Loading services/core/java/com/android/server/os/BugreportManagerServiceImpl.java +37 −34 Original line number Diff line number Diff line Loading @@ -21,11 +21,13 @@ import static android.app.admin.flags.Flags.onboardingBugreportV2Enabled; import android.Manifest; import android.annotation.Nullable; import android.annotation.RequiresPermission; import android.app.ActivityManager; import android.app.AppOpsManager; import android.app.admin.DevicePolicyManager; import android.app.role.RoleManager; import android.content.Context; import android.content.pm.PackageManager; import android.content.pm.UserInfo; import android.os.Binder; import android.os.BugreportManager.BugreportCallback; import android.os.BugreportParams; Loading @@ -37,7 +39,6 @@ import android.os.ServiceManager; import android.os.SystemClock; import android.os.SystemProperties; import android.os.UserHandle; import android.os.UserManager; import android.telephony.TelephonyManager; import android.text.TextUtils; import android.util.ArrayMap; Loading Loading @@ -95,7 +96,6 @@ class BugreportManagerServiceImpl extends IDumpstate.Stub { private static final long DEFAULT_BUGREPORT_SERVICE_TIMEOUT_MILLIS = 30 * 1000; private final Object mLock = new Object(); private final Injector mInjector; private final Context mContext; private final AppOpsManager mAppOps; private final TelephonyManager mTelephonyManager; Loading Loading @@ -346,14 +346,6 @@ class BugreportManagerServiceImpl extends IDumpstate.Stub { AtomicFile getMappingFile() { return mMappingFile; } UserManager getUserManager() { return mContext.getSystemService(UserManager.class); } DevicePolicyManager getDevicePolicyManager() { return mContext.getSystemService(DevicePolicyManager.class); } } BugreportManagerServiceImpl(Context context) { Loading @@ -365,7 +357,6 @@ class BugreportManagerServiceImpl extends IDumpstate.Stub { @VisibleForTesting(visibility = VisibleForTesting.Visibility.PRIVATE) BugreportManagerServiceImpl(Injector injector) { mInjector = injector; mContext = injector.getContext(); mAppOps = mContext.getSystemService(AppOpsManager.class); mTelephonyManager = mContext.getSystemService(TelephonyManager.class); Loading Loading @@ -398,7 +389,12 @@ class BugreportManagerServiceImpl extends IDumpstate.Stub { int callingUid = Binder.getCallingUid(); enforcePermission(callingPackage, callingUid, bugreportMode == BugreportParams.BUGREPORT_MODE_TELEPHONY /* checkCarrierPrivileges */); final long identity = Binder.clearCallingIdentity(); try { ensureUserCanTakeBugReport(bugreportMode); } finally { Binder.restoreCallingIdentity(identity); } Slogf.i(TAG, "Starting bugreport for %s / %d", callingPackage, callingUid); synchronized (mLock) { Loading Loading @@ -437,6 +433,7 @@ class BugreportManagerServiceImpl extends IDumpstate.Stub { @RequiresPermission(value = Manifest.permission.DUMP, conditional = true) public void retrieveBugreport(int callingUidUnused, String callingPackage, int userId, FileDescriptor bugreportFd, String bugreportFile, boolean keepBugreportOnRetrievalUnused, IDumpstateListener listener) { int callingUid = Binder.getCallingUid(); enforcePermission(callingPackage, callingUid, false); Loading Loading @@ -568,48 +565,54 @@ class BugreportManagerServiceImpl extends IDumpstate.Stub { } /** * Validates that the calling user is an admin user or, when bugreport is requested remotely * that the user is an affiliated user. * Validates that the current user is an admin user or, when bugreport is requested remotely * that the current user is an affiliated user. * * @throws IllegalArgumentException if the calling user is not an admin user * @throws IllegalArgumentException if the current user is not an admin user */ private void ensureUserCanTakeBugReport(int bugreportMode) { // Get the calling userId before clearing the