Gitiles
Code Review Sign In
gerrit-public.fairphone.software / platform / frameworks / base / fe9a53bc45fd0124a876dc0a49680aaf86641d3e / . / services / core / java / com / android / server / NetworkManagementService.java
blob: ce4efd18f578ea5a7a55769417ba513eaf294c94 [file] [log] [blame]
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]1/*
2 * Copyright (C) 2007 The Android Open Source Project
3 *
4 * Licensed under the Apache License, Version 2.0 (the "License");
5 * you may not use this file except in compliance with the License.
6 * You may obtain a copy of the License at
7 *
8 * http://www.apache.org/licenses/LICENSE-2.0
9 *
10 * Unless required by applicable law or agreed to in writing, software
11 * distributed under the License is distributed on an "AS IS" BASIS,
12 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13 * See the License for the specific language governing permissions and
14 * limitations under the License.
15 */
16
17package com.android.server;
18
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]19import static android.Manifest.permission.CONNECTIVITY_INTERNAL;
Jeff Sharkey47eb1022011-08-25 17:48:52 -0700[diff] [blame]20import static android.Manifest.permission.DUMP;
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]21import static android.Manifest.permission.SHUTDOWN;
Xiaohui Chenb41c9f72015-06-17 15:55:37 -0700[diff] [blame]22import static android.net.NetworkPolicyManager.FIREWALL_CHAIN_DOZABLE;
23import static android.net.NetworkPolicyManager.FIREWALL_CHAIN_NAME_DOZABLE;
24import static android.net.NetworkPolicyManager.FIREWALL_CHAIN_NAME_NONE;
Felipe Leme011b98f2016-02-10 17:28:31 -0800[diff] [blame]25import static android.net.NetworkPolicyManager.FIREWALL_CHAIN_NAME_POWERSAVE;
Xiaohui Chenb41c9f72015-06-17 15:55:37 -0700[diff] [blame]26import static android.net.NetworkPolicyManager.FIREWALL_CHAIN_NAME_STANDBY;
27import static android.net.NetworkPolicyManager.FIREWALL_CHAIN_NONE;
Felipe Leme011b98f2016-02-10 17:28:31 -0800[diff] [blame]28import static android.net.NetworkPolicyManager.FIREWALL_CHAIN_POWERSAVE;
Xiaohui Chenb41c9f72015-06-17 15:55:37 -0700[diff] [blame]29import static android.net.NetworkPolicyManager.FIREWALL_CHAIN_STANDBY;
Sudheer Shanka62f5c172017-03-17 16:25:55 -0700[diff] [blame]30import static android.net.NetworkPolicyManager.FIREWALL_RULE_ALLOW;
Xiaohui Chenb41c9f72015-06-17 15:55:37 -0700[diff] [blame]31import static android.net.NetworkPolicyManager.FIREWALL_RULE_DEFAULT;
Sudheer Shanka62f5c172017-03-17 16:25:55 -0700[diff] [blame]32import static android.net.NetworkPolicyManager.FIREWALL_RULE_DENY;
Xiaohui Chenb41c9f72015-06-17 15:55:37 -0700[diff] [blame]33import static android.net.NetworkPolicyManager.FIREWALL_TYPE_BLACKLIST;
34import static android.net.NetworkPolicyManager.FIREWALL_TYPE_WHITELIST;
Jeff Sharkeyb5d55e32011-08-10 17:53:27 -0700[diff] [blame]35import static android.net.NetworkStats.SET_DEFAULT;
Dianne Hackbornd0c5b9a2014-02-21 16:19:05 -0800[diff] [blame]36import static android.net.NetworkStats.TAG_ALL;
Jeff Sharkey1b5a2a92011-06-18 18:34:16 -0700[diff] [blame]37import static android.net.NetworkStats.TAG_NONE;
38import static android.net.NetworkStats.UID_ALL;
Jeff Sharkeyae2c1812011-10-04 13:11:40 -0700[diff] [blame]39import static android.net.TrafficStats.UID_TETHERING;
Lorenzo Colitti79751842013-02-28 16:16:03 +0900[diff] [blame]40import static com.android.server.NetworkManagementService.NetdResponseCode.ClatdStatusResult;
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]41import static com.android.server.NetworkManagementService.NetdResponseCode.InterfaceGetCfgResult;
42import static com.android.server.NetworkManagementService.NetdResponseCode.InterfaceListResult;
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]43import static com.android.server.NetworkManagementService.NetdResponseCode.IpFwdStatusResult;
44import static com.android.server.NetworkManagementService.NetdResponseCode.TetherDnsFwdTgtListResult;
45import static com.android.server.NetworkManagementService.NetdResponseCode.TetherInterfaceListResult;
46import static com.android.server.NetworkManagementService.NetdResponseCode.TetherStatusResult;
Jeff Sharkeye4984be2013-09-10 21:03:27 -0700[diff] [blame]47import static com.android.server.NetworkManagementService.NetdResponseCode.TetheringStatsListResult;
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]48import static com.android.server.NetworkManagementService.NetdResponseCode.TtyListResult;
Jeff Sharkeya63ba592011-07-19 23:47:12 -0700[diff] [blame]49import static com.android.server.NetworkManagementSocketTagger.PROP_QTAGUID_ENABLED;
Erik Klineb2cfdfb2017-01-18 20:54:14 +0900[diff] [blame]50
Xiaohui Chenb41c9f72015-06-17 15:55:37 -0700[diff] [blame]51import android.annotation.NonNull;
Sudheer Shankadc589ac2016-11-10 15:30:17 -0800[diff] [blame]52import android.app.ActivityManager;
Pierre Imai8e48e672016-04-21 13:30:43 +0900[diff] [blame]53import android.content.ContentResolver;
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]54import android.content.Context;
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]55import android.net.ConnectivityManager;
Lorenzo Colitti58967ba2016-02-02 17:21:21 +0900[diff] [blame]56import android.net.INetd;
San Mehat4d02d002010-01-22 16:07:46 -0800[diff] [blame]57import android.net.INetworkManagementEventObserver;
Jeff Sharkeyeedcb952011-05-17 14:55:15 -0700[diff] [blame]58import android.net.InterfaceConfiguration;
Lorenzo Colittic18cbfd2014-06-13 21:21:03 +0900[diff] [blame]59import android.net.IpPrefix;
Robert Greenwalted126402011-01-28 15:34:55 -0800[diff] [blame]60import android.net.LinkAddress;
Lorenzo Colittib57edc52014-08-22 17:10:50 -0700[diff] [blame]61import android.net.Network;
Amith Yamasani15e472352015-04-24 19:06:07 -0700[diff] [blame]62import android.net.NetworkPolicyManager;
Jeff Sharkeyeedcb952011-05-17 14:55:15 -0700[diff] [blame]63import android.net.NetworkStats;
Robert Greenwalted126402011-01-28 15:34:55 -0800[diff] [blame]64import android.net.NetworkUtils;
Robert Greenwalt59b1a4e2011-05-10 15:05:02 -0700[diff] [blame]65import android.net.RouteInfo;
Paul Jensen6bc2c2c2014-05-07 15:27:40 -0400[diff] [blame]66import android.net.UidRange;
Irfan Sheriff9ab518ad2010-03-12 15:48:17 -0800[diff] [blame]67import android.net.wifi.WifiConfiguration;
68import android.net.wifi.WifiConfiguration.KeyMgmt;
Dianne Hackborn91268cf2013-06-13 19:06:50 -0700[diff] [blame]69import android.os.BatteryStats;
Jeff Sharkeyf56e2432012-09-06 17:54:29 -0700[diff] [blame]70import android.os.Binder;
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]71import android.os.Handler;
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]72import android.os.INetworkActivityListener;
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]73import android.os.INetworkManagementService;
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]74import android.os.PowerManager;
Jeff Sharkeyf56e2432012-09-06 17:54:29 -0700[diff] [blame]75import android.os.Process;
Jeff Sharkey3df273e2011-12-15 15:47:12 -0800[diff] [blame]76import android.os.RemoteCallbackList;
77import android.os.RemoteException;
Jeff Sharkey7a1c3fc2013-06-04 12:29:00 -0700[diff] [blame]78import android.os.ServiceManager;
Lorenzo Colitti4cb42402016-04-24 12:52:00 +0900[diff] [blame]79import android.os.ServiceSpecificException;
Jeff Sharkey605eb792014-11-04 13:34:06 -0800[diff] [blame]80import android.os.StrictMode;
Jeff Sharkey9a13f362011-04-26 16:25:36 -0700[diff] [blame]81import android.os.SystemClock;
Marco Nelissen62dbb222010-02-18 10:56:30 -0800[diff] [blame]82import android.os.SystemProperties;
Felipe Leme29e72ea2016-09-08 13:26:55 -0700[diff] [blame]83import android.os.Trace;
Pierre Imai8e48e672016-04-21 13:30:43 +0900[diff] [blame]84import android.provider.Settings;
Dianne Hackborn2ffa11e2014-04-21 15:56:18 -0700[diff] [blame]85import android.telephony.DataConnectionRealTimeInfo;
86import android.telephony.PhoneStateListener;
Wink Savillefb40dd42014-06-12 17:02:31 -0700[diff] [blame]87import android.telephony.SubscriptionManager;
Wink Saville67e07892014-06-18 16:43:14 -0700[diff] [blame]88import android.telephony.TelephonyManager;
Irfan Sheriff9ab518ad2010-03-12 15:48:17 -0800[diff] [blame]89import android.util.Log;
Joe Onorato8a9b2202010-02-26 18:56:32 -0800[diff] [blame]90import android.util.Slog;
Jeff Sharkeyb3f19ca2011-06-29 23:54:13 -0700[diff] [blame]91import android.util.SparseBooleanArray;
Jeff Sharkey605eb792014-11-04 13:34:06 -0800[diff] [blame]92import android.util.SparseIntArray;
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]93
Jeff Sharkey605eb792014-11-04 13:34:06 -0800[diff] [blame]94import com.android.internal.annotations.GuardedBy;
Sudheer Shanka62f5c172017-03-17 16:25:55 -0700[diff] [blame]95import com.android.internal.annotations.VisibleForTesting;
Jeff Sharkey7a1c3fc2013-06-04 12:29:00 -0700[diff] [blame]96import com.android.internal.app.IBatteryStats;
Jeff Sharkey1059c3c2011-10-04 16:54:49 -0700[diff] [blame]97import com.android.internal.net.NetworkStatsFactory;
Jeff Sharkeyfe9a53b2017-03-31 14:08:23 -0600[diff] [blame^]98import com.android.internal.util.DumpUtils;
Jeff Sharkey605eb792014-11-04 13:34:06 -0800[diff] [blame]99import com.android.internal.util.HexDump;
Jeff Sharkeyc268f0b2012-08-24 10:25:31 -0700[diff] [blame]100import com.android.internal.util.Preconditions;
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]101import com.android.server.NativeDaemonConnector.Command;
Jeff Sharkey56cd6462013-06-07 15:09:15 -0700[diff] [blame]102import com.android.server.NativeDaemonConnector.SensitiveArg;
Jeff Sharkey69ddab42012-08-25 00:05:46 -0700[diff] [blame]103import com.android.server.net.LockdownVpnTracker;
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]104import com.google.android.collect.Maps;
Jeff Sharkey4414cea2011-06-24 17:05:24 -0700[diff] [blame]105
Robert Greenwalt59b1a4e2011-05-10 15:05:02 -0700[diff] [blame]106import java.io.BufferedReader;
107import java.io.DataInputStream;
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]108import java.io.File;
Jeff Sharkey47eb1022011-08-25 17:48:52 -0700[diff] [blame]109import java.io.FileDescriptor;
Jeff Sharkey9a13f362011-04-26 16:25:36 -0700[diff] [blame]110import java.io.FileInputStream;
Jeff Sharkey9a13f362011-04-26 16:25:36 -0700[diff] [blame]111import java.io.IOException;
Jeff Sharkey9a13f362011-04-26 16:25:36 -0700[diff] [blame]112import java.io.InputStreamReader;
Jeff Sharkey47eb1022011-08-25 17:48:52 -0700[diff] [blame]113import java.io.PrintWriter;
Jeff Sharkeyeedcb952011-05-17 14:55:15 -0700[diff] [blame]114import java.net.InetAddress;
Robert Greenwalt3b28e9a2011-11-02 14:37:19 -0700[diff] [blame]115import java.net.InterfaceAddress;
116import java.net.NetworkInterface;
117import java.net.SocketException;
Jeff Sharkeyeedcb952011-05-17 14:55:15 -0700[diff] [blame]118import java.util.ArrayList;
Paul Jensen6bc2c2c2014-05-07 15:27:40 -0400[diff] [blame]119import java.util.Arrays;
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]120import java.util.HashMap;
jiaguo1da35f72014-01-09 16:39:59 +0800[diff] [blame]121import java.util.List;
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]122import java.util.Map;
Jeff Sharkeyeedcb952011-05-17 14:55:15 -0700[diff] [blame]123import java.util.NoSuchElementException;
124import java.util.StringTokenizer;
Robert Greenwalte5c3afb2010-09-22 14:32:35 -0700[diff] [blame]125import java.util.concurrent.CountDownLatch;
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]126
127/**
128 * @hide
129 */
Jeff Sharkey8e9992a2011-08-23 18:37:23 -0700[diff] [blame]130public class NetworkManagementService extends INetworkManagementService.Stub
131 implements Watchdog.Monitor {
Amith Yamasani15e472352015-04-24 19:06:07 -0700[diff] [blame]132 private static final String TAG = "NetworkManagement";
133 private static final boolean DBG = Log.isLoggable(TAG, Log.DEBUG);
Kenny Root305bcbf2010-09-03 07:56:38 -0700[diff] [blame]134 private static final String NETD_TAG = "NetdConnector";
Lorenzo Colitti58967ba2016-02-02 17:21:21 +0900[diff] [blame]135 private static final String NETD_SERVICE_NAME = "netd";
Kenny Root305bcbf2010-09-03 07:56:38 -0700[diff] [blame]136
Paul Jensen6bc2c2c2014-05-07 15:27:40 -0400[diff] [blame]137 private static final int MAX_UID_RANGES_PER_COMMAND = 10;
138
Jeff Sharkey8e9992a2011-08-23 18:37:23 -0700[diff] [blame]139 /**
140 * Name representing {@link #setGlobalAlert(long)} limit when delivered to
141 * {@link INetworkManagementEventObserver#limitReached(String, String)}.
142 */
143 public static final String LIMIT_GLOBAL_ALERT = "globalAlert";
144
Paul Jensen487ffe72015-07-24 15:57:11 -0400[diff] [blame]145 /**
146 * String to pass to netd to indicate that a network is only accessible
147 * to apps that have the CHANGE_NETWORK_STATE permission.
148 */
149 public static final String PERMISSION_NETWORK = "NETWORK";
150
151 /**
152 * String to pass to netd to indicate that a network is only
153 * accessible to system apps and those with the CONNECTIVITY_INTERNAL
154 * permission.
155 */
156 public static final String PERMISSION_SYSTEM = "SYSTEM";
157
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]158 class NetdResponseCode {
Sreeram Ramachandran03666c72014-07-19 23:21:46 -0700[diff] [blame]159 /* Keep in sync with system/netd/server/ResponseCode.h */
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]160 public static final int InterfaceListResult = 110;
161 public static final int TetherInterfaceListResult = 111;
162 public static final int TetherDnsFwdTgtListResult = 112;
San Mehat72759df2010-01-19 13:50:37 -0800[diff] [blame]163 public static final int TtyListResult = 113;
Jeff Sharkeye4984be2013-09-10 21:03:27 -0700[diff] [blame]164 public static final int TetheringStatsListResult = 114;
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]165
166 public static final int TetherStatusResult = 210;
167 public static final int IpFwdStatusResult = 211;
San Mehated4fc8a2010-01-22 12:28:36 -0800[diff] [blame]168 public static final int InterfaceGetCfgResult = 213;
Robert Greenwalte3253922010-02-18 09:23:25 -0800[diff] [blame]169 public static final int SoftapStatusResult = 214;
San Mehat91cac642010-03-31 14:31:36 -0700[diff] [blame]170 public static final int InterfaceRxCounterResult = 216;
171 public static final int InterfaceTxCounterResult = 217;
Jeff Sharkeycdd02c5d2011-09-16 01:52:49 -0700[diff] [blame]172 public static final int QuotaCounterResult = 220;
173 public static final int TetheringStatsResult = 221;
Selim Gurun84c00c62012-02-27 15:42:38 -0800[diff] [blame]174 public static final int DnsProxyQueryResult = 222;
Lorenzo Colitti79751842013-02-28 16:16:03 +0900[diff] [blame]175 public static final int ClatdStatusResult = 223;
Robert Greenwalte3253922010-02-18 09:23:25 -0800[diff] [blame]176
177 public static final int InterfaceChange = 600;
JP Abgrall12b933d2011-07-14 18:09:22 -0700[diff] [blame]178 public static final int BandwidthControl = 601;
Haoyu Bai6b7358d2012-07-17 16:36:50 -0700[diff] [blame]179 public static final int InterfaceClassActivity = 613;
Lorenzo Colitti5c7daac2013-08-05 10:39:37 +0900[diff] [blame]180 public static final int InterfaceAddressChange = 614;
Lorenzo Colitti5ae4a532013-10-31 11:59:46 +0900[diff] [blame]181 public static final int InterfaceDnsServerInfo = 615;
Lorenzo Colittic18cbfd2014-06-13 21:21:03 +0900[diff] [blame]182 public static final int RouteChange = 616;
Jeff Sharkey605eb792014-11-04 13:34:06 -0800[diff] [blame]183 public static final int StrictCleartext = 617;
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]184 }
185
Pierre Imai8e48e672016-04-21 13:30:43 +0900[diff] [blame]186 /* Defaults for resolver parameters. */
187 public static final int DNS_RESOLVER_DEFAULT_SAMPLE_VALIDITY_SECONDS = 1800;
188 public static final int DNS_RESOLVER_DEFAULT_SUCCESS_THRESHOLD_PERCENT = 25;
189 public static final int DNS_RESOLVER_DEFAULT_MIN_SAMPLES = 8;
190 public static final int DNS_RESOLVER_DEFAULT_MAX_SAMPLES = 64;
191
Rebecca Silbersteine2ec94f2016-03-24 13:29:00 -0700[diff] [blame]192 /**
193 * String indicating a softap command.
194 */
195 static final String SOFT_AP_COMMAND = "softap";
196
197 /**
198 * String passed back to netd connector indicating softap command success.
199 */
200 static final String SOFT_AP_COMMAND_SUCCESS = "Ok";
201
Dianne Hackborn2ffa11e2014-04-21 15:56:18 -0700[diff] [blame]202 static final int DAEMON_MSG_MOBILE_CONN_REAL_TIME_INFO = 1;
203
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]204 /**
205 * Binder context for this service
206 */
Dianne Hackborn2ffa11e2014-04-21 15:56:18 -0700[diff] [blame]207 private final Context mContext;
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]208
209 /**
210 * connector object for communicating with netd
211 */
Dianne Hackborn2ffa11e2014-04-21 15:56:18 -0700[diff] [blame]212 private final NativeDaemonConnector mConnector;
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]213
Robert Greenwalt2c9f5472014-04-21 14:50:28 -0700[diff] [blame]214 private final Handler mFgHandler;
Dianne Hackborn2ffa11e2014-04-21 15:56:18 -0700[diff] [blame]215 private final Handler mDaemonHandler;
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]216
Lorenzo Colitti58967ba2016-02-02 17:21:21 +0900[diff] [blame]217 private INetd mNetdService;
218
Dianne Hackborne13c4c02014-02-11 17:18:35 -0800[diff] [blame]219 private IBatteryStats mBatteryStats;
220
Dianne Hackborn2ffa11e2014-04-21 15:56:18 -0700[diff] [blame]221 private final Thread mThread;
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]222 private CountDownLatch mConnectedSignal = new CountDownLatch(1);
Robert Greenwalte5c3afb2010-09-22 14:32:35 -0700[diff] [blame]223
Jeff Sharkey3df273e2011-12-15 15:47:12 -0800[diff] [blame]224 private final RemoteCallbackList<INetworkManagementEventObserver> mObservers =
Christopher Wiley212b95f2016-08-02 11:38:57 -0700[diff] [blame]225 new RemoteCallbackList<>();
San Mehat4d02d002010-01-22 16:07:46 -0800[diff] [blame]226
Jeff Sharkey1059c3c2011-10-04 16:54:49 -0700[diff] [blame]227 private final NetworkStatsFactory mStatsFactory = new NetworkStatsFactory();
228
Sudheer Shanka62f5c172017-03-17 16:25:55 -0700[diff] [blame]229 /**
230 * If both locks need to be held, then they should be obtained in the order:
231 * first {@link #mQuotaLock} and then {@link #mRulesLock}.
