1*795d594fSAndroid Build Coastguard Worker /*
2*795d594fSAndroid Build Coastguard Worker * Copyright (C) 2018 The Android Open Source Project
3*795d594fSAndroid Build Coastguard Worker *
4*795d594fSAndroid Build Coastguard Worker * Licensed under the Apache License, Version 2.0 (the "License");
5*795d594fSAndroid Build Coastguard Worker * you may not use this file except in compliance with the License.
6*795d594fSAndroid Build Coastguard Worker * You may obtain a copy of the License at
7*795d594fSAndroid Build Coastguard Worker *
8*795d594fSAndroid Build Coastguard Worker * http://www.apache.org/licenses/LICENSE-2.0
9*795d594fSAndroid Build Coastguard Worker *
10*795d594fSAndroid Build Coastguard Worker * Unless required by applicable law or agreed to in writing, software
11*795d594fSAndroid Build Coastguard Worker * distributed under the License is distributed on an "AS IS" BASIS,
12*795d594fSAndroid Build Coastguard Worker * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13*795d594fSAndroid Build Coastguard Worker * See the License for the specific language governing permissions and
14*795d594fSAndroid Build Coastguard Worker * limitations under the License.
15*795d594fSAndroid Build Coastguard Worker */
16*795d594fSAndroid Build Coastguard Worker
17*795d594fSAndroid Build Coastguard Worker #ifndef ART_RUNTIME_HIDDEN_API_H_
18*795d594fSAndroid Build Coastguard Worker #define ART_RUNTIME_HIDDEN_API_H_
19*795d594fSAndroid Build Coastguard Worker
20*795d594fSAndroid Build Coastguard Worker #include "art_field.h"
21*795d594fSAndroid Build Coastguard Worker #include "art_method.h"
22*795d594fSAndroid Build Coastguard Worker #include "base/hiddenapi_domain.h"
23*795d594fSAndroid Build Coastguard Worker #include "base/hiddenapi_flags.h"
24*795d594fSAndroid Build Coastguard Worker #include "base/locks.h"
25*795d594fSAndroid Build Coastguard Worker #include "base/macros.h"
26*795d594fSAndroid Build Coastguard Worker #include "dex/class_accessor.h"
27*795d594fSAndroid Build Coastguard Worker #include "intrinsics_enum.h"
28*795d594fSAndroid Build Coastguard Worker #include "jni/jni_internal.h"
29*795d594fSAndroid Build Coastguard Worker #include "mirror/class.h"
30*795d594fSAndroid Build Coastguard Worker #include "mirror/class_loader.h"
31*795d594fSAndroid Build Coastguard Worker #include "reflection.h"
32*795d594fSAndroid Build Coastguard Worker #include "runtime.h"
33*795d594fSAndroid Build Coastguard Worker
34*795d594fSAndroid Build Coastguard Worker namespace art HIDDEN {
35*795d594fSAndroid Build Coastguard Worker namespace hiddenapi {
36*795d594fSAndroid Build Coastguard Worker
37*795d594fSAndroid Build Coastguard Worker // Hidden API enforcement policy
38*795d594fSAndroid Build Coastguard Worker // This must be kept in sync with ApplicationInfo.ApiEnforcementPolicy in
39*795d594fSAndroid Build Coastguard Worker // frameworks/base/core/java/android/content/pm/ApplicationInfo.java
40*795d594fSAndroid Build Coastguard Worker enum class EnforcementPolicy {
41*795d594fSAndroid Build Coastguard Worker kDisabled = 0,
42*795d594fSAndroid Build Coastguard Worker kJustWarn = 1, // keep checks enabled, but allow everything (enables logging)
43*795d594fSAndroid Build Coastguard Worker kEnabled = 2, // ban conditionally blocked & blocklist
44*795d594fSAndroid Build Coastguard Worker kMax = kEnabled,
45*795d594fSAndroid Build Coastguard Worker };
46*795d594fSAndroid Build Coastguard Worker
EnforcementPolicyFromInt(int api_policy_int)47*795d594fSAndroid Build Coastguard Worker inline EnforcementPolicy EnforcementPolicyFromInt(int api_policy_int) {
48*795d594fSAndroid Build Coastguard Worker DCHECK_GE(api_policy_int, 0);
49*795d594fSAndroid Build Coastguard Worker DCHECK_LE(api_policy_int, static_cast<int>(EnforcementPolicy::kMax));
50*795d594fSAndroid Build Coastguard Worker return static_cast<EnforcementPolicy>(api_policy_int);
51*795d594fSAndroid Build Coastguard Worker }
52*795d594fSAndroid Build Coastguard Worker
53*795d594fSAndroid Build Coastguard Worker // Hidden API access method
54*795d594fSAndroid Build Coastguard Worker // Thist must be kept in sync with VMRuntime.HiddenApiUsageLogger.ACCESS_METHOD_*
55*795d594fSAndroid Build Coastguard Worker enum class AccessMethod {
56*795d594fSAndroid Build Coastguard Worker kNone = 0, // internal test that does not correspond to an actual access by app
57*795d594fSAndroid Build Coastguard Worker kReflection = 1,
58*795d594fSAndroid Build Coastguard Worker kJNI = 2,
59*795d594fSAndroid Build Coastguard Worker kLinking = 3,
60*795d594fSAndroid Build Coastguard Worker };
61*795d594fSAndroid Build Coastguard Worker
62*795d594fSAndroid Build Coastguard Worker // Represents the API domain of a caller/callee.
