1 /* 2 * Copyright (C) 2018 The Android Open Source Project 3 * 4 * Licensed under the Apache License, Version 2.0 (the "License"); 5 * you may not use this file except in compliance with the License. 6 * You may obtain a copy of the License at 7 * 8 * http://www.apache.org/licenses/LICENSE-2.0 9 * 10 * Unless required by applicable law or agreed to in writing, software 11 * distributed under the License is distributed on an "AS IS" BASIS, 12 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. 13 * See the License for the specific language governing permissions and 14 * limitations under the License. 15 */ 16 17 #ifndef ART_LIBARTBASE_BASE_HIDDENAPI_FLAGS_H_ 18 #define ART_LIBARTBASE_BASE_HIDDENAPI_FLAGS_H_ 19 20 #include "sdk_version.h" 21 22 #include <vector> 23 24 #include "android-base/logging.h" 25 #include "base/bit_utils.h" 26 #include "base/dumpable.h" 27 #include "base/macros.h" 28 #include "base/hiddenapi_stubs.h" 29 30 namespace art { 31 namespace hiddenapi { 32 33 // Helper methods used inside ApiList. These were moved outside of the ApiList 34 // class so that they can be used in static_asserts. If they were inside, they 35 // would be part of an unfinished type. 36 namespace helper { 37 // Casts enum value to uint32_t. 38 template<typename T> ToUint(T val)39 constexpr uint32_t ToUint(T val) { return static_cast<uint32_t>(val); } 40 41 // Returns uint32_t with one bit set at an index given by an enum value. 42 template<typename T> ToBit(T val)43 constexpr uint32_t ToBit(T val) { return 1u << ToUint(val); } 44 45 // Returns a bit mask with `size` least significant bits set. BitMask(uint32_t size)46 constexpr uint32_t BitMask(uint32_t size) { return (1u << size) - 1; } 47 48 // Returns a bit mask formed from an enum defining kMin and kMax. The values 49 // are assumed to be indices of min/max bits and the resulting bitmask has 50 // bits [kMin, kMax] set. 51 template<typename T> BitMask()52 constexpr uint32_t BitMask() { 53 return BitMask(ToUint(T::kMax) + 1) & (~BitMask(ToUint(T::kMin))); 54 } 55 56 // Returns true if `val` is a bitwise subset of `mask`. MatchesBitMask(uint32_t val,uint32_t mask)57 constexpr bool MatchesBitMask(uint32_t val, uint32_t mask) { return (val & mask) == val; } 58 59 // Returns true if the uint32_t value of `val` is a bitwise subset of `mask`. 60 template<typename T> MatchesBitMask(T val,uint32_t mask)61 constexpr bool MatchesBitMask(T val, uint32_t mask) { return MatchesBitMask(ToUint(val), mask); } 62 63 // Returns the number of values defined in an enum, assuming the enum defines 64 // kMin and kMax and no integer values are skipped between them. 65 template<typename T> NumValues()66 constexpr uint32_t NumValues() { return ToUint(T::kMax) - ToUint(T::kMin) + 1; } 67 68 // Returns enum value at position i from enum list. 69 template <typename T> GetEnumAt(uint32_t i)70 constexpr T GetEnumAt(uint32_t i) { 71 return static_cast<T>(ToUint(T::kMin) + i); 72 } 73 74 } // namespace helper 75 76 /* 77 * This class represents the information whether a field/method is in 78 * public API (whitelist) or if it isn't, apps targeting which SDK 79 * versions are allowed to access it. 80 */ 81 class ApiList { 82 private: 83 // Number of bits reserved for Value in dex flags, and the corresponding bit mask. 84 static constexpr uint32_t kValueBitSize = 3; 85 static constexpr uint32_t kValueBitMask = helper::BitMask(kValueBitSize); 86 87 enum class Value : uint32_t { 88 // Values independent of target SDK version of app 89 kWhitelist = 0, 90 kGreylist = 1, 91 kBlacklist = 2, 92 93 // Values dependent on target SDK version of app. Put these last as 94 // their list will be extended in future releases. 