232 */
Jeff Sharkey41ff7ec2011-07-25 15:21:22 -0700[diff] [blame]233 private Object mQuotaLock = new Object();
Sudheer Shanka62f5c172017-03-17 16:25:55 -0700[diff] [blame]234 private Object mRulesLock = new Object();
Jeff Sharkey605eb792014-11-04 13:34:06 -0800[diff] [blame]235
Jeff Sharkeyb3f19ca2011-06-29 23:54:13 -0700[diff] [blame]236 /** Set of interfaces with active quotas. */
Jeff Sharkey605eb792014-11-04 13:34:06 -0800[diff] [blame]237 @GuardedBy("mQuotaLock")
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]238 private HashMap<String, Long> mActiveQuotas = Maps.newHashMap();
Jeff Sharkey41ff7ec2011-07-25 15:21:22 -0700[diff] [blame]239 /** Set of interfaces with active alerts. */
Jeff Sharkey605eb792014-11-04 13:34:06 -0800[diff] [blame]240 @GuardedBy("mQuotaLock")
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]241 private HashMap<String, Long> mActiveAlerts = Maps.newHashMap();
Felipe Leme65be3022016-03-22 14:53:13 -0700[diff] [blame]242 /** Set of UIDs blacklisted on metered networks. */
Sudheer Shanka62f5c172017-03-17 16:25:55 -0700[diff] [blame]243 @GuardedBy("mRulesLock")
Felipe Leme65be3022016-03-22 14:53:13 -0700[diff] [blame]244 private SparseBooleanArray mUidRejectOnMetered = new SparseBooleanArray();
245 /** Set of UIDs whitelisted on metered networks. */
Sudheer Shanka62f5c172017-03-17 16:25:55 -0700[diff] [blame]246 @GuardedBy("mRulesLock")
Felipe Leme65be3022016-03-22 14:53:13 -0700[diff] [blame]247 private SparseBooleanArray mUidAllowOnMetered = new SparseBooleanArray();
Jeff Sharkey605eb792014-11-04 13:34:06 -0800[diff] [blame]248 /** Set of UIDs with cleartext penalties. */
249 @GuardedBy("mQuotaLock")
250 private SparseIntArray mUidCleartextPolicy = new SparseIntArray();
Amith Yamasani15e472352015-04-24 19:06:07 -0700[diff] [blame]251 /** Set of UIDs that are to be blocked/allowed by firewall controller. */
Sudheer Shanka62f5c172017-03-17 16:25:55 -0700[diff] [blame]252 @GuardedBy("mRulesLock")
Amith Yamasani15e472352015-04-24 19:06:07 -0700[diff] [blame]253 private SparseIntArray mUidFirewallRules = new SparseIntArray();
Xiaohui Chenb41c9f72015-06-17 15:55:37 -0700[diff] [blame]254 /**
255 * Set of UIDs that are to be blocked/allowed by firewall controller. This set of Ids matches
256 * to application idles.
257 */
Sudheer Shanka62f5c172017-03-17 16:25:55 -0700[diff] [blame]258 @GuardedBy("mRulesLock")
Xiaohui Chenb41c9f72015-06-17 15:55:37 -0700[diff] [blame]259 private SparseIntArray mUidFirewallStandbyRules = new SparseIntArray();
260 /**
261 * Set of UIDs that are to be blocked/allowed by firewall controller. This set of Ids matches
262 * to device idles.
263 */
Sudheer Shanka62f5c172017-03-17 16:25:55 -0700[diff] [blame]264 @GuardedBy("mRulesLock")
Xiaohui Chenb41c9f72015-06-17 15:55:37 -0700[diff] [blame]265 private SparseIntArray mUidFirewallDozableRules = new SparseIntArray();
Felipe Leme011b98f2016-02-10 17:28:31 -0800[diff] [blame]266 /**
267 * Set of UIDs that are to be blocked/allowed by firewall controller. This set of Ids matches
268 * to device on power-save mode.
269 */
Sudheer Shanka62f5c172017-03-17 16:25:55 -0700[diff] [blame]270 @GuardedBy("mRulesLock")
Felipe Leme011b98f2016-02-10 17:28:31 -0800[diff] [blame]271 private SparseIntArray mUidFirewallPowerSaveRules = new SparseIntArray();
Xiaohui Chen8dca36d2015-06-19 12:44:59 -0700[diff] [blame]272 /** Set of states for the child firewall chains. True if the chain is active. */
Sudheer Shanka62f5c172017-03-17 16:25:55 -0700[diff] [blame]273 @GuardedBy("mRulesLock")
Xiaohui Chen8dca36d2015-06-19 12:44:59 -0700[diff] [blame]274 final SparseBooleanArray mFirewallChainStates = new SparseBooleanArray();
Jeff Sharkeyb3f19ca2011-06-29 23:54:13 -0700[diff] [blame]275
Felipe Leme65be3022016-03-22 14:53:13 -0700[diff] [blame]276 @GuardedBy("mQuotaLock")
Sudheer Shanka62f5c172017-03-17 16:25:55 -0700[diff] [blame]277 private volatile boolean mDataSaverMode;
Felipe Leme65be3022016-03-22 14:53:13 -0700[diff] [blame]278
Haoyu Bai04124232012-06-28 15:26:19 -0700[diff] [blame]279 private Object mIdleTimerLock = new Object();
280 /** Set of interfaces with active idle timers. */
281 private static class IdleTimerParams {
282 public final int timeout;
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]283 public final int type;
Haoyu Bai04124232012-06-28 15:26:19 -0700[diff] [blame]284 public int networkCount;
285
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]286 IdleTimerParams(int timeout, int type) {
Haoyu Bai04124232012-06-28 15:26:19 -0700[diff] [blame]287 this.timeout = timeout;
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]288 this.type = type;
Haoyu Bai04124232012-06-28 15:26:19 -0700[diff] [blame]289 this.networkCount = 1;
290 }
291 }
292 private HashMap<String, IdleTimerParams> mActiveIdleTimers = Maps.newHashMap();
293
Jeff Sharkeyfa23c5a2011-08-09 21:44:24 -0700[diff] [blame]294 private volatile boolean mBandwidthControlEnabled;
Jeff Sharkeyc268f0b2012-08-24 10:25:31 -0700[diff] [blame]295 private volatile boolean mFirewallEnabled;
Jeff Sharkey605eb792014-11-04 13:34:06 -0800[diff] [blame]296 private volatile boolean mStrictEnabled;
Jeff Sharkey350083e2011-06-29 10:45:16 -0700[diff] [blame]297
Dianne Hackborn2ffa11e2014-04-21 15:56:18 -0700[diff] [blame]298 private boolean mMobileActivityFromRadio = false;
299 private int mLastPowerStateFromRadio = DataConnectionRealTimeInfo.DC_POWER_STATE_LOW;
Adam Lesinskie08af192015-03-25 16:42:59 -0700[diff] [blame]300 private int mLastPowerStateFromWifi = DataConnectionRealTimeInfo.DC_POWER_STATE_LOW;
Dianne Hackborn2ffa11e2014-04-21 15:56:18 -0700[diff] [blame]301
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]302 private final RemoteCallbackList<INetworkActivityListener> mNetworkActivityListeners =
Christopher Wiley212b95f2016-08-02 11:38:57 -0700[diff] [blame]303 new RemoteCallbackList<>();
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]304 private boolean mNetworkActive;
305
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]306 /**
307 * Constructs a new NetworkManagementService instance
308 *
309 * @param context Binder context for this service
310 */
Lorenzo Colitti7421a012013-08-20 22:51:24 +0900[diff] [blame]311 private NetworkManagementService(Context context, String socket) {
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]312 mContext = context;
San Mehat4d02d002010-01-22 16:07:46 -0800[diff] [blame]313
Robert Greenwalt2c9f5472014-04-21 14:50:28 -0700[diff] [blame]314 // make sure this is on the same looper as our NativeDaemonConnector for sync purposes
315 mFgHandler = new Handler(FgThread.get().getLooper());
316
Dianne Hackborn4590e522014-03-24 13:36:46 -0700[diff] [blame]317 // Don't need this wake lock, since we now have a time stamp for when
318 // the network actually went inactive. (It might be nice to still do this,
319 // but I don't want to do it through the power manager because that pollutes the
320 // battery stats history with pointless noise.)
Dianne Hackborn2ffa11e2014-04-21 15:56:18 -0700[diff] [blame]321 //PowerManager pm = (PowerManager)context.getSystemService(Context.POWER_SERVICE);
Dianne Hackborn4590e522014-03-24 13:36:46 -0700[diff] [blame]322 PowerManager.WakeLock wl = null; //pm.newWakeLock(PowerManager.PARTIAL_WAKE_LOCK, NETD_TAG);
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]323
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]324 mConnector = new NativeDaemonConnector(
Dianne Hackborn2ffa11e2014-04-21 15:56:18 -0700[diff] [blame]325 new NetdCallbackReceiver(), socket, 10, NETD_TAG, 160, wl,
326 FgThread.get().getLooper());
Robert Greenwalte5c3afb2010-09-22 14:32:35 -0700[diff] [blame]327 mThread = new Thread(mConnector, NETD_TAG);
Jeff Sharkeyfa23c5a2011-08-09 21:44:24 -0700[diff] [blame]328
Dianne Hackborn2ffa11e2014-04-21 15:56:18 -0700[diff] [blame]329 mDaemonHandler = new Handler(FgThread.get().getLooper());
Wink Saville67e07892014-06-18 16:43:14 -0700[diff] [blame]330
Jeff Sharkeyfa23c5a2011-08-09 21:44:24 -0700[diff] [blame]331 // Add ourself to the Watchdog monitors.
332 Watchdog.getInstance().addMonitor(this);
Sudheer Shanka62f5c172017-03-17 16:25:55 -0700[diff] [blame]333
334 LocalServices.addService(NetworkManagementInternal.class, new LocalService());
335 }
336
337 @VisibleForTesting
338 NetworkManagementService() {
339 mConnector = null;
340 mContext = null;
341 mDaemonHandler = null;
342 mFgHandler = null;
343 mThread = null;
Robert Greenwalte5c3afb2010-09-22 14:32:35 -0700[diff] [blame]344 }
345
Felipe Leme03e689d2016-03-02 16:17:38 -0800[diff] [blame]346 static NetworkManagementService create(Context context, String socket)
347 throws InterruptedException {
Lorenzo Colitti7421a012013-08-20 22:51:24 +0900[diff] [blame]348 final NetworkManagementService service = new NetworkManagementService(context, socket);
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]349 final CountDownLatch connectedSignal = service.mConnectedSignal;
Robert Greenwalte5c3afb2010-09-22 14:32:35 -0700[diff] [blame]350 if (DBG) Slog.d(TAG, "Creating NetworkManagementService");
351 service.mThread.start();
352 if (DBG) Slog.d(TAG, "Awaiting socket connection");
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]353 connectedSignal.await();
Robert Greenwalte5c3afb2010-09-22 14:32:35 -0700[diff] [blame]354 if (DBG) Slog.d(TAG, "Connected");
bohu07cc3bb2016-05-03 15:58:01 -0700[diff] [blame]355 service.connectNativeNetdService();
Robert Greenwalte5c3afb2010-09-22 14:32:35 -0700[diff] [blame]356 return service;
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]357 }
358
Lorenzo Colitti7421a012013-08-20 22:51:24 +0900[diff] [blame]359 public static NetworkManagementService create(Context context) throws InterruptedException {
Lorenzo Colitti58967ba2016-02-02 17:21:21 +0900[diff] [blame]360 return create(context, NETD_SERVICE_NAME);
Lorenzo Colitti7421a012013-08-20 22:51:24 +0900[diff] [blame]361 }
362
Jeff Sharkey350083e2011-06-29 10:45:16 -0700[diff] [blame]363 public void systemReady() {
Felipe Leme03e689d2016-03-02 16:17:38 -0800[diff] [blame]364 if (DBG) {
365 final long start = System.currentTimeMillis();
366 prepareNativeDaemon();
367 final long delta = System.currentTimeMillis() - start;
368 Slog.d(TAG, "Prepared in " + delta + "ms");
369 return;
370 } else {
371 prepareNativeDaemon();
372 }
Jeff Sharkey350083e2011-06-29 10:45:16 -0700[diff] [blame]373 }
374
Dianne Hackborne13c4c02014-02-11 17:18:35 -0800[diff] [blame]375 private IBatteryStats getBatteryStats() {
376 synchronized (this) {
377 if (mBatteryStats != null) {
378 return mBatteryStats;
379 }
380 mBatteryStats = IBatteryStats.Stub.asInterface(ServiceManager.getService(
381 BatteryStats.SERVICE_NAME));
382 return mBatteryStats;
383 }
384 }
385
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]386 @Override
Jeff Sharkey3df273e2011-12-15 15:47:12 -0800[diff] [blame]387 public void registerObserver(INetworkManagementEventObserver observer) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]388 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Jeff Sharkey3df273e2011-12-15 15:47:12 -0800[diff] [blame]389 mObservers.register(observer);
San Mehat4d02d002010-01-22 16:07:46 -0800[diff] [blame]390 }
391
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]392 @Override
Jeff Sharkey3df273e2011-12-15 15:47:12 -0800[diff] [blame]393 public void unregisterObserver(INetworkManagementEventObserver observer) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]394 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Jeff Sharkey3df273e2011-12-15 15:47:12 -0800[diff] [blame]395 mObservers.unregister(observer);
San Mehat4d02d002010-01-22 16:07:46 -0800[diff] [blame]396 }
397
Erik Klineb2cfdfb2017-01-18 20:54:14 +0900[diff] [blame]398 @FunctionalInterface
399 private interface NetworkManagementEventCallback {
400 public void sendCallback(INetworkManagementEventObserver o) throws RemoteException;
401 }
402
403 private void invokeForAllObservers(NetworkManagementEventCallback eventCallback) {
Jeff Sharkey3df273e2011-12-15 15:47:12 -0800[diff] [blame]404 final int length = mObservers.beginBroadcast();
Robert Greenwalt2c9f5472014-04-21 14:50:28 -0700[diff] [blame]405 try {
406 for (int i = 0; i < length; i++) {
407 try {
Erik Klineb2cfdfb2017-01-18 20:54:14 +0900[diff] [blame]408 eventCallback.sendCallback(mObservers.getBroadcastItem(i));
Felipe Leme03e689d2016-03-02 16:17:38 -0800[diff] [blame]409 } catch (RemoteException | RuntimeException e) {
Robert Greenwalt2c9f5472014-04-21 14:50:28 -0700[diff] [blame]410 }
Mike J. Chen6143f5f2011-06-23 15:17:51 -0700[diff] [blame]411 }
Robert Greenwalt2c9f5472014-04-21 14:50:28 -0700[diff] [blame]412 } finally {
413 mObservers.finishBroadcast();
Mike J. Chen6143f5f2011-06-23 15:17:51 -0700[diff] [blame]414 }
415 }
416
417 /**
Erik Klineb2cfdfb2017-01-18 20:54:14 +0900[diff] [blame]418 * Notify our observers of an interface status change
419 */
420 private void notifyInterfaceStatusChanged(String iface, boolean up) {
421 invokeForAllObservers(o -> o.interfaceStatusChanged(iface, up));
422 }
423
424 /**
Mike J. Chenf59c7d02011-06-23 15:33:15 -0700[diff] [blame]425 * Notify our observers of an interface link state change
Mike J. Chen6143f5f2011-06-23 15:17:51 -0700[diff] [blame]426 * (typically, an Ethernet cable has been plugged-in or unplugged).
427 */
428 private void notifyInterfaceLinkStateChanged(String iface, boolean up) {
Erik Klineb2cfdfb2017-01-18 20:54:14 +0900[diff] [blame]429 invokeForAllObservers(o -> o.interfaceLinkStateChanged(iface, up));
San Mehat4d02d002010-01-22 16:07:46 -0800[diff] [blame]430 }
431
432 /**
433 * Notify our observers of an interface addition.
434 */
435 private void notifyInterfaceAdded(String iface) {
Erik Klineb2cfdfb2017-01-18 20:54:14 +0900[diff] [blame]436 invokeForAllObservers(o -> o.interfaceAdded(iface));
San Mehat4d02d002010-01-22 16:07:46 -0800[diff] [blame]437 }
438
439 /**
440 * Notify our observers of an interface removal.
441 */
442 private void notifyInterfaceRemoved(String iface) {
Jeff Sharkey89b8a212011-10-11 11:58:11 -0700[diff] [blame]443 // netd already clears out quota and alerts for removed ifaces; update
444 // our sanity-checking state.
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]445 mActiveAlerts.remove(iface);
446 mActiveQuotas.remove(iface);
Jeff Sharkey89b8a212011-10-11 11:58:11 -0700[diff] [blame]447
Erik Klineb2cfdfb2017-01-18 20:54:14 +0900[diff] [blame]448 invokeForAllObservers(o -> o.interfaceRemoved(iface));
San Mehat4d02d002010-01-22 16:07:46 -0800[diff] [blame]449 }
450
Robert Greenwalte5c3afb2010-09-22 14:32:35 -0700[diff] [blame]451 /**
JP Abgrall12b933d2011-07-14 18:09:22 -0700[diff] [blame]452 * Notify our observers of a limit reached.
453 */
454 private void notifyLimitReached(String limitName, String iface) {
Erik Klineb2cfdfb2017-01-18 20:54:14 +0900[diff] [blame]455 invokeForAllObservers(o -> o.limitReached(limitName, iface));
JP Abgrall12b933d2011-07-14 18:09:22 -0700[diff] [blame]456 }
457
458 /**
Haoyu Baidb3c8672012-06-20 14:29:57 -0700[diff] [blame]459 * Notify our observers of a change in the data activity state of the interface
460 */
Dianne Hackborn2ffa11e2014-04-21 15:56:18 -0700[diff] [blame]461 private void notifyInterfaceClassActivity(int type, int powerState, long tsNanos,
Ruchi Kandoifa97fcf2016-05-13 15:10:39 -0700[diff] [blame]462 int uid, boolean fromRadio) {
Dianne Hackborn2ffa11e2014-04-21 15:56:18 -0700[diff] [blame]463 final boolean isMobile = ConnectivityManager.isNetworkTypeMobile(type);
464 if (isMobile) {
465 if (!fromRadio) {
466 if (mMobileActivityFromRadio) {
467 // If this call is not coming from a report from the radio itself, but we
468 // have previously received reports from the radio, then we will take the
469 // power state to just be whatever the radio last reported.
470 powerState = mLastPowerStateFromRadio;
471 }
472 } else {
473 mMobileActivityFromRadio = true;
474 }
475 if (mLastPowerStateFromRadio != powerState) {
476 mLastPowerStateFromRadio = powerState;
Robert Greenwalt2c9f5472014-04-21 14:50:28 -0700[diff] [blame]477 try {
Ruchi Kandoifa97fcf2016-05-13 15:10:39 -0700[diff] [blame]478 getBatteryStats().noteMobileRadioPowerState(powerState, tsNanos, uid);
Robert Greenwalt2c9f5472014-04-21 14:50:28 -0700[diff] [blame]479 } catch (RemoteException e) {
Robert Greenwalt2c9f5472014-04-21 14:50:28 -0700[diff] [blame]480 }
Haoyu Baidb3c8672012-06-20 14:29:57 -0700[diff] [blame]481 }
Dianne Hackborn2ffa11e2014-04-21 15:56:18 -0700[diff] [blame]482 }
483
Adam Lesinskie08af192015-03-25 16:42:59 -0700[diff] [blame]484 if (ConnectivityManager.isNetworkTypeWifi(type)) {
485 if (mLastPowerStateFromWifi != powerState) {
486 mLastPowerStateFromWifi = powerState;
487 try {
Adam Lesinski5f056f62016-07-14 16:56:08 -0700[diff] [blame]488 getBatteryStats().noteWifiRadioPowerState(powerState, tsNanos, uid);
Adam Lesinskie08af192015-03-25 16:42:59 -0700[diff] [blame]489 } catch (RemoteException e) {
490 }
491 }
492 }
493
Dianne Hackborn2ffa11e2014-04-21 15:56:18 -0700[diff] [blame]494 boolean isActive = powerState == DataConnectionRealTimeInfo.DC_POWER_STATE_MEDIUM
495 || powerState == DataConnectionRealTimeInfo.DC_POWER_STATE_HIGH;
496
497 if (!isMobile || fromRadio || !mMobileActivityFromRadio) {
498 // Report the change in data activity. We don't do this if this is a change
499 // on the mobile network, that is not coming from the radio itself, and we
500 // have previously seen change reports from the radio. In that case only
501 // the radio is the authority for the current state.
Erik Klineb2cfdfb2017-01-18 20:54:14 +0900[diff] [blame]502 final boolean active = isActive;
503 invokeForAllObservers(o -> o.interfaceClassDataActivityChanged(
504 Integer.toString(type), active, tsNanos));
Haoyu Baidb3c8672012-06-20 14:29:57 -0700[diff] [blame]505 }
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]506
507 boolean report = false;
508 synchronized (mIdleTimerLock) {
509 if (mActiveIdleTimers.isEmpty()) {
Dianne Hackborn2ffa11e2014-04-21 15:56:18 -0700[diff] [blame]510 // If there are no idle timers, we are not monitoring activity, so we
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]511 // are always considered active.