63*795d594fSAndroid Build Coastguard Worker class AccessContext {
64*795d594fSAndroid Build Coastguard Worker public:
65*795d594fSAndroid Build Coastguard Worker // Initialize to either the fully-trusted or fully-untrusted domain.
AccessContext(bool is_trusted)66*795d594fSAndroid Build Coastguard Worker explicit AccessContext(bool is_trusted)
67*795d594fSAndroid Build Coastguard Worker : klass_(nullptr),
68*795d594fSAndroid Build Coastguard Worker dex_file_(nullptr),
69*795d594fSAndroid Build Coastguard Worker domain_(ComputeDomain(is_trusted)) {}
70*795d594fSAndroid Build Coastguard Worker
71*795d594fSAndroid Build Coastguard Worker // Initialize from class loader and dex file (via dex cache).
AccessContext(ObjPtr<mirror::ClassLoader> class_loader,ObjPtr<mirror::DexCache> dex_cache)72*795d594fSAndroid Build Coastguard Worker AccessContext(ObjPtr<mirror::ClassLoader> class_loader, ObjPtr<mirror::DexCache> dex_cache)
73*795d594fSAndroid Build Coastguard Worker REQUIRES_SHARED(Locks::mutator_lock_)
74*795d594fSAndroid Build Coastguard Worker : klass_(nullptr),
75*795d594fSAndroid Build Coastguard Worker dex_file_(GetDexFileFromDexCache(dex_cache)),
76*795d594fSAndroid Build Coastguard Worker domain_(ComputeDomain(class_loader, dex_file_)) {}
77*795d594fSAndroid Build Coastguard Worker
78*795d594fSAndroid Build Coastguard Worker // Initialize from class loader and dex file (only used by tests).
AccessContext(ObjPtr<mirror::ClassLoader> class_loader,const DexFile * dex_file)79*795d594fSAndroid Build Coastguard Worker AccessContext(ObjPtr<mirror::ClassLoader> class_loader, const DexFile* dex_file)
80*795d594fSAndroid Build Coastguard Worker : klass_(nullptr),
81*795d594fSAndroid Build Coastguard Worker dex_file_(dex_file),
82*795d594fSAndroid Build Coastguard Worker domain_(ComputeDomain(class_loader, dex_file_)) {}
83*795d594fSAndroid Build Coastguard Worker
84*795d594fSAndroid Build Coastguard Worker // Initialize from Class.
AccessContext(ObjPtr<mirror::Class> klass)85*795d594fSAndroid Build Coastguard Worker explicit AccessContext(ObjPtr<mirror::Class> klass)
86*795d594fSAndroid Build Coastguard Worker REQUIRES_SHARED(Locks::mutator_lock_)
87*795d594fSAndroid Build Coastguard Worker : klass_(klass),
88*795d594fSAndroid Build Coastguard Worker dex_file_(GetDexFileFromDexCache(klass->GetDexCache())),
89*795d594fSAndroid Build Coastguard Worker domain_(ComputeDomain(klass, dex_file_)) {}
90*795d594fSAndroid Build Coastguard Worker
GetClass()91*795d594fSAndroid Build Coastguard Worker ObjPtr<mirror::Class> GetClass() const { return klass_; }
GetDexFile()92*795d594fSAndroid Build Coastguard Worker const DexFile* GetDexFile() const { return dex_file_; }
GetDomain()93*795d594fSAndroid Build Coastguard Worker Domain GetDomain() const { return domain_; }
IsApplicationDomain()94*795d594fSAndroid Build Coastguard Worker bool IsApplicationDomain() const { return domain_ == Domain::kApplication; }
95*795d594fSAndroid Build Coastguard Worker
96*795d594fSAndroid Build Coastguard Worker // Returns true if this domain is always allowed to access the domain of `callee`.
CanAlwaysAccess(const AccessContext & callee)97*795d594fSAndroid Build Coastguard Worker bool CanAlwaysAccess(const AccessContext& callee) const {
98*795d594fSAndroid Build Coastguard Worker return IsDomainMoreTrustedThan(domain_, callee.domain_);
99*795d594fSAndroid Build Coastguard Worker }
100*795d594fSAndroid Build Coastguard Worker
101*795d594fSAndroid Build Coastguard Worker private:
GetDexFileFromDexCache(ObjPtr<mirror::DexCache> dex_cache)102*795d594fSAndroid Build Coastguard Worker static const DexFile* GetDexFileFromDexCache(ObjPtr<mirror::DexCache> dex_cache)
103*795d594fSAndroid Build Coastguard Worker REQUIRES_SHARED(Locks::mutator_lock_) {
104*795d594fSAndroid Build Coastguard Worker return dex_cache.IsNull() ? nullptr : dex_cache->GetDexFile();
105*795d594fSAndroid Build Coastguard Worker }
106*795d594fSAndroid Build Coastguard Worker
ComputeDomain(bool is_trusted)107*795d594fSAndroid Build Coastguard Worker static Domain ComputeDomain(bool is_trusted) {
108*795d594fSAndroid Build Coastguard Worker return is_trusted ? Domain::kCorePlatform : Domain::kApplication;
109*795d594fSAndroid Build Coastguard Worker }
110*795d594fSAndroid Build Coastguard Worker
ComputeDomain(ObjPtr<mirror::ClassLoader> class_loader,const DexFile * dex_file)111*795d594fSAndroid Build Coastguard Worker static Domain ComputeDomain(ObjPtr<mirror::ClassLoader> class_loader, const DexFile* dex_file) {
112*795d594fSAndroid Build Coastguard Worker if (dex_file == nullptr) {
113*795d594fSAndroid Build Coastguard Worker return ComputeDomain(/* is_trusted= */ class_loader.IsNull());
114*795d594fSAndroid Build Coastguard Worker }
115*795d594fSAndroid Build Coastguard Worker
116*795d594fSAndroid Build Coastguard Worker return dex_file->GetHiddenapiDomain();
117*795d594fSAndroid Build Coastguard Worker }
118*795d594fSAndroid Build Coastguard Worker
ComputeDomain(ObjPtr<mirror::Class> klass,const DexFile * dex_file)119*795d594fSAndroid Build Coastguard Worker static Domain ComputeDomain(ObjPtr<mirror::Class> klass, const DexFile* dex_file)
120*795d594fSAndroid Build Coastguard Worker REQUIRES_SHARED(Locks::mutator_lock_) {
121*795d594fSAndroid Build Coastguard Worker // Check other aspects of the context.
