
Robert Greenwalted126402011-01-28 15:34:55 -0800[diff] [blame]58import android.net.LinkAddress;
Lorenzo Colittib57edc52014-08-22 17:10:50 -0700[diff] [blame]59import android.net.Network;
Amith Yamasani15e472352015-04-24 19:06:07 -0700[diff] [blame]60import android.net.NetworkPolicyManager;
Jeff Sharkeyeedcb952011-05-17 14:55:15 -0700[diff] [blame]61import android.net.NetworkStats;
Robert Greenwalted126402011-01-28 15:34:55 -0800[diff] [blame]62import android.net.NetworkUtils;
Robert Greenwalt59b1a4e2011-05-10 15:05:02 -0700[diff] [blame]63import android.net.RouteInfo;
Paul Jensen6bc2c2c2014-05-07 15:27:40 -0400[diff] [blame]64import android.net.UidRange;
Irfan Sheriff9ab518ad2010-03-12 15:48:17 -0800[diff] [blame]65import android.net.wifi.WifiConfiguration;
66import android.net.wifi.WifiConfiguration.KeyMgmt;
Dianne Hackborn91268cf2013-06-13 19:06:50 -0700[diff] [blame]67import android.os.BatteryStats;
Jeff Sharkeyf56e2432012-09-06 17:54:29 -0700[diff] [blame]68import android.os.Binder;
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]69import android.os.Handler;
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]70import android.os.INetworkActivityListener;
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]71import android.os.INetworkManagementService;
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]72import android.os.PowerManager;
Jeff Sharkeyf56e2432012-09-06 17:54:29 -0700[diff] [blame]73import android.os.Process;
Jeff Sharkey3df273e2011-12-15 15:47:12 -0800[diff] [blame]74import android.os.RemoteCallbackList;
75import android.os.RemoteException;
Jeff Sharkey7a1c3fc2013-06-04 12:29:00 -0700[diff] [blame]76import android.os.ServiceManager;
Lorenzo Colitti4cb42402016-04-24 12:52:00 +0900[diff] [blame]77import android.os.ServiceSpecificException;
Jeff Sharkey605eb792014-11-04 13:34:06 -0800[diff] [blame]78import android.os.StrictMode;
Jeff Sharkey9a13f362011-04-26 16:25:36 -0700[diff] [blame]79import android.os.SystemClock;
Marco Nelissen62dbb222010-02-18 10:56:30 -0800[diff] [blame]80import android.os.SystemProperties;
Pierre Imai8e48e672016-04-21 13:30:43 +0900[diff] [blame]81import android.provider.Settings;
Dianne Hackborn2ffa11e2014-04-21 15:56:18 -0700[diff] [blame]82import android.telephony.DataConnectionRealTimeInfo;
83import android.telephony.PhoneStateListener;
Wink Savillefb40dd42014-06-12 17:02:31 -0700[diff] [blame]84import android.telephony.SubscriptionManager;
Wink Saville67e07892014-06-18 16:43:14 -0700[diff] [blame]85import android.telephony.TelephonyManager;
Irfan Sheriff9ab518ad2010-03-12 15:48:17 -0800[diff] [blame]86import android.util.Log;
Joe Onorato8a9b2202010-02-26 18:56:32 -0800[diff] [blame]87import android.util.Slog;
Jeff Sharkeyb3f19ca2011-06-29 23:54:13 -0700[diff] [blame]88import android.util.SparseBooleanArray;
Jeff Sharkey605eb792014-11-04 13:34:06 -0800[diff] [blame]89import android.util.SparseIntArray;
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]90
Jeff Sharkey605eb792014-11-04 13:34:06 -0800[diff] [blame]91import com.android.internal.annotations.GuardedBy;
Jeff Sharkey7a1c3fc2013-06-04 12:29:00 -0700[diff] [blame]92import com.android.internal.app.IBatteryStats;
Jeff Sharkey1059c3c2011-10-04 16:54:49 -0700[diff] [blame]93import com.android.internal.net.NetworkStatsFactory;
Jeff Sharkey605eb792014-11-04 13:34:06 -0800[diff] [blame]94import com.android.internal.util.HexDump;
Jeff Sharkeyc268f0b2012-08-24 10:25:31 -0700[diff] [blame]95import com.android.internal.util.Preconditions;
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]96import com.android.server.NativeDaemonConnector.Command;
Jeff Sharkey56cd6462013-06-07 15:09:15 -0700[diff] [blame]97import com.android.server.NativeDaemonConnector.SensitiveArg;
Jeff Sharkey69ddab42012-08-25 00:05:46 -0700[diff] [blame]98import com.android.server.net.LockdownVpnTracker;
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]99import com.google.android.collect.Maps;
Jeff Sharkey4414cea2011-06-24 17:05:24 -0700[diff] [blame]100
Robert Greenwalt59b1a4e2011-05-10 15:05:02 -0700[diff] [blame]101import java.io.BufferedReader;
102import java.io.DataInputStream;
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]103import java.io.File;
Jeff Sharkey47eb1022011-08-25 17:48:52 -0700[diff] [blame]104import java.io.FileDescriptor;
Jeff Sharkey9a13f362011-04-26 16:25:36 -0700[diff] [blame]105import java.io.FileInputStream;
Jeff Sharkey9a13f362011-04-26 16:25:36 -0700[diff] [blame]106import java.io.IOException;
Jeff Sharkey9a13f362011-04-26 16:25:36 -0700[diff] [blame]107import java.io.InputStreamReader;
Jeff Sharkey47eb1022011-08-25 17:48:52 -0700[diff] [blame]108import java.io.PrintWriter;
Jeff Sharkeyeedcb952011-05-17 14:55:15 -0700[diff] [blame]109import java.net.InetAddress;
Robert Greenwalt3b28e9a2011-11-02 14:37:19 -0700[diff] [blame]110import java.net.InterfaceAddress;
111import java.net.NetworkInterface;
112import java.net.SocketException;
Jeff Sharkeyeedcb952011-05-17 14:55:15 -0700[diff] [blame]113import java.util.ArrayList;
Paul Jensen6bc2c2c2014-05-07 15:27:40 -0400[diff] [blame]114import java.util.Arrays;
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]115import java.util.HashMap;
jiaguo1da35f72014-01-09 16:39:59 +0800[diff] [blame]116import java.util.List;
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]117import java.util.Map;
Jeff Sharkeyeedcb952011-05-17 14:55:15 -0700[diff] [blame]118import java.util.NoSuchElementException;
119import java.util.StringTokenizer;
Robert Greenwalte5c3afb2010-09-22 14:32:35 -0700[diff] [blame]120import java.util.concurrent.CountDownLatch;
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]121
122/**
123 * @hide
124 */
Jeff Sharkey8e9992a2011-08-23 18:37:23 -0700[diff] [blame]125public class NetworkManagementService extends INetworkManagementService.Stub
126 implements Watchdog.Monitor {
Amith Yamasani15e472352015-04-24 19:06:07 -0700[diff] [blame]127 private static final String TAG = "NetworkManagement";
128 private static final boolean DBG = Log.isLoggable(TAG, Log.DEBUG);
Kenny Root305bcbf2010-09-03 07:56:38 -0700[diff] [blame]129 private static final String NETD_TAG = "NetdConnector";
Lorenzo Colitti58967ba2016-02-02 17:21:21 +0900[diff] [blame]130 private static final String NETD_SERVICE_NAME = "netd";
Kenny Root305bcbf2010-09-03 07:56:38 -0700[diff] [blame]131
Paul Jensen6bc2c2c2014-05-07 15:27:40 -0400[diff] [blame]132 private static final int MAX_UID_RANGES_PER_COMMAND = 10;
133
Jeff Sharkey8e9992a2011-08-23 18:37:23 -0700[diff] [blame]134 /**
135 * Name representing {@link #setGlobalAlert(long)} limit when delivered to
136 * {@link INetworkManagementEventObserver#limitReached(String, String)}.
137 */
138 public static final String LIMIT_GLOBAL_ALERT = "globalAlert";
139
Paul Jensen487ffe72015-07-24 15:57:11 -0400[diff] [blame]140 /**
141 * String to pass to netd to indicate that a network is only accessible
142 * to apps that have the CHANGE_NETWORK_STATE permission.
143 */
144 public static final String PERMISSION_NETWORK = "NETWORK";
145
146 /**
147 * String to pass to netd to indicate that a network is only
148 * accessible to system apps and those with the CONNECTIVITY_INTERNAL
149 * permission.
150 */
151 public static final String PERMISSION_SYSTEM = "SYSTEM";
152
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]153 class NetdResponseCode {
Sreeram Ramachandran03666c72014-07-19 23:21:46 -0700[diff] [blame]154 /* Keep in sync with system/netd/server/ResponseCode.h */
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]155 public static final int InterfaceListResult = 110;
156 public static final int TetherInterfaceListResult = 111;
157 public static final int TetherDnsFwdTgtListResult = 112;
San Mehat72759df2010-01-19 13:50:37 -0800[diff] [blame]158 public static final int TtyListResult = 113;
Jeff Sharkeye4984be2013-09-10 21:03:27 -0700[diff] [blame]159 public static final int TetheringStatsListResult = 114;
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]160
161 public static final int TetherStatusResult = 210;
162 public static final int IpFwdStatusResult = 211;
San Mehated4fc8a2010-01-22 12:28:36 -0800[diff] [blame]163 public static final int InterfaceGetCfgResult = 213;
Robert Greenwalte3253922010-02-18 09:23:25 -0800[diff] [blame]164 public static final int SoftapStatusResult = 214;
San Mehat91cac642010-03-31 14:31:36 -0700[diff] [blame]165 public static final int InterfaceRxCounterResult = 216;
166 public static final int InterfaceTxCounterResult = 217;
Jeff Sharkeycdd02c5d2011-09-16 01:52:49 -0700[diff] [blame]167 public static final int QuotaCounterResult = 220;
168 public static final int TetheringStatsResult = 221;
Selim Gurun84c00c62012-02-27 15:42:38 -0800[diff] [blame]169 public static final int DnsProxyQueryResult = 222;
Lorenzo Colitti79751842013-02-28 16:16:03 +0900[diff] [blame]170 public static final int ClatdStatusResult = 223;
Robert Greenwalte3253922010-02-18 09:23:25 -0800[diff] [blame]171
172 public static final int InterfaceChange = 600;
JP Abgrall12b933d2011-07-14 18:09:22 -0700[diff] [blame]173 public static final int BandwidthControl = 601;
Haoyu Bai6b7358d2012-07-17 16:36:50 -0700[diff] [blame]174 public static final int InterfaceClassActivity = 613;
Lorenzo Colitti5c7daac2013-08-05 10:39:37 +0900[diff] [blame]175 public static final int InterfaceAddressChange = 614;
Lorenzo Colitti5ae4a532013-10-31 11:59:46 +0900[diff] [blame]176 public static final int InterfaceDnsServerInfo = 615;
Lorenzo Colittic18cbfd2014-06-13 21:21:03 +0900[diff] [blame]177 public static final int RouteChange = 616;
Jeff Sharkey605eb792014-11-04 13:34:06 -0800[diff] [blame]178 public static final int StrictCleartext = 617;
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]179 }
180
Pierre Imai8e48e672016-04-21 13:30:43 +0900[diff] [blame]181 /* Defaults for resolver parameters. */
182 public static final int DNS_RESOLVER_DEFAULT_SAMPLE_VALIDITY_SECONDS = 1800;
183 public static final int DNS_RESOLVER_DEFAULT_SUCCESS_THRESHOLD_PERCENT = 25;
184 public static final int DNS_RESOLVER_DEFAULT_MIN_SAMPLES = 8;
185 public static final int DNS_RESOLVER_DEFAULT_MAX_SAMPLES = 64;
186
Rebecca Silbersteine2ec94f2016-03-24 13:29:00 -0700[diff] [blame]187 /**
188 * String indicating a softap command.
189 */
190 static final String SOFT_AP_COMMAND = "softap";
191
192 /**
193 * String passed back to netd connector indicating softap command success.
194 */
195 static final String SOFT_AP_COMMAND_SUCCESS = "Ok";
196
Dianne Hackborn2ffa11e2014-04-21 15:56:18 -0700[diff] [blame]197 static final int DAEMON_MSG_MOBILE_CONN_REAL_TIME_INFO = 1;
198
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]199 /**
200 * Binder context for this service
201 */
Dianne Hackborn2ffa11e2014-04-21 15:56:18 -0700[diff] [blame]202 private final Context mContext;
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]203
204 /**
205 * connector object for communicating with netd
206 */
Dianne Hackborn2ffa11e2014-04-21 15:56:18 -0700[diff] [blame]207 private final NativeDaemonConnector mConnector;
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]208
Robert Greenwalt2c9f5472014-04-21 14:50:28 -0700[diff] [blame]209 private final Handler mFgHandler;
Dianne Hackborn2ffa11e2014-04-21 15:56:18 -0700[diff] [blame]210 private final Handler mDaemonHandler;
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]211
Lorenzo Colitti58967ba2016-02-02 17:21:21 +0900[diff] [blame]212 private INetd mNetdService;
213
Dianne Hackborne13c4c02014-02-11 17:18:35 -0800[diff] [blame]214 private IBatteryStats mBatteryStats;
215
Dianne Hackborn2ffa11e2014-04-21 15:56:18 -0700[diff] [blame]216 private final Thread mThread;
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]217 private CountDownLatch mConnectedSignal = new CountDownLatch(1);
Robert Greenwalte5c3afb2010-09-22 14:32:35 -0700[diff] [blame]218
Jeff Sharkey3df273e2011-12-15 15:47:12 -0800[diff] [blame]219 private final RemoteCallbackList<INetworkManagementEventObserver> mObservers =
Christopher Wiley5de073a2016-08-02 11:38:57 -0700[diff] [blame]220 new RemoteCallbackList<>();
San Mehat4d02d002010-01-22 16:07:46 -0800[diff] [blame]221
Jeff Sharkey1059c3c2011-10-04 16:54:49 -0700[diff] [blame]222 private final NetworkStatsFactory mStatsFactory = new NetworkStatsFactory();
223
Jeff Sharkey41ff7ec2011-07-25 15:21:22 -0700[diff] [blame]224 private Object mQuotaLock = new Object();
Jeff Sharkey605eb792014-11-04 13:34:06 -0800[diff] [blame]225
Jeff Sharkeyb3f19ca2011-06-29 23:54:13 -0700[diff] [blame]226 /** Set of interfaces with active quotas. */
Jeff Sharkey605eb792014-11-04 13:34:06 -0800[diff] [blame]227 @GuardedBy("mQuotaLock")
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]228 private HashMap<String, Long> mActiveQuotas = Maps.newHashMap();
Jeff Sharkey41ff7ec2011-07-25 15:21:22 -0700[diff] [blame]229 /** Set of interfaces with active alerts. */
Jeff Sharkey605eb792014-11-04 13:34:06 -0800[diff] [blame]230 @GuardedBy("mQuotaLock")
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]231 private HashMap<String, Long> mActiveAlerts = Maps.newHashMap();
Felipe Leme65be3022016-03-22 14:53:13 -0700[diff] [blame]232 /** Set of UIDs blacklisted on metered networks. */
Jeff Sharkey605eb792014-11-04 13:34:06 -0800[diff] [blame]233 @GuardedBy("mQuotaLock")
Felipe Leme65be3022016-03-22 14:53:13 -0700[diff] [blame]234 private SparseBooleanArray mUidRejectOnMetered = new SparseBooleanArray();
235 /** Set of UIDs whitelisted on metered networks. */
236 @GuardedBy("mQuotaLock")
237 private SparseBooleanArray mUidAllowOnMetered = new SparseBooleanArray();
Jeff Sharkey605eb792014-11-04 13:34:06 -0800[diff] [blame]238 /** Set of UIDs with cleartext penalties. */
239 @GuardedBy("mQuotaLock")
240 private SparseIntArray mUidCleartextPolicy = new SparseIntArray();
Amith Yamasani15e472352015-04-24 19:06:07 -0700[diff] [blame]241 /** Set of UIDs that are to be blocked/allowed by firewall controller. */
242 @GuardedBy("mQuotaLock")
243 private SparseIntArray mUidFirewallRules = new SparseIntArray();
Xiaohui Chenb41c9f72015-06-17 15:55:37 -0700[diff] [blame]244 /**
245 * Set of UIDs that are to be blocked/allowed by firewall controller. This set of Ids matches
246 * to application idles.
247 */
248 @GuardedBy("mQuotaLock")
249 private SparseIntArray mUidFirewallStandbyRules = new SparseIntArray();
250 /**
251 * Set of UIDs that are to be blocked/allowed by firewall controller. This set of Ids matches
252 * to device idles.
253 */
254 @GuardedBy("mQuotaLock")
255 private SparseIntArray mUidFirewallDozableRules = new SparseIntArray();
Felipe Leme011b98f2016-02-10 17:28:31 -0800[diff] [blame]256 /**
257 * Set of UIDs that are to be blocked/allowed by firewall controller. This set of Ids matches
258 * to device on power-save mode.
259 */
260 @GuardedBy("mQuotaLock")
261 private SparseIntArray mUidFirewallPowerSaveRules = new SparseIntArray();
Xiaohui Chen8dca36d2015-06-19 12:44:59 -0700[diff] [blame]262 /** Set of states for the child firewall chains. True if the chain is active. */
263 @GuardedBy("mQuotaLock")
264 final SparseBooleanArray mFirewallChainStates = new SparseBooleanArray();
Jeff Sharkeyb3f19ca2011-06-29 23:54:13 -0700[diff] [blame]265
Felipe Leme65be3022016-03-22 14:53:13 -0700[diff] [blame]266 @GuardedBy("mQuotaLock")
267 private boolean mDataSaverMode;
268
Haoyu Bai04124232012-06-28 15:26:19 -0700[diff] [blame]269 private Object mIdleTimerLock = new Object();
270 /** Set of interfaces with active idle timers. */
271 private static class IdleTimerParams {
272 public final int timeout;
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]273 public final int type;
Haoyu Bai04124232012-06-28 15:26:19 -0700[diff] [blame]274 public int networkCount;
275
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]276 IdleTimerParams(int timeout, int type) {
Haoyu Bai04124232012-06-28 15:26:19 -0700[diff] [blame]277 this.timeout = timeout;
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]278 this.type = type;
Haoyu Bai04124232012-06-28 15:26:19 -0700[diff] [blame]279 this.networkCount = 1;
280 }
281 }
282 private HashMap<String, IdleTimerParams> mActiveIdleTimers = Maps.newHashMap();
283
Jeff Sharkeyfa23c5a2011-08-09 21:44:24 -0700[diff] [blame]284 private volatile boolean mBandwidthControlEnabled;
Jeff Sharkeyc268f0b2012-08-24 10:25:31 -0700[diff] [blame]285 private volatile boolean mFirewallEnabled;
Jeff Sharkey605eb792014-11-04 13:34:06 -0800[diff] [blame]286 private volatile boolean mStrictEnabled;
Jeff Sharkey350083e2011-06-29 10:45:16 -0700[diff] [blame]287
Dianne Hackborn2ffa11e2014-04-21 15:56:18 -0700[diff] [blame]288 private boolean mMobileActivityFromRadio = false;
289 private int mLastPowerStateFromRadio = DataConnectionRealTimeInfo.DC_POWER_STATE_LOW;
Adam Lesinskie08af192015-03-25 16:42:59 -0700[diff] [blame]290 private int mLastPowerStateFromWifi = DataConnectionRealTimeInfo.DC_POWER_STATE_LOW;
Dianne Hackborn2ffa11e2014-04-21 15:56:18 -0700[diff] [blame]291
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]292 private final RemoteCallbackList<INetworkActivityListener> mNetworkActivityListeners =
Christopher Wiley5de073a2016-08-02 11:38:57 -0700[diff] [blame]293 new RemoteCallbackList<>();
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]294 private boolean mNetworkActive;
295
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]296 /**
297 * Constructs a new NetworkManagementService instance
298 *
299 * @param context Binder context for this service
300 */
Lorenzo Colitti7421a012013-08-20 22:51:24 +0900[diff] [blame]301 private NetworkManagementService(Context context, String socket) {
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]302 mContext = context;
San Mehat4d02d002010-01-22 16:07:46 -0800[diff] [blame]303
Robert Greenwalt2c9f5472014-04-21 14:50:28 -0700[diff] [blame]304 // make sure this is on the same looper as our NativeDaemonConnector for sync purposes
305 mFgHandler = new Handler(FgThread.get().getLooper());
306
Dianne Hackborn4590e522014-03-24 13:36:46 -0700[diff] [blame]307 // Don't need this wake lock, since we now have a time stamp for when
308 // the network actually went inactive. (It might be nice to still do this,
309 // but I don't want to do it through the power manager because that pollutes the
310 // battery stats history with pointless noise.)