Dianne Hackborn2ffa11e2014-04-21 15:56:18 -0700[diff] [blame]512 isActive = true;
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]513 }
Dianne Hackborn2ffa11e2014-04-21 15:56:18 -0700[diff] [blame]514 if (mNetworkActive != isActive) {
515 mNetworkActive = isActive;
516 report = isActive;
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]517 }
518 }
519 if (report) {
520 reportNetworkActive();
521 }
Haoyu Baidb3c8672012-06-20 14:29:57 -0700[diff] [blame]522 }
523
Lorenzo Colitti9eb844e2016-03-23 23:22:49 +0900[diff] [blame]524 // Sync the state of the given chain with the native daemon.
Sudheer Shanka62f5c172017-03-17 16:25:55 -0700[diff] [blame]525 private void syncFirewallChainLocked(int chain, String name) {
526 SparseIntArray rules;
527 synchronized (mRulesLock) {
528 final SparseIntArray uidFirewallRules = getUidFirewallRulesLR(chain);
Lorenzo Colitti9eb844e2016-03-23 23:22:49 +0900[diff] [blame]529 // Make a copy of the current rules, and then clear them. This is because
Sudheer Shanka62f5c172017-03-17 16:25:55 -0700[diff] [blame]530 // setFirewallUidRuleInternal only pushes down rules to the native daemon if they
531 // are different from the current rules stored in the mUidFirewall*Rules array for
532 // the specified chain. If we don't clear the rules, setFirewallUidRuleInternal
533 // will do nothing.
534 rules = uidFirewallRules.clone();
Lorenzo Colitti9eb844e2016-03-23 23:22:49 +0900[diff] [blame]535 uidFirewallRules.clear();
Sudheer Shanka62f5c172017-03-17 16:25:55 -0700[diff] [blame]536 }
537 if (rules.size() > 0) {
Lorenzo Colitti9eb844e2016-03-23 23:22:49 +0900[diff] [blame]538 // Now push the rules. setFirewallUidRuleInternal will push each of these down to the
539 // native daemon, and also add them to the mUidFirewall*Rules array for the specified
540 // chain.
Sudheer Shanka62f5c172017-03-17 16:25:55 -0700[diff] [blame]541 if (DBG) Slog.d(TAG, "Pushing " + rules.size() + " active firewall "
542 + name + "UID rules");
Lorenzo Colitti9eb844e2016-03-23 23:22:49 +0900[diff] [blame]543 for (int i = 0; i < rules.size(); i++) {
Felipe Lemea701cad2016-05-12 09:58:14 -0700[diff] [blame]544 setFirewallUidRuleLocked(chain, rules.keyAt(i), rules.valueAt(i));
Lorenzo Colitti9eb844e2016-03-23 23:22:49 +0900[diff] [blame]545 }
546 }
547 }
548
bohu07cc3bb2016-05-03 15:58:01 -0700[diff] [blame]549 private void connectNativeNetdService() {
Lorenzo Colitti58967ba2016-02-02 17:21:21 +0900[diff] [blame]550 boolean nativeServiceAvailable = false;
551 try {
552 mNetdService = INetd.Stub.asInterface(ServiceManager.getService(NETD_SERVICE_NAME));
553 nativeServiceAvailable = mNetdService.isAlive();
554 } catch (RemoteException e) {}
555 if (!nativeServiceAvailable) {
556 Slog.wtf(TAG, "Can't connect to NativeNetdService " + NETD_SERVICE_NAME);
557 }
bohu07cc3bb2016-05-03 15:58:01 -0700[diff] [blame]558 }
559
560 /**
561 * Prepare native daemon once connected, enabling modules and pushing any
562 * existing in-memory rules.
563 */
564 private void prepareNativeDaemon() {
Lorenzo Colitti58967ba2016-02-02 17:21:21 +0900[diff] [blame]565
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]566 mBandwidthControlEnabled = false;
Robert Greenwalte5c3afb2010-09-22 14:32:35 -0700[diff] [blame]567
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]568 // only enable bandwidth control when support exists
569 final boolean hasKernelSupport = new File("/proc/net/xt_qtaguid/ctrl").exists();
570 if (hasKernelSupport) {
571 Slog.d(TAG, "enabling bandwidth control");
572 try {
573 mConnector.execute("bandwidth", "enable");
574 mBandwidthControlEnabled = true;
575 } catch (NativeDaemonConnectorException e) {
576 Log.wtf(TAG, "problem enabling bandwidth controls", e);
577 }
578 } else {
Felipe Leme03e689d2016-03-02 16:17:38 -0800[diff] [blame]579 Slog.i(TAG, "not enabling bandwidth control");
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]580 }
581
582 SystemProperties.set(PROP_QTAGUID_ENABLED, mBandwidthControlEnabled ? "1" : "0");
583
Jeff Sharkey7a1c3fc2013-06-04 12:29:00 -0700[diff] [blame]584 if (mBandwidthControlEnabled) {
585 try {
Dianne Hackborne13c4c02014-02-11 17:18:35 -0800[diff] [blame]586 getBatteryStats().noteNetworkStatsEnabled();
Jeff Sharkey7a1c3fc2013-06-04 12:29:00 -0700[diff] [blame]587 } catch (RemoteException e) {
588 }
589 }
590
Jeff Sharkey605eb792014-11-04 13:34:06 -0800[diff] [blame]591 try {
592 mConnector.execute("strict", "enable");
593 mStrictEnabled = true;
594 } catch (NativeDaemonConnectorException e) {
595 Log.wtf(TAG, "Failed strict enable", e);
596 }
597
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]598 // push any existing quota or UID rules
599 synchronized (mQuotaLock) {
Felipe Leme65be3022016-03-22 14:53:13 -0700[diff] [blame]600
601 setDataSaverModeEnabled(mDataSaverMode);
602
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]603 int size = mActiveQuotas.size();
604 if (size > 0) {
Felipe Leme03e689d2016-03-02 16:17:38 -0800[diff] [blame]605 if (DBG) Slog.d(TAG, "Pushing " + size + " active quota rules");
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]606 final HashMap<String, Long> activeQuotas = mActiveQuotas;
607 mActiveQuotas = Maps.newHashMap();
608 for (Map.Entry<String, Long> entry : activeQuotas.entrySet()) {
609 setInterfaceQuota(entry.getKey(), entry.getValue());
610 }
611 }
612
613 size = mActiveAlerts.size();
614 if (size > 0) {
Felipe Leme03e689d2016-03-02 16:17:38 -0800[diff] [blame]615 if (DBG) Slog.d(TAG, "Pushing " + size + " active alert rules");
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]616 final HashMap<String, Long> activeAlerts = mActiveAlerts;
617 mActiveAlerts = Maps.newHashMap();
618 for (Map.Entry<String, Long> entry : activeAlerts.entrySet()) {
619 setInterfaceAlert(entry.getKey(), entry.getValue());
620 }
621 }
622
Sudheer Shanka62f5c172017-03-17 16:25:55 -0700[diff] [blame]623 SparseBooleanArray uidRejectOnQuota = null;
624 SparseBooleanArray uidAcceptOnQuota = null;
625 synchronized (mRulesLock) {
626 size = mUidRejectOnMetered.size();
627 if (size > 0) {
628 if (DBG) Slog.d(TAG, "Pushing " + size + " UIDs to metered blacklist rules");
629 uidRejectOnQuota = mUidRejectOnMetered;
630 mUidRejectOnMetered = new SparseBooleanArray();
631 }
632
633 size = mUidAllowOnMetered.size();
634 if (size > 0) {
635 if (DBG) Slog.d(TAG, "Pushing " + size + " UIDs to metered whitelist rules");
636 uidAcceptOnQuota = mUidAllowOnMetered;
637 mUidAllowOnMetered = new SparseBooleanArray();
638 }
639 }
640 if (uidRejectOnQuota != null) {
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]641 for (int i = 0; i < uidRejectOnQuota.size(); i++) {
Felipe Leme65be3022016-03-22 14:53:13 -0700[diff] [blame]642 setUidMeteredNetworkBlacklist(uidRejectOnQuota.keyAt(i),
643 uidRejectOnQuota.valueAt(i));
644 }
645 }
Sudheer Shanka62f5c172017-03-17 16:25:55 -0700[diff] [blame]646 if (uidAcceptOnQuota != null) {
Felipe Leme65be3022016-03-22 14:53:13 -0700[diff] [blame]647 for (int i = 0; i < uidAcceptOnQuota.size(); i++) {
648 setUidMeteredNetworkWhitelist(uidAcceptOnQuota.keyAt(i),
649 uidAcceptOnQuota.valueAt(i));
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]650 }
651 }
Jeff Sharkey605eb792014-11-04 13:34:06 -0800[diff] [blame]652
653 size = mUidCleartextPolicy.size();
654 if (size > 0) {
Felipe Leme03e689d2016-03-02 16:17:38 -0800[diff] [blame]655 if (DBG) Slog.d(TAG, "Pushing " + size + " active UID cleartext policies");
Jeff Sharkey605eb792014-11-04 13:34:06 -0800[diff] [blame]656 final SparseIntArray local = mUidCleartextPolicy;
657 mUidCleartextPolicy = new SparseIntArray();
658 for (int i = 0; i < local.size(); i++) {
659 setUidCleartextNetworkPolicy(local.keyAt(i), local.valueAt(i));
660 }
661 }
Jeff Sharkeyc268f0b2012-08-24 10:25:31 -0700[diff] [blame]662
Amith Yamasani15e472352015-04-24 19:06:07 -0700[diff] [blame]663 setFirewallEnabled(mFirewallEnabled || LockdownVpnTracker.isEnabled());
664
Sudheer Shanka62f5c172017-03-17 16:25:55 -0700[diff] [blame]665 syncFirewallChainLocked(FIREWALL_CHAIN_NONE, "");
666 syncFirewallChainLocked(FIREWALL_CHAIN_STANDBY, "standby ");
667 syncFirewallChainLocked(FIREWALL_CHAIN_DOZABLE, "dozable ");
668 syncFirewallChainLocked(FIREWALL_CHAIN_POWERSAVE, "powersave ");
Xiaohui Chenb41c9f72015-06-17 15:55:37 -0700[diff] [blame]669
Sudheer Shanka62f5c172017-03-17 16:25:55 -0700[diff] [blame]670 final int[] chains =
671 {FIREWALL_CHAIN_STANDBY, FIREWALL_CHAIN_DOZABLE, FIREWALL_CHAIN_POWERSAVE};
672 for (int chain : chains) {
673 if (getFirewallChainState(chain)) {
674 setFirewallChainEnabled(chain, true);
675 }
Felipe Leme011b98f2016-02-10 17:28:31 -0800[diff] [blame]676 }
Amith Yamasani15e472352015-04-24 19:06:07 -0700[diff] [blame]677 }
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]678 }
San Mehat4d02d002010-01-22 16:07:46 -0800[diff] [blame]679
Lorenzo Colitti5c7daac2013-08-05 10:39:37 +0900[diff] [blame]680 /**
681 * Notify our observers of a new or updated interface address.
682 */
Lorenzo Colitti64483942013-11-15 18:43:52 +0900[diff] [blame]683 private void notifyAddressUpdated(String iface, LinkAddress address) {
Erik Klineb2cfdfb2017-01-18 20:54:14 +0900[diff] [blame]684 invokeForAllObservers(o -> o.addressUpdated(iface, address));
Lorenzo Colitti5c7daac2013-08-05 10:39:37 +0900[diff] [blame]685 }
686
687 /**
688 * Notify our observers of a deleted interface address.
689 */
Lorenzo Colitti64483942013-11-15 18:43:52 +0900[diff] [blame]690 private void notifyAddressRemoved(String iface, LinkAddress address) {
Erik Klineb2cfdfb2017-01-18 20:54:14 +0900[diff] [blame]691 invokeForAllObservers(o -> o.addressRemoved(iface, address));
Lorenzo Colitti5c7daac2013-08-05 10:39:37 +0900[diff] [blame]692 }
693
Lorenzo Colitti5ae4a532013-10-31 11:59:46 +0900[diff] [blame]694 /**
695 * Notify our observers of DNS server information received.
696 */
697 private void notifyInterfaceDnsServerInfo(String iface, long lifetime, String[] addresses) {
Erik Klineb2cfdfb2017-01-18 20:54:14 +0900[diff] [blame]698 invokeForAllObservers(o -> o.interfaceDnsServerInfo(iface, lifetime, addresses));
Lorenzo Colitti5ae4a532013-10-31 11:59:46 +0900[diff] [blame]699 }
700
Lorenzo Colittic18cbfd2014-06-13 21:21:03 +0900[diff] [blame]701 /**
702 * Notify our observers of a route change.
703 */
704 private void notifyRouteChange(String action, RouteInfo route) {
Erik Klineb2cfdfb2017-01-18 20:54:14 +0900[diff] [blame]705 if (action.equals("updated")) {
706 invokeForAllObservers(o -> o.routeUpdated(route));
707 } else {
708 invokeForAllObservers(o -> o.routeRemoved(route));
Lorenzo Colittic18cbfd2014-06-13 21:21:03 +0900[diff] [blame]709 }
710 }
711
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]712 //
713 // Netd Callback handling
714 //
715
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]716 private class NetdCallbackReceiver implements INativeDaemonConnectorCallbacks {
717 @Override
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]718 public void onDaemonConnected() {
Felipe Leme65be3022016-03-22 14:53:13 -0700[diff] [blame]719 Slog.i(TAG, "onDaemonConnected()");
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]720 // event is dispatched from internal NDC thread, so we prepare the
721 // daemon back on main thread.
722 if (mConnectedSignal != null) {
bohu07cc3bb2016-05-03 15:58:01 -0700[diff] [blame]723 // The system is booting and we're connecting to netd for the first time.
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]724 mConnectedSignal.countDown();
725 mConnectedSignal = null;
726 } else {
bohu07cc3bb2016-05-03 15:58:01 -0700[diff] [blame]727 // We're reconnecting to netd after the socket connection
728 // was interrupted (e.g., if it crashed).
Robert Greenwalt2c9f5472014-04-21 14:50:28 -0700[diff] [blame]729 mFgHandler.post(new Runnable() {
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]730 @Override
731 public void run() {
bohu07cc3bb2016-05-03 15:58:01 -0700[diff] [blame]732 connectNativeNetdService();
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]733 prepareNativeDaemon();
734 }
735 });
736 }
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]737 }
Jeff Sharkeyfa23c5a2011-08-09 21:44:24 -0700[diff] [blame]738
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]739 @Override
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]740 public boolean onCheckHoldWakeLock(int code) {
741 return code == NetdResponseCode.InterfaceClassActivity;
742 }
743
744 @Override
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]745 public boolean onEvent(int code, String raw, String[] cooked) {
Lorenzo Colittia9626c12013-11-04 17:44:09 +0900[diff] [blame]746 String errorMessage = String.format("Invalid event from daemon (%s)", raw);
JP Abgrall12b933d2011-07-14 18:09:22 -0700[diff] [blame]747 switch (code) {
748 case NetdResponseCode.InterfaceChange:
749 /*
750 * a network interface change occured
751 * Format: "NNN Iface added <name>"
752 * "NNN Iface removed <name>"
753 * "NNN Iface changed <name> <up/down>"
754 * "NNN Iface linkstatus <name> <up/down>"
755 */
756 if (cooked.length < 4 || !cooked[1].equals("Iface")) {
Lorenzo Colittia9626c12013-11-04 17:44:09 +0900[diff] [blame]757 throw new IllegalStateException(errorMessage);
JP Abgrall12b933d2011-07-14 18:09:22 -0700[diff] [blame]758 }
759 if (cooked[2].equals("added")) {
760 notifyInterfaceAdded(cooked[3]);
761 return true;
762 } else if (cooked[2].equals("removed")) {
763 notifyInterfaceRemoved(cooked[3]);
764 return true;
765 } else if (cooked[2].equals("changed") && cooked.length == 5) {
766 notifyInterfaceStatusChanged(cooked[3], cooked[4].equals("up"));
767 return true;
768 } else if (cooked[2].equals("linkstate") && cooked.length == 5) {
769 notifyInterfaceLinkStateChanged(cooked[3], cooked[4].equals("up"));
770 return true;
771 }
Lorenzo Colittia9626c12013-11-04 17:44:09 +0900[diff] [blame]772 throw new IllegalStateException(errorMessage);
JP Abgrall12b933d2011-07-14 18:09:22 -0700[diff] [blame]773 // break;
774 case NetdResponseCode.BandwidthControl:
775 /*
776 * Bandwidth control needs some attention
777 * Format: "NNN limit alert <alertName> <ifaceName>"
778 */
779 if (cooked.length < 5 || !cooked[1].equals("limit")) {
Lorenzo Colittia9626c12013-11-04 17:44:09 +0900[diff] [blame]780 throw new IllegalStateException(errorMessage);
JP Abgrall12b933d2011-07-14 18:09:22 -0700[diff] [blame]781 }
782 if (cooked[2].equals("alert")) {
783 notifyLimitReached(cooked[3], cooked[4]);
784 return true;
785 }
Lorenzo Colittia9626c12013-11-04 17:44:09 +0900[diff] [blame]786 throw new IllegalStateException(errorMessage);
JP Abgrall12b933d2011-07-14 18:09:22 -0700[diff] [blame]787 // break;
Haoyu Baidb3c8672012-06-20 14:29:57 -0700[diff] [blame]788 case NetdResponseCode.InterfaceClassActivity:
789 /*
790 * An network interface class state changed (active/idle)
791 * Format: "NNN IfaceClass <active/idle> <label>"
792 */
793 if (cooked.length < 4 || !cooked[1].equals("IfaceClass")) {
Lorenzo Colittia9626c12013-11-04 17:44:09 +0900[diff] [blame]794 throw new IllegalStateException(errorMessage);
Haoyu Baidb3c8672012-06-20 14:29:57 -0700[diff] [blame]795 }
Ashish Sharma0535a9f2014-03-12 18:42:23 -0700[diff] [blame]796 long timestampNanos = 0;
Ruchi Kandoifa97fcf2016-05-13 15:10:39 -0700[diff] [blame]797 int processUid = -1;
798 if (cooked.length >= 5) {
Ashish Sharma0535a9f2014-03-12 18:42:23 -0700[diff] [blame]799 try {
800 timestampNanos = Long.parseLong(cooked[4]);
Ruchi Kandoifa97fcf2016-05-13 15:10:39 -0700[diff] [blame]801 if (cooked.length == 6) {
802 processUid = Integer.parseInt(cooked[5]);
803 }
Ashish Sharma0535a9f2014-03-12 18:42:23 -0700[diff] [blame]804 } catch(NumberFormatException ne) {}
Dianne Hackborn2ffa11e2014-04-21 15:56:18 -0700[diff] [blame]805 } else {
806 timestampNanos = SystemClock.elapsedRealtimeNanos();
Ashish Sharma0535a9f2014-03-12 18:42:23 -0700[diff] [blame]807 }
Haoyu Baidb3c8672012-06-20 14:29:57 -0700[diff] [blame]808 boolean isActive = cooked[2].equals("active");
Ashish Sharma0535a9f2014-03-12 18:42:23 -0700[diff] [blame]809 notifyInterfaceClassActivity(Integer.parseInt(cooked[3]),
Dianne Hackborn2ffa11e2014-04-21 15:56:18 -0700[diff] [blame]810 isActive ? DataConnectionRealTimeInfo.DC_POWER_STATE_HIGH
Ruchi Kandoifa97fcf2016-05-13 15:10:39 -0700[diff] [blame]811 : DataConnectionRealTimeInfo.DC_POWER_STATE_LOW,
812 timestampNanos, processUid, false);
Haoyu Baidb3c8672012-06-20 14:29:57 -0700[diff] [blame]813 return true;
814 // break;
Lorenzo Colitti5c7daac2013-08-05 10:39:37 +0900[diff] [blame]815 case NetdResponseCode.InterfaceAddressChange:
816 /*
817 * A network address change occurred
818 * Format: "NNN Address updated <addr> <iface> <flags> <scope>"
819 * "NNN Address removed <addr> <iface> <flags> <scope>"
820 */
Lorenzo Colittia9626c12013-11-04 17:44:09 +0900[diff] [blame]821 if (cooked.length < 7 || !cooked[1].equals("Address")) {
822 throw new IllegalStateException(errorMessage);
Lorenzo Colitti5c7daac2013-08-05 10:39:37 +0900[diff] [blame]823 }
824
Lorenzo Colitti64483942013-11-15 18:43:52 +0900[diff] [blame]825 String iface = cooked[4];
Lorenzo Colitti5ad421a2013-11-17 15:05:02 +0900[diff] [blame]826 LinkAddress address;
Lorenzo Colitti5c7daac2013-08-05 10:39:37 +0900[diff] [blame]827 try {
Lorenzo Colitti64483942013-11-15 18:43:52 +0900[diff] [blame]828 int flags = Integer.parseInt(cooked[5]);
829 int scope = Integer.parseInt(cooked[6]);
830 address = new LinkAddress(cooked[3], flags, scope);
Lorenzo Colitti5ad421a2013-11-17 15:05:02 +0900[diff] [blame]831 } catch(NumberFormatException e) { // Non-numeric lifetime or scope.
832 throw new IllegalStateException(errorMessage, e);
Lorenzo Colitti64483942013-11-15 18:43:52 +0900[diff] [blame]833 } catch(IllegalArgumentException e) { // Malformed/invalid IP address.