122*795d594fSAndroid Build Coastguard Worker Domain domain = ComputeDomain(klass->GetClassLoader(), dex_file);
123*795d594fSAndroid Build Coastguard Worker
124*795d594fSAndroid Build Coastguard Worker if (domain == Domain::kApplication &&
125*795d594fSAndroid Build Coastguard Worker klass->ShouldSkipHiddenApiChecks() &&
126*795d594fSAndroid Build Coastguard Worker Runtime::Current()->IsJavaDebuggableAtInit()) {
127*795d594fSAndroid Build Coastguard Worker // Class is known, it is marked trusted and we are in debuggable mode.
128*795d594fSAndroid Build Coastguard Worker domain = ComputeDomain(/* is_trusted= */ true);
129*795d594fSAndroid Build Coastguard Worker }
130*795d594fSAndroid Build Coastguard Worker
131*795d594fSAndroid Build Coastguard Worker return domain;
132*795d594fSAndroid Build Coastguard Worker }
133*795d594fSAndroid Build Coastguard Worker
134*795d594fSAndroid Build Coastguard Worker // Pointer to declaring class of the caller/callee (null if not provided).
135*795d594fSAndroid Build Coastguard Worker // This is not safe across GC but we're only using this class for passing
136*795d594fSAndroid Build Coastguard Worker // information about the caller to the access check logic and never retain
137*795d594fSAndroid Build Coastguard Worker // the AccessContext instance beyond that.
138*795d594fSAndroid Build Coastguard Worker const ObjPtr<mirror::Class> klass_;
139*795d594fSAndroid Build Coastguard Worker
140*795d594fSAndroid Build Coastguard Worker // DexFile of the caller/callee (null if not provided).
141*795d594fSAndroid Build Coastguard Worker const DexFile* const dex_file_;
142*795d594fSAndroid Build Coastguard Worker
143*795d594fSAndroid Build Coastguard Worker // Computed domain of the caller/callee.
144*795d594fSAndroid Build Coastguard Worker const Domain domain_;
145*795d594fSAndroid Build Coastguard Worker };
146*795d594fSAndroid Build Coastguard Worker
147*795d594fSAndroid Build Coastguard Worker class ScopedHiddenApiEnforcementPolicySetting {
148*795d594fSAndroid Build Coastguard Worker public:
ScopedHiddenApiEnforcementPolicySetting(EnforcementPolicy new_policy)149*795d594fSAndroid Build Coastguard Worker explicit ScopedHiddenApiEnforcementPolicySetting(EnforcementPolicy new_policy)
150*795d594fSAndroid Build Coastguard Worker : initial_policy_(Runtime::Current()->GetHiddenApiEnforcementPolicy()) {
151*795d594fSAndroid Build Coastguard Worker Runtime::Current()->SetHiddenApiEnforcementPolicy(new_policy);
152*795d594fSAndroid Build Coastguard Worker }
153*795d594fSAndroid Build Coastguard Worker
~ScopedHiddenApiEnforcementPolicySetting()154*795d594fSAndroid Build Coastguard Worker ~ScopedHiddenApiEnforcementPolicySetting() {
155*795d594fSAndroid Build Coastguard Worker Runtime::Current()->SetHiddenApiEnforcementPolicy(initial_policy_);
156*795d594fSAndroid Build Coastguard Worker }
157*795d594fSAndroid Build Coastguard Worker
158*795d594fSAndroid Build Coastguard Worker private:
159*795d594fSAndroid Build Coastguard Worker const EnforcementPolicy initial_policy_;
160*795d594fSAndroid Build Coastguard Worker DISALLOW_COPY_AND_ASSIGN(ScopedHiddenApiEnforcementPolicySetting);
161*795d594fSAndroid Build Coastguard Worker };
162*795d594fSAndroid Build Coastguard Worker
163*795d594fSAndroid Build Coastguard Worker void InitializeCorePlatformApiPrivateFields() REQUIRES(!Locks::mutator_lock_);
164*795d594fSAndroid Build Coastguard Worker
165*795d594fSAndroid Build Coastguard Worker // Walks the stack, finds the caller of this reflective call and returns
166*795d594fSAndroid Build Coastguard Worker // a hiddenapi AccessContext formed from its declaring class.
