1 /*
2  * Copyright (C) 2012 The Android Open Source Project
3  *
4  * Licensed under the Apache License, Version 2.0 (the "License");
5  * you may not use this file except in compliance with the License.
6  * You may obtain a copy of the License at
7  *
8  *      http://www.apache.org/licenses/LICENSE-2.0
9  *
10  * Unless required by applicable law or agreed to in writing, software
11  * distributed under the License is distributed on an "AS IS" BASIS,
12  * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13  * See the License for the specific language governing permissions and
14  * limitations under the License.
15  */
16 
17 #include <binder/IPCThreadState.h>
18 #include <binder/IServiceManager.h>
19 #include <binder/PermissionCache.h>
20 #include "ServiceUtilities.h"
21 
22 namespace android {
23 
24 // Not valid until initialized by AudioFlinger constructor.  It would have to be
25 // re-initialized if the process containing AudioFlinger service forks (which it doesn't).
26 pid_t getpid_cached;
27 
recordingAllowed()28 bool recordingAllowed() {
29     if (getpid_cached == IPCThreadState::self()->getCallingPid()) return true;
30     static const String16 sRecordAudio("android.permission.RECORD_AUDIO");
31     // don't use PermissionCache; this is not a system permission
32     bool ok = checkCallingPermission(sRecordAudio);
33     if (!ok) ALOGE("Request requires android.permission.RECORD_AUDIO");
34     return ok;
35 }
36 
captureAudioOutputAllowed()37 bool captureAudioOutputAllowed() {
38     if (getpid_cached == IPCThreadState::self()->getCallingPid()) return true;
39     static const String16 sCaptureAudioOutput("android.permission.CAPTURE_AUDIO_OUTPUT");
40     // don't use PermissionCache; this is not a system permission
41     bool ok = checkCallingPermission(sCaptureAudioOutput);
42     if (!ok) ALOGE("Request requires android.permission.CAPTURE_AUDIO_OUTPUT");
43     return ok;
44 }
45 
captureHotwordAllowed()46 bool captureHotwordAllowed() {
47     static const String16 sCaptureHotwordAllowed("android.permission.CAPTURE_AUDIO_HOTWORD");
48     bool ok = checkCallingPermission(sCaptureHotwordAllowed);
49     if (!ok) ALOGE("android.permission.CAPTURE_AUDIO_HOTWORD");
50     return ok;
51 }
52 
captureFmTunerAllowed()53 bool captureFmTunerAllowed() {
54     static const String16 sCaptureFmTunerAllowed("android.permission.ACCESS_FM_RADIO");
55     bool ok = checkCallingPermission(sCaptureFmTunerAllowed);
56     if (!ok) ALOGE("android.permission.ACCESS_FM_RADIO");
57     return ok;
58 }
59 
settingsAllowed()60 bool settingsAllowed() {
61     if (getpid_cached == IPCThreadState::self()->getCallingPid()) return true;
62     static const String16 sAudioSettings("android.permission.MODIFY_AUDIO_SETTINGS");
63     // don't use PermissionCache; this is not a system permission
64     bool ok = checkCallingPermission(sAudioSettings);
65     if (!ok) ALOGE("Request requires android.permission.MODIFY_AUDIO_SETTINGS");
66     return ok;
67 }
68 
modifyAudioRoutingAllowed()69 bool modifyAudioRoutingAllowed() {
70     static const String16 sModifyAudioRoutingAllowed("android.permission.MODIFY_AUDIO_ROUTING");
71     bool ok = checkCallingPermission(sModifyAudioRoutingAllowed);
72     if (!ok) ALOGE("android.permission.MODIFY_AUDIO_ROUTING");
73     return ok;
74 }
75 
dumpAllowed()76 bool dumpAllowed() {
77     // don't optimize for same pid, since mediaserver never dumps itself
78     static const String16 sDump("android.permission.DUMP");
79     // OK to use PermissionCache; this is a system permission
80     bool ok = PermissionCache::checkCallingPermission(sDump);
81     // convention is for caller to dump an error message to fd instead of logging here
82     //if (!ok) ALOGE("Request requires android.permission.DUMP");
83     return ok;
84 }
85 
86 } // namespace android
87