Lorenzo Colitti5ad421a2013-11-17 15:05:02 +0900[diff] [blame]834 throw new IllegalStateException(errorMessage, e);
Lorenzo Colitti5c7daac2013-08-05 10:39:37 +0900[diff] [blame]835 }
836
837 if (cooked[2].equals("updated")) {
Lorenzo Colitti64483942013-11-15 18:43:52 +0900[diff] [blame]838 notifyAddressUpdated(iface, address);
Lorenzo Colitti5c7daac2013-08-05 10:39:37 +0900[diff] [blame]839 } else {
Lorenzo Colitti64483942013-11-15 18:43:52 +0900[diff] [blame]840 notifyAddressRemoved(iface, address);
Lorenzo Colitti5c7daac2013-08-05 10:39:37 +0900[diff] [blame]841 }
842 return true;
843 // break;
Lorenzo Colitti5ae4a532013-10-31 11:59:46 +0900[diff] [blame]844 case NetdResponseCode.InterfaceDnsServerInfo:
845 /*
846 * Information about available DNS servers has been received.
847 * Format: "NNN DnsInfo servers <interface> <lifetime> <servers>"
848 */
849 long lifetime; // Actually a 32-bit unsigned integer.
850
851 if (cooked.length == 6 &&
852 cooked[1].equals("DnsInfo") &&
853 cooked[2].equals("servers")) {
854 try {
855 lifetime = Long.parseLong(cooked[4]);
856 } catch (NumberFormatException e) {
857 throw new IllegalStateException(errorMessage);
858 }
859 String[] servers = cooked[5].split(",");
860 notifyInterfaceDnsServerInfo(cooked[3], lifetime, servers);
861 }
862 return true;
863 // break;
Lorenzo Colittic18cbfd2014-06-13 21:21:03 +0900[diff] [blame]864 case NetdResponseCode.RouteChange:
865 /*
866 * A route has been updated or removed.
867 * Format: "NNN Route <updated|removed> <dst> [via <gateway] [dev <iface>]"
868 */
869 if (!cooked[1].equals("Route") || cooked.length < 6) {
870 throw new IllegalStateException(errorMessage);
871 }
872
873 String via = null;
874 String dev = null;
875 boolean valid = true;
876 for (int i = 4; (i + 1) < cooked.length && valid; i += 2) {
877 if (cooked[i].equals("dev")) {
878 if (dev == null) {
879 dev = cooked[i+1];
880 } else {
881 valid = false; // Duplicate interface.
882 }
883 } else if (cooked[i].equals("via")) {
884 if (via == null) {
885 via = cooked[i+1];
886 } else {
887 valid = false; // Duplicate gateway.
888 }
889 } else {
890 valid = false; // Unknown syntax.
891 }
892 }
893 if (valid) {
894 try {
895 // InetAddress.parseNumericAddress(null) inexplicably returns ::1.
896 InetAddress gateway = null;
897 if (via != null) gateway = InetAddress.parseNumericAddress(via);
898 RouteInfo route = new RouteInfo(new IpPrefix(cooked[3]), gateway, dev);
899 notifyRouteChange(cooked[2], route);
900 return true;
901 } catch (IllegalArgumentException e) {}
902 }
903 throw new IllegalStateException(errorMessage);
904 // break;
Jeff Sharkey605eb792014-11-04 13:34:06 -0800[diff] [blame]905 case NetdResponseCode.StrictCleartext:
906 final int uid = Integer.parseInt(cooked[1]);
907 final byte[] firstPacket = HexDump.hexStringToByteArray(cooked[2]);
908 try {
Sudheer Shankadc589ac2016-11-10 15:30:17 -0800[diff] [blame]909 ActivityManager.getService().notifyCleartextNetwork(uid, firstPacket);
Jeff Sharkey605eb792014-11-04 13:34:06 -0800[diff] [blame]910 } catch (RemoteException ignored) {
911 }
912 break;
JP Abgrall12b933d2011-07-14 18:09:22 -0700[diff] [blame]913 default: break;
Robert Greenwalte3253922010-02-18 09:23:25 -0800[diff] [blame]914 }
915 return false;
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]916 }
917 }
918
San Mehated4fc8a2010-01-22 12:28:36 -0800[diff] [blame]919
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]920 //
921 // INetworkManagementService members
922 //
Erik Kline4e37b702016-07-05 11:34:21 +0900[diff] [blame]923 @Override
924 public INetd getNetdService() throws RemoteException {
925 final CountDownLatch connectedSignal = mConnectedSignal;
926 if (connectedSignal != null) {
927 try {
928 connectedSignal.await();
929 } catch (InterruptedException ignored) {}
930 }
931
932 return mNetdService;
933 }
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]934
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]935 @Override
936 public String[] listInterfaces() {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]937 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]938 try {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]939 return NativeDaemonEvent.filterMessageList(
940 mConnector.executeForList("interface", "list"), InterfaceListResult);
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]941 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]942 throw e.rethrowAsParcelableException();
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]943 }
San Mehated4fc8a2010-01-22 12:28:36 -0800[diff] [blame]944 }
945
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]946 @Override
947 public InterfaceConfiguration getInterfaceConfig(String iface) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]948 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]949
950 final NativeDaemonEvent event;
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]951 try {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]952 event = mConnector.execute("interface", "getcfg", iface);
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]953 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]954 throw e.rethrowAsParcelableException();
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]955 }
San Mehated4fc8a2010-01-22 12:28:36 -0800[diff] [blame]956
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]957 event.checkCode(InterfaceGetCfgResult);
958
959 // Rsp: 213 xx:xx:xx:xx:xx:xx yyy.yyy.yyy.yyy zzz flag1 flag2 flag3
960 final StringTokenizer st = new StringTokenizer(event.getMessage());
San Mehated4fc8a2010-01-22 12:28:36 -0800[diff] [blame]961
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]962 InterfaceConfiguration cfg;
San Mehated4fc8a2010-01-22 12:28:36 -0800[diff] [blame]963 try {
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]964 cfg = new InterfaceConfiguration();
Jeff Sharkeyddba1062011-11-29 18:37:04 -0800[diff] [blame]965 cfg.setHardwareAddress(st.nextToken(" "));
Robert Greenwalted126402011-01-28 15:34:55 -0800[diff] [blame]966 InetAddress addr = null;
Robert Greenwalt2d2afd12011-02-01 15:30:46 -0800[diff] [blame]967 int prefixLength = 0;
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]968 try {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]969 addr = NetworkUtils.numericToInetAddress(st.nextToken());
Robert Greenwalte5903732011-02-22 16:00:42 -0800[diff] [blame]970 } catch (IllegalArgumentException iae) {
971 Slog.e(TAG, "Failed to parse ipaddr", iae);
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]972 }
973
974 try {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]975 prefixLength = Integer.parseInt(st.nextToken());
Robert Greenwalt2d2afd12011-02-01 15:30:46 -0800[diff] [blame]976 } catch (NumberFormatException nfe) {
977 Slog.e(TAG, "Failed to parse prefixLength", nfe);
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]978 }
Robert Greenwalt04808c22010-12-13 17:01:41 -0800[diff] [blame]979
Jeff Sharkeyddba1062011-11-29 18:37:04 -0800[diff] [blame]980 cfg.setLinkAddress(new LinkAddress(addr, prefixLength));
981 while (st.hasMoreTokens()) {
982 cfg.setFlag(st.nextToken());
983 }
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]984 } catch (NoSuchElementException nsee) {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]985 throw new IllegalStateException("Invalid response from daemon: " + event);
San Mehated4fc8a2010-01-22 12:28:36 -0800[diff] [blame]986 }
San Mehated4fc8a2010-01-22 12:28:36 -0800[diff] [blame]987 return cfg;
988 }
989
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]990 @Override
991 public void setInterfaceConfig(String iface, InterfaceConfiguration cfg) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]992 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Jeff Sharkeyddba1062011-11-29 18:37:04 -0800[diff] [blame]993 LinkAddress linkAddr = cfg.getLinkAddress();
Robert Greenwalt2d2afd12011-02-01 15:30:46 -0800[diff] [blame]994 if (linkAddr == null || linkAddr.getAddress() == null) {
995 throw new IllegalStateException("Null LinkAddress given");
Robert Greenwalted126402011-01-28 15:34:55 -0800[diff] [blame]996 }
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]997
998 final Command cmd = new Command("interface", "setcfg", iface,
Robert Greenwalt2d2afd12011-02-01 15:30:46 -0800[diff] [blame]999 linkAddr.getAddress().getHostAddress(),
Lorenzo Colitti7dc78cf2014-06-09 22:58:46 +0900[diff] [blame]1000 linkAddr.getPrefixLength());
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1001 for (String flag : cfg.getFlags()) {
1002 cmd.appendArg(flag);
1003 }
1004
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1005 try {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1006 mConnector.execute(cmd);
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1007 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]1008 throw e.rethrowAsParcelableException();
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1009 }
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]1010 }
1011
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1012 @Override
1013 public void setInterfaceDown(String iface) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1014 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Jeff Sharkey31c6e482011-11-18 17:09:01 -0800[diff] [blame]1015 final InterfaceConfiguration ifcg = getInterfaceConfig(iface);
Jeff Sharkeyddba1062011-11-29 18:37:04 -0800[diff] [blame]1016 ifcg.setInterfaceDown();
Jeff Sharkey31c6e482011-11-18 17:09:01 -0800[diff] [blame]1017 setInterfaceConfig(iface, ifcg);
Irfan Sheriff7244c972011-08-05 20:40:45 -0700[diff] [blame]1018 }
1019
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1020 @Override
1021 public void setInterfaceUp(String iface) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1022 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Jeff Sharkey31c6e482011-11-18 17:09:01 -0800[diff] [blame]1023 final InterfaceConfiguration ifcg = getInterfaceConfig(iface);
Jeff Sharkeyddba1062011-11-29 18:37:04 -0800[diff] [blame]1024 ifcg.setInterfaceUp();
Jeff Sharkey31c6e482011-11-18 17:09:01 -0800[diff] [blame]1025 setInterfaceConfig(iface, ifcg);
Irfan Sheriff7244c972011-08-05 20:40:45 -0700[diff] [blame]1026 }
1027
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1028 @Override
1029 public void setInterfaceIpv6PrivacyExtensions(String iface, boolean enable) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1030 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Irfan Sheriff73293612011-09-14 12:31:56 -0700[diff] [blame]1031 try {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1032 mConnector.execute(
1033 "interface", "ipv6privacyextensions", iface, enable ? "enable" : "disable");
Irfan Sheriff73293612011-09-14 12:31:56 -0700[diff] [blame]1034 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]1035 throw e.rethrowAsParcelableException();
Irfan Sheriff73293612011-09-14 12:31:56 -0700[diff] [blame]1036 }
1037 }
1038
Irfan Sherifff5600612011-06-16 10:26:28 -0700[diff] [blame]1039 /* TODO: This is right now a IPv4 only function. Works for wifi which loses its
1040 IPv6 addresses on interface down, but we need to do full clean up here */
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1041 @Override
1042 public void clearInterfaceAddresses(String iface) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1043 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Irfan Sherifff5600612011-06-16 10:26:28 -0700[diff] [blame]1044 try {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1045 mConnector.execute("interface", "clearaddrs", iface);
Irfan Sherifff5600612011-06-16 10:26:28 -0700[diff] [blame]1046 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]1047 throw e.rethrowAsParcelableException();
Irfan Sherifff5600612011-06-16 10:26:28 -0700[diff] [blame]1048 }
1049 }
1050
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1051 @Override
1052 public void enableIpv6(String iface) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1053 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
repo sync7960d9f2011-09-29 12:40:02 -0700[diff] [blame]1054 try {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1055 mConnector.execute("interface", "ipv6", iface, "enable");
repo sync7960d9f2011-09-29 12:40:02 -0700[diff] [blame]1056 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]1057 throw e.rethrowAsParcelableException();
repo sync7960d9f2011-09-29 12:40:02 -0700[diff] [blame]1058 }
1059 }
1060
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1061 @Override
1062 public void disableIpv6(String iface) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1063 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
repo sync7960d9f2011-09-29 12:40:02 -0700[diff] [blame]1064 try {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1065 mConnector.execute("interface", "ipv6", iface, "disable");
repo sync7960d9f2011-09-29 12:40:02 -0700[diff] [blame]1066 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]1067 throw e.rethrowAsParcelableException();
repo sync7960d9f2011-09-29 12:40:02 -0700[diff] [blame]1068 }
1069 }
1070
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1071 @Override
Lorenzo Colittie21a26b2014-10-28 15:24:03 +0900[diff] [blame]1072 public void setInterfaceIpv6NdOffload(String iface, boolean enable) {
1073 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
1074 try {
1075 mConnector.execute(
1076 "interface", "ipv6ndoffload", iface, (enable ? "enable" : "disable"));
1077 } catch (NativeDaemonConnectorException e) {
1078 throw e.rethrowAsParcelableException();
1079 }
1080 }
1081
1082 @Override
Sreeram Ramachandranb2829fa2014-04-15 19:07:12 -0700[diff] [blame]1083 public void addRoute(int netId, RouteInfo route) {
Sreeram Ramachandrana77760d2014-07-17 17:09:07 -0700[diff] [blame]1084 modifyRoute("add", "" + netId, route);
Robert Greenwalt59b1a4e2011-05-10 15:05:02 -0700[diff] [blame]1085 }
1086
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1087 @Override
Sreeram Ramachandranb2829fa2014-04-15 19:07:12 -0700[diff] [blame]1088 public void removeRoute(int netId, RouteInfo route) {
Sreeram Ramachandrana77760d2014-07-17 17:09:07 -0700[diff] [blame]1089 modifyRoute("remove", "" + netId, route);
Robert Greenwalt59b1a4e2011-05-10 15:05:02 -0700[diff] [blame]1090 }
1091
Sreeram Ramachandrana77760d2014-07-17 17:09:07 -0700[diff] [blame]1092 private void modifyRoute(String action, String netId, RouteInfo route) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1093 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Robert Greenwalt3b28e9a2011-11-02 14:37:19 -0700[diff] [blame]1094
Sreeram Ramachandranb2829fa2014-04-15 19:07:12 -0700[diff] [blame]1095 final Command cmd = new Command("network", "route", action, netId);
Robert Greenwalt3b28e9a2011-11-02 14:37:19 -0700[diff] [blame]1096
Sreeram Ramachandranb2829fa2014-04-15 19:07:12 -0700[diff] [blame]1097 // create triplet: interface dest-ip-addr/prefixlength gateway-ip-addr
Sreeram Ramachandranb2829fa2014-04-15 19:07:12 -0700[diff] [blame]1098 cmd.appendArg(route.getInterface());
Lorenzo Colitti4b0f8e62014-09-19 01:49:05 +0900[diff] [blame]1099 cmd.appendArg(route.getDestination().toString());
1100
1101 switch (route.getType()) {
1102 case RouteInfo.RTN_UNICAST:
1103 if (route.hasGateway()) {
1104 cmd.appendArg(route.getGateway().getHostAddress());
1105 }
1106 break;
1107 case RouteInfo.RTN_UNREACHABLE:
1108 cmd.appendArg("unreachable");
1109 break;
1110 case RouteInfo.RTN_THROW:
1111 cmd.appendArg("throw");
1112 break;
Sreeram Ramachandran1fbcb272014-05-22 16:30:48 -0700[diff] [blame]1113 }
Robert Greenwalt59b1a4e2011-05-10 15:05:02 -0700[diff] [blame]1114
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1115 try {
1116 mConnector.execute(cmd);
1117 } catch (NativeDaemonConnectorException e) {
1118 throw e.rethrowAsParcelableException();
Robert Greenwalt59b1a4e2011-05-10 15:05:02 -0700[diff] [blame]1119 }
1120 }
1121
1122 private ArrayList<String> readRouteList(String filename) {
1123 FileInputStream fstream = null;
Christopher Wiley212b95f2016-08-02 11:38:57 -0700[diff] [blame]1124 ArrayList<String> list = new ArrayList<>();
Robert Greenwalt59b1a4e2011-05-10 15:05:02 -0700[diff] [blame]1125
1126 try {
1127 fstream = new FileInputStream(filename);
1128 DataInputStream in = new DataInputStream(fstream);
1129 BufferedReader br = new BufferedReader(new InputStreamReader(in));
1130 String s;
1131
1132 // throw away the title line
1133
1134 while (((s = br.readLine()) != null) && (s.length() != 0)) {
1135 list.add(s);
1136 }
1137 } catch (IOException ex) {
1138 // return current list, possibly empty
1139 } finally {
1140 if (fstream != null) {
1141 try {
1142 fstream.close();
1143 } catch (IOException ex) {}
1144 }
1145 }
1146
1147 return list;
1148 }
1149
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1150 @Override
sy.yun9d9b74a2013-09-02 05:24:09 +0900[diff] [blame]1151 public void setMtu(String iface, int mtu) {
1152 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
1153
1154 final NativeDaemonEvent event;
1155 try {
1156 event = mConnector.execute("interface", "setmtu", iface, mtu);
1157 } catch (NativeDaemonConnectorException e) {
1158 throw e.rethrowAsParcelableException();
1159 }
1160 }
1161
1162 @Override
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]1163 public void shutdown() {
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1164 // TODO: remove from aidl if nobody calls externally
1165 mContext.enforceCallingOrSelfPermission(SHUTDOWN, TAG);
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]1166
Felipe Leme03e689d2016-03-02 16:17:38 -0800[diff] [blame]1167 Slog.i(TAG, "Shutting down");
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]1168 }
1169
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1170 @Override
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]1171 public boolean getIpForwardingEnabled() throws IllegalStateException{
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1172 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]1173
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1174 final NativeDaemonEvent event;
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1175 try {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1176 event = mConnector.execute("ipfwd", "status");
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1177 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]1178 throw e.rethrowAsParcelableException();
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1179 }
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]1180
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1181 // 211 Forwarding enabled
1182 event.checkCode(IpFwdStatusResult);
1183 return event.getMessage().endsWith("enabled");
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]1184 }
1185
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1186 @Override
1187 public void setIpForwardingEnabled(boolean enable) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1188 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Jeff Sharkey31c6e482011-11-18 17:09:01 -0800[diff] [blame]1189 try {
Nilesh Poddarf3d4a582015-02-24 12:11:11 -0800[diff] [blame]1190 mConnector.execute("ipfwd", enable ? "enable" : "disable", "tethering");
Jeff Sharkey31c6e482011-11-18 17:09:01 -0800[diff] [blame]1191 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]1192 throw e.rethrowAsParcelableException();
Jeff Sharkey31c6e482011-11-18 17:09:01 -0800[diff] [blame]1193 }
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]1194 }
1195
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1196 @Override
1197 public void startTethering(String[] dhcpRange) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1198 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Robert Greenwaltbfb7bfa2010-03-24 16:03:21 -0700[diff] [blame]1199 // cmd is "tether start first_start first_stop second_start second_stop ..."
1200 // an odd number of addrs will fail
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1201
1202 final Command cmd = new Command("tether", "start");
Robert Greenwaltbfb7bfa2010-03-24 16:03:21 -0700[diff] [blame]1203 for (String d : dhcpRange) {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1204 cmd.appendArg(d);
Robert Greenwaltbfb7bfa2010-03-24 16:03:21 -0700[diff] [blame]1205 }
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1206
1207 try {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1208 mConnector.execute(cmd);
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1209 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]1210 throw e.rethrowAsParcelableException();
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1211 }
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]1212 }
1213
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1214 @Override
1215 public void stopTethering() {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1216 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1217 try {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1218 mConnector.execute("tether", "stop");
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1219 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]1220 throw e.rethrowAsParcelableException();
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1221 }
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]1222 }
1223
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1224 @Override
1225 public boolean isTetheringStarted() {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1226 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]1227
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1228 final NativeDaemonEvent event;
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1229 try {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1230 event = mConnector.execute("tether", "status");
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1231 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]1232 throw e.rethrowAsParcelableException();
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1233 }
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]1234
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1235 // 210 Tethering services started
1236 event.checkCode(TetherStatusResult);
1237 return event.getMessage().endsWith("started");
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]1238 }
Matthew Xiefe19f122012-07-12 16:03:32 -0700[diff] [blame]1239
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1240 @Override
1241 public void tetherInterface(String iface) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1242 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1243 try {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1244 mConnector.execute("tether", "interface", "add", iface);
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1245 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]1246 throw e.rethrowAsParcelableException();
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1247 }
Christopher Wiley212b95f2016-08-02 11:38:57 -0700[diff] [blame]1248 List<RouteInfo> routes = new ArrayList<>();
Sreeram Ramachandrana77760d2014-07-17 17:09:07 -0700[diff] [blame]1249 // The RouteInfo constructor truncates the LinkAddress to a network prefix, thus making it
1250 // suitable to use as a route destination.
