Merge "Better network stats parsing, integer tags, async."

author: Jeff Sharkey <jsharkey@android.com> 2011-06-28 18:02:12 -0700
committer: Android (Google) Code Review <android-gerrit@google.com> 2011-06-28 18:02:12 -0700
commit: 8994730fe39570c7807561de38407a8b22230e8a (patch)
tree: 0154a39d8c1b08efb8d5291b8ff940cee9997e4c /core/java/android/net/NetworkPolicyManager.java
parent: eb8283d4b3eda3e1b9e670e0de615ac7605208e3 (diff)
parent: 4414cea13908b8230640f84ef39603d68ff9c377 (diff)
download: frameworks_base-8994730fe39570c7807561de38407a8b22230e8a.zip
frameworks_base-8994730fe39570c7807561de38407a8b22230e8a.tar.gz
frameworks_base-8994730fe39570c7807561de38407a8b22230e8a.tar.bz2
1 files changed, 36 insertions, 2 deletions
diff --git a/core/java/android/net/NetworkPolicyManager.java b/core/java/android/net/NetworkPolicyManager.java
index 91af16d..21fad2c 100644
--- a/core/java/android/net/NetworkPolicyManager.java
+++ b/core/java/android/net/NetworkPolicyManager.java
@@ -16,14 +16,21 @@
 
 package android.net;
 
+import static android.content.pm.PackageManager.GET_SIGNATURES;
 import static android.text.format.Time.MONTH_DAY;
 
 import android.content.Context;
 import android.content.Intent;
+import android.content.pm.PackageManager;
+import android.content.pm.PackageManager.NameNotFoundException;
+import android.content.pm.Signature;
 import android.os.RemoteException;
 import android.text.format.Time;
 
+import com.google.android.collect.Sets;
+
 import java.io.PrintWriter;
+import java.util.HashSet;
 
 /**
  * Manager for creating and modifying network policy rules.
@@ -210,8 +217,35 @@ public class NetworkPolicyManager {
      * usually to protect critical system services.
      */
     public static boolean isUidValidForPolicy(Context context, int uid) {
-        return (uid >= android.os.Process.FIRST_APPLICATION_UID
-                && uid <= android.os.Process.LAST_APPLICATION_UID);
+        // first, quick-reject non-applications
+        if (uid < android.os.Process.FIRST_APPLICATION_UID
+                || uid > android.os.Process.LAST_APPLICATION_UID) {
+            return false;
+        }
+
+        final PackageManager pm = context.getPackageManager();
+        final HashSet<Signature> systemSignature;
+        try {
+            systemSignature = Sets.newHashSet(
+                    pm.getPackageInfo("android", GET_SIGNATURES).signatures);
+        } catch (NameNotFoundException e) {
+            throw new RuntimeException("problem finding system signature", e);
+        }
+
+        try {
+            // reject apps signed with system cert
+            for (String packageName : pm.getPackagesForUid(uid)) {
+                final HashSet<Signature> packageSignature = Sets.newHashSet(
+                        pm.getPackageInfo(packageName, GET_SIGNATURES).signatures);
+                if (packageSignature.containsAll(systemSignature)) {
+                    return false;
+                }
+            }
+        } catch (NameNotFoundException e) {
+        }
+
+        // nothing found above; we can apply policy to UID
+        return true;
     }
 
     /** {@hide} */
author	Jeff Sharkey <jsharkey@android.com>	2011-06-28 18:02:12 -0700
committer	Android (Google) Code Review <android-gerrit@google.com>	2011-06-28 18:02:12 -0700
commit	8994730fe39570c7807561de38407a8b22230e8a (patch)
tree	0154a39d8c1b08efb8d5291b8ff940cee9997e4c /core/java/android/net/NetworkPolicyManager.java
parent	eb8283d4b3eda3e1b9e670e0de615ac7605208e3 (diff)
parent	4414cea13908b8230640f84ef39603d68ff9c377 (diff)
download	frameworks_base-8994730fe39570c7807561de38407a8b22230e8a.zip frameworks_base-8994730fe39570c7807561de38407a8b22230e8a.tar.gz frameworks_base-8994730fe39570c7807561de38407a8b22230e8a.tar.bz2