167*795d594fSAndroid Build Coastguard Worker AccessContext GetReflectionCallerAccessContext(Thread* self) REQUIRES_SHARED(Locks::mutator_lock_);
168*795d594fSAndroid Build Coastguard Worker
169*795d594fSAndroid Build Coastguard Worker // Implementation details. DO NOT ACCESS DIRECTLY.
170*795d594fSAndroid Build Coastguard Worker namespace detail {
171*795d594fSAndroid Build Coastguard Worker
172*795d594fSAndroid Build Coastguard Worker // Class to encapsulate the signature of a member (ArtField or ArtMethod). This
173*795d594fSAndroid Build Coastguard Worker // is used as a helper when matching prefixes, and when logging the signature.
174*795d594fSAndroid Build Coastguard Worker class MemberSignature {
175*795d594fSAndroid Build Coastguard Worker private:
176*795d594fSAndroid Build Coastguard Worker enum MemberType {
177*795d594fSAndroid Build Coastguard Worker kField,
178*795d594fSAndroid Build Coastguard Worker kMethod,
179*795d594fSAndroid Build Coastguard Worker };
180*795d594fSAndroid Build Coastguard Worker
181*795d594fSAndroid Build Coastguard Worker std::string class_name_;
182*795d594fSAndroid Build Coastguard Worker std::string member_name_;
183*795d594fSAndroid Build Coastguard Worker std::string type_signature_;
184*795d594fSAndroid Build Coastguard Worker std::string tmp_;
185*795d594fSAndroid Build Coastguard Worker MemberType type_;
186*795d594fSAndroid Build Coastguard Worker
187*795d594fSAndroid Build Coastguard Worker inline std::vector<const char*> GetSignatureParts() const;
188*795d594fSAndroid Build Coastguard Worker
189*795d594fSAndroid Build Coastguard Worker public:
190*795d594fSAndroid Build Coastguard Worker explicit MemberSignature(ArtField* field) REQUIRES_SHARED(Locks::mutator_lock_);
191*795d594fSAndroid Build Coastguard Worker explicit MemberSignature(ArtMethod* method) REQUIRES_SHARED(Locks::mutator_lock_);
192*795d594fSAndroid Build Coastguard Worker explicit MemberSignature(const ClassAccessor::Field& field);
193*795d594fSAndroid Build Coastguard Worker explicit MemberSignature(const ClassAccessor::Method& method);
194*795d594fSAndroid Build Coastguard Worker
195*795d594fSAndroid Build Coastguard Worker void Dump(std::ostream& os) const;
196*795d594fSAndroid Build Coastguard Worker
197*795d594fSAndroid Build Coastguard Worker bool Equals(const MemberSignature& other);
198*795d594fSAndroid Build Coastguard Worker bool MemberNameAndTypeMatch(const MemberSignature& other);
199*795d594fSAndroid Build Coastguard Worker
200*795d594fSAndroid Build Coastguard Worker // Performs prefix match on this member. Since the full member signature is
201*795d594fSAndroid Build Coastguard Worker // composed of several parts, we match each part in turn (rather than
202*795d594fSAndroid Build Coastguard Worker // building the entire thing in memory and performing a simple prefix match)
203*795d594fSAndroid Build Coastguard Worker bool DoesPrefixMatch(const std::string& prefix) const;
204*795d594fSAndroid Build Coastguard Worker
205*795d594fSAndroid Build Coastguard Worker bool DoesPrefixMatchAny(const std::vector<std::string>& exemptions);
206*795d594fSAndroid Build Coastguard Worker
207*795d594fSAndroid Build Coastguard Worker void WarnAboutAccess(AccessMethod access_method, ApiList list, bool access_denied);
208*795d594fSAndroid Build Coastguard Worker
209*795d594fSAndroid Build Coastguard Worker void LogAccessToEventLog(uint32_t sampled_value, AccessMethod access_method, bool access_denied);
210*795d594fSAndroid Build Coastguard Worker
211*795d594fSAndroid Build Coastguard Worker // Calls back into managed code to notify VMRuntime.nonSdkApiUsageConsumer that
212*795d594fSAndroid Build Coastguard Worker // |member| was accessed. This is usually called when an API is unsupported,
213*795d594fSAndroid Build Coastguard Worker // conditionally or unconditionally blocked. Given that the callback can execute arbitrary
214*795d594fSAndroid Build Coastguard Worker // code, a call to this method can result in thread suspension.
215*795d594fSAndroid Build Coastguard Worker void NotifyHiddenApiListener(AccessMethod access_method);
216*795d594fSAndroid Build Coastguard Worker };
217*795d594fSAndroid Build Coastguard Worker
218*795d594fSAndroid Build Coastguard Worker // Locates hiddenapi flags for `member` in the corresponding dex file.
219*795d594fSAndroid Build Coastguard Worker // NB: This is an O(N) operation, linear with the number of members in the class def.
220*795d594fSAndroid Build Coastguard Worker template<typename T>
221*795d594fSAndroid Build Coastguard Worker uint32_t GetDexFlags(T* member) REQUIRES_SHARED(Locks::mutator_lock_);
222*795d594fSAndroid Build Coastguard Worker
223*795d594fSAndroid Build Coastguard Worker // Handler of detected core platform API violations. Returns true if access to
224*795d594fSAndroid Build Coastguard Worker // `member` should be denied.
