Home | History | Annotate | Download | only in audioflinger
      1 /*
      2  * Copyright (C) 2012 The Android Open Source Project
      3  *
      4  * Licensed under the Apache License, Version 2.0 (the "License");
      5  * you may not use this file except in compliance with the License.
      6  * You may obtain a copy of the License at
      7  *
      8  *      http://www.apache.org/licenses/LICENSE-2.0
      9  *
     10  * Unless required by applicable law or agreed to in writing, software
     11  * distributed under the License is distributed on an "AS IS" BASIS,
     12  * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
     13  * See the License for the specific language governing permissions and
     14  * limitations under the License.
     15  */
     16 
     17 #include <binder/IPCThreadState.h>
     18 #include <binder/IServiceManager.h>
     19 #include <binder/PermissionCache.h>
     20 #include "ServiceUtilities.h"
     21 
     22 namespace android {
     23 
     24 // Not valid until initialized by AudioFlinger constructor.  It would have to be
     25 // re-initialized if the process containing AudioFlinger service forks (which it doesn't).
     26 pid_t getpid_cached;
     27 
     28 bool recordingAllowed() {
     29     if (getpid_cached == IPCThreadState::self()->getCallingPid()) return true;
     30     static const String16 sRecordAudio("android.permission.RECORD_AUDIO");
     31     // don't use PermissionCache; this is not a system permission
     32     bool ok = checkCallingPermission(sRecordAudio);
     33     if (!ok) ALOGE("Request requires android.permission.RECORD_AUDIO");
     34     return ok;
     35 }
     36 
     37 bool captureAudioOutputAllowed() {
     38     if (getpid_cached == IPCThreadState::self()->getCallingPid()) return true;
     39     static const String16 sCaptureAudioOutput("android.permission.CAPTURE_AUDIO_OUTPUT");
     40     // don't use PermissionCache; this is not a system permission
     41     bool ok = checkCallingPermission(sCaptureAudioOutput);
     42     if (!ok) ALOGE("Request requires android.permission.CAPTURE_AUDIO_OUTPUT");
     43     return ok;
     44 }
     45 
     46 bool captureHotwordAllowed() {
     47     static const String16 sCaptureHotwordAllowed("android.permission.CAPTURE_AUDIO_HOTWORD");
     48     bool ok = checkCallingPermission(sCaptureHotwordAllowed);
     49     if (!ok) ALOGE("android.permission.CAPTURE_AUDIO_HOTWORD");
     50     return ok;
     51 }
     52 
     53 bool captureFmTunerAllowed() {
     54     static const String16 sCaptureFmTunerAllowed("android.permission.ACCESS_FM_RADIO");
     55     bool ok = checkCallingPermission(sCaptureFmTunerAllowed);
     56     if (!ok) ALOGE("android.permission.ACCESS_FM_RADIO");
     57     return ok;
     58 }
     59 
     60 bool settingsAllowed() {
     61     if (getpid_cached == IPCThreadState::self()->getCallingPid()) return true;
     62     static const String16 sAudioSettings("android.permission.MODIFY_AUDIO_SETTINGS");
     63     // don't use PermissionCache; this is not a system permission
     64     bool ok = checkCallingPermission(sAudioSettings);
     65     if (!ok) ALOGE("Request requires android.permission.MODIFY_AUDIO_SETTINGS");
     66     return ok;
     67 }
     68 
     69 bool modifyAudioRoutingAllowed() {
     70     static const String16 sModifyAudioRoutingAllowed("android.permission.MODIFY_AUDIO_ROUTING");
     71     bool ok = checkCallingPermission(sModifyAudioRoutingAllowed);
     72     if (!ok) ALOGE("android.permission.MODIFY_AUDIO_ROUTING");
     73     return ok;
     74 }
     75 
     76 bool dumpAllowed() {
     77     // don't optimize for same pid, since mediaserver never dumps itself
     78     static const String16 sDump("android.permission.DUMP");
     79     // OK to use PermissionCache; this is a system permission
     80     bool ok = PermissionCache::checkCallingPermission(sDump);
     81     // convention is for caller to dump an error message to fd instead of logging here
     82     //if (!ok) ALOGE("Request requires android.permission.DUMP");
     83     return ok;
     84 }
     85 
     86 } // namespace android
     87