Dianne Hackborn2ffa11e2014-04-21 15:56:18 -0700[diff] [blame]311 //PowerManager pm = (PowerManager)context.getSystemService(Context.POWER_SERVICE);
Dianne Hackborn4590e522014-03-24 13:36:46 -0700[diff] [blame]312 PowerManager.WakeLock wl = null; //pm.newWakeLock(PowerManager.PARTIAL_WAKE_LOCK, NETD_TAG);
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]313
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]314 mConnector = new NativeDaemonConnector(
Dianne Hackborn2ffa11e2014-04-21 15:56:18 -0700[diff] [blame]315 new NetdCallbackReceiver(), socket, 10, NETD_TAG, 160, wl,
316 FgThread.get().getLooper());
Robert Greenwalte5c3afb2010-09-22 14:32:35 -0700[diff] [blame]317 mThread = new Thread(mConnector, NETD_TAG);
Jeff Sharkeyfa23c5a2011-08-09 21:44:24 -0700[diff] [blame]318
Dianne Hackborn2ffa11e2014-04-21 15:56:18 -0700[diff] [blame]319 mDaemonHandler = new Handler(FgThread.get().getLooper());
Wink Saville67e07892014-06-18 16:43:14 -0700[diff] [blame]320
Jeff Sharkeyfa23c5a2011-08-09 21:44:24 -0700[diff] [blame]321 // Add ourself to the Watchdog monitors.
322 Watchdog.getInstance().addMonitor(this);
Robert Greenwalte5c3afb2010-09-22 14:32:35 -0700[diff] [blame]323 }
324
Felipe Leme03e689d2016-03-02 16:17:38 -0800[diff] [blame]325 static NetworkManagementService create(Context context, String socket)
326 throws InterruptedException {
Lorenzo Colitti7421a012013-08-20 22:51:24 +0900[diff] [blame]327 final NetworkManagementService service = new NetworkManagementService(context, socket);
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]328 final CountDownLatch connectedSignal = service.mConnectedSignal;
Robert Greenwalte5c3afb2010-09-22 14:32:35 -0700[diff] [blame]329 if (DBG) Slog.d(TAG, "Creating NetworkManagementService");
330 service.mThread.start();
331 if (DBG) Slog.d(TAG, "Awaiting socket connection");
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]332 connectedSignal.await();
Robert Greenwalte5c3afb2010-09-22 14:32:35 -0700[diff] [blame]333 if (DBG) Slog.d(TAG, "Connected");
bohu07cc3bb2016-05-03 15:58:01 -0700[diff] [blame]334 service.connectNativeNetdService();
Robert Greenwalte5c3afb2010-09-22 14:32:35 -0700[diff] [blame]335 return service;
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]336 }
337
Lorenzo Colitti7421a012013-08-20 22:51:24 +0900[diff] [blame]338 public static NetworkManagementService create(Context context) throws InterruptedException {
Lorenzo Colitti58967ba2016-02-02 17:21:21 +0900[diff] [blame]339 return create(context, NETD_SERVICE_NAME);
Lorenzo Colitti7421a012013-08-20 22:51:24 +0900[diff] [blame]340 }
341
Jeff Sharkey350083e2011-06-29 10:45:16 -0700[diff] [blame]342 public void systemReady() {
Felipe Leme03e689d2016-03-02 16:17:38 -0800[diff] [blame]343 if (DBG) {
344 final long start = System.currentTimeMillis();
345 prepareNativeDaemon();
346 final long delta = System.currentTimeMillis() - start;
347 Slog.d(TAG, "Prepared in " + delta + "ms");
348 return;
349 } else {
350 prepareNativeDaemon();
351 }
Jeff Sharkey350083e2011-06-29 10:45:16 -0700[diff] [blame]352 }
353
Dianne Hackborne13c4c02014-02-11 17:18:35 -0800[diff] [blame]354 private IBatteryStats getBatteryStats() {
355 synchronized (this) {
356 if (mBatteryStats != null) {
357 return mBatteryStats;
358 }
359 mBatteryStats = IBatteryStats.Stub.asInterface(ServiceManager.getService(
360 BatteryStats.SERVICE_NAME));
361 return mBatteryStats;
362 }
363 }
364
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]365 @Override
Jeff Sharkey3df273e2011-12-15 15:47:12 -0800[diff] [blame]366 public void registerObserver(INetworkManagementEventObserver observer) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]367 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Jeff Sharkey3df273e2011-12-15 15:47:12 -0800[diff] [blame]368 mObservers.register(observer);
San Mehat4d02d002010-01-22 16:07:46 -0800[diff] [blame]369 }
370
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]371 @Override
Jeff Sharkey3df273e2011-12-15 15:47:12 -0800[diff] [blame]372 public void unregisterObserver(INetworkManagementEventObserver observer) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]373 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Jeff Sharkey3df273e2011-12-15 15:47:12 -0800[diff] [blame]374 mObservers.unregister(observer);
San Mehat4d02d002010-01-22 16:07:46 -0800[diff] [blame]375 }
376
Erik Klineb2cfdfb2017-01-18 20:54:14 +0900[diff] [blame^]377 @FunctionalInterface
378 private interface NetworkManagementEventCallback {
379 public void sendCallback(INetworkManagementEventObserver o) throws RemoteException;
380 }
381
382 private void invokeForAllObservers(NetworkManagementEventCallback eventCallback) {
Jeff Sharkey3df273e2011-12-15 15:47:12 -0800[diff] [blame]383 final int length = mObservers.beginBroadcast();
Robert Greenwalt2c9f5472014-04-21 14:50:28 -0700[diff] [blame]384 try {
385 for (int i = 0; i < length; i++) {
386 try {
Erik Klineb2cfdfb2017-01-18 20:54:14 +0900[diff] [blame^]387 eventCallback.sendCallback(mObservers.getBroadcastItem(i));
Felipe Leme03e689d2016-03-02 16:17:38 -0800[diff] [blame]388 } catch (RemoteException | RuntimeException e) {
Robert Greenwalt2c9f5472014-04-21 14:50:28 -0700[diff] [blame]389 }
Mike J. Chen6143f5f2011-06-23 15:17:51 -0700[diff] [blame]390 }
Robert Greenwalt2c9f5472014-04-21 14:50:28 -0700[diff] [blame]391 } finally {
392 mObservers.finishBroadcast();
Mike J. Chen6143f5f2011-06-23 15:17:51 -0700[diff] [blame]393 }
394 }
395
396 /**
Erik Klineb2cfdfb2017-01-18 20:54:14 +0900[diff] [blame^]397 * Notify our observers of an interface status change
398 */
399 private void notifyInterfaceStatusChanged(String iface, boolean up) {
400 invokeForAllObservers(o -> o.interfaceStatusChanged(iface, up));
401 }
402
403 /**
Mike J. Chenf59c7d02011-06-23 15:33:15 -0700[diff] [blame]404 * Notify our observers of an interface link state change
Mike J. Chen6143f5f2011-06-23 15:17:51 -0700[diff] [blame]405 * (typically, an Ethernet cable has been plugged-in or unplugged).
406 */
407 private void notifyInterfaceLinkStateChanged(String iface, boolean up) {
Erik Klineb2cfdfb2017-01-18 20:54:14 +0900[diff] [blame^]408 invokeForAllObservers(o -> o.interfaceLinkStateChanged(iface, up));
San Mehat4d02d002010-01-22 16:07:46 -0800[diff] [blame]409 }
410
411 /**
412 * Notify our observers of an interface addition.
413 */
414 private void notifyInterfaceAdded(String iface) {
Erik Klineb2cfdfb2017-01-18 20:54:14 +0900[diff] [blame^]415 invokeForAllObservers(o -> o.interfaceAdded(iface));
San Mehat4d02d002010-01-22 16:07:46 -0800[diff] [blame]416 }
417
418 /**
419 * Notify our observers of an interface removal.
420 */
421 private void notifyInterfaceRemoved(String iface) {
Jeff Sharkey89b8a212011-10-11 11:58:11 -0700[diff] [blame]422 // netd already clears out quota and alerts for removed ifaces; update
423 // our sanity-checking state.
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]424 mActiveAlerts.remove(iface);
425 mActiveQuotas.remove(iface);
Jeff Sharkey89b8a212011-10-11 11:58:11 -0700[diff] [blame]426
Erik Klineb2cfdfb2017-01-18 20:54:14 +0900[diff] [blame^]427 invokeForAllObservers(o -> o.interfaceRemoved(iface));
San Mehat4d02d002010-01-22 16:07:46 -0800[diff] [blame]428 }
429
Robert Greenwalte5c3afb2010-09-22 14:32:35 -0700[diff] [blame]430 /**
JP Abgrall12b933d2011-07-14 18:09:22 -0700[diff] [blame]431 * Notify our observers of a limit reached.
432 */
433 private void notifyLimitReached(String limitName, String iface) {
Erik Klineb2cfdfb2017-01-18 20:54:14 +0900[diff] [blame^]434 invokeForAllObservers(o -> o.limitReached(limitName, iface));
JP Abgrall12b933d2011-07-14 18:09:22 -0700[diff] [blame]435 }
436
437 /**
Haoyu Baidb3c8672012-06-20 14:29:57 -0700[diff] [blame]438 * Notify our observers of a change in the data activity state of the interface
439 */
Dianne Hackborn2ffa11e2014-04-21 15:56:18 -0700[diff] [blame]440 private void notifyInterfaceClassActivity(int type, int powerState, long tsNanos,
Ruchi Kandoifa97fcf2016-05-13 15:10:39 -0700[diff] [blame]441 int uid, boolean fromRadio) {
Dianne Hackborn2ffa11e2014-04-21 15:56:18 -0700[diff] [blame]442 final boolean isMobile = ConnectivityManager.isNetworkTypeMobile(type);
443 if (isMobile) {
444 if (!fromRadio) {
445 if (mMobileActivityFromRadio) {
446 // If this call is not coming from a report from the radio itself, but we
447 // have previously received reports from the radio, then we will take the
448 // power state to just be whatever the radio last reported.
449 powerState = mLastPowerStateFromRadio;
450 }
451 } else {
452 mMobileActivityFromRadio = true;
453 }
454 if (mLastPowerStateFromRadio != powerState) {
455 mLastPowerStateFromRadio = powerState;
Robert Greenwalt2c9f5472014-04-21 14:50:28 -0700[diff] [blame]456 try {
Ruchi Kandoifa97fcf2016-05-13 15:10:39 -0700[diff] [blame]457 getBatteryStats().noteMobileRadioPowerState(powerState, tsNanos, uid);
Robert Greenwalt2c9f5472014-04-21 14:50:28 -0700[diff] [blame]458 } catch (RemoteException e) {
Robert Greenwalt2c9f5472014-04-21 14:50:28 -0700[diff] [blame]459 }
Haoyu Baidb3c8672012-06-20 14:29:57 -0700[diff] [blame]460 }
Dianne Hackborn2ffa11e2014-04-21 15:56:18 -0700[diff] [blame]461 }
462
Adam Lesinskie08af192015-03-25 16:42:59 -0700[diff] [blame]463 if (ConnectivityManager.isNetworkTypeWifi(type)) {
464 if (mLastPowerStateFromWifi != powerState) {
465 mLastPowerStateFromWifi = powerState;
466 try {
Adam Lesinski5f056f62016-07-14 16:56:08 -0700[diff] [blame]467 getBatteryStats().noteWifiRadioPowerState(powerState, tsNanos, uid);
Adam Lesinskie08af192015-03-25 16:42:59 -0700[diff] [blame]468 } catch (RemoteException e) {
469 }
470 }
471 }
472
Dianne Hackborn2ffa11e2014-04-21 15:56:18 -0700[diff] [blame]473 boolean isActive = powerState == DataConnectionRealTimeInfo.DC_POWER_STATE_MEDIUM
474 || powerState == DataConnectionRealTimeInfo.DC_POWER_STATE_HIGH;
475
476 if (!isMobile || fromRadio || !mMobileActivityFromRadio) {
477 // Report the change in data activity. We don't do this if this is a change
478 // on the mobile network, that is not coming from the radio itself, and we
479 // have previously seen change reports from the radio. In that case only
480 // the radio is the authority for the current state.
Erik Klineb2cfdfb2017-01-18 20:54:14 +0900[diff] [blame^]481 final boolean active = isActive;
482 invokeForAllObservers(o -> o.interfaceClassDataActivityChanged(
483 Integer.toString(type), active, tsNanos));
Haoyu Baidb3c8672012-06-20 14:29:57 -0700[diff] [blame]484 }
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]485
486 boolean report = false;
487 synchronized (mIdleTimerLock) {
488 if (mActiveIdleTimers.isEmpty()) {
Dianne Hackborn2ffa11e2014-04-21 15:56:18 -0700[diff] [blame]489 // If there are no idle timers, we are not monitoring activity, so we
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]490 // are always considered active.
Dianne Hackborn2ffa11e2014-04-21 15:56:18 -0700[diff] [blame]491 isActive = true;
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]492 }
Dianne Hackborn2ffa11e2014-04-21 15:56:18 -0700[diff] [blame]493 if (mNetworkActive != isActive) {
494 mNetworkActive = isActive;
495 report = isActive;
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]496 }
497 }
498 if (report) {
499 reportNetworkActive();
500 }
Haoyu Baidb3c8672012-06-20 14:29:57 -0700[diff] [blame]501 }
502
Lorenzo Colitti9eb844e2016-03-23 23:22:49 +0900[diff] [blame]503 // Sync the state of the given chain with the native daemon.
504 private void syncFirewallChainLocked(int chain, SparseIntArray uidFirewallRules, String name) {
505 int size = uidFirewallRules.size();
506 if (size > 0) {
507 // Make a copy of the current rules, and then clear them. This is because
508 // setFirewallUidRuleInternal only pushes down rules to the native daemon if they are
509 // different from the current rules stored in the mUidFirewall*Rules array for the
510 // specified chain. If we don't clear the rules, setFirewallUidRuleInternal will do
511 // nothing.
512 final SparseIntArray rules = uidFirewallRules.clone();
513 uidFirewallRules.clear();
514
515 // Now push the rules. setFirewallUidRuleInternal will push each of these down to the
516 // native daemon, and also add them to the mUidFirewall*Rules array for the specified
517 // chain.
518 if (DBG) Slog.d(TAG, "Pushing " + size + " active firewall " + name + "UID rules");
519 for (int i = 0; i < rules.size(); i++) {
Felipe Lemea701cad2016-05-12 09:58:14 -0700[diff] [blame]520 setFirewallUidRuleLocked(chain, rules.keyAt(i), rules.valueAt(i));
Lorenzo Colitti9eb844e2016-03-23 23:22:49 +0900[diff] [blame]521 }
522 }
523 }
524
bohu07cc3bb2016-05-03 15:58:01 -0700[diff] [blame]525 private void connectNativeNetdService() {
Lorenzo Colitti58967ba2016-02-02 17:21:21 +0900[diff] [blame]526 boolean nativeServiceAvailable = false;
527 try {
528 mNetdService = INetd.Stub.asInterface(ServiceManager.getService(NETD_SERVICE_NAME));
529 nativeServiceAvailable = mNetdService.isAlive();
530 } catch (RemoteException e) {}
531 if (!nativeServiceAvailable) {
532 Slog.wtf(TAG, "Can't connect to NativeNetdService " + NETD_SERVICE_NAME);
533 }
bohu07cc3bb2016-05-03 15:58:01 -0700[diff] [blame]534 }
535
536 /**
537 * Prepare native daemon once connected, enabling modules and pushing any
538 * existing in-memory rules.
