You can not select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
164 lines
5.3 KiB
164 lines
5.3 KiB
4 months ago
|
/*
|
||
|
* Copyright (C) 2010 The Android Open Source Project
|
||
|
* Copyright (C) 2012-2013, The Linux Foundation. All rights reserved.
|
||
|
*
|
||
|
* Not a Contribution, Apache license notifications and license are
|
||
|
* retained for attribution purposes only.
|
||
|
|
||
|
* Licensed under the Apache License, Version 2.0 (the "License");
|
||
|
* you may not use this file except in compliance with the License.
|
||
|
* You may obtain a copy of the License at
|
||
|
*
|
||
|
* http://www.apache.org/licenses/LICENSE-2.0
|
||
|
*
|
||
|
* Unless required by applicable law or agreed to in writing, software
|
||
|
* distributed under the License is distributed on an "AS IS" BASIS,
|
||
|
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
||
|
* See the License for the specific language governing permissions and
|
||
|
* limitations under the License.
|
||
|
*/
|
||
|
|
||
|
#include <fcntl.h>
|
||
|
#include <stdint.h>
|
||
|
#include <sys/types.h>
|
||
|
#include <binder/Parcel.h>
|
||
|
#include <binder/IBinder.h>
|
||
|
#include <binder/IInterface.h>
|
||
|
#include <binder/IPCThreadState.h>
|
||
|
#include <utils/Errors.h>
|
||
|
#include <private/android_filesystem_config.h>
|
||
|
|
||
|
#include <IQService.h>
|
||
|
|
||
|
using namespace android;
|
||
|
using namespace qClient;
|
||
|
|
||
|
// ---------------------------------------------------------------------------
|
||
|
|
||
|
namespace qService {
|
||
|
|
||
|
class BpQService : public BpInterface<IQService>
|
||
|
{
|
||
|
public:
|
||
|
BpQService(const sp<IBinder>& impl)
|
||
|
: BpInterface<IQService>(impl) {}
|
||
|
|
||
|
virtual void securing(uint32_t startEnd) {
|
||
|
Parcel data, reply;
|
||
|
data.writeInterfaceToken(IQService::getInterfaceDescriptor());
|
||
|
data.writeInt32(startEnd);
|
||
|
remote()->transact(SECURING, data, &reply);
|
||
|
}
|
||
|
|
||
|
virtual void unsecuring(uint32_t startEnd) {
|
||
|
Parcel data, reply;
|
||
|
data.writeInterfaceToken(IQService::getInterfaceDescriptor());
|
||
|
data.writeInt32(startEnd);
|
||
|
remote()->transact(UNSECURING, data, &reply);
|
||
|
}
|
||
|
|
||
|
virtual void connect(const sp<IQClient>& client) {
|
||
|
Parcel data, reply;
|
||
|
data.writeInterfaceToken(IQService::getInterfaceDescriptor());
|
||
|
data.writeStrongBinder(IInterface::asBinder(client));
|
||
|
remote()->transact(CONNECT, data, &reply);
|
||
|
}
|
||
|
|
||
|
virtual status_t screenRefresh() {
|
||
|
Parcel data, reply;
|
||
|
data.writeInterfaceToken(IQService::getInterfaceDescriptor());
|
||
|
remote()->transact(SCREEN_REFRESH, data, &reply);
|
||
|
status_t result = reply.readInt32();
|
||
|
return result;
|
||
|
}
|
||
|
};
|
||
|
|
||
|
IMPLEMENT_META_INTERFACE(QService, "android.display.IQService");
|
||
|
|
||
|
// ----------------------------------------------------------------------
|
||
|
|
||
|
static void getProcName(int pid, char *buf, int size);
|
||
|
|
||
|
status_t BnQService::onTransact(
|
||
|
uint32_t code, const Parcel& data, Parcel* reply, uint32_t flags)
|
||
|
{
|
||
|
// IPC should be from mediaserver only
|
||
|
IPCThreadState* ipc = IPCThreadState::self();
|
||
|
const int callerPid = ipc->getCallingPid();
|
||
|
const int callerUid = ipc->getCallingUid();
|
||
|
const size_t MAX_BUF_SIZE = 1024;
|
||
|
char callingProcName[MAX_BUF_SIZE] = {0};
|
||
|
|
||
|
getProcName(callerPid, callingProcName, MAX_BUF_SIZE);
|
||
|
|
||
|
const bool permission = (callerUid == AID_MEDIA);
|
||
|
|
||
|
switch(code) {
|
||
|
case SECURING: {
|
||
|
if(!permission) {
|
||
|
ALOGE("display.qservice SECURING access denied: \
|
||
|
pid=%d uid=%d process=%s",
|
||
|
callerPid, callerUid, callingProcName);
|
||
|
return PERMISSION_DENIED;
|
||
|
}
|
||
|
CHECK_INTERFACE(IQService, data, reply);
|
||
|
uint32_t startEnd = data.readInt32();
|
||
|
securing(startEnd);
|
||
|
return NO_ERROR;
|
||
|
} break;
|
||
|
case UNSECURING: {
|
||
|
if(!permission) {
|
||
|
ALOGE("display.qservice UNSECURING access denied: \
|
||
|
pid=%d uid=%d process=%s",
|
||
|
callerPid, callerUid, callingProcName);
|
||
|
return PERMISSION_DENIED;
|
||
|
}
|
||
|
CHECK_INTERFACE(IQService, data, reply);
|
||
|
uint32_t startEnd = data.readInt32();
|
||
|
unsecuring(startEnd);
|
||
|
return NO_ERROR;
|
||
|
} break;
|
||
|
case CONNECT: {
|
||
|
CHECK_INTERFACE(IQService, data, reply);
|
||
|
if(callerUid != AID_GRAPHICS) {
|
||
|
ALOGE("display.qservice CONNECT access denied: \
|
||
|
pid=%d uid=%d process=%s",
|
||
|
callerPid, callerUid, callingProcName);
|
||
|
return PERMISSION_DENIED;
|
||
|
}
|
||
|
sp<IQClient> client =
|
||
|
interface_cast<IQClient>(data.readStrongBinder());
|
||
|
connect(client);
|
||
|
return NO_ERROR;
|
||
|
} break;
|
||
|
case SCREEN_REFRESH: {
|
||
|
CHECK_INTERFACE(IQService, data, reply);
|
||
|
if(callerUid != AID_SYSTEM) {
|
||
|
ALOGE("display.qservice SCREEN_REFRESH access denied: \
|
||
|
pid=%d uid=%d process=%s",callerPid,
|
||
|
callerUid, callingProcName);
|
||
|
return PERMISSION_DENIED;
|
||
|
}
|
||
|
return screenRefresh();
|
||
|
} break;
|
||
|
default:
|
||
|
return BBinder::onTransact(code, data, reply, flags);
|
||
|
}
|
||
|
}
|
||
|
|
||
|
//Helper
|
||
|
static void getProcName(int pid, char *buf, int size) {
|
||
|
int fd = -1;
|
||
|
snprintf(buf, size, "/proc/%d/cmdline", pid);
|
||
|
fd = open(buf, O_RDONLY);
|
||
|
if (fd < 0) {
|
||
|
strcpy(buf, "Unknown");
|
||
|
} else {
|
||
|
int len = read(fd, buf, size - 1);
|
||
|
buf[len] = 0;
|
||
|
close(fd);
|
||
|
}
|
||
|
}
|
||
|
|
||
|
}; // namespace qService
|