1251 routes.add(new RouteInfo(getInterfaceConfig(iface).getLinkAddress(), null, iface));
1252 addInterfaceToLocalNetwork(iface, routes);
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]1253 }
1254
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1255 @Override
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]1256 public void untetherInterface(String iface) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1257 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1258 try {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1259 mConnector.execute("tether", "interface", "remove", iface);
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1260 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]1261 throw e.rethrowAsParcelableException();
Erik Kline1f4278a2016-08-16 16:46:33 +0900[diff] [blame]1262 } finally {
1263 removeInterfaceFromLocalNetwork(iface);
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1264 }
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]1265 }
1266
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1267 @Override
1268 public String[] listTetheredInterfaces() {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1269 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1270 try {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1271 return NativeDaemonEvent.filterMessageList(
1272 mConnector.executeForList("tether", "interface", "list"),
1273 TetherInterfaceListResult);
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1274 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]1275 throw e.rethrowAsParcelableException();
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1276 }
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]1277 }
1278
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1279 @Override
Lorenzo Colittib57edc52014-08-22 17:10:50 -0700[diff] [blame]1280 public void setDnsForwarders(Network network, String[] dns) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1281 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1282
Lorenzo Colittib57edc52014-08-22 17:10:50 -0700[diff] [blame]1283 int netId = (network != null) ? network.netId : ConnectivityManager.NETID_UNSET;
1284 final Command cmd = new Command("tether", "dns", "set", netId);
1285
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1286 for (String s : dns) {
1287 cmd.appendArg(NetworkUtils.numericToInetAddress(s).getHostAddress());
1288 }
1289
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]1290 try {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1291 mConnector.execute(cmd);
1292 } catch (NativeDaemonConnectorException e) {
1293 throw e.rethrowAsParcelableException();
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]1294 }
1295 }
1296
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1297 @Override
1298 public String[] getDnsForwarders() {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1299 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1300 try {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1301 return NativeDaemonEvent.filterMessageList(
1302 mConnector.executeForList("tether", "dns", "list"), TetherDnsFwdTgtListResult);
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1303 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]1304 throw e.rethrowAsParcelableException();
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1305 }
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]1306 }
1307
jiaguo1da35f72014-01-09 16:39:59 +0800[diff] [blame]1308 private List<InterfaceAddress> excludeLinkLocal(List<InterfaceAddress> addresses) {
Christopher Wiley212b95f2016-08-02 11:38:57 -0700[diff] [blame]1309 ArrayList<InterfaceAddress> filtered = new ArrayList<>(addresses.size());
jiaguo1da35f72014-01-09 16:39:59 +0800[diff] [blame]1310 for (InterfaceAddress ia : addresses) {
1311 if (!ia.getAddress().isLinkLocalAddress())
1312 filtered.add(ia);
1313 }
1314 return filtered;
1315 }
1316
Lorenzo Colitti35e36db2015-02-26 01:25:36 +0900[diff] [blame]1317 private void modifyInterfaceForward(boolean add, String fromIface, String toIface) {
1318 final Command cmd = new Command("ipfwd", add ? "add" : "remove", fromIface, toIface);
1319 try {
1320 mConnector.execute(cmd);
1321 } catch (NativeDaemonConnectorException e) {
1322 throw e.rethrowAsParcelableException();
1323 }
1324 }
1325
1326 @Override
1327 public void startInterfaceForwarding(String fromIface, String toIface) {
1328 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
1329 modifyInterfaceForward(true, fromIface, toIface);
1330 }
1331
1332 @Override
1333 public void stopInterfaceForwarding(String fromIface, String toIface) {
1334 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
1335 modifyInterfaceForward(false, fromIface, toIface);
1336 }
1337
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1338 private void modifyNat(String action, String internalInterface, String externalInterface)
Robert Greenwalt3b28e9a2011-11-02 14:37:19 -0700[diff] [blame]1339 throws SocketException {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1340 final Command cmd = new Command("nat", action, internalInterface, externalInterface);
Robert Greenwalt3b28e9a2011-11-02 14:37:19 -0700[diff] [blame]1341
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1342 final NetworkInterface internalNetworkInterface = NetworkInterface.getByName(
1343 internalInterface);
Robert Greenwalte83d1812011-11-21 14:44:39 -0800[diff] [blame]1344 if (internalNetworkInterface == null) {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1345 cmd.appendArg("0");
Robert Greenwalte83d1812011-11-21 14:44:39 -0800[diff] [blame]1346 } else {
jiaguo1da35f72014-01-09 16:39:59 +0800[diff] [blame]1347 // Don't touch link-local routes, as link-local addresses aren't routable,
1348 // kernel creates link-local routes on all interfaces automatically
1349 List<InterfaceAddress> interfaceAddresses = excludeLinkLocal(
1350 internalNetworkInterface.getInterfaceAddresses());
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1351 cmd.appendArg(interfaceAddresses.size());
Robert Greenwalte83d1812011-11-21 14:44:39 -0800[diff] [blame]1352 for (InterfaceAddress ia : interfaceAddresses) {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1353 InetAddress addr = NetworkUtils.getNetworkPart(
1354 ia.getAddress(), ia.getNetworkPrefixLength());
1355 cmd.appendArg(addr.getHostAddress() + "/" + ia.getNetworkPrefixLength());
Robert Greenwalte83d1812011-11-21 14:44:39 -0800[diff] [blame]1356 }
Robert Greenwalt3b28e9a2011-11-02 14:37:19 -0700[diff] [blame]1357 }
1358
Jeff Sharkey31c6e482011-11-18 17:09:01 -0800[diff] [blame]1359 try {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1360 mConnector.execute(cmd);
Jeff Sharkey31c6e482011-11-18 17:09:01 -0800[diff] [blame]1361 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]1362 throw e.rethrowAsParcelableException();
Jeff Sharkey31c6e482011-11-18 17:09:01 -0800[diff] [blame]1363 }
Robert Greenwalt3b28e9a2011-11-02 14:37:19 -0700[diff] [blame]1364 }
1365
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1366 @Override
1367 public void enableNat(String internalInterface, String externalInterface) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1368 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1369 try {
Robert Greenwalt3b28e9a2011-11-02 14:37:19 -0700[diff] [blame]1370 modifyNat("enable", internalInterface, externalInterface);
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1371 } catch (SocketException e) {
1372 throw new IllegalStateException(e);
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1373 }
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]1374 }
1375
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1376 @Override
1377 public void disableNat(String internalInterface, String externalInterface) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1378 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1379 try {
Robert Greenwalt3b28e9a2011-11-02 14:37:19 -0700[diff] [blame]1380 modifyNat("disable", internalInterface, externalInterface);
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1381 } catch (SocketException e) {
1382 throw new IllegalStateException(e);
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1383 }
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]1384 }
San Mehat72759df2010-01-19 13:50:37 -0800[diff] [blame]1385
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1386 @Override
1387 public String[] listTtys() {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1388 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1389 try {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1390 return NativeDaemonEvent.filterMessageList(
1391 mConnector.executeForList("list_ttys"), TtyListResult);
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1392 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]1393 throw e.rethrowAsParcelableException();
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1394 }
San Mehat72759df2010-01-19 13:50:37 -0800[diff] [blame]1395 }
1396
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1397 @Override
1398 public void attachPppd(
1399 String tty, String localAddr, String remoteAddr, String dns1Addr, String dns2Addr) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1400 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
San Mehat72759df2010-01-19 13:50:37 -0800[diff] [blame]1401 try {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1402 mConnector.execute("pppd", "attach", tty,
Robert Greenwalte5903732011-02-22 16:00:42 -0800[diff] [blame]1403 NetworkUtils.numericToInetAddress(localAddr).getHostAddress(),
1404 NetworkUtils.numericToInetAddress(remoteAddr).getHostAddress(),
1405 NetworkUtils.numericToInetAddress(dns1Addr).getHostAddress(),
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1406 NetworkUtils.numericToInetAddress(dns2Addr).getHostAddress());
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1407 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]1408 throw e.rethrowAsParcelableException();
San Mehat72759df2010-01-19 13:50:37 -0800[diff] [blame]1409 }
1410 }
1411
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1412 @Override
1413 public void detachPppd(String tty) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1414 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1415 try {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1416 mConnector.execute("pppd", "detach", tty);
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1417 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]1418 throw e.rethrowAsParcelableException();
Kenny Roota80ce062010-06-01 13:23:53 -0700[diff] [blame]1419 }
San Mehat72759df2010-01-19 13:50:37 -0800[diff] [blame]1420 }
Robert Greenwaltce1200d2010-02-18 11:25:54 -0800[diff] [blame]1421
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1422 @Override
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]1423 public void addIdleTimer(String iface, int timeout, final int type) {
Haoyu Bai04124232012-06-28 15:26:19 -0700[diff] [blame]1424 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
1425
1426 if (DBG) Slog.d(TAG, "Adding idletimer");
1427
1428 synchronized (mIdleTimerLock) {
1429 IdleTimerParams params = mActiveIdleTimers.get(iface);
1430 if (params != null) {
1431 // the interface already has idletimer, update network count
1432 params.networkCount++;
1433 return;
1434 }
1435
1436 try {
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]1437 mConnector.execute("idletimer", "add", iface, Integer.toString(timeout),
1438 Integer.toString(type));
Haoyu Bai04124232012-06-28 15:26:19 -0700[diff] [blame]1439 } catch (NativeDaemonConnectorException e) {
1440 throw e.rethrowAsParcelableException();
1441 }
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]1442 mActiveIdleTimers.put(iface, new IdleTimerParams(timeout, type));
1443
Dianne Hackborne13c4c02014-02-11 17:18:35 -0800[diff] [blame]1444 // Networks start up.
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]1445 if (ConnectivityManager.isNetworkTypeMobile(type)) {
1446 mNetworkActive = false;
1447 }
Dianne Hackborn2ffa11e2014-04-21 15:56:18 -0700[diff] [blame]1448 mDaemonHandler.post(new Runnable() {
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]1449 @Override public void run() {
Dianne Hackborn2ffa11e2014-04-21 15:56:18 -0700[diff] [blame]1450 notifyInterfaceClassActivity(type,
1451 DataConnectionRealTimeInfo.DC_POWER_STATE_HIGH,
Ruchi Kandoifa97fcf2016-05-13 15:10:39 -0700[diff] [blame]1452 SystemClock.elapsedRealtimeNanos(), -1, false);
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]1453 }
1454 });
Haoyu Bai04124232012-06-28 15:26:19 -0700[diff] [blame]1455 }
1456 }
1457
1458 @Override
1459 public void removeIdleTimer(String iface) {
1460 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
1461
1462 if (DBG) Slog.d(TAG, "Removing idletimer");
1463
1464 synchronized (mIdleTimerLock) {
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]1465 final IdleTimerParams params = mActiveIdleTimers.get(iface);
Haoyu Bai04124232012-06-28 15:26:19 -0700[diff] [blame]1466 if (params == null || --(params.networkCount) > 0) {
1467 return;
1468 }
1469
1470 try {
1471 mConnector.execute("idletimer", "remove", iface,
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]1472 Integer.toString(params.timeout), Integer.toString(params.type));
Haoyu Bai04124232012-06-28 15:26:19 -0700[diff] [blame]1473 } catch (NativeDaemonConnectorException e) {
1474 throw e.rethrowAsParcelableException();
1475 }
1476 mActiveIdleTimers.remove(iface);
Dianne Hackborn2ffa11e2014-04-21 15:56:18 -0700[diff] [blame]1477 mDaemonHandler.post(new Runnable() {
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]1478 @Override public void run() {
Dianne Hackborn2ffa11e2014-04-21 15:56:18 -0700[diff] [blame]1479 notifyInterfaceClassActivity(params.type,
1480 DataConnectionRealTimeInfo.DC_POWER_STATE_LOW,
Ruchi Kandoifa97fcf2016-05-13 15:10:39 -0700[diff] [blame]1481 SystemClock.elapsedRealtimeNanos(), -1, false);
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]1482 }
1483 });
Haoyu Bai04124232012-06-28 15:26:19 -0700[diff] [blame]1484 }
1485 }
1486
1487 @Override
Jeff Sharkeye8914c32012-05-01 16:26:09 -0700[diff] [blame]1488 public NetworkStats getNetworkStatsSummaryDev() {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1489 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Jeff Sharkey9a2c2a62013-01-14 16:48:51 -0800[diff] [blame]1490 try {
1491 return mStatsFactory.readNetworkStatsSummaryDev();
1492 } catch (IOException e) {
1493 throw new IllegalStateException(e);
1494 }
Jeff Sharkeye8914c32012-05-01 16:26:09 -0700[diff] [blame]1495 }
1496
1497 @Override
1498 public NetworkStats getNetworkStatsSummaryXt() {
1499 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Jeff Sharkey9a2c2a62013-01-14 16:48:51 -0800[diff] [blame]1500 try {
1501 return mStatsFactory.readNetworkStatsSummaryXt();
1502 } catch (IOException e) {
1503 throw new IllegalStateException(e);
1504 }
Jeff Sharkeyae2c1812011-10-04 13:11:40 -0700[diff] [blame]1505 }
1506
Jeff Sharkeyeedcb952011-05-17 14:55:15 -0700[diff] [blame]1507 @Override
Jeff Sharkey9a13f362011-04-26 16:25:36 -0700[diff] [blame]1508 public NetworkStats getNetworkStatsDetail() {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1509 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Jeff Sharkey9a2c2a62013-01-14 16:48:51 -0800[diff] [blame]1510 try {
Dianne Hackbornd0c5b9a2014-02-21 16:19:05 -0800[diff] [blame]1511 return mStatsFactory.readNetworkStatsDetail(UID_ALL, null, TAG_ALL, null);
Jeff Sharkey9a2c2a62013-01-14 16:48:51 -0800[diff] [blame]1512 } catch (IOException e) {
1513 throw new IllegalStateException(e);
1514 }
San Mehat91cac642010-03-31 14:31:36 -0700[diff] [blame]1515 }
1516
Jeff Sharkeyeedcb952011-05-17 14:55:15 -0700[diff] [blame]1517 @Override
Jeff Sharkey41ff7ec2011-07-25 15:21:22 -0700[diff] [blame]1518 public void setInterfaceQuota(String iface, long quotaBytes) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1519 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Jeff Sharkeyb3f19ca2011-06-29 23:54:13 -0700[diff] [blame]1520
Jeff Sharkey350083e2011-06-29 10:45:16 -0700[diff] [blame]1521 // silently discard when control disabled
1522 // TODO: eventually migrate to be always enabled
1523 if (!mBandwidthControlEnabled) return;
1524
Jeff Sharkey41ff7ec2011-07-25 15:21:22 -0700[diff] [blame]1525 synchronized (mQuotaLock) {
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]1526 if (mActiveQuotas.containsKey(iface)) {
Jeff Sharkey41ff7ec2011-07-25 15:21:22 -0700[diff] [blame]1527 throw new IllegalStateException("iface " + iface + " already has quota");
Jeff Sharkeyb3f19ca2011-06-29 23:54:13 -0700[diff] [blame]1528 }
1529
Jeff Sharkeyb3f19ca2011-06-29 23:54:13 -0700[diff] [blame]1530 try {
Jeff Sharkey41ff7ec2011-07-25 15:21:22 -0700[diff] [blame]1531 // TODO: support quota shared across interfaces
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1532 mConnector.execute("bandwidth", "setiquota", iface, quotaBytes);
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]1533 mActiveQuotas.put(iface, quotaBytes);
Jeff Sharkeyb3f19ca2011-06-29 23:54:13 -0700[diff] [blame]1534 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]1535 throw e.rethrowAsParcelableException();
Jeff Sharkeyb3f19ca2011-06-29 23:54:13 -0700[diff] [blame]1536 }
Ashish Sharma50fd36d2011-06-15 19:34:53 -0700[diff] [blame]1537 }
1538 }
1539
1540 @Override
Jeff Sharkeyb3f19ca2011-06-29 23:54:13 -0700[diff] [blame]1541 public void removeInterfaceQuota(String iface) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1542 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Jeff Sharkeyb3f19ca2011-06-29 23:54:13 -0700[diff] [blame]1543
Jeff Sharkey350083e2011-06-29 10:45:16 -0700[diff] [blame]1544 // silently discard when control disabled
1545 // TODO: eventually migrate to be always enabled
1546 if (!mBandwidthControlEnabled) return;
1547
Jeff Sharkey41ff7ec2011-07-25 15:21:22 -0700[diff] [blame]1548 synchronized (mQuotaLock) {
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]1549 if (!mActiveQuotas.containsKey(iface)) {
Jeff Sharkeyb3f19ca2011-06-29 23:54:13 -0700[diff] [blame]1550 // TODO: eventually consider throwing
1551 return;
1552 }
1553
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]1554 mActiveQuotas.remove(iface);
1555 mActiveAlerts.remove(iface);
Jeff Sharkey38ddeaa2011-11-08 13:04:22 -0800[diff] [blame]1556
Jeff Sharkeyb3f19ca2011-06-29 23:54:13 -0700[diff] [blame]1557 try {
Jeff Sharkey41ff7ec2011-07-25 15:21:22 -0700[diff] [blame]1558 // TODO: support quota shared across interfaces
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1559 mConnector.execute("bandwidth", "removeiquota", iface);
Jeff Sharkeyb3f19ca2011-06-29 23:54:13 -0700[diff] [blame]1560 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]1561 throw e.rethrowAsParcelableException();
Jeff Sharkeyb3f19ca2011-06-29 23:54:13 -0700[diff] [blame]1562 }
1563 }
1564 }
1565
1566 @Override
Jeff Sharkey41ff7ec2011-07-25 15:21:22 -0700[diff] [blame]1567 public void setInterfaceAlert(String iface, long alertBytes) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1568 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Jeff Sharkey41ff7ec2011-07-25 15:21:22 -0700[diff] [blame]1569
1570 // silently discard when control disabled
1571 // TODO: eventually migrate to be always enabled
1572 if (!mBandwidthControlEnabled) return;
1573
1574 // quick sanity check
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]1575 if (!mActiveQuotas.containsKey(iface)) {