caller identity. int callingUserId = UserHandle.getUserId(Binder.getCallingUid()); boolean isAdminUser = false; final long identity = Binder.clearCallingIdentity(); UserInfo currentUser = null; try { isAdminUser = mInjector.getUserManager().isUserAdmin(callingUserId); } finally { Binder.restoreCallingIdentity(identity); currentUser = ActivityManager.getService().getCurrentUser(); } catch (RemoteException e) { // Impossible to get RemoteException for an in-process call. } if (!isAdminUser) { if (currentUser == null) { logAndThrow("There is no current user, so no bugreport can be requested."); } if (!currentUser.isAdmin()) { if (bugreportMode == BugreportParams.BUGREPORT_MODE_REMOTE && isUserAffiliated(callingUserId)) { && isCurrentUserAffiliated(currentUser.id)) { return; } logAndThrow(TextUtils.formatSimple("Calling user %s is not an admin user." + " Only admin users are allowed to take bugreport.", callingUserId)); logAndThrow(TextUtils.formatSimple("Current user %s is not an admin user." + " Only admin users are allowed to take bugreport.", currentUser.id)); } } /** * Returns {@code true} if the device has device owner and the specified user is affiliated * Returns {@code true} if the device has device owner and the current user is affiliated * with the device owner. */ private boolean isUserAffiliated(int userId) { DevicePolicyManager dpm = mInjector.getDevicePolicyManager(); private boolean isCurrentUserAffiliated(int currentUserId) { DevicePolicyManager dpm = mContext.getSystemService(DevicePolicyManager.class); int deviceOwnerUid = dpm.getDeviceOwnerUserId(); if (deviceOwnerUid == UserHandle.USER_NULL) { return false; } if (DEBUG) { Slog.d(TAG, "callingUid: " + userId + " deviceOwnerUid: " + deviceOwnerUid); } int callingUserId = UserHandle.getUserId(Binder.getCallingUid()); if (userId != deviceOwnerUid && !dpm.isAffiliatedUser(userId)) { logAndThrow("User " + userId + " is not affiliated to the device owner."); Slog.i(TAG, "callingUid: " + callingUserId + " deviceOwnerUid: " + deviceOwnerUid + " currentUserId: " + currentUserId); if (callingUserId != deviceOwnerUid) { logAndThrow("Caller is not device owner on provisioned device."); } if (!dpm.isAffiliatedUser(currentUserId)) { logAndThrow("Current user is not affiliated to the device owner."); } return true; } Loading services/tests/servicestests/src/com/android/server/os/BugreportManagerServiceImplTest.java +6 −73 Original line number Diff line number Diff line Loading @@ -16,26 +16,23 @@ package com.android.server.os; import android.app.admin.flags.Flags; import static android.app.admin.flags.Flags.onboardingBugreportV2Enabled; import static com.android.compatibility.common.util.SystemUtil.runWithShellPermissionIdentity; import static com.google.common.truth.Truth.assertThat; import static org.junit.Assert.assertThrows; import static org.mockito.ArgumentMatchers.anyInt; import static org.mockito.Mockito.when; import android.app.admin.DevicePolicyManager; import android.app.admin.flags.Flags; import android.app.role.RoleManager; import android.content.Context; import android.os.Binder; import android.os.BugreportManager.BugreportCallback; import android.os.BugreportParams; import android.os.IBinder; import android.os.IDumpstateListener; import android.os.Process; import android.os.RemoteException; import android.os.UserManager; import android.platform.test.annotations.RequiresFlagsEnabled; import android.platform.test.flag.junit.CheckFlagsRule; import android.platform.test.flag.junit.DeviceFlagsValueProvider; Loading @@ -51,8 +48,6 @@ import org.junit.Before; import org.junit.Rule; import org.junit.Test; import org.junit.runner.RunWith; import org.mockito.Mock; import org.mockito.MockitoAnnotations; import java.io.FileDescriptor; import java.util.concurrent.CompletableFuture; Loading @@ -71,11 +66,6 @@ public class BugreportManagerServiceImplTest { private BugreportManagerServiceImpl mService; private BugreportManagerServiceImpl.BugreportFileManager mBugreportFileManager; @Mock private UserManager mMockUserManager; @Mock private DevicePolicyManager mMockDevicePolicyManager; private int mCallingUid = 1234; private String mCallingPackage = "test.package"; private AtomicFile mMappingFile; Loading @@ -85,17 +75,14 @@ public class BugreportManagerServiceImplTest { @Before public void setUp() { MockitoAnnotations.initMocks(this); mContext = InstrumentationRegistry.getInstrumentation().getContext(); mMappingFile = new AtomicFile(mContext.getFilesDir(), "bugreport-mapping.xml"); ArraySet<String> mAllowlistedPackages = new ArraySet<>(); mAllowlistedPackages.add(mContext.getPackageName()); mService = new BugreportManagerServiceImpl( new TestInjector(mContext, mAllowlistedPackages, mMappingFile, mMockUserManager, mMockDevicePolicyManager)); new BugreportManagerServiceImpl.Injector(mContext, mAllowlistedPackages, mMappingFile)); mBugreportFileManager = new BugreportManagerServiceImpl.BugreportFileManager(mMappingFile); // The calling user is an admin user by default. when(mMockUserManager.isUserAdmin(anyInt())).thenReturn(true); } @After Loading Loading @@ -177,36 +164,6 @@ public class BugreportManagerServiceImplTest { "test-file.zip", /* forceUpdateMapping= */ true)); } @Test public void testStartBugreport_throwsForNonAdminUser() throws Exception { when(mMockUserManager.isUserAdmin(anyInt())).thenReturn(false); Exception thrown = assertThrows(Exception.class, () -> mService.startBugreport(mCallingUid, mContext.getPackageName(), new FileDescriptor(), /* screenshotFd= */ null, BugreportParams.BUGREPORT_MODE_FULL, /* flags= */ 0, new Listener(new CountDownLatch(1)), /* isScreenshotRequested= */ false)); assertThat(thrown.getMessage()).contains("not an admin user"); } @Test public void testStartBugreport_throwsForNotAffiliatedUser() throws Exception { when(mMockUserManager.isUserAdmin(anyInt())).thenReturn(false); when(mMockDevicePolicyManager.getDeviceOwnerUserId()).thenReturn(-1); when(mMockDevicePolicyManager.isAffiliatedUser(anyInt())).thenReturn(false); Exception thrown = assertThrows(Exception.class, () -> mService.startBugreport(mCallingUid, mContext.getPackageName(), new FileDescriptor(), /* screenshotFd= */ null, BugreportParams.BUGREPORT_MODE_REMOTE, /* flags= */ 0, new Listener(new CountDownLatch(1)), /* isScreenshotRequested= */ false)); assertThat(thrown.getMessage()).contains("not affiliated to the device owner"); } @Test public void testRetrieveBugreportWithoutFilesForCaller() throws Exception { CountDownLatch latch = new CountDownLatch(1); Loading Loading @@ -250,8 +207,7 @@ public class BugreportManagerServiceImplTest { private void clearAllowlist() { mService = new BugreportManagerServiceImpl( new TestInjector(mContext, new ArraySet<>(), mMappingFile, mMockUserManager, mMockDevicePolicyManager)); new BugreportManagerServiceImpl.Injector(mContext, new ArraySet<>(), mMappingFile)); } private static class Listener implements IDumpstateListener { Loading Loading @@ -302,27 +258,4 @@ public class BugreportManagerServiceImplTest { complete(successful); } } private static class TestInjector extends BugreportManagerServiceImpl.Injector { private final UserManager mUserManager; private final DevicePolicyManager mDevicePolicyManager; TestInjector(Context context, ArraySet<String> allowlistedPackages, AtomicFile mappingFile, UserManager um, DevicePolicyManager dpm) { super(context, allowlistedPackages, mappingFile); mUserManager = um; mDevicePolicyManager = dpm; } @Override public UserManager getUserManager() { return mUserManager; } @Override public DevicePolicyManager getDevicePolicyManager() { return mDevicePolicyManager; } } } Loading