539 */
540 private void prepareNativeDaemon() {
Lorenzo Colitti58967ba2016-02-02 17:21:21 +0900[diff] [blame]541
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]542 mBandwidthControlEnabled = false;
Robert Greenwalte5c3afb2010-09-22 14:32:35 -0700[diff] [blame]543
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]544 // only enable bandwidth control when support exists
545 final boolean hasKernelSupport = new File("/proc/net/xt_qtaguid/ctrl").exists();
546 if (hasKernelSupport) {
547 Slog.d(TAG, "enabling bandwidth control");
548 try {
549 mConnector.execute("bandwidth", "enable");
550 mBandwidthControlEnabled = true;
551 } catch (NativeDaemonConnectorException e) {
552 Log.wtf(TAG, "problem enabling bandwidth controls", e);
553 }
554 } else {
Felipe Leme03e689d2016-03-02 16:17:38 -0800[diff] [blame]555 Slog.i(TAG, "not enabling bandwidth control");
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]556 }
557
558 SystemProperties.set(PROP_QTAGUID_ENABLED, mBandwidthControlEnabled ? "1" : "0");
559
Jeff Sharkey7a1c3fc2013-06-04 12:29:00 -0700[diff] [blame]560 if (mBandwidthControlEnabled) {
561 try {
Dianne Hackborne13c4c02014-02-11 17:18:35 -0800[diff] [blame]562 getBatteryStats().noteNetworkStatsEnabled();
Jeff Sharkey7a1c3fc2013-06-04 12:29:00 -0700[diff] [blame]563 } catch (RemoteException e) {
564 }
565 }
566
Jeff Sharkey605eb792014-11-04 13:34:06 -0800[diff] [blame]567 try {
568 mConnector.execute("strict", "enable");
569 mStrictEnabled = true;
570 } catch (NativeDaemonConnectorException e) {
571 Log.wtf(TAG, "Failed strict enable", e);
572 }
573
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]574 // push any existing quota or UID rules
575 synchronized (mQuotaLock) {
Felipe Leme65be3022016-03-22 14:53:13 -0700[diff] [blame]576
577 setDataSaverModeEnabled(mDataSaverMode);
578
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]579 int size = mActiveQuotas.size();
580 if (size > 0) {
Felipe Leme03e689d2016-03-02 16:17:38 -0800[diff] [blame]581 if (DBG) Slog.d(TAG, "Pushing " + size + " active quota rules");
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]582 final HashMap<String, Long> activeQuotas = mActiveQuotas;
583 mActiveQuotas = Maps.newHashMap();
584 for (Map.Entry<String, Long> entry : activeQuotas.entrySet()) {
585 setInterfaceQuota(entry.getKey(), entry.getValue());
586 }
587 }
588
589 size = mActiveAlerts.size();
590 if (size > 0) {
Felipe Leme03e689d2016-03-02 16:17:38 -0800[diff] [blame]591 if (DBG) Slog.d(TAG, "Pushing " + size + " active alert rules");
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]592 final HashMap<String, Long> activeAlerts = mActiveAlerts;
593 mActiveAlerts = Maps.newHashMap();
594 for (Map.Entry<String, Long> entry : activeAlerts.entrySet()) {
595 setInterfaceAlert(entry.getKey(), entry.getValue());
596 }
597 }
598
Felipe Leme65be3022016-03-22 14:53:13 -0700[diff] [blame]599 size = mUidRejectOnMetered.size();
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]600 if (size > 0) {
Felipe Leme65be3022016-03-22 14:53:13 -0700[diff] [blame]601 if (DBG) Slog.d(TAG, "Pushing " + size + " UIDs to metered whitelist rules");
602 final SparseBooleanArray uidRejectOnQuota = mUidRejectOnMetered;
603 mUidRejectOnMetered = new SparseBooleanArray();
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]604 for (int i = 0; i < uidRejectOnQuota.size(); i++) {
Felipe Leme65be3022016-03-22 14:53:13 -0700[diff] [blame]605 setUidMeteredNetworkBlacklist(uidRejectOnQuota.keyAt(i),
606 uidRejectOnQuota.valueAt(i));
607 }
608 }
609
610 size = mUidAllowOnMetered.size();
611 if (size > 0) {
612 if (DBG) Slog.d(TAG, "Pushing " + size + " UIDs to metered blacklist rules");
613 final SparseBooleanArray uidAcceptOnQuota = mUidAllowOnMetered;
614 mUidAllowOnMetered = new SparseBooleanArray();
615 for (int i = 0; i < uidAcceptOnQuota.size(); i++) {
616 setUidMeteredNetworkWhitelist(uidAcceptOnQuota.keyAt(i),
617 uidAcceptOnQuota.valueAt(i));
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]618 }
619 }
Jeff Sharkey605eb792014-11-04 13:34:06 -0800[diff] [blame]620
621 size = mUidCleartextPolicy.size();
622 if (size > 0) {
Felipe Leme03e689d2016-03-02 16:17:38 -0800[diff] [blame]623 if (DBG) Slog.d(TAG, "Pushing " + size + " active UID cleartext policies");
Jeff Sharkey605eb792014-11-04 13:34:06 -0800[diff] [blame]624 final SparseIntArray local = mUidCleartextPolicy;
625 mUidCleartextPolicy = new SparseIntArray();
626 for (int i = 0; i < local.size(); i++) {
627 setUidCleartextNetworkPolicy(local.keyAt(i), local.valueAt(i));
628 }
629 }
Jeff Sharkeyc268f0b2012-08-24 10:25:31 -0700[diff] [blame]630
Amith Yamasani15e472352015-04-24 19:06:07 -0700[diff] [blame]631 setFirewallEnabled(mFirewallEnabled || LockdownVpnTracker.isEnabled());
632
Lorenzo Colitti9eb844e2016-03-23 23:22:49 +0900[diff] [blame]633 syncFirewallChainLocked(FIREWALL_CHAIN_NONE, mUidFirewallRules, "");
634 syncFirewallChainLocked(FIREWALL_CHAIN_STANDBY, mUidFirewallStandbyRules, "standby ");
635 syncFirewallChainLocked(FIREWALL_CHAIN_DOZABLE, mUidFirewallDozableRules, "dozable ");
636 syncFirewallChainLocked(FIREWALL_CHAIN_POWERSAVE, mUidFirewallPowerSaveRules,
637 "powersave ");
Xiaohui Chenb41c9f72015-06-17 15:55:37 -0700[diff] [blame]638
Xiaohui Chen8dca36d2015-06-19 12:44:59 -0700[diff] [blame]639 if (mFirewallChainStates.get(FIREWALL_CHAIN_STANDBY)) {
Xiaohui Chenb41c9f72015-06-17 15:55:37 -0700[diff] [blame]640 setFirewallChainEnabled(FIREWALL_CHAIN_STANDBY, true);
641 }
Xiaohui Chen8dca36d2015-06-19 12:44:59 -0700[diff] [blame]642 if (mFirewallChainStates.get(FIREWALL_CHAIN_DOZABLE)) {
Xiaohui Chenb41c9f72015-06-17 15:55:37 -0700[diff] [blame]643 setFirewallChainEnabled(FIREWALL_CHAIN_DOZABLE, true);
644 }
Felipe Leme011b98f2016-02-10 17:28:31 -0800[diff] [blame]645 if (mFirewallChainStates.get(FIREWALL_CHAIN_POWERSAVE)) {
646 setFirewallChainEnabled(FIREWALL_CHAIN_POWERSAVE, true);
647 }
Amith Yamasani15e472352015-04-24 19:06:07 -0700[diff] [blame]648 }
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]649 }
San Mehat4d02d002010-01-22 16:07:46 -0800[diff] [blame]650
Lorenzo Colitti5c7daac2013-08-05 10:39:37 +0900[diff] [blame]651 /**
652 * Notify our observers of a new or updated interface address.
653 */
Lorenzo Colitti64483942013-11-15 18:43:52 +0900[diff] [blame]654 private void notifyAddressUpdated(String iface, LinkAddress address) {
Erik Klineb2cfdfb2017-01-18 20:54:14 +0900[diff] [blame^]655 invokeForAllObservers(o -> o.addressUpdated(iface, address));
Lorenzo Colitti5c7daac2013-08-05 10:39:37 +0900[diff] [blame]656 }
657
658 /**
659 * Notify our observers of a deleted interface address.
660 */
Lorenzo Colitti64483942013-11-15 18:43:52 +0900[diff] [blame]661 private void notifyAddressRemoved(String iface, LinkAddress address) {
Erik Klineb2cfdfb2017-01-18 20:54:14 +0900[diff] [blame^]662 invokeForAllObservers(o -> o.addressRemoved(iface, address));
Lorenzo Colitti5c7daac2013-08-05 10:39:37 +0900[diff] [blame]663 }
664
Lorenzo Colitti5ae4a532013-10-31 11:59:46 +0900[diff] [blame]665 /**
666 * Notify our observers of DNS server information received.
667 */
668 private void notifyInterfaceDnsServerInfo(String iface, long lifetime, String[] addresses) {
Erik Klineb2cfdfb2017-01-18 20:54:14 +0900[diff] [blame^]669 invokeForAllObservers(o -> o.interfaceDnsServerInfo(iface, lifetime, addresses));
Lorenzo Colitti5ae4a532013-10-31 11:59:46 +0900[diff] [blame]670 }
671
Lorenzo Colittic18cbfd2014-06-13 21:21:03 +0900[diff] [blame]672 /**
673 * Notify our observers of a route change.
674 */
675 private void notifyRouteChange(String action, RouteInfo route) {
Erik Klineb2cfdfb2017-01-18 20:54:14 +0900[diff] [blame^]676 if (action.equals("updated")) {
677 invokeForAllObservers(o -> o.routeUpdated(route));
678 } else {
679 invokeForAllObservers(o -> o.routeRemoved(route));
Lorenzo Colittic18cbfd2014-06-13 21:21:03 +0900[diff] [blame]680 }
681 }
682
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]683 //
684 // Netd Callback handling
685 //
686
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]687 private class NetdCallbackReceiver implements INativeDaemonConnectorCallbacks {
688 @Override
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]689 public void onDaemonConnected() {
Felipe Leme65be3022016-03-22 14:53:13 -0700[diff] [blame]690 Slog.i(TAG, "onDaemonConnected()");
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]691 // event is dispatched from internal NDC thread, so we prepare the
692 // daemon back on main thread.
693 if (mConnectedSignal != null) {
bohu07cc3bb2016-05-03 15:58:01 -0700[diff] [blame]694 // The system is booting and we're connecting to netd for the first time.
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]695 mConnectedSignal.countDown();
696 mConnectedSignal = null;
697 } else {
bohu07cc3bb2016-05-03 15:58:01 -0700[diff] [blame]698 // We're reconnecting to netd after the socket connection
699 // was interrupted (e.g., if it crashed).
Robert Greenwalt2c9f5472014-04-21 14:50:28 -0700[diff] [blame]700 mFgHandler.post(new Runnable() {
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]701 @Override
702 public void run() {
bohu07cc3bb2016-05-03 15:58:01 -0700[diff] [blame]703 connectNativeNetdService();
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]704 prepareNativeDaemon();
705 }
706 });
707 }
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]708 }
Jeff Sharkeyfa23c5a2011-08-09 21:44:24 -0700[diff] [blame]709
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]710 @Override
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]711 public boolean onCheckHoldWakeLock(int code) {
712 return code == NetdResponseCode.InterfaceClassActivity;
713 }
714
715 @Override
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]716 public boolean onEvent(int code, String raw, String[] cooked) {
Lorenzo Colittia9626c12013-11-04 17:44:09 +0900[diff] [blame]717 String errorMessage = String.format("Invalid event from daemon (%s)", raw);
JP Abgrall12b933d2011-07-14 18:09:22 -0700[diff] [blame]718 switch (code) {
719 case NetdResponseCode.InterfaceChange:
720 /*
721 * a network interface change occured
722 * Format: "NNN Iface added <name>"
723 * "NNN Iface removed <name>"
724 * "NNN Iface changed <name> <up/down>"
725 * "NNN Iface linkstatus <name> <up/down>"
726 */
727 if (cooked.length < 4 || !cooked[1].equals("Iface")) {
Lorenzo Colittia9626c12013-11-04 17:44:09 +0900[diff] [blame]728 throw new IllegalStateException(errorMessage);
JP Abgrall12b933d2011-07-14 18:09:22 -0700[diff] [blame]729 }
730 if (cooked[2].equals("added")) {
731 notifyInterfaceAdded(cooked[3]);
732 return true;
733 } else if (cooked[2].equals("removed")) {
734 notifyInterfaceRemoved(cooked[3]);
735 return true;
736 } else if (cooked[2].equals("changed") && cooked.length == 5) {
737 notifyInterfaceStatusChanged(cooked[3], cooked[4].equals("up"));
738 return true;
739 } else if (cooked[2].equals("linkstate") && cooked.length == 5) {
740 notifyInterfaceLinkStateChanged(cooked[3], cooked[4].equals("up"));
741 return true;
742 }
Lorenzo Colittia9626c12013-11-04 17:44:09 +0900[diff] [blame]743 throw new IllegalStateException(errorMessage);
JP Abgrall12b933d2011-07-14 18:09:22 -0700[diff] [blame]744 // break;
745 case NetdResponseCode.BandwidthControl:
746 /*
747 * Bandwidth control needs some attention
748 * Format: "NNN limit alert <alertName> <ifaceName>"
749 */
750 if (cooked.length < 5 || !cooked[1].equals("limit")) {
Lorenzo Colittia9626c12013-11-04 17:44:09 +0900[diff] [blame]751 throw new IllegalStateException(errorMessage);
JP Abgrall12b933d2011-07-14 18:09:22 -0700[diff] [blame]752 }
753 if (cooked[2].equals("alert")) {
754 notifyLimitReached(cooked[3], cooked[4]);
755 return true;
756 }
Lorenzo Colittia9626c12013-11-04 17:44:09 +0900[diff] [blame]757 throw new IllegalStateException(errorMessage);
JP Abgrall12b933d2011-07-14 18:09:22 -0700[diff] [blame]758 // break;
Haoyu Baidb3c8672012-06-20 14:29:57 -0700[diff] [blame]759 case NetdResponseCode.InterfaceClassActivity:
760 /*
761 * An network interface class state changed (active/idle)
762 * Format: "NNN IfaceClass <active/idle> <label>"
763 */
764 if (cooked.length < 4 || !cooked[1].equals("IfaceClass")) {
Lorenzo Colittia9626c12013-11-04 17:44:09 +0900[diff] [blame]765 throw new IllegalStateException(errorMessage);
Haoyu Baidb3c8672012-06-20 14:29:57 -0700[diff] [blame]766 }
Ashish Sharma0535a9f2014-03-12 18:42:23 -0700[diff] [blame]767 long timestampNanos = 0;
Ruchi Kandoifa97fcf2016-05-13 15:10:39 -0700[diff] [blame]768 int processUid = -1;
769 if (cooked.length >= 5) {
Ashish Sharma0535a9f2014-03-12 18:42:23 -0700[diff] [blame]770 try {
771 timestampNanos = Long.parseLong(cooked[4]);
Ruchi Kandoifa97fcf2016-05-13 15:10:39 -0700[diff] [blame]772 if (cooked.length == 6) {
773 processUid = Integer.parseInt(cooked[5]);
774 }
Ashish Sharma0535a9f2014-03-12 18:42:23 -0700[diff] [blame]775 } catch(NumberFormatException ne) {}
Dianne Hackborn2ffa11e2014-04-21 15:56:18 -0700[diff] [blame]776 } else {
777 timestampNanos = SystemClock.elapsedRealtimeNanos();
Ashish Sharma0535a9f2014-03-12 18:42:23 -0700[diff] [blame]778 }
Haoyu Baidb3c8672012-06-20 14:29:57 -0700[diff] [blame]779 boolean isActive = cooked[2].equals("active");
Ashish Sharma0535a9f2014-03-12 18:42:23 -0700[diff] [blame]780 notifyInterfaceClassActivity(Integer.parseInt(cooked[3]),
Dianne Hackborn2ffa11e2014-04-21 15:56:18 -0700[diff] [blame]781 isActive ? DataConnectionRealTimeInfo.DC_POWER_STATE_HIGH
Ruchi Kandoifa97fcf2016-05-13 15:10:39 -0700[diff] [blame]782 : DataConnectionRealTimeInfo.DC_POWER_STATE_LOW,
783 timestampNanos, processUid, false);
Haoyu Baidb3c8672012-06-20 14:29:57 -0700[diff] [blame]784 return true;
785 // break;
Lorenzo Colitti5c7daac2013-08-05 10:39:37 +0900[diff] [blame]786 case NetdResponseCode.InterfaceAddressChange:
787 /*
788 * A network address change occurred
789 * Format: "NNN Address updated <addr> <iface> <flags> <scope>"
790 * "NNN Address removed <addr> <iface> <flags> <scope>"
791 */
Lorenzo Colittia9626c12013-11-04 17:44:09 +0900[diff] [blame]792 if (cooked.length < 7 || !cooked[1].equals("Address")) {
793 throw new IllegalStateException(errorMessage);
Lorenzo Colitti5c7daac2013-08-05 10:39:37 +0900[diff] [blame]794 }
795
Lorenzo Colitti64483942013-11-15 18:43:52 +0900[diff] [blame]796 String iface = cooked[4];
Lorenzo Colitti5ad421a2013-11-17 15:05:02 +0900[diff] [blame]797 LinkAddress address;
Lorenzo Colitti5c7daac2013-08-05 10:39:37 +0900[diff] [blame]798 try {
Lorenzo Colitti64483942013-11-15 18:43:52 +0900[diff] [blame]799 int flags = Integer.parseInt(cooked[5]);
800 int scope = Integer.parseInt(cooked[6]);
801 address = new LinkAddress(cooked[3], flags, scope);
Lorenzo Colitti5ad421a2013-11-17 15:05:02 +0900[diff] [blame]802 } catch(NumberFormatException e) { // Non-numeric lifetime or scope.
803 throw new IllegalStateException(errorMessage, e);
Lorenzo Colitti64483942013-11-15 18:43:52 +0900[diff] [blame]804 } catch(IllegalArgumentException e) { // Malformed/invalid IP address.
Lorenzo Colitti5ad421a2013-11-17 15:05:02 +0900[diff] [blame]805 throw new IllegalStateException(errorMessage, e);
Lorenzo Colitti5c7daac2013-08-05 10:39:37 +0900[diff] [blame]806 }
807
808 if (cooked[2].equals("updated")) {
Lorenzo Colitti64483942013-11-15 18:43:52 +0900[diff] [blame]809 notifyAddressUpdated(iface, address);
Lorenzo Colitti5c7daac2013-08-05 10:39:37 +0900[diff] [blame]810 } else {
Lorenzo Colitti64483942013-11-15 18:43:52 +0900[diff] [blame]811 notifyAddressRemoved(iface, address);
Lorenzo Colitti5c7daac2013-08-05 10:39:37 +0900[diff] [blame]812 }
813 return true;
814 // break;
Lorenzo Colitti5ae4a532013-10-31 11:59:46 +0900[diff] [blame]815 case NetdResponseCode.InterfaceDnsServerInfo:
816 /*
817 * Information about available DNS servers has been received.
818 * Format: "NNN DnsInfo servers <interface> <lifetime> <servers>"
819 */
820 long lifetime; // Actually a 32-bit unsigned integer.
821
822 if (cooked.length == 6 &&
823 cooked[1].equals("DnsInfo") &&
824 cooked[2].equals("servers")) {
825 try {
826 lifetime = Long.parseLong(cooked[4]);
827 } catch (NumberFormatException e) {
828 throw new IllegalStateException(errorMessage);
829 }
830 String[] servers = cooked[5].split(",");
831 notifyInterfaceDnsServerInfo(cooked[3], lifetime, servers);
832 }
833 return true;
834 // break;
Lorenzo Colittic18cbfd2014-06-13 21:21:03 +0900[diff] [blame]835 case NetdResponseCode.RouteChange:
836 /*
837 * A route has been updated or removed.
838 * Format: "NNN Route <updated|removed> <dst> [via <gateway] [dev <iface>]"
839 */
840 if (!cooked[1].equals("Route") || cooked.length < 6) {
841 throw new IllegalStateException(errorMessage);
842 }
843
844 String via = null;
845 String dev = null;
846 boolean valid = true;
847 for (int i = 4; (i + 1) < cooked.length && valid; i += 2) {
848 if (cooked[i].equals("dev")) {
849 if (dev == null) {
850 dev = cooked[i+1];
851 } else {
852 valid = false; // Duplicate interface.
853 }
854 } else if (cooked[i].equals("via")) {
855 if (via == null) {
856 via = cooked[i+1];
857 } else {
858 valid = false; // Duplicate gateway.
859 }
860 } else {
861 valid = false; // Unknown syntax.
862 }
863 }
864 if (valid) {
865 try {
866 // InetAddress.parseNumericAddress(null) inexplicably returns ::1.