Jeff Sharkey41ff7ec2011-07-25 15:21:22 -0700[diff] [blame]1576 throw new IllegalStateException("setting alert requires existing quota on iface");
1577 }
1578
1579 synchronized (mQuotaLock) {
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]1580 if (mActiveAlerts.containsKey(iface)) {
Jeff Sharkey41ff7ec2011-07-25 15:21:22 -0700[diff] [blame]1581 throw new IllegalStateException("iface " + iface + " already has alert");
1582 }
1583
Jeff Sharkey41ff7ec2011-07-25 15:21:22 -0700[diff] [blame]1584 try {
1585 // TODO: support alert shared across interfaces
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1586 mConnector.execute("bandwidth", "setinterfacealert", iface, alertBytes);
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]1587 mActiveAlerts.put(iface, alertBytes);
Jeff Sharkey41ff7ec2011-07-25 15:21:22 -0700[diff] [blame]1588 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]1589 throw e.rethrowAsParcelableException();
Jeff Sharkey41ff7ec2011-07-25 15:21:22 -0700[diff] [blame]1590 }
1591 }
1592 }
1593
1594 @Override
1595 public void removeInterfaceAlert(String iface) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1596 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Jeff Sharkey41ff7ec2011-07-25 15:21:22 -0700[diff] [blame]1597
1598 // silently discard when control disabled
1599 // TODO: eventually migrate to be always enabled
1600 if (!mBandwidthControlEnabled) return;
1601
1602 synchronized (mQuotaLock) {
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]1603 if (!mActiveAlerts.containsKey(iface)) {
Jeff Sharkey41ff7ec2011-07-25 15:21:22 -0700[diff] [blame]1604 // TODO: eventually consider throwing
1605 return;
1606 }
1607
Jeff Sharkey41ff7ec2011-07-25 15:21:22 -0700[diff] [blame]1608 try {
1609 // TODO: support alert shared across interfaces
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1610 mConnector.execute("bandwidth", "removeinterfacealert", iface);
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]1611 mActiveAlerts.remove(iface);
Jeff Sharkey41ff7ec2011-07-25 15:21:22 -0700[diff] [blame]1612 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]1613 throw e.rethrowAsParcelableException();
Jeff Sharkey41ff7ec2011-07-25 15:21:22 -0700[diff] [blame]1614 }
1615 }
1616 }
1617
1618 @Override
1619 public void setGlobalAlert(long alertBytes) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1620 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Jeff Sharkey41ff7ec2011-07-25 15:21:22 -0700[diff] [blame]1621
1622 // silently discard when control disabled
1623 // TODO: eventually migrate to be always enabled
1624 if (!mBandwidthControlEnabled) return;
1625
Jeff Sharkey41ff7ec2011-07-25 15:21:22 -0700[diff] [blame]1626 try {
Jeff Sharkeyba2896e2011-11-30 18:13:54 -0800[diff] [blame]1627 mConnector.execute("bandwidth", "setglobalalert", alertBytes);
Jeff Sharkey41ff7ec2011-07-25 15:21:22 -0700[diff] [blame]1628 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]1629 throw e.rethrowAsParcelableException();
Jeff Sharkey41ff7ec2011-07-25 15:21:22 -0700[diff] [blame]1630 }
1631 }
1632
Sudheer Shanka62f5c172017-03-17 16:25:55 -0700[diff] [blame]1633 private void setUidOnMeteredNetworkList(int uid, boolean blacklist, boolean enable) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1634 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Jeff Sharkeyb3f19ca2011-06-29 23:54:13 -0700[diff] [blame]1635
Jeff Sharkey350083e2011-06-29 10:45:16 -0700[diff] [blame]1636 // silently discard when control disabled
1637 // TODO: eventually migrate to be always enabled
1638 if (!mBandwidthControlEnabled) return;
1639
Felipe Leme65be3022016-03-22 14:53:13 -0700[diff] [blame]1640 final String chain = blacklist ? "naughtyapps" : "niceapps";
1641 final String suffix = enable ? "add" : "remove";
1642
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]1643 synchronized (mQuotaLock) {
Sudheer Shanka62f5c172017-03-17 16:25:55 -0700[diff] [blame]1644 boolean oldEnable;
1645 SparseBooleanArray quotaList;
1646 synchronized (mRulesLock) {
1647 quotaList = blacklist ? mUidRejectOnMetered : mUidAllowOnMetered;
1648 oldEnable = quotaList.get(uid, false);
1649 }
Felipe Leme65be3022016-03-22 14:53:13 -0700[diff] [blame]1650 if (oldEnable == enable) {
Jeff Sharkeyb3f19ca2011-06-29 23:54:13 -0700[diff] [blame]1651 // TODO: eventually consider throwing
1652 return;
1653 }
1654
Felipe Leme29e72ea2016-09-08 13:26:55 -0700[diff] [blame]1655 Trace.traceBegin(Trace.TRACE_TAG_NETWORK, "inetd bandwidth");
Jeff Sharkeyb3f19ca2011-06-29 23:54:13 -0700[diff] [blame]1656 try {
Felipe Leme65be3022016-03-22 14:53:13 -0700[diff] [blame]1657 mConnector.execute("bandwidth", suffix + chain, uid);
Sudheer Shanka62f5c172017-03-17 16:25:55 -0700[diff] [blame]1658 synchronized (mRulesLock) {
1659 if (enable) {
1660 quotaList.put(uid, true);
1661 } else {
1662 quotaList.delete(uid);
1663 }
Jeff Sharkeyb3f19ca2011-06-29 23:54:13 -0700[diff] [blame]1664 }
1665 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]1666 throw e.rethrowAsParcelableException();
Felipe Leme29e72ea2016-09-08 13:26:55 -0700[diff] [blame]1667 } finally {
1668 Trace.traceEnd(Trace.TRACE_TAG_NETWORK);
Jeff Sharkeyb3f19ca2011-06-29 23:54:13 -0700[diff] [blame]1669 }
Ashish Sharma50fd36d2011-06-15 19:34:53 -0700[diff] [blame]1670 }
1671 }
1672
Jeff Sharkey63d27a92011-08-03 17:04:22 -0700[diff] [blame]1673 @Override
Felipe Leme65be3022016-03-22 14:53:13 -0700[diff] [blame]1674 public void setUidMeteredNetworkBlacklist(int uid, boolean enable) {
Sudheer Shanka62f5c172017-03-17 16:25:55 -0700[diff] [blame]1675 setUidOnMeteredNetworkList(uid, true, enable);
Felipe Leme65be3022016-03-22 14:53:13 -0700[diff] [blame]1676 }
1677
1678 @Override
1679 public void setUidMeteredNetworkWhitelist(int uid, boolean enable) {
Sudheer Shanka62f5c172017-03-17 16:25:55 -0700[diff] [blame]1680 setUidOnMeteredNetworkList(uid, false, enable);
Felipe Leme65be3022016-03-22 14:53:13 -0700[diff] [blame]1681 }
1682
1683 @Override
1684 public boolean setDataSaverModeEnabled(boolean enable) {
1685 if (DBG) Log.d(TAG, "setDataSaverMode: " + enable);
1686 synchronized (mQuotaLock) {
1687 if (mDataSaverMode == enable) {
1688 Log.w(TAG, "setDataSaverMode(): already " + mDataSaverMode);
1689 return true;
1690 }
Felipe Leme29e72ea2016-09-08 13:26:55 -0700[diff] [blame]1691 Trace.traceBegin(Trace.TRACE_TAG_NETWORK, "bandwidthEnableDataSaver");
Felipe Leme65be3022016-03-22 14:53:13 -0700[diff] [blame]1692 try {
1693 final boolean changed = mNetdService.bandwidthEnableDataSaver(enable);
1694 if (changed) {
1695 mDataSaverMode = enable;
1696 } else {
1697 Log.w(TAG, "setDataSaverMode(" + enable + "): netd command silently failed");
1698 }
1699 return changed;
1700 } catch (RemoteException e) {
1701 Log.w(TAG, "setDataSaverMode(" + enable + "): netd command failed", e);
1702 return false;
Felipe Leme29e72ea2016-09-08 13:26:55 -0700[diff] [blame]1703 } finally {
1704 Trace.traceEnd(Trace.TRACE_TAG_NETWORK);
Felipe Leme65be3022016-03-22 14:53:13 -0700[diff] [blame]1705 }
1706 }
1707 }
1708
1709 @Override
Robin Lee17e61832016-05-09 13:46:28 +0100[diff] [blame]1710 public void setAllowOnlyVpnForUids(boolean add, UidRange[] uidRanges)
1711 throws ServiceSpecificException {
1712 try {
1713 mNetdService.networkRejectNonSecureVpn(add, uidRanges);
1714 } catch (ServiceSpecificException e) {
1715 Log.w(TAG, "setAllowOnlyVpnForUids(" + add + ", " + Arrays.toString(uidRanges) + ")"
1716 + ": netd command failed", e);
1717 throw e;
1718 } catch (RemoteException e) {
1719 Log.w(TAG, "setAllowOnlyVpnForUids(" + add + ", " + Arrays.toString(uidRanges) + ")"
1720 + ": netd command failed", e);
1721 throw e.rethrowAsRuntimeException();
1722 }
1723 }
1724
1725 @Override
Jeff Sharkey605eb792014-11-04 13:34:06 -0800[diff] [blame]1726 public void setUidCleartextNetworkPolicy(int uid, int policy) {
1727 if (Binder.getCallingUid() != uid) {
1728 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
1729 }
1730
1731 synchronized (mQuotaLock) {
1732 final int oldPolicy = mUidCleartextPolicy.get(uid, StrictMode.NETWORK_POLICY_ACCEPT);
1733 if (oldPolicy == policy) {
1734 return;
1735 }
1736
1737 if (!mStrictEnabled) {
1738 // Module isn't enabled yet; stash the requested policy away to
1739 // apply later once the daemon is connected.
1740 mUidCleartextPolicy.put(uid, policy);
1741 return;
1742 }
1743
1744 final String policyString;
1745 switch (policy) {
1746 case StrictMode.NETWORK_POLICY_ACCEPT:
1747 policyString = "accept";
1748 break;
1749 case StrictMode.NETWORK_POLICY_LOG:
1750 policyString = "log";
1751 break;
1752 case StrictMode.NETWORK_POLICY_REJECT:
1753 policyString = "reject";
1754 break;
1755 default:
1756 throw new IllegalArgumentException("Unknown policy " + policy);
1757 }
1758
1759 try {
1760 mConnector.execute("strict", "set_uid_cleartext_policy", uid, policyString);
1761 mUidCleartextPolicy.put(uid, policy);
1762 } catch (NativeDaemonConnectorException e) {
1763 throw e.rethrowAsParcelableException();
1764 }
1765 }
1766 }
1767
1768 @Override
Jeff Sharkey63d27a92011-08-03 17:04:22 -0700[diff] [blame]1769 public boolean isBandwidthControlEnabled() {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1770 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Jeff Sharkey63d27a92011-08-03 17:04:22 -0700[diff] [blame]1771 return mBandwidthControlEnabled;
1772 }
1773
1774 @Override
Jeff Sharkeyeedcb952011-05-17 14:55:15 -0700[diff] [blame]1775 public NetworkStats getNetworkStatsUidDetail(int uid) {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1776 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Jeff Sharkey9a2c2a62013-01-14 16:48:51 -0800[diff] [blame]1777 try {
Dianne Hackbornd0c5b9a2014-02-21 16:19:05 -0800[diff] [blame]1778 return mStatsFactory.readNetworkStatsDetail(uid, null, TAG_ALL, null);
Jeff Sharkey9a2c2a62013-01-14 16:48:51 -0800[diff] [blame]1779 } catch (IOException e) {
1780 throw new IllegalStateException(e);
1781 }
Jeff Sharkeyeedcb952011-05-17 14:55:15 -0700[diff] [blame]1782 }
1783
Jeff Sharkeycdd02c5d2011-09-16 01:52:49 -0700[diff] [blame]1784 @Override
Jeff Sharkeye4984be2013-09-10 21:03:27 -0700[diff] [blame]1785 public NetworkStats getNetworkStatsTethering() {
Jeff Sharkey4529bb62011-12-14 10:31:54 -0800[diff] [blame]1786 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Jeff Sharkeycdd02c5d2011-09-16 01:52:49 -0700[diff] [blame]1787
Jeff Sharkeycdd02c5d2011-09-16 01:52:49 -0700[diff] [blame]1788 final NetworkStats stats = new NetworkStats(SystemClock.elapsedRealtime(), 1);
Jeff Sharkeycdd02c5d2011-09-16 01:52:49 -0700[diff] [blame]1789 try {
Jeff Sharkeye4984be2013-09-10 21:03:27 -0700[diff] [blame]1790 final NativeDaemonEvent[] events = mConnector.executeForList(
1791 "bandwidth", "gettetherstats");
1792 for (NativeDaemonEvent event : events) {
1793 if (event.getCode() != TetheringStatsListResult) continue;
1794
1795 // 114 ifaceIn ifaceOut rx_bytes rx_packets tx_bytes tx_packets
1796 final StringTokenizer tok = new StringTokenizer(event.getMessage());
1797 try {
1798 final String ifaceIn = tok.nextToken();
1799 final String ifaceOut = tok.nextToken();
1800
1801 final NetworkStats.Entry entry = new NetworkStats.Entry();
1802 entry.iface = ifaceOut;
1803 entry.uid = UID_TETHERING;
1804 entry.set = SET_DEFAULT;
1805 entry.tag = TAG_NONE;
1806 entry.rxBytes = Long.parseLong(tok.nextToken());
1807 entry.rxPackets = Long.parseLong(tok.nextToken());
1808 entry.txBytes = Long.parseLong(tok.nextToken());
1809 entry.txPackets = Long.parseLong(tok.nextToken());
1810 stats.combineValues(entry);
1811 } catch (NoSuchElementException e) {
1812 throw new IllegalStateException("problem parsing tethering stats: " + event);
1813 } catch (NumberFormatException e) {
1814 throw new IllegalStateException("problem parsing tethering stats: " + event);
1815 }
1816 }
Jeff Sharkeycdd02c5d2011-09-16 01:52:49 -0700[diff] [blame]1817 } catch (NativeDaemonConnectorException e) {
Jeff Sharkey276642b2011-12-01 11:24:24 -0800[diff] [blame]1818 throw e.rethrowAsParcelableException();
Jeff Sharkeycdd02c5d2011-09-16 01:52:49 -0700[diff] [blame]1819 }
Jeff Sharkeye4984be2013-09-10 21:03:27 -0700[diff] [blame]1820 return stats;
Jeff Sharkeycdd02c5d2011-09-16 01:52:49 -0700[diff] [blame]1821 }
1822
Jeff Sharkeyaf75c332011-11-18 12:41:12 -0800[diff] [blame]1823 @Override
Pierre Imai8e48e672016-04-21 13:30:43 +0900[diff] [blame]1824 public void setDnsConfigurationForNetwork(int netId, String[] servers, String domains) {
1825 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
1826
1827 ContentResolver resolver = mContext.getContentResolver();
1828
1829 int sampleValidity = Settings.Global.getInt(resolver,
1830 Settings.Global.DNS_RESOLVER_SAMPLE_VALIDITY_SECONDS,
1831 DNS_RESOLVER_DEFAULT_SAMPLE_VALIDITY_SECONDS);
1832 if (sampleValidity < 0 || sampleValidity > 65535) {
1833 Slog.w(TAG, "Invalid sampleValidity=" + sampleValidity + ", using default=" +
1834 DNS_RESOLVER_DEFAULT_SAMPLE_VALIDITY_SECONDS);
1835 sampleValidity = DNS_RESOLVER_DEFAULT_SAMPLE_VALIDITY_SECONDS;
1836 }
1837
1838 int successThreshold = Settings.Global.getInt(resolver,
1839 Settings.Global.DNS_RESOLVER_SUCCESS_THRESHOLD_PERCENT,
1840 DNS_RESOLVER_DEFAULT_SUCCESS_THRESHOLD_PERCENT);
1841 if (successThreshold < 0 || successThreshold > 100) {
1842 Slog.w(TAG, "Invalid successThreshold=" + successThreshold + ", using default=" +
1843 DNS_RESOLVER_DEFAULT_SUCCESS_THRESHOLD_PERCENT);
1844 successThreshold = DNS_RESOLVER_DEFAULT_SUCCESS_THRESHOLD_PERCENT;
1845 }
1846
1847 int minSamples = Settings.Global.getInt(resolver,
1848 Settings.Global.DNS_RESOLVER_MIN_SAMPLES, DNS_RESOLVER_DEFAULT_MIN_SAMPLES);
1849 int maxSamples = Settings.Global.getInt(resolver,
1850 Settings.Global.DNS_RESOLVER_MAX_SAMPLES, DNS_RESOLVER_DEFAULT_MAX_SAMPLES);
1851 if (minSamples < 0 || minSamples > maxSamples || maxSamples > 64) {
1852 Slog.w(TAG, "Invalid sample count (min, max)=(" + minSamples + ", " + maxSamples +
1853 "), using default=(" + DNS_RESOLVER_DEFAULT_MIN_SAMPLES + ", " +
1854 DNS_RESOLVER_DEFAULT_MAX_SAMPLES + ")");
1855 minSamples = DNS_RESOLVER_DEFAULT_MIN_SAMPLES;
1856 maxSamples = DNS_RESOLVER_DEFAULT_MAX_SAMPLES;
1857 }
1858
1859 final String[] domainStrs = domains == null ? new String[0] : domains.split(" ");
1860 final int[] params = { sampleValidity, successThreshold, minSamples, maxSamples };
1861 try {
1862 mNetdService.setResolverConfiguration(netId, servers, domainStrs, params);
1863 } catch (RemoteException e) {
1864 throw new RuntimeException(e);
1865 }
1866 }
1867
1868 @Override
Paul Jensen6bc2c2c2014-05-07 15:27:40 -0400[diff] [blame]1869 public void addVpnUidRanges(int netId, UidRange[] ranges) {
Chad Brubaker3277620a2013-06-12 13:37:30 -0700[diff] [blame]1870 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Paul Jensen6bc2c2c2014-05-07 15:27:40 -0400[diff] [blame]1871 Object[] argv = new Object[3 + MAX_UID_RANGES_PER_COMMAND];
1872 argv[0] = "users";
1873 argv[1] = "add";
1874 argv[2] = netId;
1875 int argc = 3;
1876 // Avoid overly long commands by limiting number of UID ranges per command.
1877 for (int i = 0; i < ranges.length; i++) {
1878 argv[argc++] = ranges[i].toString();
1879 if (i == (ranges.length - 1) || argc == argv.length) {
1880 try {
1881 mConnector.execute("network", Arrays.copyOf(argv, argc));
1882 } catch (NativeDaemonConnectorException e) {
1883 throw e.rethrowAsParcelableException();
1884 }
1885 argc = 3;
1886 }
Chad Brubaker3277620a2013-06-12 13:37:30 -0700[diff] [blame]1887 }
1888 }
1889
1890 @Override
Paul Jensen6bc2c2c2014-05-07 15:27:40 -0400[diff] [blame]1891 public void removeVpnUidRanges(int netId, UidRange[] ranges) {
Chad Brubaker3277620a2013-06-12 13:37:30 -0700[diff] [blame]1892 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Paul Jensen6bc2c2c2014-05-07 15:27:40 -0400[diff] [blame]1893 Object[] argv = new Object[3 + MAX_UID_RANGES_PER_COMMAND];
1894 argv[0] = "users";
1895 argv[1] = "remove";
1896 argv[2] = netId;
1897 int argc = 3;
1898 // Avoid overly long commands by limiting number of UID ranges per command.
1899 for (int i = 0; i < ranges.length; i++) {
1900 argv[argc++] = ranges[i].toString();
1901 if (i == (ranges.length - 1) || argc == argv.length) {
1902 try {
1903 mConnector.execute("network", Arrays.copyOf(argv, argc));
1904 } catch (NativeDaemonConnectorException e) {
1905 throw e.rethrowAsParcelableException();
1906 }
1907 argc = 3;
1908 }
Chad Brubakercca54c42013-06-27 17:41:38 -0700[diff] [blame]1909 }
1910 }
1911
1912 @Override
Jeff Sharkeyc268f0b2012-08-24 10:25:31 -0700[diff] [blame]1913 public void setFirewallEnabled(boolean enabled) {
Jeff Sharkeyf56e2432012-09-06 17:54:29 -0700[diff] [blame]1914 enforceSystemUid();
Jeff Sharkeyc268f0b2012-08-24 10:25:31 -0700[diff] [blame]1915 try {
Amith Yamasani15e472352015-04-24 19:06:07 -0700[diff] [blame]1916 mConnector.execute("firewall", "enable", enabled ? "whitelist" : "blacklist");
Jeff Sharkeyc268f0b2012-08-24 10:25:31 -0700[diff] [blame]1917 mFirewallEnabled = enabled;
1918 } catch (NativeDaemonConnectorException e) {
1919 throw e.rethrowAsParcelableException();
1920 }
1921 }
1922
1923 @Override
1924 public boolean isFirewallEnabled() {
Jeff Sharkeyf56e2432012-09-06 17:54:29 -0700[diff] [blame]1925 enforceSystemUid();
Jeff Sharkeyc268f0b2012-08-24 10:25:31 -0700[diff] [blame]1926 return mFirewallEnabled;
1927 }
1928
1929 @Override
Jeff Sharkey2c092982012-08-24 11:44:40 -0700[diff] [blame]1930 public void setFirewallInterfaceRule(String iface, boolean allow) {
Jeff Sharkeyf56e2432012-09-06 17:54:29 -0700[diff] [blame]1931 enforceSystemUid();
Jeff Sharkeyc268f0b2012-08-24 10:25:31 -0700[diff] [blame]1932 Preconditions.checkState(mFirewallEnabled);
Sreeram Ramachandrana77760d2014-07-17 17:09:07 -0700[diff] [blame]1933 final String rule = allow ? "allow" : "deny";
Jeff Sharkeyc268f0b2012-08-24 10:25:31 -0700[diff] [blame]1934 try {
1935 mConnector.execute("firewall", "set_interface_rule", iface, rule);
1936 } catch (NativeDaemonConnectorException e) {
1937 throw e.rethrowAsParcelableException();
1938 }
1939 }
1940
1941 @Override
Jeff Sharkey2c092982012-08-24 11:44:40 -0700[diff] [blame]1942 public void setFirewallEgressSourceRule(String addr, boolean allow) {
Jeff Sharkeyf56e2432012-09-06 17:54:29 -0700[diff] [blame]1943 enforceSystemUid();
Jeff Sharkeyc268f0b2012-08-24 10:25:31 -0700[diff] [blame]1944 Preconditions.checkState(mFirewallEnabled);
Sreeram Ramachandrana77760d2014-07-17 17:09:07 -0700[diff] [blame]1945 final String rule = allow ? "allow" : "deny";
Jeff Sharkeyc268f0b2012-08-24 10:25:31 -0700[diff] [blame]1946 try {
1947 mConnector.execute("firewall", "set_egress_source_rule", addr, rule);
1948 } catch (NativeDaemonConnectorException e) {
1949 throw e.rethrowAsParcelableException();
1950 }
1951 }
1952
1953 @Override
Jeff Sharkey2c092982012-08-24 11:44:40 -0700[diff] [blame]1954 public void setFirewallEgressDestRule(String addr, int port, boolean allow) {
Jeff Sharkeyf56e2432012-09-06 17:54:29 -0700[diff] [blame]1955 enforceSystemUid();
Jeff Sharkeyc268f0b2012-08-24 10:25:31 -0700[diff] [blame]1956 Preconditions.checkState(mFirewallEnabled);
Sreeram Ramachandrana77760d2014-07-17 17:09:07 -0700[diff] [blame]1957 final String rule = allow ? "allow" : "deny";
Jeff Sharkeyc268f0b2012-08-24 10:25:31 -0700[diff] [blame]1958 try {
1959 mConnector.execute("firewall", "set_egress_dest_rule", addr, port, rule);
1960 } catch (NativeDaemonConnectorException e) {
1961 throw e.rethrowAsParcelableException();
1962 }
1963 }
1964
Lorenzo Colitti3fef7232016-04-29 18:00:03 +0900[diff] [blame]1965 private void closeSocketsForFirewallChainLocked(int chain, String chainName) {
Lorenzo Colitti4cb42402016-04-24 12:52:00 +0900[diff] [blame]1966 // UID ranges to close sockets on.
