Sujith Ramakrishnan | b5b86c1 | 2016-01-28 16:53:16 -0800 | [diff] [blame] | 1 | /* |
| 2 | * Copyright (C) 2016 The Android Open Source Project |
| 3 | * |
| 4 | * Licensed under the Apache License, Version 2.0 (the "License"); |
| 5 | * you may not use this file except in compliance with the License. |
| 6 | * You may obtain a copy of the License at |
| 7 | * |
| 8 | * http://www.apache.org/licenses/LICENSE-2.0 |
| 9 | * |
| 10 | * Unless required by applicable law or agreed to in writing, software |
| 11 | * distributed under the License is distributed on an "AS IS" BASIS, |
| 12 | * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. |
| 13 | * See the License for the specific language governing permissions and |
| 14 | * limitations under the License. |
| 15 | */ |
| 16 | |
| 17 | package com.android.server.tv; |
| 18 | |
| 19 | import android.Manifest; |
| 20 | import android.content.BroadcastReceiver; |
| 21 | import android.content.ComponentName; |
| 22 | import android.content.Context; |
| 23 | import android.content.Intent; |
| 24 | import android.content.IntentFilter; |
| 25 | import android.content.pm.PackageManager; |
| 26 | import android.content.pm.ResolveInfo; |
| 27 | import android.content.pm.ServiceInfo; |
| 28 | import android.os.Handler; |
| 29 | import android.os.UserHandle; |
Andrei Litvin | c5ed937 | 2020-04-15 16:33:22 -0400 | [diff] [blame] | 30 | import android.text.TextUtils.SimpleStringSplitter; |
Sujith Ramakrishnan | b5b86c1 | 2016-01-28 16:53:16 -0800 | [diff] [blame] | 31 | import android.util.Log; |
| 32 | import android.util.Slog; |
| 33 | |
Andrei Litvin | b298d4c | 2020-02-27 13:29:20 -0500 | [diff] [blame] | 34 | import com.android.internal.annotations.VisibleForTesting; |
| 35 | |
Sujith Ramakrishnan | b5b86c1 | 2016-01-28 16:53:16 -0800 | [diff] [blame] | 36 | import java.util.ArrayList; |
| 37 | import java.util.Collections; |
Andrei Litvin | c5ed937 | 2020-04-15 16:33:22 -0400 | [diff] [blame] | 38 | import java.util.HashSet; |
| 39 | import java.util.Set; |
Sujith Ramakrishnan | b5b86c1 | 2016-01-28 16:53:16 -0800 | [diff] [blame] | 40 | |
| 41 | /** |
| 42 | * Watches for emote provider services to be installed. |
| 43 | * Adds a provider for each registered service. |
| 44 | * |
| 45 | * @see TvRemoteProviderProxy |
| 46 | */ |
| 47 | final class TvRemoteProviderWatcher { |
| 48 | |
Tom Macieszczak | 34ba4b1 | 2019-09-23 15:24:39 +0200 | [diff] [blame] | 49 | private static final String TAG = "TvRemoteProviderWatcher"; |
Sujith Ramakrishnan | b5b86c1 | 2016-01-28 16:53:16 -0800 | [diff] [blame] | 50 | private static final boolean DEBUG = Log.isLoggable(TAG, Log.VERBOSE); |
| 51 | |
| 52 | private final Context mContext; |
Sujith Ramakrishnan | b5b86c1 | 2016-01-28 16:53:16 -0800 | [diff] [blame] | 53 | private final Handler mHandler; |
| 54 | private final PackageManager mPackageManager; |
| 55 | private final ArrayList<TvRemoteProviderProxy> mProviderProxies = new ArrayList<>(); |
| 56 | private final int mUserId; |
Tom Macieszczak | 34ba4b1 | 2019-09-23 15:24:39 +0200 | [diff] [blame] | 57 | private final Object mLock; |
Andrei Litvin | c5ed937 | 2020-04-15 16:33:22 -0400 | [diff] [blame] | 58 | private final Set<String> mUnbundledServicePackages = new HashSet<>(); |
Sujith Ramakrishnan | b5b86c1 | 2016-01-28 16:53:16 -0800 | [diff] [blame] | 59 | |
| 60 | private boolean mRunning; |
| 61 | |
Tom Macieszczak | 34ba4b1 | 2019-09-23 15:24:39 +0200 | [diff] [blame] | 62 | TvRemoteProviderWatcher(Context context, Object lock) { |
Sujith Ramakrishnan | b5b86c1 | 2016-01-28 16:53:16 -0800 | [diff] [blame] | 63 | mContext = context; |
Tom Macieszczak | aee0bb2 | 2019-09-03 11:41:50 +0200 | [diff] [blame] | 64 | mHandler = new Handler(true); |
Sujith Ramakrishnan | b5b86c1 | 2016-01-28 16:53:16 -0800 | [diff] [blame] | 65 | mUserId = UserHandle.myUserId(); |