867 InetAddress gateway = null;
868 if (via != null) gateway = InetAddress.parseNumericAddress(via);
869 RouteInfo route = new RouteInfo(new IpPrefix(cooked[3]), gateway, dev);
870 notifyRouteChange(cooked[2], route);
871 return true;
872 } catch (IllegalArgumentException e) {}
873 }
874 throw new IllegalStateException(errorMessage);
875 // break;
Jeff Sharkey605eb792014-11-04 13:34:06 -0800[diff] [blame]876 case NetdResponseCode.StrictCleartext:
877 final int uid = Integer.parseInt(cooked[1]);
878 final byte[] firstPacket = HexDump.hexStringToByteArray(cooked[2]);
879 try {
880 ActivityManagerNative.getDefault().notifyCleartextNetwork(uid, firstPacket);
881 } catch (RemoteException ignored) {
882 }
883 break;
JP Abgrall12b933d2011-07-14 18:09:22 -0700[diff] [blame]884 default: break;
Robert Greenwalte3253922010-02-18 09:23:25 -0800[diff] [blame]885 }
886 return false;
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]887 }
888 }
889
San Mehated4fc8a2010-01-22 12:28:36 -0800[diff] [blame]890
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]891 //
892 // INetworkManagementService members
893 //
Erik Kline4e37b702016-07-05 11:34:21 +0900[diff] [blame]894 @Override
895 public INetd getNetdService() throws RemoteException {
896 final CountDownLatch connectedSignal = mConnectedSignal;
897 if (connectedSignal != null) {
898 try {
899 connectedSignal.await();
900 } catch (InterruptedException ignored) {}
901 }
902
903 return mNetdService;
904 }
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]905
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]906 @Override
907 public String[] listInterfaces() {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]908 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]909 try {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]910 return NativeDaemonEvent.filterMessageList(
911 mConnector.executeForList("interface", "list"), InterfaceListResult);
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]912 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]913 throw e.rethrowAsParcelableException();
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]914 }
San Mehated4fc8a2010-01-22 12:28:36 -0800[diff] [blame]915 }
916
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]917 @Override
918 public InterfaceConfiguration getInterfaceConfig(String iface) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]919 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]920
921 final NativeDaemonEvent event;
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]922 try {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]923 event = mConnector.execute("interface", "getcfg", iface);
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]924 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]925 throw e.rethrowAsParcelableException();
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]926 }
San Mehated4fc8a2010-01-22 12:28:36 -0800[diff] [blame]927
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]928 event.checkCode(InterfaceGetCfgResult);
929
930 // Rsp: 213 xx:xx:xx:xx:xx:xx yyy.yyy.yyy.yyy zzz flag1 flag2 flag3
931 final StringTokenizer st = new StringTokenizer(event.getMessage());
San Mehated4fc8a2010-01-22 12:28:36 -0800[diff] [blame]932
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]933 InterfaceConfiguration cfg;
San Mehated4fc8a2010-01-22 12:28:36 -0800[diff] [blame]934 try {
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]935 cfg = new InterfaceConfiguration();
Jeff Sharkeyddba1062011-11-29 18:37:04 -0800[diff] [blame]936 cfg.setHardwareAddress(st.nextToken(" "));
Robert Greenwalted126402011-01-28 15:34:55 -0800[diff] [blame]937 InetAddress addr = null;
Robert Greenwalt2d2afd12011-02-01 15:30:46 -0800[diff] [blame]938 int prefixLength = 0;
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]939 try {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]940 addr = NetworkUtils.numericToInetAddress(st.nextToken());
Robert Greenwalte5903732011-02-22 16:00:42 -0800[diff] [blame]941 } catch (IllegalArgumentException iae) {
942 Slog.e(TAG, "Failed to parse ipaddr", iae);
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]943 }
944
945 try {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]946 prefixLength = Integer.parseInt(st.nextToken());
Robert Greenwalt2d2afd12011-02-01 15:30:46 -0800[diff] [blame]947 } catch (NumberFormatException nfe) {
948 Slog.e(TAG, "Failed to parse prefixLength", nfe);
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]949 }
Robert Greenwalt04808c22010-12-13 17:01:41 -0800[diff] [blame]950
Jeff Sharkeyddba1062011-11-29 18:37:04 -0800[diff] [blame]951 cfg.setLinkAddress(new LinkAddress(addr, prefixLength));
952 while (st.hasMoreTokens()) {
953 cfg.setFlag(st.nextToken());
954 }
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]955 } catch (NoSuchElementException nsee) {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]956 throw new IllegalStateException("Invalid response from daemon: " + event);
San Mehated4fc8a2010-01-22 12:28:36 -0800[diff] [blame]957 }
San Mehated4fc8a2010-01-22 12:28:36 -0800[diff] [blame]958 return cfg;
959 }
960
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]961 @Override
962 public void setInterfaceConfig(String iface, InterfaceConfiguration cfg) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]963 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Jeff Sharkeyddba1062011-11-29 18:37:04 -0800[diff] [blame]964 LinkAddress linkAddr = cfg.getLinkAddress();
Robert Greenwalt2d2afd12011-02-01 15:30:46 -0800[diff] [blame]965 if (linkAddr == null || linkAddr.getAddress() == null) {
966 throw new IllegalStateException("Null LinkAddress given");
Robert Greenwalted126402011-01-28 15:34:55 -0800[diff] [blame]967 }
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]968
969 final Command cmd = new Command("interface", "setcfg", iface,
Robert Greenwalt2d2afd12011-02-01 15:30:46 -0800[diff] [blame]970 linkAddr.getAddress().getHostAddress(),
Lorenzo Colitti7dc78cf2014-06-09 22:58:46 +0900[diff] [blame]971 linkAddr.getPrefixLength());
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]972 for (String flag : cfg.getFlags()) {
973 cmd.appendArg(flag);
974 }
975
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]976 try {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]977 mConnector.execute(cmd);
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]978 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]979 throw e.rethrowAsParcelableException();
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]980 }
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]981 }
982
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]983 @Override
984 public void setInterfaceDown(String iface) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]985 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Jeff Sharkey31c6e482011-11-18 17:09:01 -0800[diff] [blame]986 final InterfaceConfiguration ifcg = getInterfaceConfig(iface);
Jeff Sharkeyddba1062011-11-29 18:37:04 -0800[diff] [blame]987 ifcg.setInterfaceDown();
Jeff Sharkey31c6e482011-11-18 17:09:01 -0800[diff] [blame]988 setInterfaceConfig(iface, ifcg);
Irfan Sheriff7244c972011-08-05 20:40:45 -0700[diff] [blame]989 }
990
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]991 @Override
992 public void setInterfaceUp(String iface) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]993 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Jeff Sharkey31c6e482011-11-18 17:09:01 -0800[diff] [blame]994 final InterfaceConfiguration ifcg = getInterfaceConfig(iface);
Jeff Sharkeyddba1062011-11-29 18:37:04 -0800[diff] [blame]995 ifcg.setInterfaceUp();
Jeff Sharkey31c6e482011-11-18 17:09:01 -0800[diff] [blame]996 setInterfaceConfig(iface, ifcg);
Irfan Sheriff7244c972011-08-05 20:40:45 -0700[diff] [blame]997 }
998
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]999 @Override
1000 public void setInterfaceIpv6PrivacyExtensions(String iface, boolean enable) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1001 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Irfan Sheriff73293612011-09-14 12:31:56 -0700[diff] [blame]1002 try {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1003 mConnector.execute(
1004 "interface", "ipv6privacyextensions", iface, enable ? "enable" : "disable");
Irfan Sheriff73293612011-09-14 12:31:56 -0700[diff] [blame]1005 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]1006 throw e.rethrowAsParcelableException();
Irfan Sheriff73293612011-09-14 12:31:56 -0700[diff] [blame]1007 }
1008 }
1009
Irfan Sherifff5600612011-06-16 10:26:28 -0700[diff] [blame]1010 /* TODO: This is right now a IPv4 only function. Works for wifi which loses its
1011 IPv6 addresses on interface down, but we need to do full clean up here */
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1012 @Override
1013 public void clearInterfaceAddresses(String iface) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1014 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Irfan Sherifff5600612011-06-16 10:26:28 -0700[diff] [blame]1015 try {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1016 mConnector.execute("interface", "clearaddrs", iface);
Irfan Sherifff5600612011-06-16 10:26:28 -0700[diff] [blame]1017 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]1018 throw e.rethrowAsParcelableException();
Irfan Sherifff5600612011-06-16 10:26:28 -0700[diff] [blame]1019 }
1020 }
1021
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1022 @Override
1023 public void enableIpv6(String iface) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1024 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
repo sync7960d9f2011-09-29 12:40:02 -0700[diff] [blame]1025 try {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1026 mConnector.execute("interface", "ipv6", iface, "enable");
repo sync7960d9f2011-09-29 12:40:02 -0700[diff] [blame]1027 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]1028 throw e.rethrowAsParcelableException();
repo sync7960d9f2011-09-29 12:40:02 -0700[diff] [blame]1029 }
1030 }
1031
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1032 @Override
1033 public void disableIpv6(String iface) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1034 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
repo sync7960d9f2011-09-29 12:40:02 -0700[diff] [blame]1035 try {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1036 mConnector.execute("interface", "ipv6", iface, "disable");
repo sync7960d9f2011-09-29 12:40:02 -0700[diff] [blame]1037 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]1038 throw e.rethrowAsParcelableException();
repo sync7960d9f2011-09-29 12:40:02 -0700[diff] [blame]1039 }
1040 }
1041
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1042 @Override
Lorenzo Colittie21a26b2014-10-28 15:24:03 +0900[diff] [blame]1043 public void setInterfaceIpv6NdOffload(String iface, boolean enable) {
1044 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
1045 try {
1046 mConnector.execute(
1047 "interface", "ipv6ndoffload", iface, (enable ? "enable" : "disable"));
1048 } catch (NativeDaemonConnectorException e) {
1049 throw e.rethrowAsParcelableException();
1050 }
1051 }
1052
1053 @Override
Sreeram Ramachandranb2829fa2014-04-15 19:07:12 -0700[diff] [blame]1054 public void addRoute(int netId, RouteInfo route) {
Sreeram Ramachandrana77760d2014-07-17 17:09:07 -0700[diff] [blame]1055 modifyRoute("add", "" + netId, route);
Robert Greenwalt59b1a4e2011-05-10 15:05:02 -0700[diff] [blame]1056 }
1057
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1058 @Override
Sreeram Ramachandranb2829fa2014-04-15 19:07:12 -0700[diff] [blame]1059 public void removeRoute(int netId, RouteInfo route) {
Sreeram Ramachandrana77760d2014-07-17 17:09:07 -0700[diff] [blame]1060 modifyRoute("remove", "" + netId, route);
Robert Greenwalt59b1a4e2011-05-10 15:05:02 -0700[diff] [blame]1061 }
1062
Sreeram Ramachandrana77760d2014-07-17 17:09:07 -0700[diff] [blame]1063 private void modifyRoute(String action, String netId, RouteInfo route) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1064 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Robert Greenwalt3b28e9a2011-11-02 14:37:19 -0700[diff] [blame]1065
Sreeram Ramachandranb2829fa2014-04-15 19:07:12 -0700[diff] [blame]1066 final Command cmd = new Command("network", "route", action, netId);
Robert Greenwalt3b28e9a2011-11-02 14:37:19 -0700[diff] [blame]1067
Sreeram Ramachandranb2829fa2014-04-15 19:07:12 -0700[diff] [blame]1068 // create triplet: interface dest-ip-addr/prefixlength gateway-ip-addr
Sreeram Ramachandranb2829fa2014-04-15 19:07:12 -0700[diff] [blame]1069 cmd.appendArg(route.getInterface());
Lorenzo Colitti4b0f8e62014-09-19 01:49:05 +0900[diff] [blame]1070 cmd.appendArg(route.getDestination().toString());
1071
1072 switch (route.getType()) {
1073 case RouteInfo.RTN_UNICAST:
1074 if (route.hasGateway()) {
1075 cmd.appendArg(route.getGateway().getHostAddress());
1076 }
1077 break;
1078 case RouteInfo.RTN_UNREACHABLE:
1079 cmd.appendArg("unreachable");
1080 break;
1081 case RouteInfo.RTN_THROW:
1082 cmd.appendArg("throw");
1083 break;
Sreeram Ramachandran1fbcb272014-05-22 16:30:48 -0700[diff] [blame]1084 }
Robert Greenwalt59b1a4e2011-05-10 15:05:02 -0700[diff] [blame]1085
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1086 try {
1087 mConnector.execute(cmd);
1088 } catch (NativeDaemonConnectorException e) {
1089 throw e.rethrowAsParcelableException();
Robert Greenwalt59b1a4e2011-05-10 15:05:02 -0700[diff] [blame]1090 }
1091 }
1092
1093 private ArrayList<String> readRouteList(String filename) {
1094 FileInputStream fstream = null;
Christopher Wiley5de073a2016-08-02 11:38:57 -0700[diff] [blame]1095 ArrayList<String> list = new ArrayList<>();
Robert Greenwalt59b1a4e2011-05-10 15:05:02 -0700[diff] [blame]1096
1097 try {
1098 fstream = new FileInputStream(filename);
1099 DataInputStream in = new DataInputStream(fstream);
1100 BufferedReader br = new BufferedReader(new InputStreamReader(in));
1101 String s;
1102
1103 // throw away the title line
1104
1105 while (((s = br.readLine()) != null) && (s.length() != 0)) {
1106 list.add(s);
1107 }
1108 } catch (IOException ex) {
1109 // return current list, possibly empty
1110 } finally {
1111 if (fstream != null) {
1112 try {
1113 fstream.close();
1114 } catch (IOException ex) {}
1115 }
1116 }
1117
1118 return list;
1119 }
1120
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1121 @Override
sy.yun9d9b74a2013-09-02 05:24:09 +0900[diff] [blame]1122 public void setMtu(String iface, int mtu) {
1123 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
1124
1125 final NativeDaemonEvent event;
1126 try {
1127 event = mConnector.execute("interface", "setmtu", iface, mtu);
1128 } catch (NativeDaemonConnectorException e) {
1129 throw e.rethrowAsParcelableException();
1130 }
1131 }
1132
1133 @Override
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]1134 public void shutdown() {
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1135 // TODO: remove from aidl if nobody calls externally
1136 mContext.enforceCallingOrSelfPermission(SHUTDOWN, TAG);
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]1137
Felipe Leme03e689d2016-03-02 16:17:38 -0800[diff] [blame]1138 Slog.i(TAG, "Shutting down");
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]1139 }
1140
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1141 @Override
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]1142 public boolean getIpForwardingEnabled() throws IllegalStateException{
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1143 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]1144
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1145 final NativeDaemonEvent event;
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1146 try {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1147 event = mConnector.execute("ipfwd", "status");
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1148 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]1149 throw e.rethrowAsParcelableException();
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1150 }
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]1151
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1152 // 211 Forwarding enabled
1153 event.checkCode(IpFwdStatusResult);
1154 return event.getMessage().endsWith("enabled");
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]1155 }
1156
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1157 @Override
1158 public void setIpForwardingEnabled(boolean enable) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1159 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Jeff Sharkey31c6e482011-11-18 17:09:01 -0800[diff] [blame]1160 try {
Nilesh Poddarf3d4a582015-02-24 12:11:11 -0800[diff] [blame]1161 mConnector.execute("ipfwd", enable ? "enable" : "disable", "tethering");
Jeff Sharkey31c6e482011-11-18 17:09:01 -0800[diff] [blame]1162 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]1163 throw e.rethrowAsParcelableException();
Jeff Sharkey31c6e482011-11-18 17:09:01 -0800[diff] [blame]1164 }
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]1165 }
1166
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1167 @Override
1168 public void startTethering(String[] dhcpRange) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1169 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Robert Greenwaltbfb7bfa2010-03-24 16:03:21 -0700[diff] [blame]1170 // cmd is "tether start first_start first_stop second_start second_stop ..."
1171 // an odd number of addrs will fail
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1172
1173 final Command cmd = new Command("tether", "start");
Robert Greenwaltbfb7bfa2010-03-24 16:03:21 -0700[diff] [blame]1174 for (String d : dhcpRange) {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1175 cmd.appendArg(d);
Robert Greenwaltbfb7bfa2010-03-24 16:03:21 -0700[diff] [blame]1176 }
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1177
1178 try {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1179 mConnector.execute(cmd);
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1180 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]1181 throw e.rethrowAsParcelableException();
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1182 }
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]1183 }
1184
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1185 @Override
1186 public void stopTethering() {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1187 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1188 try {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1189 mConnector.execute("tether", "stop");
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1190 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]1191 throw e.rethrowAsParcelableException();
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1192 }
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]1193 }
1194
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1195 @Override
1196 public boolean isTetheringStarted() {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1197 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]1198
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1199 final NativeDaemonEvent event;
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1200 try {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1201 event = mConnector.execute("tether", "status");
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1202 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]1203 throw e.rethrowAsParcelableException();
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1204 }
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]1205
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1206 // 210 Tethering services started
1207 event.checkCode(TetherStatusResult);
1208 return event.getMessage().endsWith("started");
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]1209 }
Matthew Xiefe19f122012-07-12 16:03:32 -0700[diff] [blame]1210
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1211 @Override
1212 public void tetherInterface(String iface) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1213 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1214 try {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1215 mConnector.execute("tether", "interface", "add", iface);
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1216 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]1217 throw e.rethrowAsParcelableException();
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1218 }
Christopher Wiley5de073a2016-08-02 11:38:57 -0700[diff] [blame]1219 List<RouteInfo> routes = new ArrayList<>();
Sreeram Ramachandrana77760d2014-07-17 17:09:07 -0700[diff] [blame]1220 // The RouteInfo constructor truncates the LinkAddress to a network prefix, thus making it
1221 // suitable to use as a route destination.