1967 UidRange[] ranges;
1968 // UID ranges whose sockets we won't touch.
1969 int[] exemptUids;
1970
Lorenzo Colitti4cb42402016-04-24 12:52:00 +0900[diff] [blame]1971 int numUids = 0;
1972
1973 if (getFirewallType(chain) == FIREWALL_TYPE_WHITELIST) {
1974 // Close all sockets on all non-system UIDs...
1975 ranges = new UidRange[] {
1976 // TODO: is there a better way of finding all existing users? If so, we could
1977 // specify their ranges here.
1978 new UidRange(Process.FIRST_APPLICATION_UID, Integer.MAX_VALUE),
1979 };
1980 // ... except for the UIDs that have allow rules.
Sudheer Shanka62f5c172017-03-17 16:25:55 -0700[diff] [blame]1981 synchronized (mRulesLock) {
1982 final SparseIntArray rules = getUidFirewallRulesLR(chain);
1983 exemptUids = new int[rules.size()];
1984 for (int i = 0; i < exemptUids.length; i++) {
1985 if (rules.valueAt(i) == NetworkPolicyManager.FIREWALL_RULE_ALLOW) {
1986 exemptUids[numUids] = rules.keyAt(i);
1987 numUids++;
1988 }
Lorenzo Colitti4cb42402016-04-24 12:52:00 +0900[diff] [blame]1989 }
1990 }
1991 // Normally, whitelist chains only contain deny rules, so numUids == exemptUids.length.
1992 // But the code does not guarantee this in any way, and at least in one case - if we add
1993 // a UID rule to the firewall, and then disable the firewall - the chains can contain
1994 // the wrong type of rule. In this case, don't close connections that we shouldn't.
1995 //
1996 // TODO: tighten up this code by ensuring we never set the wrong type of rule, and
1997 // fix setFirewallEnabled to grab mQuotaLock and clear rules.
1998 if (numUids != exemptUids.length) {
1999 exemptUids = Arrays.copyOf(exemptUids, numUids);
2000 }
2001 } else {
2002 // Close sockets for every UID that has a deny rule...
Sudheer Shanka62f5c172017-03-17 16:25:55 -0700[diff] [blame]2003 synchronized (mRulesLock) {
2004 final SparseIntArray rules = getUidFirewallRulesLR(chain);
2005 ranges = new UidRange[rules.size()];
2006 for (int i = 0; i < ranges.length; i++) {
2007 if (rules.valueAt(i) == NetworkPolicyManager.FIREWALL_RULE_DENY) {
2008 int uid = rules.keyAt(i);
2009 ranges[numUids] = new UidRange(uid, uid);
2010 numUids++;
2011 }
Lorenzo Colitti4cb42402016-04-24 12:52:00 +0900[diff] [blame]2012 }
2013 }
2014 // As above; usually numUids == ranges.length, but not always.
2015 if (numUids != ranges.length) {
2016 ranges = Arrays.copyOf(ranges, numUids);
2017 }
2018 // ... with no exceptions.
2019 exemptUids = new int[0];
2020 }
2021
2022 try {
2023 mNetdService.socketDestroy(ranges, exemptUids);
2024 } catch(RemoteException | ServiceSpecificException e) {
2025 Slog.e(TAG, "Error closing sockets after enabling chain " + chainName + ": " + e);
2026 }
2027 }
2028
Jeff Sharkeyc268f0b2012-08-24 10:25:31 -0700[diff] [blame]2029 @Override
Xiaohui Chenb41c9f72015-06-17 15:55:37 -0700[diff] [blame]2030 public void setFirewallChainEnabled(int chain, boolean enable) {
Jeff Sharkeyf56e2432012-09-06 17:54:29 -0700[diff] [blame]2031 enforceSystemUid();
Xiaohui Chen8dca36d2015-06-19 12:44:59 -0700[diff] [blame]2032 synchronized (mQuotaLock) {
Sudheer Shanka62f5c172017-03-17 16:25:55 -0700[diff] [blame]2033 synchronized (mRulesLock) {
2034 if (getFirewallChainState(chain) == enable) {
2035 // All is the same, nothing to do. This relies on the fact that netd has child
2036 // chains default detached.
2037 return;
2038 }
2039 setFirewallChainState(chain, enable);
Xiaohui Chenb41c9f72015-06-17 15:55:37 -0700[diff] [blame]2040 }
Xiaohui Chen8dca36d2015-06-19 12:44:59 -0700[diff] [blame]2041
2042 final String operation = enable ? "enable_chain" : "disable_chain";
Lorenzo Colitti3fef7232016-04-29 18:00:03 +0900[diff] [blame]2043 final String chainName;
Lorenzo Colitti4cb42402016-04-24 12:52:00 +0900[diff] [blame]2044 switch(chain) {
2045 case FIREWALL_CHAIN_STANDBY:
2046 chainName = FIREWALL_CHAIN_NAME_STANDBY;
2047 break;
2048 case FIREWALL_CHAIN_DOZABLE:
2049 chainName = FIREWALL_CHAIN_NAME_DOZABLE;
2050 break;
2051 case FIREWALL_CHAIN_POWERSAVE:
2052 chainName = FIREWALL_CHAIN_NAME_POWERSAVE;
2053 break;
2054 default:
2055 throw new IllegalArgumentException("Bad child chain: " + chain);
2056 }
2057
Xiaohui Chen8dca36d2015-06-19 12:44:59 -0700[diff] [blame]2058 try {
Xiaohui Chen8dca36d2015-06-19 12:44:59 -0700[diff] [blame]2059 mConnector.execute("firewall", operation, chainName);
2060 } catch (NativeDaemonConnectorException e) {
2061 throw e.rethrowAsParcelableException();
2062 }
Lorenzo Colitti4cb42402016-04-24 12:52:00 +0900[diff] [blame]2063
2064 // Close any sockets that were opened by the affected UIDs. This has to be done after
2065 // disabling network connectivity, in case they react to the socket close by reopening
2066 // the connection and race with the iptables commands that enable the firewall. All
2067 // whitelist and blacklist chains allow RSTs through.
2068 if (enable) {
2069 if (DBG) Slog.d(TAG, "Closing sockets after enabling chain " + chainName);
Lorenzo Colitti3fef7232016-04-29 18:00:03 +0900[diff] [blame]2070 closeSocketsForFirewallChainLocked(chain, chainName);
Lorenzo Colitti4cb42402016-04-24 12:52:00 +0900[diff] [blame]2071 }
Amith Yamasani15e472352015-04-24 19:06:07 -0700[diff] [blame]2072 }
Xiaohui Chenb41c9f72015-06-17 15:55:37 -0700[diff] [blame]2073 }
2074
2075 private int getFirewallType(int chain) {
2076 switch (chain) {
2077 case FIREWALL_CHAIN_STANDBY:
2078 return FIREWALL_TYPE_BLACKLIST;
2079 case FIREWALL_CHAIN_DOZABLE:
2080 return FIREWALL_TYPE_WHITELIST;
Felipe Leme011b98f2016-02-10 17:28:31 -0800[diff] [blame]2081 case FIREWALL_CHAIN_POWERSAVE:
2082 return FIREWALL_TYPE_WHITELIST;
Xiaohui Chenb41c9f72015-06-17 15:55:37 -0700[diff] [blame]2083 default:
2084 return isFirewallEnabled() ? FIREWALL_TYPE_WHITELIST : FIREWALL_TYPE_BLACKLIST;
2085 }
2086 }
2087
2088 @Override
2089 public void setFirewallUidRules(int chain, int[] uids, int[] rules) {
2090 enforceSystemUid();
Xiaohui Chen8dca36d2015-06-19 12:44:59 -0700[diff] [blame]2091 synchronized (mQuotaLock) {
Sudheer Shanka62f5c172017-03-17 16:25:55 -0700[diff] [blame]2092 synchronized (mRulesLock) {
2093 SparseIntArray uidFirewallRules = getUidFirewallRulesLR(chain);
2094 SparseIntArray newRules = new SparseIntArray();
2095 // apply new set of rules
2096 for (int index = uids.length - 1; index >= 0; --index) {
2097 int uid = uids[index];
2098 int rule = rules[index];
2099 updateFirewallUidRuleLocked(chain, uid, rule);
2100 newRules.put(uid, rule);
Xiaohui Chen8dca36d2015-06-19 12:44:59 -0700[diff] [blame]2101 }
Sudheer Shanka62f5c172017-03-17 16:25:55 -0700[diff] [blame]2102 // collect the rules to remove.
2103 SparseIntArray rulesToRemove = new SparseIntArray();
2104 for (int index = uidFirewallRules.size() - 1; index >= 0; --index) {
2105 int uid = uidFirewallRules.keyAt(index);
2106 if (newRules.indexOfKey(uid) < 0) {
2107 rulesToRemove.put(uid, FIREWALL_RULE_DEFAULT);
2108 }
2109 }
2110 // remove dead rules
2111 for (int index = rulesToRemove.size() - 1; index >= 0; --index) {
2112 int uid = rulesToRemove.keyAt(index);
2113 updateFirewallUidRuleLocked(chain, uid, FIREWALL_RULE_DEFAULT);
2114 }
Felipe Lemea701cad2016-05-12 09:58:14 -0700[diff] [blame]2115 }
2116 try {
2117 switch (chain) {
2118 case FIREWALL_CHAIN_DOZABLE:
2119 mNetdService.firewallReplaceUidChain("fw_dozable", true, uids);
2120 break;
2121 case FIREWALL_CHAIN_STANDBY:
2122 mNetdService.firewallReplaceUidChain("fw_standby", false, uids);
2123 break;
2124 case FIREWALL_CHAIN_POWERSAVE:
2125 mNetdService.firewallReplaceUidChain("fw_powersave", true, uids);
2126 break;
2127 case FIREWALL_CHAIN_NONE:
2128 default:
2129 Slog.d(TAG, "setFirewallUidRules() called on invalid chain: " + chain);
2130 }
2131 } catch (RemoteException e) {
2132 Slog.w(TAG, "Error flushing firewall chain " + chain, e);
Xiaohui Chen8dca36d2015-06-19 12:44:59 -0700[diff] [blame]2133 }
Xiaohui Chenb41c9f72015-06-17 15:55:37 -0700[diff] [blame]2134 }
2135 }
2136
2137 @Override
2138 public void setFirewallUidRule(int chain, int uid, int rule) {
2139 enforceSystemUid();
Felipe Lemea701cad2016-05-12 09:58:14 -0700[diff] [blame]2140 synchronized (mQuotaLock) {
2141 setFirewallUidRuleLocked(chain, uid, rule);
2142 }
Xiaohui Chenb41c9f72015-06-17 15:55:37 -0700[diff] [blame]2143 }
2144
Felipe Lemea701cad2016-05-12 09:58:14 -0700[diff] [blame]2145 private void setFirewallUidRuleLocked(int chain, int uid, int rule) {
2146 if (updateFirewallUidRuleLocked(chain, uid, rule)) {
Amith Yamasani15e472352015-04-24 19:06:07 -0700[diff] [blame]2147 try {
Felipe Lemea701cad2016-05-12 09:58:14 -0700[diff] [blame]2148 mConnector.execute("firewall", "set_uid_rule", getFirewallChainName(chain), uid,
2149 getFirewallRuleName(chain, rule));
Amith Yamasani15e472352015-04-24 19:06:07 -0700[diff] [blame]2150 } catch (NativeDaemonConnectorException e) {
2151 throw e.rethrowAsParcelableException();
2152 }
Jeff Sharkeyc268f0b2012-08-24 10:25:31 -0700[diff] [blame]2153 }
2154 }
2155
Felipe Lemea701cad2016-05-12 09:58:14 -0700[diff] [blame]2156 // TODO: now that netd supports batching, NMS should not keep these data structures anymore...
2157 private boolean updateFirewallUidRuleLocked(int chain, int uid, int rule) {
Sudheer Shanka62f5c172017-03-17 16:25:55 -0700[diff] [blame]2158 synchronized (mRulesLock) {
2159 SparseIntArray uidFirewallRules = getUidFirewallRulesLR(chain);
Felipe Lemea701cad2016-05-12 09:58:14 -0700[diff] [blame]2160
Sudheer Shanka62f5c172017-03-17 16:25:55 -0700[diff] [blame]2161 final int oldUidFirewallRule = uidFirewallRules.get(uid, FIREWALL_RULE_DEFAULT);
2162 if (DBG) {
2163 Slog.d(TAG, "oldRule = " + oldUidFirewallRule
2164 + ", newRule=" + rule + " for uid=" + uid + " on chain " + chain);
2165 }
2166 if (oldUidFirewallRule == rule) {
2167 if (DBG) Slog.d(TAG, "!!!!! Skipping change");
2168 // TODO: eventually consider throwing
2169 return false;
2170 }
Felipe Lemea701cad2016-05-12 09:58:14 -0700[diff] [blame]2171
Sudheer Shanka62f5c172017-03-17 16:25:55 -0700[diff] [blame]2172 String ruleName = getFirewallRuleName(chain, rule);
2173 String oldRuleName = getFirewallRuleName(chain, oldUidFirewallRule);
Felipe Lemea701cad2016-05-12 09:58:14 -0700[diff] [blame]2174
Sudheer Shanka62f5c172017-03-17 16:25:55 -0700[diff] [blame]2175 if (rule == NetworkPolicyManager.FIREWALL_RULE_DEFAULT) {
2176 uidFirewallRules.delete(uid);
2177 } else {
2178 uidFirewallRules.put(uid, rule);
2179 }
2180 return !ruleName.equals(oldRuleName);
Felipe Lemea701cad2016-05-12 09:58:14 -0700[diff] [blame]2181 }
Felipe Lemea701cad2016-05-12 09:58:14 -0700[diff] [blame]2182 }
2183
Xiaohui Chen8dca36d2015-06-19 12:44:59 -0700[diff] [blame]2184 private @NonNull String getFirewallRuleName(int chain, int rule) {
2185 String ruleName;
2186 if (getFirewallType(chain) == FIREWALL_TYPE_WHITELIST) {
2187 if (rule == NetworkPolicyManager.FIREWALL_RULE_ALLOW) {
2188 ruleName = "allow";
2189 } else {
2190 ruleName = "deny";
2191 }
2192 } else { // Blacklist mode
2193 if (rule == NetworkPolicyManager.FIREWALL_RULE_DENY) {
2194 ruleName = "deny";
2195 } else {
2196 ruleName = "allow";
2197 }
2198 }
2199 return ruleName;
2200 }
2201
Sudheer Shanka62f5c172017-03-17 16:25:55 -0700[diff] [blame]2202 private @NonNull SparseIntArray getUidFirewallRulesLR(int chain) {
Xiaohui Chenb41c9f72015-06-17 15:55:37 -0700[diff] [blame]2203 switch (chain) {
2204 case FIREWALL_CHAIN_STANDBY:
2205 return mUidFirewallStandbyRules;
2206 case FIREWALL_CHAIN_DOZABLE:
2207 return mUidFirewallDozableRules;
Felipe Leme011b98f2016-02-10 17:28:31 -0800[diff] [blame]2208 case FIREWALL_CHAIN_POWERSAVE:
2209 return mUidFirewallPowerSaveRules;
Xiaohui Chenb41c9f72015-06-17 15:55:37 -0700[diff] [blame]2210 case FIREWALL_CHAIN_NONE:
2211 return mUidFirewallRules;
2212 default:
2213 throw new IllegalArgumentException("Unknown chain:" + chain);
2214 }
2215 }
2216
2217 public @NonNull String getFirewallChainName(int chain) {
2218 switch (chain) {
2219 case FIREWALL_CHAIN_STANDBY:
2220 return FIREWALL_CHAIN_NAME_STANDBY;
2221 case FIREWALL_CHAIN_DOZABLE:
2222 return FIREWALL_CHAIN_NAME_DOZABLE;
Felipe Leme011b98f2016-02-10 17:28:31 -0800[diff] [blame]2223 case FIREWALL_CHAIN_POWERSAVE:
2224 return FIREWALL_CHAIN_NAME_POWERSAVE;
Xiaohui Chenb41c9f72015-06-17 15:55:37 -0700[diff] [blame]2225 case FIREWALL_CHAIN_NONE:
2226 return FIREWALL_CHAIN_NAME_NONE;
2227 default:
2228 throw new IllegalArgumentException("Unknown chain:" + chain);
2229 }
2230 }
2231
Jeff Sharkeyf56e2432012-09-06 17:54:29 -0700[diff] [blame]2232 private static void enforceSystemUid() {
2233 final int uid = Binder.getCallingUid();
2234 if (uid != Process.SYSTEM_UID) {
2235 throw new SecurityException("Only available to AID_SYSTEM");
2236 }
2237 }
2238
Jeff Sharkeyc268f0b2012-08-24 10:25:31 -0700[diff] [blame]2239 @Override
Lorenzo Colitti79751842013-02-28 16:16:03 +0900[diff] [blame]2240 public void startClatd(String interfaceName) throws IllegalStateException {
2241 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
2242
2243 try {
2244 mConnector.execute("clatd", "start", interfaceName);
2245 } catch (NativeDaemonConnectorException e) {
2246 throw e.rethrowAsParcelableException();
2247 }
2248 }
2249
2250 @Override
Lorenzo Colitti95439462014-10-09 13:44:48 +0900[diff] [blame]2251 public void stopClatd(String interfaceName) throws IllegalStateException {
Lorenzo Colitti79751842013-02-28 16:16:03 +0900[diff] [blame]2252 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
2253
2254 try {
Lorenzo Colitti95439462014-10-09 13:44:48 +0900[diff] [blame]2255 mConnector.execute("clatd", "stop", interfaceName);
Lorenzo Colitti79751842013-02-28 16:16:03 +0900[diff] [blame]2256 } catch (NativeDaemonConnectorException e) {
2257 throw e.rethrowAsParcelableException();
2258 }
2259 }
2260
2261 @Override
Lorenzo Colitti95439462014-10-09 13:44:48 +0900[diff] [blame]2262 public boolean isClatdStarted(String interfaceName) {
Lorenzo Colitti79751842013-02-28 16:16:03 +0900[diff] [blame]2263 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
2264
2265 final NativeDaemonEvent event;
2266 try {
Lorenzo Colitti95439462014-10-09 13:44:48 +0900[diff] [blame]2267 event = mConnector.execute("clatd", "status", interfaceName);
Lorenzo Colitti79751842013-02-28 16:16:03 +0900[diff] [blame]2268 } catch (NativeDaemonConnectorException e) {
2269 throw e.rethrowAsParcelableException();
2270 }
2271
2272 event.checkCode(ClatdStatusResult);
2273 return event.getMessage().endsWith("started");
2274 }
2275
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]2276 @Override
2277 public void registerNetworkActivityListener(INetworkActivityListener listener) {
2278 mNetworkActivityListeners.register(listener);
2279 }
2280
2281 @Override
2282 public void unregisterNetworkActivityListener(INetworkActivityListener listener) {
2283 mNetworkActivityListeners.unregister(listener);
2284 }
2285
2286 @Override
2287 public boolean isNetworkActive() {
2288 synchronized (mNetworkActivityListeners) {
2289 return mNetworkActive || mActiveIdleTimers.isEmpty();
2290 }
2291 }
2292
2293 private void reportNetworkActive() {
2294 final int length = mNetworkActivityListeners.beginBroadcast();
Robert Greenwalt2c9f5472014-04-21 14:50:28 -0700[diff] [blame]2295 try {
2296 for (int i = 0; i < length; i++) {
2297 try {
2298 mNetworkActivityListeners.getBroadcastItem(i).onNetworkActive();
Felipe Leme03e689d2016-03-02 16:17:38 -0800[diff] [blame]2299 } catch (RemoteException | RuntimeException e) {
Robert Greenwalt2c9f5472014-04-21 14:50:28 -0700[diff] [blame]2300 }
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]2301 }
Robert Greenwalt2c9f5472014-04-21 14:50:28 -0700[diff] [blame]2302 } finally {
2303 mNetworkActivityListeners.finishBroadcast();
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]2304 }
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]2305 }
2306
Mattias Falk8b47b362011-08-23 14:15:13 +0200[diff] [blame]2307 /** {@inheritDoc} */
Jeff Sharkey7b4596f2013-02-25 10:55:29 -0800[diff] [blame]2308 @Override
Jeff Sharkeyfa23c5a2011-08-09 21:44:24 -0700[diff] [blame]2309 public void monitor() {
2310 if (mConnector != null) {
2311 mConnector.monitor();
2312 }
2313 }
Jeff Sharkey47eb1022011-08-25 17:48:52 -0700[diff] [blame]2314
2315 @Override
2316 protected void dump(FileDescriptor fd, PrintWriter pw, String[] args) {
Jeff Sharkeyfe9a53b2017-03-31 14:08:23 -0600[diff] [blame^]2317 if (!DumpUtils.checkDumpPermission(mContext, TAG, pw)) return;
Jeff Sharkey47eb1022011-08-25 17:48:52 -0700[diff] [blame]2318
Robert Greenwalt470fd722012-01-18 12:51:15 -0800[diff] [blame]2319 pw.println("NetworkManagementService NativeDaemonConnector Log:");
2320 mConnector.dump(fd, pw, args);
2321 pw.println();
2322
Jeff Sharkey47eb1022011-08-25 17:48:52 -0700[diff] [blame]2323 pw.print("Bandwidth control enabled: "); pw.println(mBandwidthControlEnabled);