| 66 | mPackageManager = context.getPackageManager(); |
Tom Macieszczak | 34ba4b1 | 2019-09-23 15:24:39 +0200 | [diff] [blame] | 67 | mLock = lock; |
Andrei Litvin | c5ed937 | 2020-04-15 16:33:22 -0400 | [diff] [blame] | 68 | |
| 69 | // Unbundled package names supports a comma-separated list |
| 70 | SimpleStringSplitter splitter = new SimpleStringSplitter(','); |
| 71 | splitter.setString(context.getString( |
| 72 | com.android.internal.R.string.config_tvRemoteServicePackage)); |
| 73 | |
| 74 | splitter.forEach(packageName -> { |
| 75 | packageName = packageName.trim(); |
| 76 | if (!packageName.isEmpty()) { |
| 77 | mUnbundledServicePackages.add(packageName); |
| 78 | } |
| 79 | }); |
Sujith Ramakrishnan | b5b86c1 | 2016-01-28 16:53:16 -0800 | [diff] [blame] | 80 | } |
| 81 | |
| 82 | public void start() { |
| 83 | if (DEBUG) Slog.d(TAG, "start()"); |
| 84 | if (!mRunning) { |
| 85 | mRunning = true; |
| 86 | |
| 87 | IntentFilter filter = new IntentFilter(); |
| 88 | filter.addAction(Intent.ACTION_PACKAGE_ADDED); |
| 89 | filter.addAction(Intent.ACTION_PACKAGE_REMOVED); |
| 90 | filter.addAction(Intent.ACTION_PACKAGE_CHANGED); |
| 91 | filter.addAction(Intent.ACTION_PACKAGE_REPLACED); |
| 92 | filter.addAction(Intent.ACTION_PACKAGE_RESTARTED); |
| 93 | filter.addDataScheme("package"); |
| 94 | mContext.registerReceiverAsUser(mScanPackagesReceiver, |
| 95 | new UserHandle(mUserId), filter, null, mHandler); |
| 96 | |
| 97 | // Scan packages. |
| 98 | // Also has the side-effect of restarting providers if needed. |
| 99 | mHandler.post(mScanPackagesRunnable); |
| 100 | } |
| 101 | } |
| 102 | |
| 103 | public void stop() { |
| 104 | if (mRunning) { |
| 105 | mRunning = false; |
| 106 | |
| 107 | mContext.unregisterReceiver(mScanPackagesReceiver); |
| 108 | mHandler.removeCallbacks(mScanPackagesRunnable); |
| 109 | |
| 110 | // Stop all providers. |
| 111 | for (int i = mProviderProxies.size() - 1; i >= 0; i--) { |
| 112 | mProviderProxies.get(i).stop(); |
| 113 | } |
| 114 | } |
| 115 | } |
| 116 | |
| 117 | private void scanPackages() { |
| 118 | if (!mRunning) { |
| 119 | return; |
| 120 | } |
| 121 | |
| 122 | if (DEBUG) Log.d(TAG, "scanPackages()"); |
| 123 | // Add providers for all new services. |
| 124 | // Reorder the list so that providers left at the end will be the ones to remove. |
| 125 | int targetIndex = 0; |
| 126 | Intent intent = new Intent(TvRemoteProviderProxy.SERVICE_INTERFACE); |
| 127 | for (ResolveInfo resolveInfo : mPackageManager.queryIntentServicesAsUser( |
| 128 | intent, 0, mUserId)) { |
| 129 | ServiceInfo serviceInfo = resolveInfo.serviceInfo; |
| 130 | if (serviceInfo != null && verifyServiceTrusted(serviceInfo)) { |
| 131 | int sourceIndex = findProvider(serviceInfo.packageName, serviceInfo.name); |
| 132 | if (sourceIndex < 0) { |
| 133 | TvRemoteProviderProxy providerProxy = |
Tom Macieszczak | 34ba4b1 | 2019-09-23 15:24:39 +0200 | [diff] [blame] | 134 | new TvRemoteProviderProxy(mContext, mLock, |
Sujith Ramakrishnan | b5b86c1 | 2016-01-28 16:53:16 -0800 | [diff] [blame] | 135 | new ComponentName(serviceInfo.packageName, serviceInfo.name), |
| 136 | mUserId, serviceInfo.applicationInfo.uid); |
| 137 | providerProxy.start(); |
| 138 | mProviderProxies.add(targetIndex++, providerProxy); |
Sujith Ramakrishnan | b5b86c1 | 2016-01-28 16:53:16 -0800 | [diff] [blame] | 139 | } else if (sourceIndex >= targetIndex) { |
| 140 | TvRemoteProviderProxy provider = mProviderProxies.get(sourceIndex); |
| 141 | provider.start(); // restart the provider if needed |
| 142 | provider.rebindIfDisconnected(); |
| 143 | Collections.swap(mProviderProxies, sourceIndex, targetIndex++); |
| 144 | } |
| 145 | } |
| 146 | } |
| 147 | if (DEBUG) Log.d(TAG, "scanPackages() targetIndex " + targetIndex); |
| 148 | // Remove providers for missing services. |