225*795d594fSAndroid Build Coastguard Worker template<typename T>
226*795d594fSAndroid Build Coastguard Worker bool HandleCorePlatformApiViolation(T* member,
227*795d594fSAndroid Build Coastguard Worker const AccessContext& caller_context,
228*795d594fSAndroid Build Coastguard Worker AccessMethod access_method,
229*795d594fSAndroid Build Coastguard Worker EnforcementPolicy policy)
230*795d594fSAndroid Build Coastguard Worker REQUIRES_SHARED(Locks::mutator_lock_);
231*795d594fSAndroid Build Coastguard Worker
232*795d594fSAndroid Build Coastguard Worker template<typename T>
233*795d594fSAndroid Build Coastguard Worker bool ShouldDenyAccessToMemberImpl(T* member, ApiList api_list, AccessMethod access_method)
234*795d594fSAndroid Build Coastguard Worker REQUIRES_SHARED(Locks::mutator_lock_);
235*795d594fSAndroid Build Coastguard Worker
GetInterfaceMemberIfProxy(ArtField * field)236*795d594fSAndroid Build Coastguard Worker inline ArtField* GetInterfaceMemberIfProxy(ArtField* field) { return field; }
237*795d594fSAndroid Build Coastguard Worker
GetInterfaceMemberIfProxy(ArtMethod * method)238*795d594fSAndroid Build Coastguard Worker inline ArtMethod* GetInterfaceMemberIfProxy(ArtMethod* method)
239*795d594fSAndroid Build Coastguard Worker REQUIRES_SHARED(Locks::mutator_lock_) {
240*795d594fSAndroid Build Coastguard Worker return method->GetInterfaceMethodIfProxy(kRuntimePointerSize);
241*795d594fSAndroid Build Coastguard Worker }
242*795d594fSAndroid Build Coastguard Worker
243*795d594fSAndroid Build Coastguard Worker // Returns access flags for the runtime representation of a class member (ArtField/ArtMember).
CreateRuntimeFlags_Impl(uint32_t dex_flags)244*795d594fSAndroid Build Coastguard Worker ALWAYS_INLINE inline uint32_t CreateRuntimeFlags_Impl(uint32_t dex_flags) {
245*795d594fSAndroid Build Coastguard Worker uint32_t runtime_flags = 0u;
246*795d594fSAndroid Build Coastguard Worker
247*795d594fSAndroid Build Coastguard Worker ApiList api_list(dex_flags);
248*795d594fSAndroid Build Coastguard Worker DCHECK(api_list.IsValid());
249*795d594fSAndroid Build Coastguard Worker
250*795d594fSAndroid Build Coastguard Worker if (api_list.Contains(ApiList::Sdk())) {
251*795d594fSAndroid Build Coastguard Worker runtime_flags |= kAccPublicApi;
252*795d594fSAndroid Build Coastguard Worker } else {
253*795d594fSAndroid Build Coastguard Worker // Only add domain-specific flags for non-public API members.
254*795d594fSAndroid Build Coastguard Worker // This simplifies hardcoded values for intrinsics.
255*795d594fSAndroid Build Coastguard Worker if (api_list.Contains(ApiList::CorePlatformApi())) {
256*795d594fSAndroid Build Coastguard Worker runtime_flags |= kAccCorePlatformApi;
257*795d594fSAndroid Build Coastguard Worker }
258*795d594fSAndroid Build Coastguard Worker }
259*795d594fSAndroid Build Coastguard Worker
260*795d594fSAndroid Build Coastguard Worker DCHECK_EQ(runtime_flags & kAccHiddenapiBits, runtime_flags)
261*795d594fSAndroid Build Coastguard Worker << "Runtime flags not in reserved access flags bits";
262*795d594fSAndroid Build Coastguard Worker return runtime_flags;
263*795d594fSAndroid Build Coastguard Worker }
264*795d594fSAndroid Build Coastguard Worker
265*795d594fSAndroid Build Coastguard Worker } // namespace detail
266*795d594fSAndroid Build Coastguard Worker
267*795d594fSAndroid Build Coastguard Worker // Returns access flags for the runtime representation of a class member (ArtField/ArtMember).
CreateRuntimeFlags(const ClassAccessor::BaseItem & member)268*795d594fSAndroid Build Coastguard Worker ALWAYS_INLINE inline uint32_t CreateRuntimeFlags(const ClassAccessor::BaseItem& member) {
269*795d594fSAndroid Build Coastguard Worker return detail::CreateRuntimeFlags_Impl(member.GetHiddenapiFlags());
270*795d594fSAndroid Build Coastguard Worker }
271*795d594fSAndroid Build Coastguard Worker
272*795d594fSAndroid Build Coastguard Worker // Returns access flags for the runtime representation of a class member (ArtField/ArtMember).
273*795d594fSAndroid Build Coastguard Worker template<typename T>
CreateRuntimeFlags(T * member)274*795d594fSAndroid Build Coastguard Worker ALWAYS_INLINE inline uint32_t CreateRuntimeFlags(T* member) REQUIRES_SHARED(Locks::mutator_lock_) {
275*795d594fSAndroid Build Coastguard Worker return detail::CreateRuntimeFlags_Impl(detail::GetDexFlags(member));
276*795d594fSAndroid Build Coastguard Worker }
277*795d594fSAndroid Build Coastguard Worker
278*795d594fSAndroid Build Coastguard Worker // Extracts hiddenapi runtime flags from access flags of ArtField.