Dianne Hackborn2ffa11e2014-04-21 15:56:18 -0700[diff] [blame]2324 pw.print("mMobileActivityFromRadio="); pw.print(mMobileActivityFromRadio);
2325 pw.print(" mLastPowerStateFromRadio="); pw.println(mLastPowerStateFromRadio);
2326 pw.print("mNetworkActive="); pw.println(mNetworkActive);
Jeff Sharkey47eb1022011-08-25 17:48:52 -0700[diff] [blame]2327
2328 synchronized (mQuotaLock) {
Jeff Sharkeyb24a7852012-05-01 15:19:37 -0700[diff] [blame]2329 pw.print("Active quota ifaces: "); pw.println(mActiveQuotas.toString());
2330 pw.print("Active alert ifaces: "); pw.println(mActiveAlerts.toString());
Felipe Leme65be3022016-03-22 14:53:13 -0700[diff] [blame]2331 pw.print("Data saver mode: "); pw.println(mDataSaverMode);
Sudheer Shanka62f5c172017-03-17 16:25:55 -0700[diff] [blame]2332 synchronized (mRulesLock) {
2333 dumpUidRuleOnQuotaLocked(pw, "blacklist", mUidRejectOnMetered);
2334 dumpUidRuleOnQuotaLocked(pw, "whitelist", mUidAllowOnMetered);
2335 }
Jeff Sharkey47eb1022011-08-25 17:48:52 -0700[diff] [blame]2336 }
Jeff Sharkeyc268f0b2012-08-24 10:25:31 -0700[diff] [blame]2337
Sudheer Shanka62f5c172017-03-17 16:25:55 -0700[diff] [blame]2338 synchronized (mRulesLock) {
Felipe Leme011b98f2016-02-10 17:28:31 -0800[diff] [blame]2339 dumpUidFirewallRule(pw, "", mUidFirewallRules);
Amith Yamasani15e472352015-04-24 19:06:07 -0700[diff] [blame]2340
Sudheer Shanka62f5c172017-03-17 16:25:55 -0700[diff] [blame]2341 pw.print("UID firewall standby chain enabled: "); pw.println(
2342 getFirewallChainState(FIREWALL_CHAIN_STANDBY));
Felipe Leme011b98f2016-02-10 17:28:31 -0800[diff] [blame]2343 dumpUidFirewallRule(pw, FIREWALL_CHAIN_NAME_STANDBY, mUidFirewallStandbyRules);
Xiaohui Chenb41c9f72015-06-17 15:55:37 -0700[diff] [blame]2344
Sudheer Shanka62f5c172017-03-17 16:25:55 -0700[diff] [blame]2345 pw.print("UID firewall dozable chain enabled: "); pw.println(
2346 getFirewallChainState(FIREWALL_CHAIN_DOZABLE));
Felipe Leme011b98f2016-02-10 17:28:31 -0800[diff] [blame]2347 dumpUidFirewallRule(pw, FIREWALL_CHAIN_NAME_DOZABLE, mUidFirewallDozableRules);
Felipe Leme011b98f2016-02-10 17:28:31 -0800[diff] [blame]2348
Sudheer Shanka62f5c172017-03-17 16:25:55 -0700[diff] [blame]2349 pw.println("UID firewall powersave chain enabled: " +
2350 getFirewallChainState(FIREWALL_CHAIN_POWERSAVE));
Felipe Leme011b98f2016-02-10 17:28:31 -0800[diff] [blame]2351 dumpUidFirewallRule(pw, FIREWALL_CHAIN_NAME_POWERSAVE, mUidFirewallPowerSaveRules);
Xiaohui Chenb41c9f72015-06-17 15:55:37 -0700[diff] [blame]2352 }
2353
Dianne Hackborn77b987f2014-02-26 16:20:52 -0800[diff] [blame]2354 synchronized (mIdleTimerLock) {
2355 pw.println("Idle timers:");
2356 for (HashMap.Entry<String, IdleTimerParams> ent : mActiveIdleTimers.entrySet()) {
2357 pw.print(" "); pw.print(ent.getKey()); pw.println(":");
2358 IdleTimerParams params = ent.getValue();
2359 pw.print(" timeout="); pw.print(params.timeout);
2360 pw.print(" type="); pw.print(params.type);
2361 pw.print(" networkCount="); pw.println(params.networkCount);
2362 }
2363 }
2364
Jeff Sharkeyc268f0b2012-08-24 10:25:31 -0700[diff] [blame]2365 pw.print("Firewall enabled: "); pw.println(mFirewallEnabled);
Felipe Leme65be3022016-03-22 14:53:13 -0700[diff] [blame]2366 pw.print("Netd service status: " );
2367 if (mNetdService == null) {
2368 pw.println("disconnected");
2369 } else {
2370 try {
2371 final boolean alive = mNetdService.isAlive();
2372 pw.println(alive ? "alive": "dead");
2373 } catch (RemoteException e) {
2374 pw.println("unreachable");
2375 }
2376 }
2377 }
2378
2379 private void dumpUidRuleOnQuotaLocked(PrintWriter pw, String name, SparseBooleanArray list) {
2380 pw.print("UID bandwith control ");
2381 pw.print(name);
2382 pw.print(" rule: [");
2383 final int size = list.size();
2384 for (int i = 0; i < size; i++) {
2385 pw.print(list.keyAt(i));
2386 if (i < size - 1) pw.print(",");
2387 }
2388 pw.println("]");
Jeff Sharkey47eb1022011-08-25 17:48:52 -0700[diff] [blame]2389 }
Robert Greenwalt9ba9c582014-03-19 17:56:12 -0700[diff] [blame]2390
Felipe Leme011b98f2016-02-10 17:28:31 -0800[diff] [blame]2391 private void dumpUidFirewallRule(PrintWriter pw, String name, SparseIntArray rules) {
Lorenzo Colitti4cb42402016-04-24 12:52:00 +0900[diff] [blame]2392 pw.print("UID firewall ");
Felipe Leme011b98f2016-02-10 17:28:31 -0800[diff] [blame]2393 pw.print(name);
2394 pw.print(" rule: [");
2395 final int size = rules.size();
2396 for (int i = 0; i < size; i++) {
2397 pw.print(rules.keyAt(i));
2398 pw.print(":");
2399 pw.print(rules.valueAt(i));
2400 if (i < size - 1) pw.print(",");
2401 }
2402 pw.println("]");
2403 }
2404
Robert Greenwalt568891d2014-04-04 13:38:00 -0700[diff] [blame]2405 @Override
Paul Jensen487ffe72015-07-24 15:57:11 -0400[diff] [blame]2406 public void createPhysicalNetwork(int netId, String permission) {
Robert Greenwalt9ba9c582014-03-19 17:56:12 -0700[diff] [blame]2407 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
2408
2409 try {
Paul Jensen487ffe72015-07-24 15:57:11 -0400[diff] [blame]2410 if (permission != null) {
2411 mConnector.execute("network", "create", netId, permission);
2412 } else {
2413 mConnector.execute("network", "create", netId);
2414 }
Robert Greenwalt9ba9c582014-03-19 17:56:12 -0700[diff] [blame]2415 } catch (NativeDaemonConnectorException e) {
2416 throw e.rethrowAsParcelableException();
2417 }
2418 }
2419
Robert Greenwalt568891d2014-04-04 13:38:00 -0700[diff] [blame]2420 @Override
Sreeram Ramachandran8cd33ed2014-07-23 15:23:15 -0700[diff] [blame]2421 public void createVirtualNetwork(int netId, boolean hasDNS, boolean secure) {
Paul Jensen6bc2c2c2014-05-07 15:27:40 -0400[diff] [blame]2422 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
2423
2424 try {
Sreeram Ramachandran8cd33ed2014-07-23 15:23:15 -0700[diff] [blame]2425 mConnector.execute("network", "create", netId, "vpn", hasDNS ? "1" : "0",
2426 secure ? "1" : "0");
Paul Jensen6bc2c2c2014-05-07 15:27:40 -0400[diff] [blame]2427 } catch (NativeDaemonConnectorException e) {
2428 throw e.rethrowAsParcelableException();
2429 }
2430 }
2431
2432 @Override
Robert Greenwalt9ba9c582014-03-19 17:56:12 -0700[diff] [blame]2433 public void removeNetwork(int netId) {
2434 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
2435
2436 try {
2437 mConnector.execute("network", "destroy", netId);
2438 } catch (NativeDaemonConnectorException e) {
2439 throw e.rethrowAsParcelableException();
2440 }
2441 }
Robert Greenwalt568891d2014-04-04 13:38:00 -0700[diff] [blame]2442
2443 @Override
Paul Jensen992f2522014-04-28 10:33:11 -0400[diff] [blame]2444 public void addInterfaceToNetwork(String iface, int netId) {
Sreeram Ramachandrana77760d2014-07-17 17:09:07 -0700[diff] [blame]2445 modifyInterfaceInNetwork("add", "" + netId, iface);
Paul Jensen992f2522014-04-28 10:33:11 -0400[diff] [blame]2446 }
2447
2448 @Override
2449 public void removeInterfaceFromNetwork(String iface, int netId) {
Sreeram Ramachandrana77760d2014-07-17 17:09:07 -0700[diff] [blame]2450 modifyInterfaceInNetwork("remove", "" + netId, iface);
2451 }
Paul Jensen992f2522014-04-28 10:33:11 -0400[diff] [blame]2452
Sreeram Ramachandrana77760d2014-07-17 17:09:07 -0700[diff] [blame]2453 private void modifyInterfaceInNetwork(String action, String netId, String iface) {
2454 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
Paul Jensen992f2522014-04-28 10:33:11 -0400[diff] [blame]2455 try {
Sreeram Ramachandrana77760d2014-07-17 17:09:07 -0700[diff] [blame]2456 mConnector.execute("network", "interface", action, netId, iface);
Paul Jensen992f2522014-04-28 10:33:11 -0400[diff] [blame]2457 } catch (NativeDaemonConnectorException e) {
2458 throw e.rethrowAsParcelableException();
2459 }
2460 }
2461
2462 @Override
Robert Greenwalt913c8952014-04-07 17:36:35 -0700[diff] [blame]2463 public void addLegacyRouteForNetId(int netId, RouteInfo routeInfo, int uid) {
Robert Greenwalt568891d2014-04-04 13:38:00 -0700[diff] [blame]2464 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
2465
Sreeram Ramachandran03666c72014-07-19 23:21:46 -0700[diff] [blame]2466 final Command cmd = new Command("network", "route", "legacy", uid, "add", netId);
Robert Greenwalt568891d2014-04-04 13:38:00 -0700[diff] [blame]2467
Sreeram Ramachandran1fbcb272014-05-22 16:30:48 -0700[diff] [blame]2468 // create triplet: interface dest-ip-addr/prefixlength gateway-ip-addr
Sreeram Ramachandrancc91c7b2014-06-03 18:41:43 -0700[diff] [blame]2469 final LinkAddress la = routeInfo.getDestinationLinkAddress();
Robert Greenwalt568891d2014-04-04 13:38:00 -0700[diff] [blame]2470 cmd.appendArg(routeInfo.getInterface());
Lorenzo Colitti7dc78cf2014-06-09 22:58:46 +0900[diff] [blame]2471 cmd.appendArg(la.getAddress().getHostAddress() + "/" + la.getPrefixLength());
Sreeram Ramachandran1fbcb272014-05-22 16:30:48 -0700[diff] [blame]2472 if (routeInfo.hasGateway()) {
2473 cmd.appendArg(routeInfo.getGateway().getHostAddress());
2474 }
Robert Greenwalt568891d2014-04-04 13:38:00 -0700[diff] [blame]2475
2476 try {
2477 mConnector.execute(cmd);
2478 } catch (NativeDaemonConnectorException e) {
2479 throw e.rethrowAsParcelableException();
2480 }
2481 }
2482
2483 @Override
Sreeram Ramachandranf047f2a2014-04-15 16:04:26 -0700[diff] [blame]2484 public void setDefaultNetId(int netId) {
Robert Greenwalt568891d2014-04-04 13:38:00 -0700[diff] [blame]2485 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
2486
2487 try {
Sreeram Ramachandranf047f2a2014-04-15 16:04:26 -0700[diff] [blame]2488 mConnector.execute("network", "default", "set", netId);
Robert Greenwalt568891d2014-04-04 13:38:00 -0700[diff] [blame]2489 } catch (NativeDaemonConnectorException e) {
2490 throw e.rethrowAsParcelableException();
2491 }
2492 }
2493
2494 @Override
2495 public void clearDefaultNetId() {
2496 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
2497
2498 try {
2499 mConnector.execute("network", "default", "clear");
2500 } catch (NativeDaemonConnectorException e) {
2501 throw e.rethrowAsParcelableException();
2502 }
2503 }
2504
2505 @Override
Paul Jensen487ffe72015-07-24 15:57:11 -0400[diff] [blame]2506 public void setNetworkPermission(int netId, String permission) {
2507 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
2508
2509 try {
2510 if (permission != null) {
2511 mConnector.execute("network", "permission", "network", "set", permission, netId);
2512 } else {
2513 mConnector.execute("network", "permission", "network", "clear", netId);
2514 }
2515 } catch (NativeDaemonConnectorException e) {
2516 throw e.rethrowAsParcelableException();
2517 }
2518 }
2519
2520
2521 @Override
Sreeram Ramachandrane4a05af2014-09-24 09:16:19 -0700[diff] [blame]2522 public void setPermission(String permission, int[] uids) {
Robert Greenwalt568891d2014-04-04 13:38:00 -0700[diff] [blame]2523 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
2524
Sreeram Ramachandrane4a05af2014-09-24 09:16:19 -0700[diff] [blame]2525 Object[] argv = new Object[4 + MAX_UID_RANGES_PER_COMMAND];
2526 argv[0] = "permission";
2527 argv[1] = "user";
2528 argv[2] = "set";
2529 argv[3] = permission;
2530 int argc = 4;
2531 // Avoid overly long commands by limiting number of UIDs per command.
2532 for (int i = 0; i < uids.length; ++i) {
2533 argv[argc++] = uids[i];
2534 if (i == uids.length - 1 || argc == argv.length) {
2535 try {
2536 mConnector.execute("network", Arrays.copyOf(argv, argc));
2537 } catch (NativeDaemonConnectorException e) {
2538 throw e.rethrowAsParcelableException();
2539 }
2540 argc = 4;
2541 }
Robert Greenwalt568891d2014-04-04 13:38:00 -0700[diff] [blame]2542 }
2543 }
2544
2545 @Override
2546 public void clearPermission(int[] uids) {
2547 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
2548
Sreeram Ramachandrane4a05af2014-09-24 09:16:19 -0700[diff] [blame]2549 Object[] argv = new Object[3 + MAX_UID_RANGES_PER_COMMAND];
2550 argv[0] = "permission";
2551 argv[1] = "user";
2552 argv[2] = "clear";
2553 int argc = 3;
2554 // Avoid overly long commands by limiting number of UIDs per command.
2555 for (int i = 0; i < uids.length; ++i) {
2556 argv[argc++] = uids[i];
2557 if (i == uids.length - 1 || argc == argv.length) {
2558 try {
2559 mConnector.execute("network", Arrays.copyOf(argv, argc));
2560 } catch (NativeDaemonConnectorException e) {
2561 throw e.rethrowAsParcelableException();
2562 }
2563 argc = 3;
2564 }
Robert Greenwalt568891d2014-04-04 13:38:00 -0700[diff] [blame]2565 }
2566 }
Paul Jensen6bc2c2c2014-05-07 15:27:40 -0400[diff] [blame]2567
2568 @Override
2569 public void allowProtect(int uid) {
2570 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
2571
2572 try {
2573 mConnector.execute("network", "protect", "allow", uid);
2574 } catch (NativeDaemonConnectorException e) {
2575 throw e.rethrowAsParcelableException();
2576 }
2577 }
2578
2579 @Override
2580 public void denyProtect(int uid) {
2581 mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);
2582
2583 try {
2584 mConnector.execute("network", "protect", "deny", uid);
2585 } catch (NativeDaemonConnectorException e) {
2586 throw e.rethrowAsParcelableException();
2587 }
2588 }
2589
Sreeram Ramachandrana77760d2014-07-17 17:09:07 -0700[diff] [blame]2590 @Override
2591 public void addInterfaceToLocalNetwork(String iface, List<RouteInfo> routes) {
2592 modifyInterfaceInNetwork("add", "local", iface);
2593
2594 for (RouteInfo route : routes) {
2595 if (!route.isDefaultRoute()) {
2596 modifyRoute("add", "local", route);
2597 }
2598 }
2599 }
2600
2601 @Override
2602 public void removeInterfaceFromLocalNetwork(String iface) {
2603 modifyInterfaceInNetwork("remove", "local", iface);
2604 }
Erik Kline6599ee82016-07-17 21:28:39 +0900[diff] [blame]2605
2606 @Override
2607 public int removeRoutesFromLocalNetwork(List<RouteInfo> routes) {
2608 int failures = 0;
2609
2610 for (RouteInfo route : routes) {
2611 try {
2612 modifyRoute("remove", "local", route);
2613 } catch (IllegalStateException e) {
2614 failures++;
2615 }
2616 }
2617
2618 return failures;
2619 }
Sudheer Shanka62f5c172017-03-17 16:25:55 -0700[diff] [blame]2620
2621 private void setFirewallChainState(int chain, boolean state) {
2622 synchronized (mRulesLock) {
2623 mFirewallChainStates.put(chain, state);
2624 }
2625 }
2626
2627 private boolean getFirewallChainState(int chain) {
2628 synchronized (mRulesLock) {
2629 return mFirewallChainStates.get(chain);
2630 }
2631 }
2632
2633 @VisibleForTesting
2634 class LocalService extends NetworkManagementInternal {
2635 @Override
2636 public boolean isNetworkRestrictedForUid(int uid) {
2637 synchronized (mRulesLock) {
2638 if (getFirewallChainState(FIREWALL_CHAIN_STANDBY)
2639 && mUidFirewallStandbyRules.get(uid) == FIREWALL_RULE_DENY) {
2640 if (DBG) Slog.d(TAG, "Uid " + uid + " restricted because of app standby mode");
2641 return true;
2642 }
2643 if (getFirewallChainState(FIREWALL_CHAIN_DOZABLE)
2644 && mUidFirewallDozableRules.get(uid) != FIREWALL_RULE_ALLOW) {
2645 if (DBG) Slog.d(TAG, "Uid " + uid + " restricted because of device idle mode");
2646 return true;
2647 }
2648 if (getFirewallChainState(FIREWALL_CHAIN_POWERSAVE)
2649 && mUidFirewallPowerSaveRules.get(uid) != FIREWALL_RULE_ALLOW) {
2650 if (DBG) Slog.d(TAG, "Uid " + uid + " restricted because of power saver mode");
2651 return true;
2652 }
2653 if (mUidRejectOnMetered.get(uid)) {
2654 if (DBG) Slog.d(TAG, "Uid " + uid + " restricted because of no metered data"
2655 + " in the background");
2656 return true;
2657 }
2658 if (mDataSaverMode && !mUidAllowOnMetered.get(uid)) {
2659 if (DBG) Slog.d(TAG, "Uid " + uid + " restricted because of data saver mode");
2660 return true;
2661 }
2662 return false;
2663 }
2664 }
2665 }
2666
2667 @VisibleForTesting
2668 Injector getInjector() {
2669 return new Injector();
2670 }
2671
2672 @VisibleForTesting
2673 class Injector {
2674 void setDataSaverMode(boolean dataSaverMode) {
2675 mDataSaverMode = dataSaverMode;
2676 }
2677
2678 void setFirewallChainState(int chain, boolean state) {
2679 NetworkManagementService.this.setFirewallChainState(chain, state);
2680 }
2681
2682 void setFirewallRule(int chain, int uid, int rule) {
2683 synchronized (mRulesLock) {
2684 getUidFirewallRulesLR(chain).put(uid, rule);
2685 }
2686 }
2687
2688 void setUidOnMeteredNetworkList(boolean blacklist, int uid, boolean enable) {
2689 synchronized (mRulesLock) {
2690 if (blacklist) {
2691 mUidRejectOnMetered.put(uid, enable);
2692 } else {
2693 mUidAllowOnMetered.put(uid, enable);
2694 }
2695 }
2696 }
2697
2698 void reset() {
2699 synchronized (mRulesLock) {
2700 setDataSaverMode(false);
2701 final int[] chains = {
2702 FIREWALL_CHAIN_DOZABLE,
2703 FIREWALL_CHAIN_STANDBY,
2704 FIREWALL_CHAIN_POWERSAVE
2705 };
2706 for (int chain : chains) {
2707 setFirewallChainState(chain, false);
2708 getUidFirewallRulesLR(chain).clear();
2709 }
2710 mUidAllowOnMetered.clear();
2711 mUidRejectOnMetered.clear();
2712 }
2713 }
2714 }
San Mehat873f2142010-01-14 10:25:07 -0800[diff] [blame]2715}