95 // The max release code implicitly includes all maintenance releases, 96 // e.g. GreylistMaxO is accessible to targetSdkVersion <= 27 (O_MR1). 97 kGreylistMaxO = 3, 98 kGreylistMaxP = 4, 99 kGreylistMaxQ = 5, 100 kGreylistMaxR = 6, 101 102 // Special values 103 kInvalid = (static_cast<uint32_t>(-1) & kValueBitMask), 104 kMin = kWhitelist, 105 kMax = kGreylistMaxR, 106 }; 107 108 // Additional bit flags after the first kValueBitSize bits in dex flags. 109 // These are used for domain-specific API. 110 enum class DomainApi : uint32_t { 111 kCorePlatformApi = kValueBitSize, 112 kTestApi = kValueBitSize + 1, 113 114 // Special values 115 kMin = kCorePlatformApi, 116 kMax = kTestApi, 117 }; 118 119 // Bit mask of all domain API flags. 120 static constexpr uint32_t kDomainApiBitMask = helper::BitMask<DomainApi>(); 121 122 // Check that Values fit in the designated number of bits. 123 static_assert(kValueBitSize >= MinimumBitsToStore(helper::ToUint(Value::kMax)), 124 "Not enough bits to store all ApiList values"); 125 126 // Checks that all Values are covered by kValueBitMask. 127 static_assert(helper::MatchesBitMask(Value::kMin, kValueBitMask)); 128 static_assert(helper::MatchesBitMask(Value::kMax, kValueBitMask)); 129 130 // Assert that Value::kInvalid is larger than the maximum Value. 131 static_assert(helper::ToUint(Value::kMax) < helper::ToUint(Value::kInvalid)); 132 133 // Names corresponding to Values. 134 static constexpr const char* kValueNames[] = { 135 "whitelist", 136 "greylist", 137 "blacklist", 138 "greylist-max-o", 139 "greylist-max-p", 140 "greylist-max-q", 141 "greylist-max-r", 142 }; 143 144 // Names corresponding to DomainApis. 145 static constexpr const char* kDomainApiNames[] { 146 "core-platform-api", 147 "test-api", 148 }; 149 150 // Maximum SDK versions allowed to access ApiList of given Value. 151 static constexpr SdkVersion kMaxSdkVersions[] { 152 /* whitelist */ SdkVersion::kMax, 153 /* greylist */ SdkVersion::kMax, 154 /* blacklist */ SdkVersion::kMin, 155 /* greylist-max-o */ SdkVersion::kO_MR1, 156 /* greylist-max-p */ SdkVersion::kP, 157 /* greylist-max-q */ SdkVersion::kQ, 158 /* greylist-max-r */ SdkVersion::kR, 159 }; 160 161 explicit ApiList(Value val, uint32_t domain_apis = 0u) 162 : dex_flags_(helper::ToUint(val) | domain_apis) { 163 DCHECK(GetValue() == val); 164 DCHECK_EQ(GetDomainApis(), domain_apis); 165 } 166 ApiList(DomainApi val)167 explicit ApiList(DomainApi val) : ApiList(Value::kInvalid, helper::ToBit(val)) {} 168 GetValue()169 Value GetValue() const { 170 uint32_t value = (dex_flags_ & kValueBitMask); 171 172 // Treat all ones as invalid value 173 if (value == helper::ToUint(Value::kInvalid)) { 174 return Value::kInvalid; 175 } else { 176 DCHECK_GE(value, helper::ToUint(Value::kMin)); 177 DCHECK_LE(value, helper::ToUint(Value::kMax)); 178 return static_cast<Value>(value); 179 } 180 } 181 GetDomainApis()182 uint32_t GetDomainApis() const { return (dex_flags_ & kDomainApiBitMask); } 183 184 uint32_t dex_flags_; 185 186 public: ApiList()187 ApiList() : ApiList(Value::kInvalid) {} 188 ApiList(uint32_t dex_flags)189 explicit ApiList(uint32_t dex_flags) : dex_flags_(dex_flags) { 190 DCHECK_EQ(dex_flags_, (dex_flags_ & kValueBitMask) | (dex_flags_ & kDomainApiBitMask)); 191 } 192 193 // Helpers for conveniently constructing ApiList instances. Whitelist()194 static ApiList Whitelist() { return ApiList(Value::kWhitelist); } Greylist()195 static ApiList Greylist() { return ApiList(Value::kGreylist); } Blacklist()196 static ApiList Blacklist() { return ApiList(Value::kBlacklist); } GreylistMaxO()197 static ApiList GreylistMaxO() { return ApiList(Value::kGreylistMaxO); } GreylistMaxP()198 static ApiList GreylistMaxP() { return ApiList(Value::kGreylistMaxP); } GreylistMaxQ()199 static ApiList GreylistMaxQ() { return ApiList(Value::kGreylistMaxQ); } GreylistMaxR()200 static ApiList GreylistMaxR() { return ApiList(Value::kGreylistMaxR); } CorePlatformApi()201 static ApiList CorePlatformApi() { return ApiList(DomainApi::kCorePlatformApi); } TestApi()202 static ApiList TestApi() { return ApiList(DomainApi::kTestApi); } 203 GetDexFlags()204 uint32_t GetDexFlags() const { return dex_flags_; } GetIntValue()205 uint32_t GetIntValue() const { return helper::ToUint(GetValue()) - helper::ToUint(Value::kMin); } 206 207 // Returns the ApiList with a flag of a given name, or an empty ApiList if not matched. FromName(const std::string & str)208 static ApiList FromName(const std::string& str) { 209 for (uint32_t i = 0; i < kValueCount; ++i) { 210 if (str == kValueNames[i]) { 211 return ApiList(helper::GetEnumAt<Value>(i)); 212 } 213 } 214 for (uint32_t i = 0; i < kDomainApiCount; ++i) { 215 if (str == kDomainApiNames[i]) { 216 return ApiList(helper::GetEnumAt<DomainApi>(i)); 217 } 218 } 219 return ApiList(); 220 } 221 222 // Parses a vector of flag names into a single ApiList value. If successful, 223 // returns true and assigns the new ApiList to `out_api_list`. FromNames(std::vector<std::string>::iterator begin,std::vector<std::string>::iterator end,ApiList * out_api_list)224 static bool FromNames(std::vector<std::string>::iterator begin, 225 std::vector<std::string>::iterator end, 226 /* out */ ApiList* out_api_list) { 227 ApiList api_list; 228 for (std::vector<std::string>::iterator it = begin; it != end; it++) { 229 ApiList current = FromName(*it); 230 if (current.IsEmpty() || !api_list.CanCombineWith(current)) { 231 if (ApiStubs::IsStubsFlag(*it)) { 232 // Ignore flags which correspond to the stubs from where the api 233 // originates (i.e. system-api, test-api, public-api), as they are not 234 // relevant at runtime 235 continue; 236 } 237 return false; 238 } 239 api_list |= current; 240 } 241 if (out_api_list != nullptr) { 242 *out_api_list = api_list; 243 } 244 return true; 245 } 246 247 bool operator==(const ApiList& other) const { return dex_flags_ == other.dex_flags_; } 248 bool operator!=(const ApiList& other) const { return !(*this == other); } 249 bool operator<(const ApiList& other) const { return dex_flags_ < other.dex_flags_; } 250 251 // Returns true if combining this ApiList with `other` will succeed. CanCombineWith(const ApiList & other)252 bool CanCombineWith(const ApiList& other) const { 253 const Value val1 = GetValue(); 254 const Value val2 = other.GetValue(); 255 return (val1 == val2) || (val1 == Value::kInvalid) || (val2 == Value::kInvalid); 256 } 257 258 // Combine two ApiList instances. 