1222 routes.add(new RouteInfo(getInterfaceConfig(iface).getLinkAddress(), null, iface));
1223 addInterfaceToLocalNetwork(iface, routes);
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]1224 }
1225
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1226 @Override
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]1227 public void untetherInterface(String iface) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1228 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1229 try {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1230 mConnector.execute("tether", "interface", "remove", iface);
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1231 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]1232 throw e.rethrowAsParcelableException();
Erik Kline1f4278a2016-08-16 16:46:33 +0900[diff] [blame]1233 } finally {
1234 removeInterfaceFromLocalNetwork(iface);
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1235 }
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]1236 }
1237
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1238 @Override
1239 public String[] listTetheredInterfaces() {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1240 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1241 try {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1242 return NativeDaemonEvent.filterMessageList(
1243 mConnector.executeForList("tether", "interface", "list"),
1244 TetherInterfaceListResult);
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1245 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]1246 throw e.rethrowAsParcelableException();
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1247 }
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]1248 }
1249
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1250 @Override
Lorenzo Colittib57edc52014-08-22 17:10:50 -0700[diff] [blame]1251 public void setDnsForwarders(Network network, String[] dns) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1252 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1253
Lorenzo Colittib57edc52014-08-22 17:10:50 -0700[diff] [blame]1254 int netId = (network != null) ? network.netId : ConnectivityManager.NETID_UNSET;
1255 final Command cmd = new Command("tether", "dns", "set", netId);
1256
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1257 for (String s : dns) {
1258 cmd.appendArg(NetworkUtils.numericToInetAddress(s).getHostAddress());
1259 }
1260
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]1261 try {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1262 mConnector.execute(cmd);
1263 } catch (NativeDaemonConnectorException e) {
1264 throw e.rethrowAsParcelableException();
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]1265 }
1266 }
1267
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1268 @Override
1269 public String[] getDnsForwarders() {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1270 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1271 try {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1272 return NativeDaemonEvent.filterMessageList(
1273 mConnector.executeForList("tether", "dns", "list"), TetherDnsFwdTgtListResult);
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1274 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]1275 throw e.rethrowAsParcelableException();
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1276 }
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]1277 }
1278
jiaguo1da35f72014-01-09 16:39:59 +0800[diff] [blame]1279 private List<InterfaceAddress> excludeLinkLocal(List<InterfaceAddress> addresses) {
Christopher Wiley5de073a2016-08-02 11:38:57 -0700[diff] [blame]1280 ArrayList<InterfaceAddress> filtered = new ArrayList<>(addresses.size());
jiaguo1da35f72014-01-09 16:39:59 +0800[diff] [blame]1281 for (InterfaceAddress ia : addresses) {
1282 if (!ia.getAddress().isLinkLocalAddress())
1283 filtered.add(ia);
1284 }
1285 return filtered;
1286 }
1287
Lorenzo Colitti35e36db2015-02-26 01:25:36 +0900[diff] [blame]1288 private void modifyInterfaceForward(boolean add, String fromIface, String toIface) {
1289 final Command cmd = new Command("ipfwd", add ? "add" : "remove", fromIface, toIface);
1290 try {
1291 mConnector.execute(cmd);
1292 } catch (NativeDaemonConnectorException e) {
1293 throw e.rethrowAsParcelableException();
1294 }
1295 }
1296
1297 @Override
1298 public void startInterfaceForwarding(String fromIface, String toIface) {
1299 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
1300 modifyInterfaceForward(true, fromIface, toIface);
1301 }
1302
1303 @Override
1304 public void stopInterfaceForwarding(String fromIface, String toIface) {
1305 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
1306 modifyInterfaceForward(false, fromIface, toIface);
1307 }
1308
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1309 private void modifyNat(String action, String internalInterface, String externalInterface)
Robert Greenwalt3b28e9a2011-11-02 14:37:19 -0700[diff] [blame]1310 throws SocketException {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1311 final Command cmd = new Command("nat", action, internalInterface, externalInterface);
Robert Greenwalt3b28e9a2011-11-02 14:37:19 -0700[diff] [blame]1312
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1313 final NetworkInterface internalNetworkInterface = NetworkInterface.getByName(
1314 internalInterface);
Robert Greenwalte83d1812011-11-21 14:44:39 -0800[diff] [blame]1315 if (internalNetworkInterface == null) {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1316 cmd.appendArg("0");
Robert Greenwalte83d1812011-11-21 14:44:39 -0800[diff] [blame]1317 } else {
jiaguo1da35f72014-01-09 16:39:59 +0800[diff] [blame]1318 // Don't touch link-local routes, as link-local addresses aren't routable,
1319 // kernel creates link-local routes on all interfaces automatically
1320 List<InterfaceAddress> interfaceAddresses = excludeLinkLocal(
1321 internalNetworkInterface.getInterfaceAddresses());
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1322 cmd.appendArg(interfaceAddresses.size());
Robert Greenwalte83d1812011-11-21 14:44:39 -0800[diff] [blame]1323 for (InterfaceAddress ia : interfaceAddresses) {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1324 InetAddress addr = NetworkUtils.getNetworkPart(
1325 ia.getAddress(), ia.getNetworkPrefixLength());
1326 cmd.appendArg(addr.getHostAddress() + "/" + ia.getNetworkPrefixLength());
Robert Greenwalte83d1812011-11-21 14:44:39 -0800[diff] [blame]1327 }
Robert Greenwalt3b28e9a2011-11-02 14:37:19 -0700[diff] [blame]1328 }
1329
Jeff Sharkey31c6e482011-11-18 17:09:01 -0800[diff] [blame]1330 try {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1331 mConnector.execute(cmd);
Jeff Sharkey31c6e482011-11-18 17:09:01 -0800[diff] [blame]1332 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]1333 throw e.rethrowAsParcelableException();
Jeff Sharkey31c6e482011-11-18 17:09:01 -0800[diff] [blame]1334 }
Robert Greenwalt3b28e9a2011-11-02 14:37:19 -0700[diff] [blame]1335 }
1336
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1337 @Override
1338 public void enableNat(String internalInterface, String externalInterface) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1339 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1340 try {
Robert Greenwalt3b28e9a2011-11-02 14:37:19 -0700[diff] [blame]1341 modifyNat("enable", internalInterface, externalInterface);
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1342 } catch (SocketException e) {
1343 throw new IllegalStateException(e);
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1344 }
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]1345 }
1346
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1347 @Override
1348 public void disableNat(String internalInterface, String externalInterface) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1349 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1350 try {
Robert Greenwalt3b28e9a2011-11-02 14:37:19 -0700[diff] [blame]1351 modifyNat("disable", internalInterface, externalInterface);
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1352 } catch (SocketException e) {
1353 throw new IllegalStateException(e);
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1354 }
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]1355 }
San Mehat72759df2010-01-19 13:50:37 -0800[diff] [blame]1356
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1357 @Override
1358 public String[] listTtys() {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1359 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1360 try {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1361 return NativeDaemonEvent.filterMessageList(
1362 mConnector.executeForList("list_ttys"), TtyListResult);
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1363 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]1364 throw e.rethrowAsParcelableException();
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1365 }
San Mehat72759df2010-01-19 13:50:37 -0800[diff] [blame]1366 }
1367
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1368 @Override
1369 public void attachPppd(
1370 String tty, String localAddr, String remoteAddr, String dns1Addr, String dns2Addr) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1371 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
San Mehat72759df2010-01-19 13:50:37 -0800[diff] [blame]1372 try {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1373 mConnector.execute("pppd", "attach", tty,
Robert Greenwalte5903732011-02-22 16:00:42 -0800[diff] [blame]1374 NetworkUtils.numericToInetAddress(localAddr).getHostAddress(),
1375 NetworkUtils.numericToInetAddress(remoteAddr).getHostAddress(),
1376 NetworkUtils.numericToInetAddress(dns1Addr).getHostAddress(),
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1377 NetworkUtils.numericToInetAddress(dns2Addr).getHostAddress());
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1378 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]1379 throw e.rethrowAsParcelableException();
San Mehat72759df2010-01-19 13:50:37 -0800[diff] [blame]1380 }
1381 }
1382
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1383 @Override
1384 public void detachPppd(String tty) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1385 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1386 try {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1387 mConnector.execute("pppd", "detach", tty);
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1388 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]1389 throw e.rethrowAsParcelableException();
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1390 }
San Mehat72759df2010-01-19 13:50:37 -0800[diff] [blame]1391 }
Robert Greenwaltce1200d2010-02-18 11:25:54 -0800[diff] [blame]1392
Jeff Sharkeyeedcb952011-05-17 14:55:15 -0700[diff] [blame]1393 @Override
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]1394 public void addIdleTimer(String iface, int timeout, final int type) {
Haoyu Bai04124232012-06-28 15:26:19 -0700[diff] [blame]1395 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
1396
1397 if (DBG) Slog.d(TAG, "Adding idletimer");
1398
1399 synchronized (mIdleTimerLock) {
1400 IdleTimerParams params = mActiveIdleTimers.get(iface);
1401 if (params != null) {
1402 // the interface already has idletimer, update network count
1403 params.networkCount++;
1404 return;
1405 }
1406
1407 try {
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]1408 mConnector.execute("idletimer", "add", iface, Integer.toString(timeout),
1409 Integer.toString(type));
Haoyu Bai04124232012-06-28 15:26:19 -0700[diff] [blame]1410 } catch (NativeDaemonConnectorException e) {
1411 throw e.rethrowAsParcelableException();
1412 }
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]1413 mActiveIdleTimers.put(iface, new IdleTimerParams(timeout, type));
1414
Dianne Hackborne13c4c02014-02-11 17:18:35 -0800[diff] [blame]1415 // Networks start up.
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]1416 if (ConnectivityManager.isNetworkTypeMobile(type)) {
1417 mNetworkActive = false;
1418 }
Dianne Hackborn2ffa11e2014-04-21 15:56:18 -0700[diff] [blame]1419 mDaemonHandler.post(new Runnable() {
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]1420 @Override public void run() {
Dianne Hackborn2ffa11e2014-04-21 15:56:18 -0700[diff] [blame]1421 notifyInterfaceClassActivity(type,
1422 DataConnectionRealTimeInfo.DC_POWER_STATE_HIGH,
Ruchi Kandoifa97fcf2016-05-13 15:10:39 -0700[diff] [blame]1423 SystemClock.elapsedRealtimeNanos(), -1, false);
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]1424 }
1425 });
Haoyu Bai04124232012-06-28 15:26:19 -0700[diff] [blame]1426 }
1427 }
1428
1429 @Override
1430 public void removeIdleTimer(String iface) {
1431 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
1432
1433 if (DBG) Slog.d(TAG, "Removing idletimer");
1434
1435 synchronized (mIdleTimerLock) {
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]1436 final IdleTimerParams params = mActiveIdleTimers.get(iface);
Haoyu Bai04124232012-06-28 15:26:19 -0700[diff] [blame]1437 if (params == null || --(params.networkCount) > 0) {
1438 return;
1439 }
1440
1441 try {
1442 mConnector.execute("idletimer", "remove", iface,
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]1443 Integer.toString(params.timeout), Integer.toString(params.type));
Haoyu Bai04124232012-06-28 15:26:19 -0700[diff] [blame]1444 } catch (NativeDaemonConnectorException e) {
1445 throw e.rethrowAsParcelableException();
1446 }
1447 mActiveIdleTimers.remove(iface);
Dianne Hackborn2ffa11e2014-04-21 15:56:18 -0700[diff] [blame]1448 mDaemonHandler.post(new Runnable() {
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]1449 @Override public void run() {
Dianne Hackborn2ffa11e2014-04-21 15:56:18 -0700[diff] [blame]1450 notifyInterfaceClassActivity(params.type,
1451 DataConnectionRealTimeInfo.DC_POWER_STATE_LOW,
Ruchi Kandoifa97fcf2016-05-13 15:10:39 -0700[diff] [blame]1452 SystemClock.elapsedRealtimeNanos(), -1, false);
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]1453 }
1454 });
Haoyu Bai04124232012-06-28 15:26:19 -0700[diff] [blame]1455 }
1456 }
1457
1458 @Override
Jeff Sharkeye8914c32012-05-01 16:26:09 -0700[diff] [blame]1459 public NetworkStats getNetworkStatsSummaryDev() {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1460 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Jeff Sharkey9a2c2a62013-01-14 16:48:51 -0800[diff] [blame]1461 try {
1462 return mStatsFactory.readNetworkStatsSummaryDev();
1463 } catch (IOException e) {
1464 throw new IllegalStateException(e);
1465 }
Jeff Sharkeye8914c32012-05-01 16:26:09 -0700[diff] [blame]1466 }
1467
1468 @Override
1469 public NetworkStats getNetworkStatsSummaryXt() {
1470 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Jeff Sharkey9a2c2a62013-01-14 16:48:51 -0800[diff] [blame]1471 try {
1472 return mStatsFactory.readNetworkStatsSummaryXt();
1473 } catch (IOException e) {
1474 throw new IllegalStateException(e);
1475 }
Jeff Sharkeyae2c1812011-10-04 13:11:40 -0700[diff] [blame]1476 }
1477
Jeff Sharkeyeedcb952011-05-17 14:55:15 -0700[diff] [blame]1478 @Override
Jeff Sharkey9a13f362011-04-26 16:25:36 -0700[diff] [blame]1479 public NetworkStats getNetworkStatsDetail() {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1480 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Jeff Sharkey9a2c2a62013-01-14 16:48:51 -0800[diff] [blame]1481 try {
Dianne Hackbornd0c5b9a2014-02-21 16:19:05 -0800[diff] [blame]1482 return mStatsFactory.readNetworkStatsDetail(UID_ALL, null, TAG_ALL, null);
Jeff Sharkey9a2c2a62013-01-14 16:48:51 -0800[diff] [blame]1483 } catch (IOException e) {
1484 throw new IllegalStateException(e);
1485 }
San Mehat91cac642010-03-31 14:31:36 -0700[diff] [blame]1486 }
1487
Jeff Sharkeyeedcb952011-05-17 14:55:15 -0700[diff] [blame]1488 @Override
Jeff Sharkey41ff7ec2011-07-25 15:21:22 -0700[diff] [blame]1489 public void setInterfaceQuota(String iface, long quotaBytes) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1490 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Jeff Sharkeyb3f19ca2011-06-29 23:54:13 -0700[diff] [blame]1491
Jeff Sharkey350083e2011-06-29 10:45:16 -0700[diff] [blame]1492 // silently discard when control disabled
1493 // TODO: eventually migrate to be always enabled
1494 if (!mBandwidthControlEnabled) return;
1495
Jeff Sharkey41ff7ec2011-07-25 15:21:22 -0700[diff] [blame]1496 synchronized (mQuotaLock) {
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]1497 if (mActiveQuotas.containsKey(iface)) {
Jeff Sharkey41ff7ec2011-07-25 15:21:22 -0700[diff] [blame]1498 throw new IllegalStateException("iface " + iface + " already has quota");
Jeff Sharkeyb3f19ca2011-06-29 23:54:13 -0700[diff] [blame]1499 }
1500
Jeff Sharkeyb3f19ca2011-06-29 23:54:13 -0700[diff] [blame]1501 try {
Jeff Sharkey41ff7ec2011-07-25 15:21:22 -0700[diff] [blame]1502 // TODO: support quota shared across interfaces
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1503 mConnector.execute("bandwidth", "setiquota", iface, quotaBytes);
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]1504 mActiveQuotas.put(iface, quotaBytes);
Jeff Sharkeyb3f19ca2011-06-29 23:54:13 -0700[diff] [blame]1505 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]1506 throw e.rethrowAsParcelableException();
Jeff Sharkeyb3f19ca2011-06-29 23:54:13 -0700[diff] [blame]1507 }
Ashish Sharma50fd36d2011-06-15 19:34:53 -0700[diff] [blame]1508 }
1509 }
1510
1511 @Override
Jeff Sharkeyb3f19ca2011-06-29 23:54:13 -0700[diff] [blame]1512 public void removeInterfaceQuota(String iface) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1513 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Jeff Sharkeyb3f19ca2011-06-29 23:54:13 -0700[diff] [blame]1514
Jeff Sharkey350083e2011-06-29 10:45:16 -0700[diff] [blame]1515 // silently discard when control disabled
1516 // TODO: eventually migrate to be always enabled
1517 if (!mBandwidthControlEnabled) return;
1518
Jeff Sharkey41ff7ec2011-07-25 15:21:22 -0700[diff] [blame]1519 synchronized (mQuotaLock) {
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]1520 if (!mActiveQuotas.containsKey(iface)) {
Jeff Sharkeyb3f19ca2011-06-29 23:54:13 -0700[diff] [blame]1521 // TODO: eventually consider throwing
1522 return;
1523 }
1524
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]1525 mActiveQuotas.remove(iface);
1526 mActiveAlerts.remove(iface);
Jeff Sharkey38ddeaa2011-11-08 13:04:22 -0800[diff] [blame]1527
Jeff Sharkeyb3f19ca2011-06-29 23:54:13 -0700[diff] [blame]1528 try {
Jeff Sharkey41ff7ec2011-07-25 15:21:22 -0700[diff] [blame]1529 // TODO: support quota shared across interfaces
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1530 mConnector.execute("bandwidth", "removeiquota", iface);
Jeff Sharkeyb3f19ca2011-06-29 23:54:13 -0700[diff] [blame]1531 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]1532 throw e.rethrowAsParcelableException();
Jeff Sharkeyb3f19ca2011-06-29 23:54:13 -0700[diff] [blame]1533 }
1534 }
1535 }
1536
1537 @Override
