diff options
| -rw-r--r-- | core/jni/android_util_Binder.cpp | 1 | ||||
| -rw-r--r-- | include/binder/IPCThreadState.h | 6 | ||||
| -rw-r--r-- | libs/binder/IPCThreadState.cpp | 22 | ||||
| -rw-r--r-- | libs/binder/Parcel.cpp | 11 | 
4 files changed, 33 insertions, 7 deletions
| diff --git a/core/jni/android_util_Binder.cpp b/core/jni/android_util_Binder.cpp index 5c4e4fd971dc..7a53874c6983 100644 --- a/core/jni/android_util_Binder.cpp +++ b/core/jni/android_util_Binder.cpp @@ -270,6 +270,7 @@ protected:          IPCThreadState* thread_state = IPCThreadState::self();          const int strict_policy_before = thread_state->getStrictModePolicy(); +        thread_state->setLastTransactionBinderFlags(flags);          //printf("Transact from %p to Java code sending: ", this);          //data.print(); diff --git a/include/binder/IPCThreadState.h b/include/binder/IPCThreadState.h index 04e24d29a6fd..b54718f1a5ce 100644 --- a/include/binder/IPCThreadState.h +++ b/include/binder/IPCThreadState.h @@ -43,7 +43,10 @@ public:              void                setStrictModePolicy(int32_t policy);              int32_t             getStrictModePolicy() const; -             + +            void                setLastTransactionBinderFlags(int32_t flags); +            int32_t             getLastTransactionBinderFlags() const; +              int64_t             clearCallingIdentity();              void                restoreCallingIdentity(int64_t token); @@ -113,6 +116,7 @@ private:              pid_t               mCallingPid;              uid_t               mCallingUid;              int32_t             mStrictModePolicy; +            int32_t             mLastTransactionBinderFlags;  };  }; // namespace android diff --git a/libs/binder/IPCThreadState.cpp b/libs/binder/IPCThreadState.cpp index f6582e6aa249..a3e117f453d2 100644 --- a/libs/binder/IPCThreadState.cpp +++ b/libs/binder/IPCThreadState.cpp @@ -377,6 +377,16 @@ int32_t IPCThreadState::getStrictModePolicy() const      return mStrictModePolicy;  } +void IPCThreadState::setLastTransactionBinderFlags(int32_t flags) +{ +    mLastTransactionBinderFlags = flags; +} + +int32_t IPCThreadState::getLastTransactionBinderFlags() const +{ +    return mLastTransactionBinderFlags; +} +  void IPCThreadState::restoreCallingIdentity(int64_t token)  {      mCallingUid = (int)(token>>32); @@ -598,8 +608,10 @@ status_t IPCThreadState::clearDeathNotification(int32_t handle, BpBinder* proxy)  }  IPCThreadState::IPCThreadState() -    : mProcess(ProcessState::self()), mMyThreadId(androidGetTid()), -      mStrictModePolicy(0) +    : mProcess(ProcessState::self()), +      mMyThreadId(androidGetTid()), +      mStrictModePolicy(0), +      mLastTransactionBinderFlags(0)  {      pthread_setspecific(gTLS, this);      clearCaller(); @@ -983,11 +995,11 @@ status_t IPCThreadState::executeCommand(int32_t cmd)              }              if (tr.target.ptr) {                  sp<BBinder> b((BBinder*)tr.cookie); -                const status_t error = b->transact(tr.code, buffer, &reply, 0); +                const status_t error = b->transact(tr.code, buffer, &reply, tr.flags);                  if (error < NO_ERROR) reply.setError(error); -                 +              } else { -                const status_t error = the_context_object->transact(tr.code, buffer, &reply, 0); +                const status_t error = the_context_object->transact(tr.code, buffer, &reply, tr.flags);                  if (error < NO_ERROR) reply.setError(error);              } diff --git a/libs/binder/Parcel.cpp b/libs/binder/Parcel.cpp index 18f75df2ea2f..f329ac4642c9 100644 --- a/libs/binder/Parcel.cpp +++ b/libs/binder/Parcel.cpp @@ -464,7 +464,16 @@ bool Parcel::enforceInterface(const String16& interface,      if (threadState == NULL) {          threadState = IPCThreadState::self();      } -    threadState->setStrictModePolicy(strictPolicy); +    if ((threadState->getLastTransactionBinderFlags() & +         IBinder::FLAG_ONEWAY) != 0) { +      // For one-way calls, the callee is running entirely +      // disconnected from the caller, so disable StrictMode entirely. +      // Not only does disk/network usage not impact the caller, but +      // there's no way to commuicate back any violations anyway. +      threadState->setStrictModePolicy(0); +    } else { +      threadState->setStrictModePolicy(strictPolicy); +    }      const String16 str(readString16());      if (str == interface) {          return true; |