GetRuntimeFlags(ArtField * field)279*795d594fSAndroid Build Coastguard Worker ALWAYS_INLINE inline uint32_t GetRuntimeFlags(ArtField* field)
280*795d594fSAndroid Build Coastguard Worker REQUIRES_SHARED(Locks::mutator_lock_) {
281*795d594fSAndroid Build Coastguard Worker return field->GetAccessFlags() & kAccHiddenapiBits;
282*795d594fSAndroid Build Coastguard Worker }
283*795d594fSAndroid Build Coastguard Worker
284*795d594fSAndroid Build Coastguard Worker // Extracts hiddenapi runtime flags from access flags of ArtMethod.
285*795d594fSAndroid Build Coastguard Worker // Uses hardcoded values for intrinsics.
GetRuntimeFlags(ArtMethod * method)286*795d594fSAndroid Build Coastguard Worker ALWAYS_INLINE inline uint32_t GetRuntimeFlags(ArtMethod* method)
287*795d594fSAndroid Build Coastguard Worker REQUIRES_SHARED(Locks::mutator_lock_) {
288*795d594fSAndroid Build Coastguard Worker if (UNLIKELY(method->IsIntrinsic())) {
289*795d594fSAndroid Build Coastguard Worker switch (method->GetIntrinsic()) {
290*795d594fSAndroid Build Coastguard Worker case Intrinsics::kSystemArrayCopyChar:
291*795d594fSAndroid Build Coastguard Worker case Intrinsics::kSystemArrayCopyByte:
292*795d594fSAndroid Build Coastguard Worker case Intrinsics::kSystemArrayCopyInt:
293*795d594fSAndroid Build Coastguard Worker case Intrinsics::kStringGetCharsNoCheck:
294*795d594fSAndroid Build Coastguard Worker case Intrinsics::kReferenceGetReferent:
295*795d594fSAndroid Build Coastguard Worker case Intrinsics::kMemoryPeekByte:
296*795d594fSAndroid Build Coastguard Worker case Intrinsics::kMemoryPokeByte:
297*795d594fSAndroid Build Coastguard Worker case Intrinsics::kCRC32Update:
298*795d594fSAndroid Build Coastguard Worker case Intrinsics::kCRC32UpdateBytes:
299*795d594fSAndroid Build Coastguard Worker case Intrinsics::kCRC32UpdateByteBuffer:
300*795d594fSAndroid Build Coastguard Worker case Intrinsics::kStringNewStringFromBytes:
301*795d594fSAndroid Build Coastguard Worker case Intrinsics::kStringNewStringFromChars:
302*795d594fSAndroid Build Coastguard Worker case Intrinsics::kStringNewStringFromString:
303*795d594fSAndroid Build Coastguard Worker case Intrinsics::kMemoryPeekIntNative:
304*795d594fSAndroid Build Coastguard Worker case Intrinsics::kMemoryPeekLongNative:
305*795d594fSAndroid Build Coastguard Worker case Intrinsics::kMemoryPeekShortNative:
306*795d594fSAndroid Build Coastguard Worker case Intrinsics::kMemoryPokeIntNative:
307*795d594fSAndroid Build Coastguard Worker case Intrinsics::kMemoryPokeLongNative:
308*795d594fSAndroid Build Coastguard Worker case Intrinsics::kMemoryPokeShortNative:
309*795d594fSAndroid Build Coastguard Worker case Intrinsics::kUnsafeCASInt:
310*795d594fSAndroid Build Coastguard Worker case Intrinsics::kUnsafeCASLong:
311*795d594fSAndroid Build Coastguard Worker case Intrinsics::kUnsafeCASObject:
312*795d594fSAndroid Build Coastguard Worker case Intrinsics::kUnsafeGetAndAddInt:
313*795d594fSAndroid Build Coastguard Worker case Intrinsics::kUnsafeGetAndAddLong:
314*795d594fSAndroid Build Coastguard Worker case Intrinsics::kUnsafeGetAndSetInt:
315*795d594fSAndroid Build Coastguard Worker case Intrinsics::kUnsafeGetAndSetLong:
316*795d594fSAndroid Build Coastguard Worker case Intrinsics::kUnsafeGetAndSetObject:
317*795d594fSAndroid Build Coastguard Worker case Intrinsics::kUnsafeGetLongVolatile:
318*795d594fSAndroid Build Coastguard Worker case Intrinsics::kUnsafeGetObjectVolatile:
319*795d594fSAndroid Build Coastguard Worker case Intrinsics::kUnsafeGetVolatile:
320*795d594fSAndroid Build Coastguard Worker case Intrinsics::kUnsafePutLongOrdered:
321*795d594fSAndroid Build Coastguard Worker case Intrinsics::kUnsafePutLongVolatile:
322*795d594fSAndroid Build Coastguard Worker case Intrinsics::kUnsafePutObjectOrdered:
323*795d594fSAndroid Build Coastguard Worker case Intrinsics::kUnsafePutObjectVolatile:
324*795d594fSAndroid Build Coastguard Worker case Intrinsics::kUnsafePutOrdered:
325*795d594fSAndroid Build Coastguard Worker case Intrinsics::kUnsafePutVolatile:
326*795d594fSAndroid Build Coastguard Worker case Intrinsics::kUnsafeLoadFence:
327*795d594fSAndroid Build Coastguard Worker case Intrinsics::kUnsafeStoreFence:
328*795d594fSAndroid Build Coastguard Worker case Intrinsics::kUnsafeFullFence:
329*795d594fSAndroid Build Coastguard Worker case Intrinsics::kJdkUnsafeArrayBaseOffset:
330*795d594fSAndroid Build Coastguard Worker case Intrinsics::kJdkUnsafeCASInt:
331*795d594fSAndroid Build Coastguard Worker case Intrinsics::kJdkUnsafeCASLong:
332*795d594fSAndroid Build Coastguard Worker case Intrinsics::kJdkUnsafeCASObject:
333*795d594fSAndroid Build Coastguard Worker case Intrinsics::kJdkUnsafeCompareAndSetInt:
334*795d594fSAndroid Build Coastguard Worker case Intrinsics::kJdkUnsafeCompareAndSetLong:
335*795d594fSAndroid Build Coastguard Worker case Intrinsics::kJdkUnsafeCompareAndSetReference:
336*795d594fSAndroid Build Coastguard Worker case Intrinsics::kJdkUnsafeGetAndAddInt:
337*795d594fSAndroid Build Coastguard Worker case Intrinsics::kJdkUnsafeGetAndAddLong:
338*795d594fSAndroid Build Coastguard Worker case Intrinsics::kJdkUnsafeGetAndSetInt:
339*795d594fSAndroid Build Coastguard Worker case Intrinsics::kJdkUnsafeGetAndSetLong:
340*795d594fSAndroid Build Coastguard Worker case Intrinsics::kJdkUnsafeGetAndSetReference:
341*795d594fSAndroid Build Coastguard Worker case Intrinsics::kJdkUnsafeGetLongVolatile:
342*795d594fSAndroid Build Coastguard Worker case Intrinsics::kJdkUnsafeGetLongAcquire:
343*795d594fSAndroid Build Coastguard Worker case Intrinsics::kJdkUnsafeGetReferenceVolatile:
344*795d594fSAndroid Build Coastguard Worker case Intrinsics::kJdkUnsafeGetReferenceAcquire:
345*795d594fSAndroid Build Coastguard Worker case Intrinsics::kJdkUnsafeGetVolatile:
346*795d594fSAndroid Build Coastguard Worker case Intrinsics::kJdkUnsafeGetAcquire:
347*795d594fSAndroid Build Coastguard Worker case Intrinsics::kJdkUnsafePutLongOrdered:
348*795d594fSAndroid Build Coastguard Worker case Intrinsics::kJdkUnsafePutLongVolatile:
349*795d594fSAndroid Build Coastguard Worker case Intrinsics::kJdkUnsafePutLongRelease:
350*795d594fSAndroid Build Coastguard Worker case Intrinsics::kJdkUnsafePutObjectOrdered:
351*795d594fSAndroid Build Coastguard Worker case Intrinsics::kJdkUnsafePutReferenceVolatile:
352*795d594fSAndroid Build Coastguard Worker case Intrinsics::kJdkUnsafePutReferenceRelease:
353*795d594fSAndroid Build Coastguard Worker case Intrinsics::kJdkUnsafePutOrdered:
354*795d594fSAndroid Build Coastguard Worker case Intrinsics::kJdkUnsafePutVolatile:
355*795d594fSAndroid Build Coastguard Worker case Intrinsics::kJdkUnsafePutRelease:
356*795d594fSAndroid Build Coastguard Worker case Intrinsics::kJdkUnsafeLoadFence:
357*795d594fSAndroid Build Coastguard Worker case Intrinsics::kJdkUnsafeStoreFence:
358*795d594fSAndroid Build Coastguard Worker case Intrinsics::kJdkUnsafeFullFence:
359*795d594fSAndroid Build Coastguard Worker case Intrinsics::kJdkUnsafeGet:
360*795d594fSAndroid Build Coastguard Worker case Intrinsics::kJdkUnsafeGetAbsolute:
361*795d594fSAndroid Build Coastguard Worker case Intrinsics::kJdkUnsafeGetLong:
362*795d594fSAndroid Build Coastguard Worker case Intrinsics::kJdkUnsafeGetByte:
363*795d594fSAndroid Build Coastguard Worker case Intrinsics::kJdkUnsafeGetReference:
364*795d594fSAndroid Build Coastguard Worker case Intrinsics::kJdkUnsafePutLong:
365*795d594fSAndroid Build Coastguard Worker case Intrinsics::kJdkUnsafePut:
366*795d594fSAndroid Build Coastguard Worker case Intrinsics::kJdkUnsafePutAbsolute:
367*795d594fSAndroid Build Coastguard Worker case Intrinsics::kJdkUnsafePutReference:
368*795d594fSAndroid Build Coastguard Worker case Intrinsics::kJdkUnsafePutByte:
369*795d594fSAndroid Build Coastguard Worker return 0u;
370*795d594fSAndroid Build Coastguard Worker case Intrinsics::kFP16Ceil:
371*795d594fSAndroid Build Coastguard Worker case Intrinsics::kFP16Compare:
372*795d594fSAndroid Build Coastguard Worker case Intrinsics::kFP16Floor:
373*795d594fSAndroid Build Coastguard Worker case Intrinsics::kFP16Greater:
374*795d594fSAndroid Build Coastguard Worker case Intrinsics::kFP16GreaterEquals:
375*795d594fSAndroid Build Coastguard Worker case Intrinsics::kFP16Less:
376*795d594fSAndroid Build Coastguard Worker case Intrinsics::kFP16LessEquals:
377*795d594fSAndroid Build Coastguard Worker case Intrinsics::kFP16Min:
378*795d594fSAndroid Build Coastguard Worker case Intrinsics::kFP16Max:
379*795d594fSAndroid Build Coastguard Worker case Intrinsics::kFP16ToFloat:
380*795d594fSAndroid Build Coastguard Worker case Intrinsics::kFP16ToHalf:
381*795d594fSAndroid Build Coastguard Worker case Intrinsics::kFP16Rint:
382*795d594fSAndroid Build Coastguard Worker case Intrinsics::kUnsafeArrayBaseOffset:
383*795d594fSAndroid Build Coastguard Worker case Intrinsics::kUnsafeGet:
384*795d594fSAndroid Build Coastguard Worker case Intrinsics::kUnsafeGetAbsolute:
385*795d594fSAndroid Build Coastguard Worker case Intrinsics::kUnsafeGetLong:
386*795d594fSAndroid Build Coastguard Worker case Intrinsics::kUnsafeGetByte:
387*795d594fSAndroid Build Coastguard Worker case Intrinsics::kUnsafeGetObject:
388*795d594fSAndroid Build Coastguard Worker case Intrinsics::kUnsafePutLong:
389*795d594fSAndroid Build Coastguard Worker case Intrinsics::kUnsafePut:
390*795d594fSAndroid Build Coastguard Worker case Intrinsics::kUnsafePutAbsolute:
391*795d594fSAndroid Build Coastguard Worker case Intrinsics::kUnsafePutObject:
392*795d594fSAndroid Build Coastguard Worker case Intrinsics::kUnsafePutByte:
393*795d594fSAndroid Build Coastguard Worker return kAccCorePlatformApi;
394*795d594fSAndroid Build Coastguard Worker default:
395*795d594fSAndroid Build Coastguard Worker // Remaining intrinsics are public API. We DCHECK that in SetIntrinsic().
396*795d594fSAndroid Build Coastguard Worker return kAccPublicApi;
397*795d594fSAndroid Build Coastguard Worker }
398*795d594fSAndroid Build Coastguard Worker } else {
399*795d594fSAndroid Build Coastguard Worker return method->GetAccessFlags() & kAccHiddenapiBits;
400*795d594fSAndroid Build Coastguard Worker }
401*795d594fSAndroid Build Coastguard Worker }
402*795d594fSAndroid Build Coastguard Worker
403*795d594fSAndroid Build Coastguard Worker // Called by class linker when a new dex file has been registered. Assigns
404*795d594fSAndroid Build Coastguard Worker // the AccessContext domain to the newly-registered dex file based on its
405*795d594fSAndroid Build Coastguard Worker // location and class loader.
406*795d594fSAndroid Build Coastguard Worker void InitializeDexFileDomain(const DexFile& dex_file, ObjPtr<mirror::ClassLoader> class_loader);
407*795d594fSAndroid Build Coastguard Worker
408*795d594fSAndroid Build Coastguard Worker // Returns true if access to `member` should be denied in the given context.
409*795d594fSAndroid Build Coastguard Worker // The decision is based on whether the caller is in a trusted context or not.
410*795d594fSAndroid Build Coastguard Worker // Because determining the access context can be expensive, a lambda function
411*795d594fSAndroid Build Coastguard Worker // "fn_get_access_context" is lazily invoked after other criteria have been
412*795d594fSAndroid Build Coastguard Worker // considered.
413*795d594fSAndroid Build Coastguard Worker // This function might print warnings into the log if the member is hidden.
414*795d594fSAndroid Build Coastguard Worker template<typename T>
415*795d594fSAndroid Build Coastguard Worker bool ShouldDenyAccessToMember(T* member,
416*795d594fSAndroid Build Coastguard Worker const std::function<AccessContext()>& fn_get_access_context,
417*795d594fSAndroid Build Coastguard Worker AccessMethod access_method)
418*795d594fSAndroid Build Coastguard Worker REQUIRES_SHARED(Locks::mutator_lock_);
419*795d594fSAndroid Build Coastguard Worker
420*795d594fSAndroid Build Coastguard Worker // Helper method for callers where access context can be determined beforehand.
421*795d594fSAndroid Build Coastguard Worker // Wraps AccessContext in a lambda and passes it to the real ShouldDenyAccessToMember.
422*795d594fSAndroid Build Coastguard Worker template<typename T>
ShouldDenyAccessToMember(T * member,const AccessContext & access_context,AccessMethod access_method)423*795d594fSAndroid Build Coastguard Worker inline bool ShouldDenyAccessToMember(T* member,
424*795d594fSAndroid Build Coastguard Worker const AccessContext& access_context,
425*795d594fSAndroid Build Coastguard Worker AccessMethod access_method)
426*795d594fSAndroid Build Coastguard Worker REQUIRES_SHARED(Locks::mutator_lock_) {
427*795d594fSAndroid Build Coastguard Worker return ShouldDenyAccessToMember(member, [&]() { return access_context; }, access_method);
428*795d594fSAndroid Build Coastguard Worker }
429*795d594fSAndroid Build Coastguard Worker
430*795d594fSAndroid Build Coastguard Worker } // namespace hiddenapi
431*795d594fSAndroid Build Coastguard Worker } // namespace art
432*795d594fSAndroid Build Coastguard Worker
433*795d594fSAndroid Build Coastguard Worker #endif // ART_RUNTIME_HIDDEN_API_H_
434