Jeff Sharkey41ff7ec2011-07-25 15:21:22 -0700[diff] [blame]1538 public void setInterfaceAlert(String iface, long alertBytes) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1539 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Jeff Sharkey41ff7ec2011-07-25 15:21:22 -0700[diff] [blame]1540
1541 // silently discard when control disabled
1542 // TODO: eventually migrate to be always enabled
1543 if (!mBandwidthControlEnabled) return;
1544
1545 // quick sanity check
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]1546 if (!mActiveQuotas.containsKey(iface)) {
Jeff Sharkey41ff7ec2011-07-25 15:21:22 -0700[diff] [blame]1547 throw new IllegalStateException("setting alert requires existing quota on iface");
1548 }
1549
1550 synchronized (mQuotaLock) {
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]1551 if (mActiveAlerts.containsKey(iface)) {
Jeff Sharkey41ff7ec2011-07-25 15:21:22 -0700[diff] [blame]1552 throw new IllegalStateException("iface " + iface + " already has alert");
1553 }
1554
Jeff Sharkey41ff7ec2011-07-25 15:21:22 -0700[diff] [blame]1555 try {
1556 // TODO: support alert shared across interfaces
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1557 mConnector.execute("bandwidth", "setinterfacealert", iface, alertBytes);
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]1558 mActiveAlerts.put(iface, alertBytes);
Jeff Sharkey41ff7ec2011-07-25 15:21:22 -0700[diff] [blame]1559 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]1560 throw e.rethrowAsParcelableException();
Jeff Sharkey41ff7ec2011-07-25 15:21:22 -0700[diff] [blame]1561 }
1562 }
1563 }
1564
1565 @Override
1566 public void removeInterfaceAlert(String iface) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1567 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Jeff Sharkey41ff7ec2011-07-25 15:21:22 -0700[diff] [blame]1568
1569 // silently discard when control disabled
1570 // TODO: eventually migrate to be always enabled
1571 if (!mBandwidthControlEnabled) return;
1572
1573 synchronized (mQuotaLock) {
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]1574 if (!mActiveAlerts.containsKey(iface)) {
Jeff Sharkey41ff7ec2011-07-25 15:21:22 -0700[diff] [blame]1575 // TODO: eventually consider throwing
1576 return;
1577 }
1578
Jeff Sharkey41ff7ec2011-07-25 15:21:22 -0700[diff] [blame]1579 try {
1580 // TODO: support alert shared across interfaces
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1581 mConnector.execute("bandwidth", "removeinterfacealert", iface);
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]1582 mActiveAlerts.remove(iface);
Jeff Sharkey41ff7ec2011-07-25 15:21:22 -0700[diff] [blame]1583 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]1584 throw e.rethrowAsParcelableException();
Jeff Sharkey41ff7ec2011-07-25 15:21:22 -0700[diff] [blame]1585 }
1586 }
1587 }
1588
1589 @Override
1590 public void setGlobalAlert(long alertBytes) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1591 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Jeff Sharkey41ff7ec2011-07-25 15:21:22 -0700[diff] [blame]1592
1593 // silently discard when control disabled
1594 // TODO: eventually migrate to be always enabled
1595 if (!mBandwidthControlEnabled) return;
1596
Jeff Sharkey41ff7ec2011-07-25 15:21:22 -0700[diff] [blame]1597 try {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1598 mConnector.execute("bandwidth", "setglobalalert", alertBytes);
Jeff Sharkey41ff7ec2011-07-25 15:21:22 -0700[diff] [blame]1599 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]1600 throw e.rethrowAsParcelableException();
Jeff Sharkey41ff7ec2011-07-25 15:21:22 -0700[diff] [blame]1601 }
1602 }
1603
Felipe Leme65be3022016-03-22 14:53:13 -0700[diff] [blame]1604 private void setUidOnMeteredNetworkList(SparseBooleanArray quotaList, int uid,
1605 boolean blacklist, boolean enable) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1606 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Jeff Sharkeyb3f19ca2011-06-29 23:54:13 -0700[diff] [blame]1607
Jeff Sharkey350083e2011-06-29 10:45:16 -0700[diff] [blame]1608 // silently discard when control disabled
1609 // TODO: eventually migrate to be always enabled
1610 if (!mBandwidthControlEnabled) return;
1611
Felipe Leme65be3022016-03-22 14:53:13 -0700[diff] [blame]1612 final String chain = blacklist ? "naughtyapps" : "niceapps";
1613 final String suffix = enable ? "add" : "remove";
1614
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]1615 synchronized (mQuotaLock) {
Felipe Leme65be3022016-03-22 14:53:13 -0700[diff] [blame]1616 final boolean oldEnable = quotaList.get(uid, false);
1617 if (oldEnable == enable) {
Jeff Sharkeyb3f19ca2011-06-29 23:54:13 -0700[diff] [blame]1618 // TODO: eventually consider throwing
1619 return;
1620 }
1621
Jeff Sharkeyb3f19ca2011-06-29 23:54:13 -0700[diff] [blame]1622 try {
Felipe Leme65be3022016-03-22 14:53:13 -0700[diff] [blame]1623 mConnector.execute("bandwidth", suffix + chain, uid);
1624 if (enable) {
1625 quotaList.put(uid, true);
Jeff Sharkeyb3f19ca2011-06-29 23:54:13 -0700[diff] [blame]1626 } else {
Felipe Leme65be3022016-03-22 14:53:13 -0700[diff] [blame]1627 quotaList.delete(uid);
Jeff Sharkeyb3f19ca2011-06-29 23:54:13 -0700[diff] [blame]1628 }
1629 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]1630 throw e.rethrowAsParcelableException();
Jeff Sharkeyb3f19ca2011-06-29 23:54:13 -0700[diff] [blame]1631 }
Ashish Sharma50fd36d2011-06-15 19:34:53 -0700[diff] [blame]1632 }
1633 }
1634
Jeff Sharkey63d27a92011-08-03 17:04:22 -0700[diff] [blame]1635 @Override
Felipe Leme65be3022016-03-22 14:53:13 -0700[diff] [blame]1636 public void setUidMeteredNetworkBlacklist(int uid, boolean enable) {
1637 setUidOnMeteredNetworkList(mUidRejectOnMetered, uid, true, enable);
1638 }
1639
1640 @Override
1641 public void setUidMeteredNetworkWhitelist(int uid, boolean enable) {
1642 setUidOnMeteredNetworkList(mUidAllowOnMetered, uid, false, enable);
1643 }
1644
1645 @Override
1646 public boolean setDataSaverModeEnabled(boolean enable) {
1647 if (DBG) Log.d(TAG, "setDataSaverMode: " + enable);
1648 synchronized (mQuotaLock) {
1649 if (mDataSaverMode == enable) {
1650 Log.w(TAG, "setDataSaverMode(): already " + mDataSaverMode);
1651 return true;
1652 }
1653 try {
1654 final boolean changed = mNetdService.bandwidthEnableDataSaver(enable);
1655 if (changed) {
1656 mDataSaverMode = enable;
1657 } else {
1658 Log.w(TAG, "setDataSaverMode(" + enable + "): netd command silently failed");
1659 }
1660 return changed;
1661 } catch (RemoteException e) {
1662 Log.w(TAG, "setDataSaverMode(" + enable + "): netd command failed", e);
1663 return false;
1664 }
1665 }
1666 }
1667
1668 @Override
Robin Lee17e61832016-05-09 13:46:28 +0100[diff] [blame]1669 public void setAllowOnlyVpnForUids(boolean add, UidRange[] uidRanges)
1670 throws ServiceSpecificException {
1671 try {
1672 mNetdService.networkRejectNonSecureVpn(add, uidRanges);
1673 } catch (ServiceSpecificException e) {
1674 Log.w(TAG, "setAllowOnlyVpnForUids(" + add + ", " + Arrays.toString(uidRanges) + ")"
1675 + ": netd command failed", e);
1676 throw e;
1677 } catch (RemoteException e) {
1678 Log.w(TAG, "setAllowOnlyVpnForUids(" + add + ", " + Arrays.toString(uidRanges) + ")"
1679 + ": netd command failed", e);
1680 throw e.rethrowAsRuntimeException();
1681 }
1682 }
1683
1684 @Override
Jeff Sharkey605eb792014-11-04 13:34:06 -0800[diff] [blame]1685 public void setUidCleartextNetworkPolicy(int uid, int policy) {
1686 if (Binder.getCallingUid() != uid) {
1687 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
1688 }
1689
1690 synchronized (mQuotaLock) {
1691 final int oldPolicy = mUidCleartextPolicy.get(uid, StrictMode.NETWORK_POLICY_ACCEPT);
1692 if (oldPolicy == policy) {
1693 return;
1694 }
1695
1696 if (!mStrictEnabled) {
1697 // Module isn't enabled yet; stash the requested policy away to
1698 // apply later once the daemon is connected.
1699 mUidCleartextPolicy.put(uid, policy);
1700 return;
1701 }
1702
1703 final String policyString;
1704 switch (policy) {
1705 case StrictMode.NETWORK_POLICY_ACCEPT:
1706 policyString = "accept";
1707 break;
1708 case StrictMode.NETWORK_POLICY_LOG:
1709 policyString = "log";
1710 break;
1711 case StrictMode.NETWORK_POLICY_REJECT:
1712 policyString = "reject";
1713 break;
1714 default:
1715 throw new IllegalArgumentException("Unknown policy " + policy);
1716 }
1717
1718 try {
1719 mConnector.execute("strict", "set_uid_cleartext_policy", uid, policyString);
1720 mUidCleartextPolicy.put(uid, policy);
1721 } catch (NativeDaemonConnectorException e) {
1722 throw e.rethrowAsParcelableException();
1723 }
1724 }
1725 }
1726
1727 @Override
Jeff Sharkey63d27a92011-08-03 17:04:22 -0700[diff] [blame]1728 public boolean isBandwidthControlEnabled() {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1729 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Jeff Sharkey63d27a92011-08-03 17:04:22 -0700[diff] [blame]1730 return mBandwidthControlEnabled;
1731 }
1732
1733 @Override
Jeff Sharkeyeedcb952011-05-17 14:55:15 -0700[diff] [blame]1734 public NetworkStats getNetworkStatsUidDetail(int uid) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1735 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Jeff Sharkey9a2c2a62013-01-14 16:48:51 -0800[diff] [blame]1736 try {
Dianne Hackbornd0c5b9a2014-02-21 16:19:05 -0800[diff] [blame]1737 return mStatsFactory.readNetworkStatsDetail(uid, null, TAG_ALL, null);
Jeff Sharkey9a2c2a62013-01-14 16:48:51 -0800[diff] [blame]1738 } catch (IOException e) {
1739 throw new IllegalStateException(e);
1740 }
Jeff Sharkeyeedcb952011-05-17 14:55:15 -0700[diff] [blame]1741 }
1742
Jeff Sharkeycdd02c5d2011-09-16 01:52:49 -0700[diff] [blame]1743 @Override
Jeff Sharkeye4984be2013-09-10 21:03:27 -0700[diff] [blame]1744 public NetworkStats getNetworkStatsTethering() {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1745 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Jeff Sharkeycdd02c5d2011-09-16 01:52:49 -0700[diff] [blame]1746
Jeff Sharkeycdd02c5d2011-09-16 01:52:49 -0700[diff] [blame]1747 final NetworkStats stats = new NetworkStats(SystemClock.elapsedRealtime(), 1);
Jeff Sharkeycdd02c5d2011-09-16 01:52:49 -0700[diff] [blame]1748 try {
Jeff Sharkeye4984be2013-09-10 21:03:27 -0700[diff] [blame]1749 final NativeDaemonEvent[] events = mConnector.executeForList(
1750 "bandwidth", "gettetherstats");
1751 for (NativeDaemonEvent event : events) {
1752 if (event.getCode() != TetheringStatsListResult) continue;
1753
1754 // 114 ifaceIn ifaceOut rx_bytes rx_packets tx_bytes tx_packets
1755 final StringTokenizer tok = new StringTokenizer(event.getMessage());
1756 try {
1757 final String ifaceIn = tok.nextToken();
1758 final String ifaceOut = tok.nextToken();
1759
1760 final NetworkStats.Entry entry = new NetworkStats.Entry();
1761 entry.iface = ifaceOut;
1762 entry.uid = UID_TETHERING;
1763 entry.set = SET_DEFAULT;
1764 entry.tag = TAG_NONE;
1765 entry.rxBytes = Long.parseLong(tok.nextToken());
1766 entry.rxPackets = Long.parseLong(tok.nextToken());
1767 entry.txBytes = Long.parseLong(tok.nextToken());
1768 entry.txPackets = Long.parseLong(tok.nextToken());
1769 stats.combineValues(entry);
1770 } catch (NoSuchElementException e) {
1771 throw new IllegalStateException("problem parsing tethering stats: " + event);
1772 } catch (NumberFormatException e) {
1773 throw new IllegalStateException("problem parsing tethering stats: " + event);
1774 }
1775 }
Jeff Sharkeycdd02c5d2011-09-16 01:52:49 -0700[diff] [blame]1776 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]1777 throw e.rethrowAsParcelableException();
Jeff Sharkeycdd02c5d2011-09-16 01:52:49 -0700[diff] [blame]1778 }
Jeff Sharkeye4984be2013-09-10 21:03:27 -0700[diff] [blame]1779 return stats;
Jeff Sharkeycdd02c5d2011-09-16 01:52:49 -0700[diff] [blame]1780 }
1781
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1782 @Override
Pierre Imai8e48e672016-04-21 13:30:43 +0900[diff] [blame]1783 public void setDnsConfigurationForNetwork(int netId, String[] servers, String domains) {
1784 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
1785
1786 ContentResolver resolver = mContext.getContentResolver();
1787
1788 int sampleValidity = Settings.Global.getInt(resolver,
1789 Settings.Global.DNS_RESOLVER_SAMPLE_VALIDITY_SECONDS,
1790 DNS_RESOLVER_DEFAULT_SAMPLE_VALIDITY_SECONDS);
1791 if (sampleValidity < 0 || sampleValidity > 65535) {
1792 Slog.w(TAG, "Invalid sampleValidity=" + sampleValidity + ", using default=" +
1793 DNS_RESOLVER_DEFAULT_SAMPLE_VALIDITY_SECONDS);
1794 sampleValidity = DNS_RESOLVER_DEFAULT_SAMPLE_VALIDITY_SECONDS;
1795 }
1796
1797 int successThreshold = Settings.Global.getInt(resolver,
1798 Settings.Global.DNS_RESOLVER_SUCCESS_THRESHOLD_PERCENT,
1799 DNS_RESOLVER_DEFAULT_SUCCESS_THRESHOLD_PERCENT);
1800 if (successThreshold < 0 || successThreshold > 100) {
1801 Slog.w(TAG, "Invalid successThreshold=" + successThreshold + ", using default=" +
1802 DNS_RESOLVER_DEFAULT_SUCCESS_THRESHOLD_PERCENT);
1803 successThreshold = DNS_RESOLVER_DEFAULT_SUCCESS_THRESHOLD_PERCENT;
1804 }
1805
1806 int minSamples = Settings.Global.getInt(resolver,
1807 Settings.Global.DNS_RESOLVER_MIN_SAMPLES, DNS_RESOLVER_DEFAULT_MIN_SAMPLES);
1808 int maxSamples = Settings.Global.getInt(resolver,
1809 Settings.Global.DNS_RESOLVER_MAX_SAMPLES, DNS_RESOLVER_DEFAULT_MAX_SAMPLES);
1810 if (minSamples < 0 || minSamples > maxSamples || maxSamples > 64) {
1811 Slog.w(TAG, "Invalid sample count (min, max)=(" + minSamples + ", " + maxSamples +
1812 "), using default=(" + DNS_RESOLVER_DEFAULT_MIN_SAMPLES + ", " +
1813 DNS_RESOLVER_DEFAULT_MAX_SAMPLES + ")");
1814 minSamples = DNS_RESOLVER_DEFAULT_MIN_SAMPLES;
1815 maxSamples = DNS_RESOLVER_DEFAULT_MAX_SAMPLES;
1816 }
1817
1818 final String[] domainStrs = domains == null ? new String[0] : domains.split(" ");
1819 final int[] params = { sampleValidity, successThreshold, minSamples, maxSamples };
1820 try {
1821 mNetdService.setResolverConfiguration(netId, servers, domainStrs, params);
1822 } catch (RemoteException e) {
1823 throw new RuntimeException(e);
1824 }
1825 }
1826
1827 @Override
Paul Jensen6bc2c2c2014-05-07 15:27:40 -0400[diff] [blame]1828 public void addVpnUidRanges(int netId, UidRange[] ranges) {
Chad Brubaker3277620a2013-06-12 13:37:30 -0700[diff] [blame]1829 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Paul Jensen6bc2c2c2014-05-07 15:27:40 -0400[diff] [blame]1830 Object[] argv = new Object[3 + MAX_UID_RANGES_PER_COMMAND];
1831 argv[0] = "users";
1832 argv[1] = "add";
1833 argv[2] = netId;
1834 int argc = 3;
1835 // Avoid overly long commands by limiting number of UID ranges per command.
1836 for (int i = 0; i < ranges.length; i++) {
1837 argv[argc++] = ranges[i].toString();
1838 if (i == (ranges.length - 1) || argc == argv.length) {
1839 try {
1840 mConnector.execute("network", Arrays.copyOf(argv, argc));
1841 } catch (NativeDaemonConnectorException e) {
1842 throw e.rethrowAsParcelableException();
1843 }
1844 argc = 3;
1845 }
Chad Brubaker3277620a2013-06-12 13:37:30 -0700[diff] [blame]1846 }
1847 }
1848
1849 @Override
Paul Jensen6bc2c2c2014-05-07 15:27:40 -0400[diff] [blame]1850 public void removeVpnUidRanges(int netId, UidRange[] ranges) {
Chad Brubaker3277620a2013-06-12 13:37:30 -0700[diff] [blame]1851 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Paul Jensen6bc2c2c2014-05-07 15:27:40 -0400[diff] [blame]1852 Object[] argv = new Object[3 + MAX_UID_RANGES_PER_COMMAND];
1853 argv[0] = "users";
1854 argv[1] = "remove";
1855 argv[2] = netId;
1856 int argc = 3;
1857 // Avoid overly long commands by limiting number of UID ranges per command.
1858 for (int i = 0; i < ranges.length; i++) {
1859 argv[argc++] = ranges[i].toString();
1860 if (i == (ranges.length - 1) || argc == argv.length) {
1861 try {
1862 mConnector.execute("network", Arrays.copyOf(argv, argc));
1863 } catch (NativeDaemonConnectorException e) {
1864 throw e.rethrowAsParcelableException();
1865 }
1866 argc = 3;
1867 }
Chad Brubakercca54c42013-06-27 17:41:38 -0700[diff] [blame]1868 }
1869 }
1870
1871 @Override
Jeff Sharkeyc268f0b2012-08-24 10:25:31 -0700[diff] [blame]1872 public void setFirewallEnabled(boolean enabled) {
Jeff Sharkeyf56e2432012-09-06 17:54:29 -0700[diff] [blame]1873 enforceSystemUid();
Jeff Sharkeyc268f0b2012-08-24 10:25:31 -0700[diff] [blame]1874 try {
Amith Yamasani15e472352015-04-24 19:06:07 -0700[diff] [blame]1875 mConnector.execute("firewall", "enable", enabled ? "whitelist" : "blacklist");
Jeff Sharkeyc268f0b2012-08-24 10:25:31 -0700[diff] [blame]1876 mFirewallEnabled = enabled;
1877 } catch (NativeDaemonConnectorException e) {
1878 throw e.rethrowAsParcelableException();
1879 }
1880 }
1881
1882 @Override
1883 public boolean isFirewallEnabled() {
Jeff Sharkeyf56e2432012-09-06 17:54:29 -0700[diff] [blame]1884 enforceSystemUid();
Jeff Sharkeyc268f0b2012-08-24 10:25:31 -0700[diff] [blame]1885 return mFirewallEnabled;
1886 }
1887
1888 @Override
Jeff Sharkey2c092982012-08-24 11:44:40 -0700[diff] [blame]1889 public void setFirewallInterfaceRule(String iface, boolean allow) {
Jeff Sharkeyf56e2432012-09-06 17:54:29 -0700[diff] [blame]1890 enforceSystemUid();
Jeff Sharkeyc268f0b2012-08-24 10:25:31 -0700[diff] [blame]1891 Preconditions.checkState(mFirewallEnabled);
Sreeram Ramachandrana77760d2014-07-17 17:09:07 -0700[diff] [blame]1892 final String rule = allow ? "allow" : "deny";
Jeff Sharkeyc268f0b2012-08-24 10:25:31 -0700[diff] [blame]1893 try {
1894 mConnector.execute("firewall", "set_interface_rule", iface, rule);
1895 } catch (NativeDaemonConnectorException e) {
1896 throw e.rethrowAsParcelableException();
1897 }
1898 }
1899
1900 @Override
Jeff Sharkey2c092982012-08-24 11:44:40 -0700[diff] [blame]1901 public void setFirewallEgressSourceRule(String addr, boolean allow) {
Jeff Sharkeyf56e2432012-09-06 17:54:29 -0700[diff] [blame]1902 enforceSystemUid();
Jeff Sharkeyc268f0b2012-08-24 10:25:31 -0700[diff] [blame]1903 Preconditions.checkState(mFirewallEnabled);
Sreeram Ramachandrana77760d2014-07-17 17:09:07 -0700[diff] [blame]1904 final String rule = allow ? "allow" : "deny";
Jeff Sharkeyc268f0b2012-08-24 10:25:31 -0700[diff] [blame]1905 try {
1906 mConnector.execute("firewall", "set_egress_source_rule", addr, rule);
1907 } catch (NativeDaemonConnectorException e) {
1908 throw e.rethrowAsParcelableException();
1909 }
1910 }
1911
1912 @Override
Jeff Sharkey2c092982012-08-24 11:44:40 -0700[diff] [blame]1913 public void setFirewallEgressDestRule(String addr, int port, boolean allow) {
Jeff Sharkeyf56e2432012-09-06 17:54:29 -0700[diff] [blame]1914 enforceSystemUid();
Jeff Sharkeyc268f0b2012-08-24 10:25:31 -0700[diff] [blame]1915 Preconditions.checkState(mFirewallEnabled);
Sreeram Ramachandrana77760d2014-07-17 17:09:07 -0700[diff] [blame]1916 final String rule = allow ? "allow" : "deny";
Jeff Sharkeyc268f0b2012-08-24 10:25:31 -0700[diff] [blame]1917 try {
1918 mConnector.execute("firewall", "set_egress_dest_rule", addr, port, rule);
1919 } catch (NativeDaemonConnectorException e) {
1920 throw e.rethrowAsParcelableException();
1921 }
1922 }
1923
Lorenzo Colitti3fef7232016-04-29 18:00:03 +0900[diff] [blame]1924 private void closeSocketsForFirewallChainLocked(int chain, String chainName) {
Lorenzo Colitti4cb42402016-04-24 12:52:00 +0900[diff] [blame]1925 // UID ranges to close sockets on.
