Merge remote-tracking branch 'origin/cm-14.1' into v1-nougat

    public static final int POLICY_REJECT_ON_WIFI = 0x8000;

    /** Reject application network traffic on cellular network **/

    public static final int POLICY_REJECT_ON_DATA = 0x10000;

    /** Reject application network traffic on virtual private network */

    public static final int POLICY_REJECT_ON_VPN = 0x02000;

    /*

     * Rules defining whether an uid has access to a network given its type (metered / non-metered).

     */

    void restrictAppOnData(int uid, boolean restrict);

    void restrictAppOnWifi(int uid, boolean restrict);

    void restrictAppOnVpn(int uid, boolean restrict);

}

    private INetd mNetdService;

    private String mWifiInterfaceName, mDataInterfaceName;

    private String mVpnInterfaceName;

    private BroadcastReceiver mPendingDataRestrictReceiver;

    private BroadcastReceiver mPendingVpnRestrictReceiver;

    private IBatteryStats mBatteryStats;

    final SparseBooleanArray mWifiBlacklist = new SparseBooleanArray();

    @GuardedBy("mQuotaLock")

    final SparseBooleanArray mDataBlacklist = new SparseBooleanArray();

    @GuardedBy("mQuotaLock")

    final SparseBooleanArray mVpnBlacklist = new SparseBooleanArray();

    @GuardedBy("mQuotaLock")

    private boolean mDataSaverMode;

            new RemoteCallbackList<INetworkActivityListener>();

    private boolean mNetworkActive;

    private SparseBooleanArray mPendingRestrictOnData = new SparseBooleanArray();

    private SparseBooleanArray mPendingRestrictOnVpn = new SparseBooleanArray();

    /**

     * Constructs a new NetworkManagementService instance

                processPendingDataRestrictRequests();

           }

        };

        // Note: processPendingVpnRestrictRequests() will unregister

        // mPendingVpnRestrictReceiver once it has been able to determine

        // the vpn network interface name.

        mPendingVpnRestrictReceiver = new BroadcastReceiver() {

            @Override

            public void onReceive(Context context, Intent intent) {

                processPendingVpnRestrictRequests();

           }

        };

        final IntentFilter filter = new IntentFilter();

        filter.addAction(ConnectivityManager.CONNECTIVITY_ACTION);

        mContext.registerReceiver(mPendingDataRestrictReceiver, filter);

        mContext.registerReceiver(mPendingVpnRestrictReceiver, filter);

    }

    private IBatteryStats getBatteryStats() {

        }

    }

    @Override

    public void restrictAppOnVpn(int uid, boolean restrict) {

        mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);

        // silently discard when control disabled

        if (!mBandwidthControlEnabled) return;

        initVpnInterface();

        if (TextUtils.isEmpty(mVpnInterfaceName)) {

            // We don't have an interface name since vpn is not active

            // yet, so queue up the request for when it comes up alive

            mPendingRestrictOnVpn.put(uid, restrict);

            return;

        }

        synchronized (mQuotaLock) {

            boolean oldValue = mVpnBlacklist.get(uid, false);

            if (oldValue == restrict) {

                return;

            }

            mVpnBlacklist.put(uid, restrict);

        }

        try {

            final String action = restrict ? "add" : "remove";

            mConnector.execute("bandwidth", action + "restrictappsonvpn",

                    mVpnInterfaceName, uid);

        } catch (NativeDaemonConnectorException e) {

            throw e.rethrowAsParcelableException();

        }

    }

    @Override

    public void restrictAppOnWifi(int uid, boolean restrict) {

        mContext.enforceCallingOrSelfPermission(CONNECTIVITY_INTERNAL, TAG);

        }

    }

    private void processPendingVpnRestrictRequests() {

        initVpnInterface();

        if (TextUtils.isEmpty(mVpnInterfaceName)) {

            return;

        }

        if (mPendingVpnRestrictReceiver != null) {

            mContext.unregisterReceiver(mPendingVpnRestrictReceiver);

            mPendingVpnRestrictReceiver = null;

        }

        int count = mPendingRestrictOnVpn.size();

        for (int i = 0; i < count; i++) {

            restrictAppOnVpn(mPendingRestrictOnVpn.keyAt(i),

                    mPendingRestrictOnVpn.valueAt(i));

        }

        mPendingRestrictOnVpn.clear();

    }

    @Override

    public void setAllowOnlyVpnForUids(boolean add, UidRange[] uidRanges)

            throws ServiceSpecificException {

            mDataInterfaceName = linkProperties.getInterfaceName();

        }

    }

    private void initVpnInterface() {

        if (!TextUtils.isEmpty(mVpnInterfaceName)) {

            return;

        }

        ConnectivityManager cm = (ConnectivityManager) mContext.getSystemService(

                Context.CONNECTIVITY_SERVICE);

        LinkProperties linkProperties = cm.getLinkProperties(ConnectivityManager.TYPE_VPN);

        if (linkProperties != null) {

            mVpnInterfaceName = linkProperties.getInterfaceName();

        }

    }

}

import static android.net.NetworkPolicyManager.POLICY_REJECT_METERED_BACKGROUND;

import static android.net.NetworkPolicyManager.POLICY_REJECT_ON_DATA;

import static android.net.NetworkPolicyManager.POLICY_REJECT_ON_WIFI;

import static android.net.NetworkPolicyManager.POLICY_REJECT_ON_VPN;

import static android.net.NetworkPolicyManager.RULE_ALLOW_ALL;

import static android.net.NetworkPolicyManager.RULE_ALLOW_METERED;

import static android.net.NetworkPolicyManager.MASK_METERED_NETWORKS;

        try {

            mNetworkManager.restrictAppOnWifi(uid, (uidPolicy & POLICY_REJECT_ON_WIFI) != 0);

            mNetworkManager.restrictAppOnData(uid, (uidPolicy & POLICY_REJECT_ON_DATA) != 0);

            mNetworkManager.restrictAppOnVpn(uid, (uidPolicy & POLICY_REJECT_ON_VPN) != 0);

        } catch (RemoteException e) {

            // ignored; service lives in system_server

        }