diff options
| author | Mike Lockwood <lockwood@android.com> | 2011-02-01 13:46:50 -0500 |
|---|---|---|
| committer | Mike Lockwood <lockwood@android.com> | 2011-02-01 13:46:50 -0500 |
| commit | a8e3a898a2bc004ca1fcd278b68f5da5c344afbb (patch) | |
| tree | 6c7a17ff0e23dc2e542b7a363f5a0cc463c8754c /services | |
| parent | 9f1f586f805f4510b2518b98b2bfbee0abbcc016 (diff) | |
| download | frameworks_base-a8e3a898a2bc004ca1fcd278b68f5da5c344afbb.zip frameworks_base-a8e3a898a2bc004ca1fcd278b68f5da5c344afbb.tar.gz frameworks_base-a8e3a898a2bc004ca1fcd278b68f5da5c344afbb.tar.bz2 | |
UsbService: Add support for blacklisting certain USB busses
This can be used to prevent applications from connecting to
sensitive internal USB devices (like the modem)
Change-Id: I6587f58018e3f8d8f78405d4004cce64db23b628
Signed-off-by: Mike Lockwood <lockwood@android.com>
Diffstat (limited to 'services')
| -rw-r--r-- | services/java/com/android/server/UsbService.java | 23 |
1 files changed, 23 insertions, 0 deletions
diff --git a/services/java/com/android/server/UsbService.java b/services/java/com/android/server/UsbService.java index 5c03fb2..45b0fcf 100644 --- a/services/java/com/android/server/UsbService.java +++ b/services/java/com/android/server/UsbService.java @@ -83,6 +83,9 @@ class UsbService extends IUsbManager.Stub { private final HashMap<String,UsbDevice> mDevices = new HashMap<String,UsbDevice>(); + // USB busses to exclude from USB host support + private final String[] mHostBlacklist; + private boolean mSystemReady; private final Context mContext; @@ -143,6 +146,9 @@ class UsbService extends IUsbManager.Stub { public UsbService(Context context) { mContext = context; + mHostBlacklist = context.getResources().getStringArray( + com.android.internal.R.array.config_usbHostBlacklist); + init(); // set initial status if (mConfiguration >= 0) { @@ -197,6 +203,16 @@ class UsbService extends IUsbManager.Stub { } } + private boolean isBlackListed(String deviceName) { + int count = mHostBlacklist.length; + for (int i = 0; i < count; i++) { + if (deviceName.startsWith(mHostBlacklist[i])) { + return true; + } + } + return false; + } + // called from JNI in monitorUsbHostBus() private void usbDeviceAdded(String deviceName, int vendorID, int productID, int deviceClass, int deviceSubclass, int deviceProtocol, @@ -212,6 +228,10 @@ class UsbService extends IUsbManager.Stub { return; } + if (isBlackListed(deviceName)) { + return; + } + synchronized (mDevices) { if (mDevices.get(deviceName) != null) { Log.w(TAG, "device already on mDevices list: " + deviceName); @@ -328,6 +348,9 @@ class UsbService extends IUsbManager.Stub { } public ParcelFileDescriptor openDevice(String deviceName) { + if (isBlackListed(deviceName)) { + throw new SecurityException("USB device is on a restricted bus"); + } mContext.enforceCallingOrSelfPermission(android.Manifest.permission.ACCESS_USB, null); return nativeOpenDevice(deviceName); } |