services/core/java/com/android/server/os/BugreportManagerServiceImpl.java +37 −34 Original line number Diff line number Diff line Loading @@ -21,11 +21,13 @@ import static android.app.admin.flags.Flags.onboardingBugreportV2Enabled; import android.Manifest; import android.annotation.Nullable; import android.annotation.RequiresPermission; import android.app.ActivityManager; import android.app.AppOpsManager; import android.app.admin.DevicePolicyManager; import android.app.role.RoleManager; import android.content.Context; import android.content.pm.PackageManager; import android.content.pm.UserInfo; import android.os.Binder; import android.os.BugreportManager.BugreportCallback; import android.os.BugreportParams; Loading @@ -37,7 +39,6 @@ import android.os.ServiceManager; import android.os.SystemClock; import android.os.SystemProperties; import android.os.UserHandle; import android.os.UserManager; import android.telephony.TelephonyManager; import android.text.TextUtils; import android.util.ArrayMap; Loading Loading @@ -95,7 +96,6 @@ class BugreportManagerServiceImpl extends IDumpstate.Stub { private static final long DEFAULT_BUGREPORT_SERVICE_TIMEOUT_MILLIS = 30 * 1000; private final Object mLock = new Object(); private final Injector mInjector; private final Context mContext; private final AppOpsManager mAppOps; private final TelephonyManager mTelephonyManager; Loading Loading @@ -346,14 +346,6 @@ class BugreportManagerServiceImpl extends IDumpstate.Stub { AtomicFile getMappingFile() { return mMappingFile; } UserManager getUserManager() { return mContext.getSystemService(UserManager.class); } DevicePolicyManager getDevicePolicyManager() { return mContext.getSystemService(DevicePolicyManager.class); } } BugreportManagerServiceImpl(Context context) { Loading @@ -365,7 +357,6 @@ class BugreportManagerServiceImpl extends IDumpstate.Stub { @VisibleForTesting(visibility = VisibleForTesting.Visibility.PRIVATE) BugreportManagerServiceImpl(Injector injector) { mInjector = injector; mContext = injector.getContext(); mAppOps = mContext.getSystemService(AppOpsManager.class); mTelephonyManager = mContext.getSystemService(TelephonyManager.class); Loading Loading @@ -398,7 +389,12 @@ class BugreportManagerServiceImpl extends IDumpstate.Stub { int callingUid = Binder.getCallingUid(); enforcePermission(callingPackage, callingUid, bugreportMode == BugreportParams.BUGREPORT_MODE_TELEPHONY /* checkCarrierPrivileges */); final long identity = Binder.clearCallingIdentity(); try { ensureUserCanTakeBugReport(bugreportMode); } finally { Binder.restoreCallingIdentity(identity); } Slogf.i(TAG, "Starting bugreport for %s / %d", callingPackage, callingUid); synchronized (mLock) { Loading Loading @@ -437,6 +433,7 @@ class BugreportManagerServiceImpl extends IDumpstate.Stub { @RequiresPermission(value = Manifest.permission.DUMP, conditional = true) public void retrieveBugreport(int callingUidUnused, String callingPackage, int userId, FileDescriptor bugreportFd, String bugreportFile, boolean keepBugreportOnRetrievalUnused, IDumpstateListener listener) { int callingUid = Binder.getCallingUid(); enforcePermission(callingPackage, callingUid, false); Loading Loading @@ -568,48 +565,54 @@ class BugreportManagerServiceImpl extends IDumpstate.Stub { } /** * Validates that the calling user is an admin user or, when bugreport is requested remotely * that the user is an affiliated user. * Validates that the current user is an admin user or, when bugreport is requested remotely * that the current user is an affiliated user. * * @throws IllegalArgumentException if the calling user is not an admin user * @throws IllegalArgumentException if the current user is not an admin user */ private void ensureUserCanTakeBugReport(int bugreportMode) { // Get the calling userId before clearing the