1926 UidRange[] ranges;
1927 // UID ranges whose sockets we won't touch.
1928 int[] exemptUids;
1929
Lorenzo Colitti3fef7232016-04-29 18:00:03 +0900[diff] [blame]1930 final SparseIntArray rules = getUidFirewallRules(chain);
Lorenzo Colitti4cb42402016-04-24 12:52:00 +0900[diff] [blame]1931 int numUids = 0;
1932
1933 if (getFirewallType(chain) == FIREWALL_TYPE_WHITELIST) {
1934 // Close all sockets on all non-system UIDs...
1935 ranges = new UidRange[] {
1936 // TODO: is there a better way of finding all existing users? If so, we could
1937 // specify their ranges here.
1938 new UidRange(Process.FIRST_APPLICATION_UID, Integer.MAX_VALUE),
1939 };
1940 // ... except for the UIDs that have allow rules.
1941 exemptUids = new int[rules.size()];
1942 for (int i = 0; i < exemptUids.length; i++) {
1943 if (rules.valueAt(i) == NetworkPolicyManager.FIREWALL_RULE_ALLOW) {
1944 exemptUids[numUids] = rules.keyAt(i);
1945 numUids++;
1946 }
1947 }
1948 // Normally, whitelist chains only contain deny rules, so numUids == exemptUids.length.
1949 // But the code does not guarantee this in any way, and at least in one case - if we add
1950 // a UID rule to the firewall, and then disable the firewall - the chains can contain
1951 // the wrong type of rule. In this case, don't close connections that we shouldn't.
1952 //
1953 // TODO: tighten up this code by ensuring we never set the wrong type of rule, and
1954 // fix setFirewallEnabled to grab mQuotaLock and clear rules.
1955 if (numUids != exemptUids.length) {
1956 exemptUids = Arrays.copyOf(exemptUids, numUids);
1957 }
1958 } else {
1959 // Close sockets for every UID that has a deny rule...
1960 ranges = new UidRange[rules.size()];
1961 for (int i = 0; i < ranges.length; i++) {
1962 if (rules.valueAt(i) == NetworkPolicyManager.FIREWALL_RULE_DENY) {
1963 int uid = rules.keyAt(i);
1964 ranges[numUids] = new UidRange(uid, uid);
1965 numUids++;
1966 }
1967 }
1968 // As above; usually numUids == ranges.length, but not always.
1969 if (numUids != ranges.length) {
1970 ranges = Arrays.copyOf(ranges, numUids);
1971 }
1972 // ... with no exceptions.
1973 exemptUids = new int[0];
1974 }
1975
1976 try {
1977 mNetdService.socketDestroy(ranges, exemptUids);
1978 } catch(RemoteException | ServiceSpecificException e) {
1979 Slog.e(TAG, "Error closing sockets after enabling chain " + chainName + ": " + e);
1980 }
1981 }
1982
Jeff Sharkeyc268f0b2012-08-24 10:25:31 -0700[diff] [blame]1983 @Override
Xiaohui Chenb41c9f72015-06-17 15:55:37 -0700[diff] [blame]1984 public void setFirewallChainEnabled(int chain, boolean enable) {
Jeff Sharkeyf56e2432012-09-06 17:54:29 -0700[diff] [blame]1985 enforceSystemUid();
Xiaohui Chen8dca36d2015-06-19 12:44:59 -0700[diff] [blame]1986 synchronized (mQuotaLock) {
Xiaohui Chen896b49a2015-07-29 14:12:22 -0700[diff] [blame]1987 if (mFirewallChainStates.get(chain) == enable) {
1988 // All is the same, nothing to do. This relies on the fact that netd has child
1989 // chains default detached.
Xiaohui Chen8dca36d2015-06-19 12:44:59 -0700[diff] [blame]1990 return;
Xiaohui Chenb41c9f72015-06-17 15:55:37 -0700[diff] [blame]1991 }
Xiaohui Chen8dca36d2015-06-19 12:44:59 -0700[diff] [blame]1992 mFirewallChainStates.put(chain, enable);
1993
1994 final String operation = enable ? "enable_chain" : "disable_chain";
Lorenzo Colitti3fef7232016-04-29 18:00:03 +0900[diff] [blame]1995 final String chainName;
Lorenzo Colitti4cb42402016-04-24 12:52:00 +0900[diff] [blame]1996 switch(chain) {
1997 case FIREWALL_CHAIN_STANDBY:
1998 chainName = FIREWALL_CHAIN_NAME_STANDBY;
1999 break;
2000 case FIREWALL_CHAIN_DOZABLE:
2001 chainName = FIREWALL_CHAIN_NAME_DOZABLE;
2002 break;
2003 case FIREWALL_CHAIN_POWERSAVE:
2004 chainName = FIREWALL_CHAIN_NAME_POWERSAVE;
2005 break;
2006 default:
2007 throw new IllegalArgumentException("Bad child chain: " + chain);
2008 }
2009
Xiaohui Chen8dca36d2015-06-19 12:44:59 -0700[diff] [blame]2010 try {
Xiaohui Chen8dca36d2015-06-19 12:44:59 -0700[diff] [blame]2011 mConnector.execute("firewall", operation, chainName);
2012 } catch (NativeDaemonConnectorException e) {
2013 throw e.rethrowAsParcelableException();
2014 }
Lorenzo Colitti4cb42402016-04-24 12:52:00 +0900[diff] [blame]2015
2016 // Close any sockets that were opened by the affected UIDs. This has to be done after
2017 // disabling network connectivity, in case they react to the socket close by reopening
2018 // the connection and race with the iptables commands that enable the firewall. All
2019 // whitelist and blacklist chains allow RSTs through.
2020 if (enable) {
2021 if (DBG) Slog.d(TAG, "Closing sockets after enabling chain " + chainName);
Lorenzo Colitti3fef7232016-04-29 18:00:03 +0900[diff] [blame]2022 closeSocketsForFirewallChainLocked(chain, chainName);
Lorenzo Colitti4cb42402016-04-24 12:52:00 +0900[diff] [blame]2023 }
Amith Yamasani15e472352015-04-24 19:06:07 -0700[diff] [blame]2024 }
Xiaohui Chenb41c9f72015-06-17 15:55:37 -0700[diff] [blame]2025 }
2026
2027 private int getFirewallType(int chain) {
2028 switch (chain) {
2029 case FIREWALL_CHAIN_STANDBY:
2030 return FIREWALL_TYPE_BLACKLIST;
2031 case FIREWALL_CHAIN_DOZABLE:
2032 return FIREWALL_TYPE_WHITELIST;
Felipe Leme011b98f2016-02-10 17:28:31 -0800[diff] [blame]2033 case FIREWALL_CHAIN_POWERSAVE:
2034 return FIREWALL_TYPE_WHITELIST;
Xiaohui Chenb41c9f72015-06-17 15:55:37 -0700[diff] [blame]2035 default:
2036 return isFirewallEnabled() ? FIREWALL_TYPE_WHITELIST : FIREWALL_TYPE_BLACKLIST;
2037 }
2038 }
2039
2040 @Override
2041 public void setFirewallUidRules(int chain, int[] uids, int[] rules) {
2042 enforceSystemUid();
Xiaohui Chen8dca36d2015-06-19 12:44:59 -0700[diff] [blame]2043 synchronized (mQuotaLock) {
2044 SparseIntArray uidFirewallRules = getUidFirewallRules(chain);
2045 SparseIntArray newRules = new SparseIntArray();
2046 // apply new set of rules
2047 for (int index = uids.length - 1; index >= 0; --index) {
2048 int uid = uids[index];
2049 int rule = rules[index];
Felipe Lemea701cad2016-05-12 09:58:14 -0700[diff] [blame]2050 updateFirewallUidRuleLocked(chain, uid, rule);
Xiaohui Chen8dca36d2015-06-19 12:44:59 -0700[diff] [blame]2051 newRules.put(uid, rule);
Xiaohui Chenb41c9f72015-06-17 15:55:37 -0700[diff] [blame]2052 }
Xiaohui Chen8dca36d2015-06-19 12:44:59 -0700[diff] [blame]2053 // collect the rules to remove.
2054 SparseIntArray rulesToRemove = new SparseIntArray();
2055 for (int index = uidFirewallRules.size() - 1; index >= 0; --index) {
2056 int uid = uidFirewallRules.keyAt(index);
2057 if (newRules.indexOfKey(uid) < 0) {
2058 rulesToRemove.put(uid, FIREWALL_RULE_DEFAULT);
2059 }
2060 }
2061 // remove dead rules
2062 for (int index = rulesToRemove.size() - 1; index >= 0; --index) {
2063 int uid = rulesToRemove.keyAt(index);
Felipe Lemea701cad2016-05-12 09:58:14 -0700[diff] [blame]2064 updateFirewallUidRuleLocked(chain, uid, FIREWALL_RULE_DEFAULT);
2065 }
2066 try {
2067 switch (chain) {
2068 case FIREWALL_CHAIN_DOZABLE:
2069 mNetdService.firewallReplaceUidChain("fw_dozable", true, uids);
2070 break;
2071 case FIREWALL_CHAIN_STANDBY:
2072 mNetdService.firewallReplaceUidChain("fw_standby", false, uids);
2073 break;
2074 case FIREWALL_CHAIN_POWERSAVE:
2075 mNetdService.firewallReplaceUidChain("fw_powersave", true, uids);
2076 break;
2077 case FIREWALL_CHAIN_NONE:
2078 default:
2079 Slog.d(TAG, "setFirewallUidRules() called on invalid chain: " + chain);
2080 }
2081 } catch (RemoteException e) {
2082 Slog.w(TAG, "Error flushing firewall chain " + chain, e);
Xiaohui Chen8dca36d2015-06-19 12:44:59 -0700[diff] [blame]2083 }
Xiaohui Chenb41c9f72015-06-17 15:55:37 -0700[diff] [blame]2084 }
2085 }
2086
2087 @Override
2088 public void setFirewallUidRule(int chain, int uid, int rule) {
2089 enforceSystemUid();
Felipe Lemea701cad2016-05-12 09:58:14 -0700[diff] [blame]2090 synchronized (mQuotaLock) {
2091 setFirewallUidRuleLocked(chain, uid, rule);
2092 }
Xiaohui Chenb41c9f72015-06-17 15:55:37 -0700[diff] [blame]2093 }
2094
Felipe Lemea701cad2016-05-12 09:58:14 -0700[diff] [blame]2095 private void setFirewallUidRuleLocked(int chain, int uid, int rule) {
2096 if (updateFirewallUidRuleLocked(chain, uid, rule)) {
Amith Yamasani15e472352015-04-24 19:06:07 -0700[diff] [blame]2097 try {
Felipe Lemea701cad2016-05-12 09:58:14 -0700[diff] [blame]2098 mConnector.execute("firewall", "set_uid_rule", getFirewallChainName(chain), uid,
2099 getFirewallRuleName(chain, rule));
Amith Yamasani15e472352015-04-24 19:06:07 -0700[diff] [blame]2100 } catch (NativeDaemonConnectorException e) {
2101 throw e.rethrowAsParcelableException();
2102 }
Jeff Sharkeyc268f0b2012-08-24 10:25:31 -0700[diff] [blame]2103 }
2104 }
2105
Felipe Lemea701cad2016-05-12 09:58:14 -0700[diff] [blame]2106 // TODO: now that netd supports batching, NMS should not keep these data structures anymore...
2107 private boolean updateFirewallUidRuleLocked(int chain, int uid, int rule) {
2108 SparseIntArray uidFirewallRules = getUidFirewallRules(chain);
2109
2110 final int oldUidFirewallRule = uidFirewallRules.get(uid, FIREWALL_RULE_DEFAULT);
2111 if (DBG) {
2112 Slog.d(TAG, "oldRule = " + oldUidFirewallRule
2113 + ", newRule=" + rule + " for uid=" + uid + " on chain " + chain);
2114 }
2115 if (oldUidFirewallRule == rule) {
2116 if (DBG) Slog.d(TAG, "!!!!! Skipping change");
2117 // TODO: eventually consider throwing
2118 return false;
2119 }
2120
2121 String ruleName = getFirewallRuleName(chain, rule);
2122 String oldRuleName = getFirewallRuleName(chain, oldUidFirewallRule);
2123
2124 if (rule == NetworkPolicyManager.FIREWALL_RULE_DEFAULT) {
2125 uidFirewallRules.delete(uid);
2126 } else {
2127 uidFirewallRules.put(uid, rule);
2128 }
2129 return !ruleName.equals(oldRuleName);
2130 }
2131
Xiaohui Chen8dca36d2015-06-19 12:44:59 -0700[diff] [blame]2132 private @NonNull String getFirewallRuleName(int chain, int rule) {
2133 String ruleName;
2134 if (getFirewallType(chain) == FIREWALL_TYPE_WHITELIST) {
2135 if (rule == NetworkPolicyManager.FIREWALL_RULE_ALLOW) {
2136 ruleName = "allow";
2137 } else {
2138 ruleName = "deny";
2139 }
2140 } else { // Blacklist mode
2141 if (rule == NetworkPolicyManager.FIREWALL_RULE_DENY) {
2142 ruleName = "deny";
2143 } else {
2144 ruleName = "allow";
2145 }
2146 }
2147 return ruleName;
2148 }
2149
Xiaohui Chenb41c9f72015-06-17 15:55:37 -0700[diff] [blame]2150 private @NonNull SparseIntArray getUidFirewallRules(int chain) {
2151 switch (chain) {
2152 case FIREWALL_CHAIN_STANDBY:
2153 return mUidFirewallStandbyRules;
2154 case FIREWALL_CHAIN_DOZABLE:
2155 return mUidFirewallDozableRules;
Felipe Leme011b98f2016-02-10 17:28:31 -0800[diff] [blame]2156 case FIREWALL_CHAIN_POWERSAVE:
2157 return mUidFirewallPowerSaveRules;
Xiaohui Chenb41c9f72015-06-17 15:55:37 -0700[diff] [blame]2158 case FIREWALL_CHAIN_NONE:
2159 return mUidFirewallRules;
2160 default:
2161 throw new IllegalArgumentException("Unknown chain:" + chain);
2162 }
2163 }
2164
2165 public @NonNull String getFirewallChainName(int chain) {
2166 switch (chain) {
2167 case FIREWALL_CHAIN_STANDBY:
2168 return FIREWALL_CHAIN_NAME_STANDBY;
2169 case FIREWALL_CHAIN_DOZABLE:
2170 return FIREWALL_CHAIN_NAME_DOZABLE;
Felipe Leme011b98f2016-02-10 17:28:31 -0800[diff] [blame]2171 case FIREWALL_CHAIN_POWERSAVE:
2172 return FIREWALL_CHAIN_NAME_POWERSAVE;
Xiaohui Chenb41c9f72015-06-17 15:55:37 -0700[diff] [blame]2173 case FIREWALL_CHAIN_NONE:
2174 return FIREWALL_CHAIN_NAME_NONE;
2175 default:
2176 throw new IllegalArgumentException("Unknown chain:" + chain);
2177 }
2178 }
2179
Jeff Sharkeyf56e2432012-09-06 17:54:29 -0700[diff] [blame]2180 private static void enforceSystemUid() {
2181 final int uid = Binder.getCallingUid();
2182 if (uid != Process.SYSTEM_UID) {
2183 throw new SecurityException("Only available to AID_SYSTEM");
2184 }
2185 }
2186
Jeff Sharkeyc268f0b2012-08-24 10:25:31 -0700[diff] [blame]2187 @Override
Lorenzo Colitti79751842013-02-28 16:16:03 +0900[diff] [blame]2188 public void startClatd(String interfaceName) throws IllegalStateException {
2189 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
2190
2191 try {
2192 mConnector.execute("clatd", "start", interfaceName);
2193 } catch (NativeDaemonConnectorException e) {
2194 throw e.rethrowAsParcelableException();
2195 }
2196 }
2197
2198 @Override
Lorenzo Colitti95439462014-10-09 13:44:48 +0900[diff] [blame]2199 public void stopClatd(String interfaceName) throws IllegalStateException {
Lorenzo Colitti79751842013-02-28 16:16:03 +0900[diff] [blame]2200 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
2201
2202 try {
Lorenzo Colitti95439462014-10-09 13:44:48 +0900[diff] [blame]2203 mConnector.execute("clatd", "stop", interfaceName);
Lorenzo Colitti79751842013-02-28 16:16:03 +0900[diff] [blame]2204 } catch (NativeDaemonConnectorException e) {
2205 throw e.rethrowAsParcelableException();
2206 }
2207 }
2208
2209 @Override
Lorenzo Colitti95439462014-10-09 13:44:48 +0900[diff] [blame]2210 public boolean isClatdStarted(String interfaceName) {
Lorenzo Colitti79751842013-02-28 16:16:03 +0900[diff] [blame]2211 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
2212
2213 final NativeDaemonEvent event;
2214 try {
Lorenzo Colitti95439462014-10-09 13:44:48 +0900[diff] [blame]2215 event = mConnector.execute("clatd", "status", interfaceName);
Lorenzo Colitti79751842013-02-28 16:16:03 +0900[diff] [blame]2216 } catch (NativeDaemonConnectorException e) {
2217 throw e.rethrowAsParcelableException();
2218 }
2219
2220 event.checkCode(ClatdStatusResult);
2221 return event.getMessage().endsWith("started");
2222 }
2223
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]2224 @Override
2225 public void registerNetworkActivityListener(INetworkActivityListener listener) {
2226 mNetworkActivityListeners.register(listener);
2227 }
2228
2229 @Override
2230 public void unregisterNetworkActivityListener(INetworkActivityListener listener) {
2231 mNetworkActivityListeners.unregister(listener);
2232 }
2233
2234 @Override
2235 public boolean isNetworkActive() {
2236 synchronized (mNetworkActivityListeners) {
2237 return mNetworkActive || mActiveIdleTimers.isEmpty();
2238 }
2239 }
2240
2241 private void reportNetworkActive() {
2242 final int length = mNetworkActivityListeners.beginBroadcast();
Robert Greenwalt2c9f5472014-04-21 14:50:28 -0700[diff] [blame]2243 try {
2244 for (int i = 0; i < length; i++) {
2245 try {
2246 mNetworkActivityListeners.getBroadcastItem(i).onNetworkActive();
Felipe Leme03e689d2016-03-02 16:17:38 -0800[diff] [blame]2247 } catch (RemoteException | RuntimeException e) {
Robert Greenwalt2c9f5472014-04-21 14:50:28 -0700[diff] [blame]2248 }
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]2249 }
Robert Greenwalt2c9f5472014-04-21 14:50:28 -0700[diff] [blame]2250 } finally {
2251 mNetworkActivityListeners.finishBroadcast();
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]2252 }
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]2253 }
2254