259 ApiList operator|(const ApiList& other) { 260 // DomainApis are not mutually exclusive. Simply OR them. 261 const uint32_t domain_apis = GetDomainApis() | other.GetDomainApis(); 262 263 // Values are mutually exclusive. Check if `this` and `other` have the same Value 264 // or if at most one is set. 265 const Value val1 = GetValue(); 266 const Value val2 = other.GetValue(); 267 if (val1 == val2) { 268 return ApiList(val1, domain_apis); 269 } else if (val1 == Value::kInvalid) { 270 return ApiList(val2, domain_apis); 271 } else if (val2 == Value::kInvalid) { 272 return ApiList(val1, domain_apis); 273 } else { 274 LOG(FATAL) << "Invalid combination of values " << Dumpable(ApiList(val1)) 275 << " and " << Dumpable(ApiList(val2)); 276 UNREACHABLE(); 277 } 278 } 279 280 const ApiList& operator|=(const ApiList& other) { 281 (*this) = (*this) | other; 282 return *this; 283 } 284 285 // Returns true if all flags set in `other` are also set in `this`. Contains(const ApiList & other)286 bool Contains(const ApiList& other) const { 287 return ((other.GetValue() == Value::kInvalid) || (GetValue() == other.GetValue())) && 288 helper::MatchesBitMask(other.GetDomainApis(), GetDomainApis()); 289 } 290 291 // Returns true whether the configuration is valid for runtime use. IsValid()292 bool IsValid() const { return GetValue() != Value::kInvalid; } 293 294 // Returns true when no ApiList is specified and no domain_api flags either. IsEmpty()295 bool IsEmpty() const { return (GetValue() == Value::kInvalid) && (GetDomainApis() == 0); } 296 297 // Returns true if the ApiList is on blacklist. IsBlacklisted()298 bool IsBlacklisted() const { 299 return GetValue() == Value::kBlacklist; 300 } 301 302 // Returns true if the ApiList is a test API. IsTestApi()303 bool IsTestApi() const { 304 return helper::MatchesBitMask(helper::ToBit(DomainApi::kTestApi), dex_flags_); 305 } 306 307 // Returns the maximum target SDK version allowed to access this ApiList. GetMaxAllowedSdkVersion()308 SdkVersion GetMaxAllowedSdkVersion() const { return kMaxSdkVersions[GetIntValue()]; } 309 Dump(std::ostream & os)310 void Dump(std::ostream& os) const { 311 bool is_first = true; 312 313 if (IsEmpty()) { 314 os << "invalid"; 315 return; 316 } 317 318 if (GetValue() != Value::kInvalid) { 319 os << kValueNames[GetIntValue()]; 320 is_first = false; 321 } 322 323 const uint32_t domain_apis = GetDomainApis(); 324 for (uint32_t i = 0; i < kDomainApiCount; i++) { 325 if (helper::MatchesBitMask(helper::ToBit(helper::GetEnumAt<DomainApi>(i)), domain_apis)) { 326 if (is_first) { 327 is_first = false; 328 } else { 329 os << ","; 330 } 331 os << kDomainApiNames[i]; 332 } 333 } 334 335 DCHECK_EQ(IsEmpty(), is_first); 336 } 337 338 // Number of valid enum values in Value. 339 static constexpr uint32_t kValueCount = helper::NumValues<Value>(); 340 // Number of valid enum values in DomainApi. 341 static constexpr uint32_t kDomainApiCount = helper::NumValues<DomainApi>(); 342 // Total number of possible enum values, including invalid, in Value. 343 static constexpr uint32_t kValueSize = (1u << kValueBitSize) + 1; 344 345 // Check min and max values are calculated correctly. 346 static_assert(Value::kMin == helper::GetEnumAt<Value>(0)); 347 static_assert(Value::kMax == helper::GetEnumAt<Value>(kValueCount - 1)); 348 349 static_assert(DomainApi::kMin == helper::GetEnumAt<DomainApi>(0)); 350 static_assert(DomainApi::kMax == helper::GetEnumAt<DomainApi>(kDomainApiCount - 1)); 351 }; 352 353 inline std::ostream& operator<<(std::ostream& os, ApiList value) { 354 value.Dump(os); 355 return os; 356 } 357 358 } // namespace hiddenapi 359 } // namespace art 360 361 362 #endif // ART_LIBARTBASE_BASE_HIDDENAPI_FLAGS_H_ 363