caller identity. int callingUserId = UserHandle.getUserId(Binder.getCallingUid()); boolean isAdminUser = false; final long identity = Binder.clearCallingIdentity(); UserInfo currentUser = null; try { isAdminUser = mInjector.getUserManager().isUserAdmin(callingUserId); } finally { Binder.restoreCallingIdentity(identity); currentUser = ActivityManager.getService().getCurrentUser(); } catch (RemoteException e) { // Impossible to get RemoteException for an in-process call. } if (!isAdminUser) { if (currentUser == null) { logAndThrow("There is no current user, so no bugreport can be requested."); } if (!currentUser.isAdmin()) { if (bugreportMode == BugreportParams.BUGREPORT_MODE_REMOTE && isUserAffiliated(callingUserId)) { && isCurrentUserAffiliated(currentUser.id)) { return; } logAndThrow(TextUtils.formatSimple("Calling user %s is not an admin user." + " Only admin users are allowed to take bugreport.", callingUserId)); logAndThrow(TextUtils.formatSimple("Current user %s is not an admin user." + " Only admin users are allowed to take bugreport.", currentUser.id)); } } /** * Returns {@code true} if the device has device owner and the specified user is affiliated * Returns {@code true} if the device has device owner and the current user is affiliated * with the device owner. */ private boolean isUserAffiliated(int userId) { DevicePolicyManager dpm = mInjector.getDevicePolicyManager(); private boolean isCurrentUserAffiliated(int currentUserId) { DevicePolicyManager dpm = mContext.getSystemService(DevicePolicyManager.class); int deviceOwnerUid = dpm.getDeviceOwnerUserId(); if (deviceOwnerUid == UserHandle.USER_NULL) { return false; } if (DEBUG) { Slog.d(TAG, "callingUid: " + userId + " deviceOwnerUid: " + deviceOwnerUid); } int callingUserId = UserHandle.getUserId(Binder.getCallingUid()); if (userId != deviceOwnerUid && !dpm.isAffiliatedUser(userId)) { logAndThrow("User " + userId + " is not affiliated to the device owner."); Slog.i(TAG, "callingUid: " + callingUserId + " deviceOwnerUid: " + deviceOwnerUid + " currentUserId: " + currentUserId); if (callingUserId != deviceOwnerUid) { logAndThrow("Caller is not device owner on provisioned device."); } if (!dpm.isAffiliatedUser(currentUserId)) { logAndThrow("Current user is not affiliated to the device owner."); } return true; } Loading
services/tests/servicestests/src/com/android/server/os/BugreportManagerServiceImplTest.java +6 −73 Original line number Diff line number Diff line Loading @@ -16,26 +16,23 @@ package com.android.server.os; import android.app.admin.flags.Flags; import static android.app.admin.flags.Flags.onboardingBugreportV2Enabled; import static com.android.compatibility.common.util.SystemUtil.runWithShellPermissionIdentity; import static com.google.common.truth.Truth.assertThat; import static org.junit.Assert.assertThrows; import static org.mockito.ArgumentMatchers.anyInt; import static org.mockito.Mockito.when; import android.app.admin.DevicePolicyManager; import android.app.admin.flags.Flags; import android.app.role.RoleManager; import android.content.Context; import android.os.Binder; import android.os.BugreportManager.BugreportCallback; import android.os.BugreportParams; import android.os.IBinder; import android.os.IDumpstateListener; import android.os.Process; import android.os.RemoteException; import android.os.UserManager; import android.platform.test.annotations.RequiresFlagsEnabled; import android.platform.test.flag.junit.CheckFlagsRule; import android.platform.test.flag.junit.DeviceFlagsValueProvider; Loading @@ -51,8 +48,6 @@ import org.junit.Before; import org.junit.Rule; import org.junit.Test; import org.junit.runner.RunWith; import org.mockito.Mock; import org.mockito.MockitoAnnotations; import java.io.FileDescriptor; import java.util.concurrent.CompletableFuture; Loading @@ -71,11 +66,6 @@ public class BugreportManagerServiceImplTest { private BugreportManagerServiceImpl mService; private BugreportManagerServiceImpl.BugreportFileManager mBugreportFileManager; @Mock private UserManager mMockUserManager; @Mock private DevicePolicyManager mMockDevicePolicyManager; private int mCallingUid = 1234; private String mCallingPackage = "test.package"; private AtomicFile mMappingFile; Loading @@ -85,17 +75,14 @@ public class BugreportManagerServiceImplTest { @Before public void setUp() { MockitoAnnotations.initMocks(this); mContext = InstrumentationRegistry.getInstrumentation().getContext(); mMappingFile = new AtomicFile(mContext.getFilesDir(), "bugreport-mapping.xml"); ArraySet<String> mAllowlistedPackages = new ArraySet<>(); mAllowlistedPackages.add(mContext.getPackageName()); mService = new BugreportManagerServiceImpl( new TestInjector(mContext, mAllowlistedPackages, mMappingFile, mMockUserManager, mMockDevicePolicyManager)); new BugreportManagerServiceImpl.Injector(mContext, mAllowlistedPackages, mMappingFile)); mBugreportFileManager = new BugreportManagerServiceImpl.BugreportFileManager(mMappingFile); // The calling user is an admin user by default. when(mMockUserManager.isUserAdmin(anyInt())).thenReturn(true); } @After Loading Loading @@ -177,36 +164,6 @@ public class BugreportManagerServiceImplTest { "test-file.zip", /* forceUpdateMapping= */ true)); } @Test public void testStartBugreport_throwsForNonAdminUser() throws Exception { when(mMockUserManager.isUserAdmin(anyInt())).thenReturn(false); Exception thrown = assertThrows(Exception.class, () -> mService.startBugreport(mCallingUid, mContext.getPackageName(), new FileDescriptor(), /* screenshotFd= */ null, BugreportParams.BUGREPORT_MODE_FULL, /* flags= */ 0, new Listener(new CountDownLatch(1)), /* isScreenshotRequested= */ false)); assertThat(thrown.getMessage()).contains("not an admin user"); } @Test public void testStartBugreport_throwsForNotAffiliatedUser() throws Exception { when(mMockUserManager.isUserAdmin(anyInt())).thenReturn(false); when(mMockDevicePolicyManager.getDeviceOwnerUserId()).thenReturn(-1); when(mMockDevicePolicyManager.isAffiliatedUser(anyInt())).thenReturn(false); Exception thrown = assertThrows(Exception.class, () -> mService.startBugreport(mCallingUid, mContext.getPackageName(), new FileDescriptor(), /* screenshotFd= */ null, BugreportParams.BUGREPORT_MODE_REMOTE, /* flags= */ 0, new Listener(new CountDownLatch(1)), /* isScreenshotRequested= */ false)); assertThat(thrown.getMessage()).contains("not affiliated to the device owner"); } @Test public void testRetrieveBugreportWithoutFilesForCaller() throws Exception { CountDownLatch latch = new CountDownLatch(1); Loading Loading @@ -250,8 +207,7 @@ public class BugreportManagerServiceImplTest { private void clearAllowlist() { mService = new BugreportManagerServiceImpl( new TestInjector(mContext, new ArraySet<>(), mMappingFile, mMockUserManager, mMockDevicePolicyManager)); new BugreportManagerServiceImpl.Injector(mContext, new ArraySet<>(), mMappingFile)); } private static class Listener implements IDumpstateListener { Loading Loading @@ -302,27 +258,4 @@ public class BugreportManagerServiceImplTest { complete(successful); } } private static class TestInjector extends BugreportManagerServiceImpl.Injector { private final UserManager mUserManager; private final DevicePolicyManager mDevicePolicyManager; TestInjector(Context context, ArraySet<String> allowlistedPackages, AtomicFile mappingFile, UserManager um, DevicePolicyManager dpm) { super(context, allowlistedPackages, mappingFile); mUserManager = um; mDevicePolicyManager = dpm; } @Override public UserManager getUserManager() { return mUserManager; } @Override public DevicePolicyManager getDevicePolicyManager() { return mDevicePolicyManager; } } }