Mattias Falk8b47b362011-08-23 14:15:13 +0200[diff] [blame]2255 /** {@inheritDoc} */
Jeff Sharkey7b4596f2013-02-25 10:55:29 -0800[diff] [blame]2256 @Override
Jeff Sharkeyfa23c5a2011-08-09 21:44:24 -0700[diff] [blame]2257 public void monitor() {
2258 if (mConnector != null) {
2259 mConnector.monitor();
2260 }
2261 }
Jeff Sharkey47eb1022011-08-25 17:48:52 -0700[diff] [blame]2262
2263 @Override
2264 protected void dump(FileDescriptor fd, PrintWriter pw, String[] args) {
2265 mContext.enforceCallingOrSelfPermission(DUMP, TAG);
2266
Robert Greenwalt470fd722012-01-18 12:51:15 -0800[diff] [blame]2267 pw.println("NetworkManagementService NativeDaemonConnector Log:");
2268 mConnector.dump(fd, pw, args);
2269 pw.println();
2270
Jeff Sharkey47eb1022011-08-25 17:48:52 -0700[diff] [blame]2271 pw.print("Bandwidth control enabled: "); pw.println(mBandwidthControlEnabled);
Dianne Hackborn2ffa11e2014-04-21 15:56:18 -0700[diff] [blame]2272 pw.print("mMobileActivityFromRadio="); pw.print(mMobileActivityFromRadio);
2273 pw.print(" mLastPowerStateFromRadio="); pw.println(mLastPowerStateFromRadio);
2274 pw.print("mNetworkActive="); pw.println(mNetworkActive);
Jeff Sharkey47eb1022011-08-25 17:48:52 -0700[diff] [blame]2275
2276 synchronized (mQuotaLock) {
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]2277 pw.print("Active quota ifaces: "); pw.println(mActiveQuotas.toString());
2278 pw.print("Active alert ifaces: "); pw.println(mActiveAlerts.toString());
Felipe Leme65be3022016-03-22 14:53:13 -0700[diff] [blame]2279 pw.print("Data saver mode: "); pw.println(mDataSaverMode);
2280 dumpUidRuleOnQuotaLocked(pw, "blacklist", mUidRejectOnMetered);
2281 dumpUidRuleOnQuotaLocked(pw, "whitelist", mUidAllowOnMetered);
Jeff Sharkey47eb1022011-08-25 17:48:52 -0700[diff] [blame]2282 }
Jeff Sharkeyc268f0b2012-08-24 10:25:31 -0700[diff] [blame]2283
Amith Yamasani15e472352015-04-24 19:06:07 -0700[diff] [blame]2284 synchronized (mUidFirewallRules) {
Felipe Leme011b98f2016-02-10 17:28:31 -0800[diff] [blame]2285 dumpUidFirewallRule(pw, "", mUidFirewallRules);
Amith Yamasani15e472352015-04-24 19:06:07 -0700[diff] [blame]2286 }
2287
Felipe Leme65be3022016-03-22 14:53:13 -0700[diff] [blame]2288 pw.print("UID firewall standby chain enabled: "); pw.println(
Xiaohui Chen8dca36d2015-06-19 12:44:59 -0700[diff] [blame]2289 mFirewallChainStates.get(FIREWALL_CHAIN_STANDBY));
Xiaohui Chenb41c9f72015-06-17 15:55:37 -0700[diff] [blame]2290 synchronized (mUidFirewallStandbyRules) {
Felipe Leme011b98f2016-02-10 17:28:31 -0800[diff] [blame]2291 dumpUidFirewallRule(pw, FIREWALL_CHAIN_NAME_STANDBY, mUidFirewallStandbyRules);
Xiaohui Chenb41c9f72015-06-17 15:55:37 -0700[diff] [blame]2292 }
2293
Felipe Leme65be3022016-03-22 14:53:13 -0700[diff] [blame]2294 pw.print("UID firewall dozable chain enabled: "); pw.println(
Xiaohui Chen8dca36d2015-06-19 12:44:59 -0700[diff] [blame]2295 mFirewallChainStates.get(FIREWALL_CHAIN_DOZABLE));
Xiaohui Chenb41c9f72015-06-17 15:55:37 -0700[diff] [blame]2296 synchronized (mUidFirewallDozableRules) {
Felipe Leme011b98f2016-02-10 17:28:31 -0800[diff] [blame]2297 dumpUidFirewallRule(pw, FIREWALL_CHAIN_NAME_DOZABLE, mUidFirewallDozableRules);
2298 }
2299
2300 pw.println("UID firewall powersave chain enabled: " +
2301 mFirewallChainStates.get(FIREWALL_CHAIN_POWERSAVE));
2302 synchronized (mUidFirewallPowerSaveRules) {
2303 dumpUidFirewallRule(pw, FIREWALL_CHAIN_NAME_POWERSAVE, mUidFirewallPowerSaveRules);
Xiaohui Chenb41c9f72015-06-17 15:55:37 -0700[diff] [blame]2304 }
2305
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]2306 synchronized (mIdleTimerLock) {
2307 pw.println("Idle timers:");
2308 for (HashMap.Entry<String, IdleTimerParams> ent : mActiveIdleTimers.entrySet()) {
2309 pw.print(" "); pw.print(ent.getKey()); pw.println(":");
2310 IdleTimerParams params = ent.getValue();
2311 pw.print(" timeout="); pw.print(params.timeout);
2312 pw.print(" type="); pw.print(params.type);
2313 pw.print(" networkCount="); pw.println(params.networkCount);
2314 }
2315 }
2316
Jeff Sharkeyc268f0b2012-08-24 10:25:31 -0700[diff] [blame]2317 pw.print("Firewall enabled: "); pw.println(mFirewallEnabled);
Felipe Leme65be3022016-03-22 14:53:13 -0700[diff] [blame]2318 pw.print("Netd service status: " );
2319 if (mNetdService == null) {
2320 pw.println("disconnected");
2321 } else {
2322 try {
2323 final boolean alive = mNetdService.isAlive();
2324 pw.println(alive ? "alive": "dead");
2325 } catch (RemoteException e) {
2326 pw.println("unreachable");
2327 }
2328 }
2329 }
2330
2331 private void dumpUidRuleOnQuotaLocked(PrintWriter pw, String name, SparseBooleanArray list) {
2332 pw.print("UID bandwith control ");
2333 pw.print(name);
2334 pw.print(" rule: [");
2335 final int size = list.size();
2336 for (int i = 0; i < size; i++) {
2337 pw.print(list.keyAt(i));
2338 if (i < size - 1) pw.print(",");
2339 }
2340 pw.println("]");
Jeff Sharkey47eb1022011-08-25 17:48:52 -0700[diff] [blame]2341 }
Robert Greenwalt9ba9c582014-03-19 17:56:12 -0700[diff] [blame]2342
Felipe Leme011b98f2016-02-10 17:28:31 -0800[diff] [blame]2343 private void dumpUidFirewallRule(PrintWriter pw, String name, SparseIntArray rules) {
Lorenzo Colitti4cb42402016-04-24 12:52:00 +0900[diff] [blame]2344 pw.print("UID firewall ");
Felipe Leme011b98f2016-02-10 17:28:31 -0800[diff] [blame]2345 pw.print(name);
2346 pw.print(" rule: [");
2347 final int size = rules.size();
2348 for (int i = 0; i < size; i++) {
2349 pw.print(rules.keyAt(i));
2350 pw.print(":");
2351 pw.print(rules.valueAt(i));
2352 if (i < size - 1) pw.print(",");
2353 }
2354 pw.println("]");
2355 }
2356
Robert Greenwalt568891d2014-04-04 13:38:00 -0700[diff] [blame]2357 @Override
Paul Jensen487ffe72015-07-24 15:57:11 -0400[diff] [blame]2358 public void createPhysicalNetwork(int netId, String permission) {
Robert Greenwalt9ba9c582014-03-19 17:56:12 -0700[diff] [blame]2359 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
2360
2361 try {
Paul Jensen487ffe72015-07-24 15:57:11 -0400[diff] [blame]2362 if (permission != null) {
2363 mConnector.execute("network", "create", netId, permission);
2364 } else {
2365 mConnector.execute("network", "create", netId);
2366 }
Robert Greenwalt9ba9c582014-03-19 17:56:12 -0700[diff] [blame]2367 } catch (NativeDaemonConnectorException e) {
2368 throw e.rethrowAsParcelableException();
2369 }
2370 }
2371
Robert Greenwalt568891d2014-04-04 13:38:00 -0700[diff] [blame]2372 @Override
Sreeram Ramachandran8cd33ed2014-07-23 15:23:15 -0700[diff] [blame]2373 public void createVirtualNetwork(int netId, boolean hasDNS, boolean secure) {
Paul Jensen6bc2c2c2014-05-07 15:27:40 -0400[diff] [blame]2374 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
2375
2376 try {
Sreeram Ramachandran8cd33ed2014-07-23 15:23:15 -0700[diff] [blame]2377 mConnector.execute("network", "create", netId, "vpn", hasDNS ? "1" : "0",
2378 secure ? "1" : "0");
Paul Jensen6bc2c2c2014-05-07 15:27:40 -0400[diff] [blame]2379 } catch (NativeDaemonConnectorException e) {
2380 throw e.rethrowAsParcelableException();
2381 }
2382 }
2383
2384 @Override
Robert Greenwalt9ba9c582014-03-19 17:56:12 -0700[diff] [blame]2385 public void removeNetwork(int netId) {
2386 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
2387
2388 try {
2389 mConnector.execute("network", "destroy", netId);
2390 } catch (NativeDaemonConnectorException e) {
2391 throw e.rethrowAsParcelableException();
2392 }
2393 }
Robert Greenwalt568891d2014-04-04 13:38:00 -0700[diff] [blame]2394
2395 @Override
Paul Jensen992f2522014-04-28 10:33:11 -0400[diff] [blame]2396 public void addInterfaceToNetwork(String iface, int netId) {
Sreeram Ramachandrana77760d2014-07-17 17:09:07 -0700[diff] [blame]2397 modifyInterfaceInNetwork("add", "" + netId, iface);
Paul Jensen992f2522014-04-28 10:33:11 -0400[diff] [blame]2398 }
2399
2400 @Override
2401 public void removeInterfaceFromNetwork(String iface, int netId) {
Sreeram Ramachandrana77760d2014-07-17 17:09:07 -0700[diff] [blame]2402 modifyInterfaceInNetwork("remove", "" + netId, iface);
2403 }
Paul Jensen992f2522014-04-28 10:33:11 -0400[diff] [blame]2404
Sreeram Ramachandrana77760d2014-07-17 17:09:07 -0700[diff] [blame]2405 private void modifyInterfaceInNetwork(String action, String netId, String iface) {
2406 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Paul Jensen992f2522014-04-28 10:33:11 -0400[diff] [blame]2407 try {
Sreeram Ramachandrana77760d2014-07-17 17:09:07 -0700[diff] [blame]2408 mConnector.execute("network", "interface", action, netId, iface);
Paul Jensen992f2522014-04-28 10:33:11 -0400[diff] [blame]2409 } catch (NativeDaemonConnectorException e) {
2410 throw e.rethrowAsParcelableException();
2411 }
2412 }
2413
2414 @Override
Robert Greenwalt913c8952014-04-07 17:36:35 -0700[diff] [blame]2415 public void addLegacyRouteForNetId(int netId, RouteInfo routeInfo, int uid) {
Robert Greenwalt568891d2014-04-04 13:38:00 -0700[diff] [blame]2416 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
2417
Sreeram Ramachandran03666c72014-07-19 23:21:46 -0700[diff] [blame]2418 final Command cmd = new Command("network", "route", "legacy", uid, "add", netId);
Robert Greenwalt568891d2014-04-04 13:38:00 -0700[diff] [blame]2419
Sreeram Ramachandran1fbcb272014-05-22 16:30:48 -0700[diff] [blame]2420 // create triplet: interface dest-ip-addr/prefixlength gateway-ip-addr
Sreeram Ramachandrancc91c7b2014-06-03 18:41:43 -0700[diff] [blame]2421 final LinkAddress la = routeInfo.getDestinationLinkAddress();
Robert Greenwalt568891d2014-04-04 13:38:00 -0700[diff] [blame]2422 cmd.appendArg(routeInfo.getInterface());
Lorenzo Colitti7dc78cf2014-06-09 22:58:46 +0900[diff] [blame]2423 cmd.appendArg(la.getAddress().getHostAddress() + "/" + la.getPrefixLength());
Sreeram Ramachandran1fbcb272014-05-22 16:30:48 -0700[diff] [blame]2424 if (routeInfo.hasGateway()) {
2425 cmd.appendArg(routeInfo.getGateway().getHostAddress());
2426 }
Robert Greenwalt568891d2014-04-04 13:38:00 -0700[diff] [blame]2427
2428 try {
2429 mConnector.execute(cmd);
2430 } catch (NativeDaemonConnectorException e) {
2431 throw e.rethrowAsParcelableException();
2432 }
2433 }
2434
2435 @Override
Sreeram Ramachandranf047f2a2014-04-15 16:04:26 -0700[diff] [blame]2436 public void setDefaultNetId(int netId) {
Robert Greenwalt568891d2014-04-04 13:38:00 -0700[diff] [blame]2437 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
2438
2439 try {
Sreeram Ramachandranf047f2a2014-04-15 16:04:26 -0700[diff] [blame]2440 mConnector.execute("network", "default", "set", netId);
Robert Greenwalt568891d2014-04-04 13:38:00 -0700[diff] [blame]2441 } catch (NativeDaemonConnectorException e) {
2442 throw e.rethrowAsParcelableException();
2443 }
2444 }
2445
2446 @Override
2447 public void clearDefaultNetId() {
2448 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
2449
2450 try {
2451 mConnector.execute("network", "default", "clear");
2452 } catch (NativeDaemonConnectorException e) {
2453 throw e.rethrowAsParcelableException();
2454 }
2455 }
2456
2457 @Override
Paul Jensen487ffe72015-07-24 15:57:11 -0400[diff] [blame]2458 public void setNetworkPermission(int netId, String permission) {
2459 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
2460
2461 try {
2462 if (permission != null) {
2463 mConnector.execute("network", "permission", "network", "set", permission, netId);
2464 } else {
2465 mConnector.execute("network", "permission", "network", "clear", netId);
2466 }
2467 } catch (NativeDaemonConnectorException e) {
2468 throw e.rethrowAsParcelableException();
2469 }
2470 }
2471
2472
2473 @Override
Sreeram Ramachandrane4a05af2014-09-24 09:16:19 -0700[diff] [blame]2474 public void setPermission(String permission, int[] uids) {
Robert Greenwalt568891d2014-04-04 13:38:00 -0700[diff] [blame]2475 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
2476
Sreeram Ramachandrane4a05af2014-09-24 09:16:19 -0700[diff] [blame]2477 Object[] argv = new Object[4 + MAX_UID_RANGES_PER_COMMAND];
2478 argv[0] = "permission";
2479 argv[1] = "user";
2480 argv[2] = "set";
2481 argv[3] = permission;
2482 int argc = 4;
2483 // Avoid overly long commands by limiting number of UIDs per command.
2484 for (int i = 0; i < uids.length; ++i) {
2485 argv[argc++] = uids[i];
2486 if (i == uids.length - 1 || argc == argv.length) {
2487 try {
2488 mConnector.execute("network", Arrays.copyOf(argv, argc));
2489 } catch (NativeDaemonConnectorException e) {
2490 throw e.rethrowAsParcelableException();
2491 }
2492 argc = 4;
2493 }
Robert Greenwalt568891d2014-04-04 13:38:00 -0700[diff] [blame]2494 }
2495 }
2496
2497 @Override
2498 public void clearPermission(int[] uids) {
2499 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
2500
Sreeram Ramachandrane4a05af2014-09-24 09:16:19 -0700[diff] [blame]2501 Object[] argv = new Object[3 + MAX_UID_RANGES_PER_COMMAND];
2502 argv[0] = "permission";
2503 argv[1] = "user";
2504 argv[2] = "clear";
2505 int argc = 3;
2506 // Avoid overly long commands by limiting number of UIDs per command.
2507 for (int i = 0; i < uids.length; ++i) {
2508 argv[argc++] = uids[i];
2509 if (i == uids.length - 1 || argc == argv.length) {
2510 try {
2511 mConnector.execute("network", Arrays.copyOf(argv, argc));
2512 } catch (NativeDaemonConnectorException e) {
2513 throw e.rethrowAsParcelableException();
2514 }
2515 argc = 3;
2516 }
Robert Greenwalt568891d2014-04-04 13:38:00 -0700[diff] [blame]2517 }
2518 }
Paul Jensen6bc2c2c2014-05-07 15:27:40 -0400[diff] [blame]2519
2520 @Override
2521 public void allowProtect(int uid) {
2522 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
2523
2524 try {
2525 mConnector.execute("network", "protect", "allow", uid);
2526 } catch (NativeDaemonConnectorException e) {
2527 throw e.rethrowAsParcelableException();
2528 }
2529 }
2530
2531 @Override
2532 public void denyProtect(int uid) {
2533 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
2534
2535 try {
2536 mConnector.execute("network", "protect", "deny", uid);
2537 } catch (NativeDaemonConnectorException e) {
2538 throw e.rethrowAsParcelableException();
2539 }
2540 }
2541
Sreeram Ramachandrana77760d2014-07-17 17:09:07 -0700[diff] [blame]2542 @Override
2543 public void addInterfaceToLocalNetwork(String iface, List<RouteInfo> routes) {
2544 modifyInterfaceInNetwork("add", "local", iface);
2545
2546 for (RouteInfo route : routes) {
2547 if (!route.isDefaultRoute()) {
2548 modifyRoute("add", "local", route);
2549 }
2550 }
2551 }
2552
2553 @Override
2554 public void removeInterfaceFromLocalNetwork(String iface) {
2555 modifyInterfaceInNetwork("remove", "local", iface);
2556 }
Erik Kline6599ee82016-07-17 21:28:39 +0900[diff] [blame]2557
2558 @Override
2559 public int removeRoutesFromLocalNetwork(List<RouteInfo> routes) {
2560 int failures = 0;
2561
2562 for (RouteInfo route : routes) {
2563 try {
2564 modifyRoute("remove", "local", route);
2565 } catch (IllegalStateException e) {
2566 failures++;
2567 }
2568 }
2569
2570 return failures;
2571 }
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]2572}