diff options
| author | Christopher Wiley <wiley@google.com> | 2016-02-05 09:08:23 -0800 |
|---|---|---|
| committer | Christopher Wiley <wiley@google.com> | 2016-02-05 10:39:07 -0800 |
| commit | 8ed4270fea554ced8898be205727279db1c5c677 (patch) | |
| tree | 185704cfcba71b3592fb9ec7deafd93c79bcd2a4 | |
| parent | 6dd4552614e0dcddeefde322185fe118f175fa47 (diff) | |
| download | frameworks_native-8ed4270fea554ced8898be205727279db1c5c677.zip frameworks_native-8ed4270fea554ced8898be205727279db1c5c677.tar.gz frameworks_native-8ed4270fea554ced8898be205727279db1c5c677.tar.bz2 | |
Don't rely on AppOpsManager in systems without applications
Brillo has no applications, and doesn't run AppOpsManager. Instead,
services are granted statically configured SELinux permissions at
build time. Rely on that configuration rather than Android's
dynamically configurable permission model.
Bug: 26936651
Test: Test code on Brillo system is able to connect to the camera.
Change-Id: I84b72a762c2f534c2e1cc6f99ef2003388fb1265
| -rw-r--r-- | libs/binder/AppOpsManager.cpp | 32 |
1 files changed, 28 insertions, 4 deletions
diff --git a/libs/binder/AppOpsManager.cpp b/libs/binder/AppOpsManager.cpp index f8626cb..52cef1c 100644 --- a/libs/binder/AppOpsManager.cpp +++ b/libs/binder/AppOpsManager.cpp @@ -22,6 +22,19 @@ namespace android { +namespace { + +#if defined(__BRILLO__) +// Because Brillo has no application model, security policy is managed +// statically (at build time) with SELinux controls. +// As a consequence, it also never runs the AppOpsManager service. +const int APP_OPS_MANAGER_UNAVAILABLE_MODE = AppOpsManager::MODE_ALLOWED; +#else +const int APP_OPS_MANAGER_UNAVAILABLE_MODE = AppOpsManager::MODE_IGNORED; +#endif // defined(__BRILLO__) + +} // namespace + static String16 _appops("appops"); static pthread_mutex_t gTokenMutex = PTHREAD_MUTEX_INITIALIZER; static sp<IBinder> gToken; @@ -39,8 +52,13 @@ AppOpsManager::AppOpsManager() { } +#if defined(__BRILLO__) +// There is no AppOpsService on Brillo +sp<IAppOpsService> AppOpsManager::getService() { return NULL; } +#else sp<IAppOpsService> AppOpsManager::getService() { + int64_t startTime = 0; mLock.lock(); sp<IAppOpsService> service = mService; @@ -65,22 +83,28 @@ sp<IAppOpsService> AppOpsManager::getService() mLock.unlock(); return service; } +#endif // defined(__BRILLO__) int32_t AppOpsManager::checkOp(int32_t op, int32_t uid, const String16& callingPackage) { sp<IAppOpsService> service = getService(); - return service != NULL ? service->checkOperation(op, uid, callingPackage) : MODE_IGNORED; + return service != NULL + ? service->checkOperation(op, uid, callingPackage) + : APP_OPS_MANAGER_UNAVAILABLE_MODE; } int32_t AppOpsManager::noteOp(int32_t op, int32_t uid, const String16& callingPackage) { sp<IAppOpsService> service = getService(); - return service != NULL ? service->noteOperation(op, uid, callingPackage) : MODE_IGNORED; + return service != NULL + ? service->noteOperation(op, uid, callingPackage) + : APP_OPS_MANAGER_UNAVAILABLE_MODE; } int32_t AppOpsManager::startOp(int32_t op, int32_t uid, const String16& callingPackage) { sp<IAppOpsService> service = getService(); - return service != NULL ? service->startOperation(getToken(service), op, uid, callingPackage) - : MODE_IGNORED; + return service != NULL + ? service->startOperation(getToken(service), op, uid, callingPackage) + : APP_OPS_MANAGER_UNAVAILABLE_MODE; } void AppOpsManager::finishOp(int32_t op, int32_t uid, const String16& callingPackage) { |