-
Notifications
You must be signed in to change notification settings - Fork 0
/
AccessControl.cpp
114 lines (82 loc) · 3.15 KB
/
AccessControl.cpp
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
#include <android-base/logging.h>
#include <hidl-util/FQName.h>
#include <log/log.h>
#include "AccessControl.h"
namespace android {
static const char *kPermissionAdd = "add";
static const char *kPermissionGet = "find";
static const char *kPermissionList = "list";
struct audit_data {
const char* interfaceName;
pid_t pid;
};
using android::FQName;
AccessControl::AccessControl() {
mSeHandle = selinux_android_hw_service_context_handle();
LOG_ALWAYS_FATAL_IF(mSeHandle == NULL, "Failed to acquire SELinux handle.");
if (getcon(&mSeContext) != 0) {
LOG_ALWAYS_FATAL("Failed to acquire hwservicemanager context.");
}
selinux_status_open(true);
mSeCallbacks.func_audit = AccessControl::auditCallback;
selinux_set_callback(SELINUX_CB_AUDIT, mSeCallbacks);
mSeCallbacks.func_log = selinux_log_callback; /* defined in libselinux */
selinux_set_callback(SELINUX_CB_LOG, mSeCallbacks);
}
bool AccessControl::canAdd(const std::string& fqName, pid_t pid) {
FQName fqIface(fqName);
if (!fqIface.isValid()) {
return false;
}
const std::string checkName = fqIface.package() + "::" + fqIface.name();
return checkPermission(pid, kPermissionAdd, checkName.c_str());
}
bool AccessControl::canGet(const std::string& fqName, pid_t pid) {
FQName fqIface(fqName);
if (!fqIface.isValid()) {
return false;
}
const std::string checkName = fqIface.package() + "::" + fqIface.name();
return checkPermission(pid, kPermissionGet, checkName.c_str());
}
bool AccessControl::canList(pid_t pid) {
return checkPermission(pid, mSeContext, kPermissionList, nullptr);
}
bool AccessControl::checkPermission(pid_t sourcePid, const char *targetContext,
const char *perm, const char *interface) {
char *sourceContext = NULL;
bool allowed = false;
struct audit_data ad;
if (getpidcon(sourcePid, &sourceContext) < 0) {
ALOGE("SELinux: failed to retrieved process context for pid %d", sourcePid);
return false;
}
ad.pid = sourcePid;
ad.interfaceName = interface;
allowed = (selinux_check_access(sourceContext, targetContext, "hwservice_manager",
perm, (void *) &ad) == 0);
freecon(sourceContext);
return allowed;
}
bool AccessControl::checkPermission(pid_t sourcePid, const char *perm, const char *interface) {
char *targetContext = NULL;
bool allowed = false;
// Lookup service in hwservice_contexts
if (selabel_lookup(mSeHandle, &targetContext, interface, 0) != 0) {
ALOGE("No match for interface %s in hwservice_contexts", interface);
return false;
}
allowed = checkPermission(sourcePid, targetContext, perm, interface);
freecon(targetContext);
return allowed;
}
int AccessControl::auditCallback(void *data, security_class_t /*cls*/, char *buf, size_t len) {
struct audit_data *ad = (struct audit_data *)data;
if (!ad || !ad->interfaceName) {
ALOGE("No valid hwservicemanager audit data");
return 0;
}
snprintf(buf, len, "interface=%s pid=%d", ad->interfaceName, ad->pid);
return 0;
}
} // namespace android