| 149 | if (targetIndex < mProviderProxies.size()) { |
| 150 | for (int i = mProviderProxies.size() - 1; i >= targetIndex; i--) { |
| 151 | TvRemoteProviderProxy providerProxy = mProviderProxies.get(i); |
Sujith Ramakrishnan | b5b86c1 | 2016-01-28 16:53:16 -0800 | [diff] [blame] | 152 | mProviderProxies.remove(providerProxy); |
| 153 | providerProxy.stop(); |
| 154 | } |
| 155 | } |
| 156 | } |
| 157 | |
Andrei Litvin | b298d4c | 2020-02-27 13:29:20 -0500 | [diff] [blame] | 158 | @VisibleForTesting |
| 159 | boolean verifyServiceTrusted(ServiceInfo serviceInfo) { |
Sujith Ramakrishnan | b5b86c1 | 2016-01-28 16:53:16 -0800 | [diff] [blame] | 160 | if (serviceInfo.permission == null || !serviceInfo.permission.equals( |
| 161 | Manifest.permission.BIND_TV_REMOTE_SERVICE)) { |
| 162 | // If the service does not require this permission then any app could |
| 163 | // potentially bind to it and cause the atv remote provider service to |
| 164 | // misbehave. So we only want to trust providers that require the |
| 165 | // correct permissions. |
| 166 | Slog.w(TAG, "Ignoring atv remote provider service because it did not " |
| 167 | + "require the BIND_TV_REMOTE_SERVICE permission in its manifest: " |
| 168 | + serviceInfo.packageName + "/" + serviceInfo.name); |
| 169 | return false; |
| 170 | } |
| 171 | |
| 172 | // Check if package name is white-listed here. |
Andrei Litvin | c5ed937 | 2020-04-15 16:33:22 -0400 | [diff] [blame] | 173 | if (!mUnbundledServicePackages.contains(serviceInfo.packageName)) { |
Sujith Ramakrishnan | b5b86c1 | 2016-01-28 16:53:16 -0800 | [diff] [blame] | 174 | Slog.w(TAG, "Ignoring atv remote provider service because the package has not " |
| 175 | + "been set and/or whitelisted: " |
| 176 | + serviceInfo.packageName + "/" + serviceInfo.name); |
| 177 | return false; |
| 178 | } |
| 179 | |
| 180 | if (!hasNecessaryPermissions(serviceInfo.packageName)) { |
| 181 | // If the service does not have permission to be |
| 182 | // a virtual tv remote controller, do not trust it. |
| 183 | Slog.w(TAG, "Ignoring atv remote provider service because its package does not " |
| 184 | + "have TV_VIRTUAL_REMOTE_CONTROLLER permission: " + serviceInfo.packageName); |
| 185 | return false; |
| 186 | } |
| 187 | |
| 188 | // Looks good. |
| 189 | return true; |
| 190 | } |
| 191 | |
| 192 | // Returns true only if these permissions are present in calling package. |
| 193 | // Manifest.permission.TV_VIRTUAL_REMOTE_CONTROLLER : virtual remote controller on TV |
| 194 | private boolean hasNecessaryPermissions(String packageName) { |
| 195 | if ((mPackageManager.checkPermission(Manifest.permission.TV_VIRTUAL_REMOTE_CONTROLLER, |
| 196 | packageName) == PackageManager.PERMISSION_GRANTED)) { |
| 197 | return true; |
| 198 | } |
| 199 | return false; |
| 200 | } |
| 201 | |
| 202 | private int findProvider(String packageName, String className) { |
| 203 | int count = mProviderProxies.size(); |
| 204 | for (int i = 0; i < count; i++) { |
| 205 | TvRemoteProviderProxy provider = mProviderProxies.get(i); |
| 206 | if (provider.hasComponentName(packageName, className)) { |
| 207 | return i; |
| 208 | } |
| 209 | } |
| 210 | return -1; |
| 211 | } |
| 212 | |
| 213 | private final BroadcastReceiver mScanPackagesReceiver = new BroadcastReceiver() { |
| 214 | @Override |
| 215 | public void onReceive(Context context, Intent intent) { |
| 216 | if (DEBUG) { |
| 217 | Slog.d(TAG, "Received package manager broadcast: " + intent); |
| 218 | } |
| 219 | mHandler.post(mScanPackagesRunnable); |
| 220 | } |
| 221 | }; |
| 222 | |
| 223 | private final Runnable mScanPackagesRunnable = new Runnable() { |
| 224 | @Override |
| 225 | public void run() { |
| 226 | scanPackages(); |
| 227 | } |
| 228 | }; |
Sujith Ramakrishnan | b5b86c1 | 2016-01-28 16:53:16 -0800 | [diff] [blame] | 229 | } |