1 /*
2 * Copyright (C) 2007 The Android Open Source Project
3 *
4 * Licensed under the Apache License, Version 2.0 (the "License");
5 * you may not use this file except in compliance with the License.
6 * You may obtain a copy of the License at
7 *
8 * http://www.apache.org/licenses/LICENSE-2.0
9 *
10 * Unless required by applicable law or agreed to in writing, software
11 * distributed under the License is distributed on an "AS IS" BASIS,
12 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13 * See the License for the specific language governing permissions and
14 * limitations under the License.
15 */
16
17 #define TRACE_TAG ADB
18
19 #include "sysdeps.h"
20 #include "adb.h"
21
22 #include <ctype.h>
23 #include <errno.h>
24 #include <stdarg.h>
25 #include <stddef.h>
26 #include <stdint.h>
27 #include <stdio.h>
28 #include <stdlib.h>
29 #include <string.h>
30 #include <sys/time.h>
31 #include <time.h>
32
33 #include <chrono>
34 #include <condition_variable>
35 #include <mutex>
36 #include <string>
37 #include <string_view>
38 #include <thread>
39 #include <vector>
40
41 #include <android-base/errors.h>
42 #include <android-base/file.h>
43 #include <android-base/logging.h>
44 #include <android-base/macros.h>
45 #include <android-base/parsenetaddress.h>
46 #include <android-base/stringprintf.h>
47 #include <android-base/strings.h>
48 #include <diagnose_usb.h>
49
50 #include <build/version.h>
51 #include <platform_tools_version.h>
52
53 #include "adb_auth.h"
54 #include "adb_io.h"
55 #include "adb_listeners.h"
56 #include "adb_mdns.h"
57 #include "adb_unique_fd.h"
58 #include "adb_utils.h"
59 #include "sysdeps/chrono.h"
60 #include "transport.h"
61
62 #if !ADB_HOST
63 #include <sys/capability.h>
64 #include <sys/mount.h>
65 #include <android-base/properties.h>
66 using namespace std::chrono_literals;
67
68 #include "daemon/logging.h"
69 #endif
70
71 #if ADB_HOST
72 #include "client/usb.h"
73 #endif
74
75 #if !ADB_HOST && defined(__ANDROID__)
76 #include "daemon/watchdog.h"
77
78 static std::atomic<int> active_connections = 0;
79
IncrementActiveConnections()80 static void IncrementActiveConnections() {
81 if (active_connections++ == 0) {
82 watchdog::Stop();
83 }
84 }
85
DecrementActiveConnections()86 static void DecrementActiveConnections() {
87 if (--active_connections == 0) {
88 watchdog::Start();
89 }
90 }
91
92 #endif
93
adb_version()94 std::string adb_version() {
95 // Don't change the format of this --- it's parsed by ddmlib.
96 return android::base::StringPrintf(
97 "Android Debug Bridge version %d.%d.%d\n"
98 "Version %s-%s\n"
99 "Installed as %s\n",
100 ADB_VERSION_MAJOR, ADB_VERSION_MINOR, ADB_SERVER_VERSION,
101 PLATFORM_TOOLS_VERSION, android::build::GetBuildNumber().c_str(),
102 android::base::GetExecutablePath().c_str());
103 }
104
calculate_apacket_checksum(const apacket * p)105 uint32_t calculate_apacket_checksum(const apacket* p) {
106 uint32_t sum = 0;
107 for (size_t i = 0; i < p->msg.data_length; ++i) {
108 sum += static_cast<uint8_t>(p->payload[i]);
109 }
110 return sum;
111 }
112
to_string(ConnectionState state)113 std::string to_string(ConnectionState state) {
114 switch (state) {
115 case kCsOffline:
116 return "offline";
117 case kCsBootloader:
118 return "bootloader";
119 case kCsDevice:
120 return "device";
121 case kCsHost:
122 return "host";
123 case kCsRecovery:
124 return "recovery";
125 case kCsRescue:
126 return "rescue";
127 case kCsNoPerm:
128 return UsbNoPermissionsShortHelpText();
129 case kCsSideload:
130 return "sideload";
131 case kCsUnauthorized:
132 return "unauthorized";
133 case kCsAuthorizing:
134 return "authorizing";
135 case kCsConnecting:
136 return "connecting";
137 default:
138 return "unknown";
139 }
140 }
141
get_apacket(void)142 apacket* get_apacket(void) {
143 apacket* p = new apacket();
144 if (p == nullptr) {
145 LOG(FATAL) << "failed to allocate an apacket";
146 }
147
148 memset(&p->msg, 0, sizeof(p->msg));
149 return p;
150 }
151
put_apacket(apacket * p)152 void put_apacket(apacket *p)
153 {
154 delete p;
155 }
156
handle_online(atransport * t)157 void handle_online(atransport *t)
158 {
159 D("adb: online");
160 t->online = 1;
161 #if ADB_HOST
162 t->SetConnectionEstablished(true);
163 #elif defined(__ANDROID__)
164 IncrementActiveConnections();
165 #endif
166 }
167
handle_offline(atransport * t)168 void handle_offline(atransport *t)
169 {
170 if (t->GetConnectionState() == kCsOffline) {
171 LOG(INFO) << t->serial_name() << ": already offline";
172 return;
173 }
174
175 LOG(INFO) << t->serial_name() << ": offline";
176
177 #if !ADB_HOST && defined(__ANDROID__)
178 DecrementActiveConnections();
179 #endif
180
181 t->SetConnectionState(kCsOffline);
182
183 // Close the associated usb
184 t->online = 0;
185
186 // This is necessary to avoid a race condition that occurred when a transport closes
187 // while a client socket is still active.
188 close_all_sockets(t);
189
190 t->RunDisconnects();
191 }
192
193 #if DEBUG_PACKETS
194 #define DUMPMAX 32
print_packet(const char * label,apacket * p)195 void print_packet(const char *label, apacket *p)
196 {
197 const char* tag;
198 unsigned count;
199
200 switch(p->msg.command){
201 case A_SYNC: tag = "SYNC"; break;
202 case A_CNXN: tag = "CNXN" ; break;
203 case A_OPEN: tag = "OPEN"; break;
204 case A_OKAY: tag = "OKAY"; break;
205 case A_CLSE: tag = "CLSE"; break;
206 case A_WRTE: tag = "WRTE"; break;
207 case A_AUTH: tag = "AUTH"; break;
208 case A_STLS:
209 tag = "STLS";
210 break;
211 default: tag = "????"; break;
212 }
213
214 fprintf(stderr, "%s: %s %08x %08x %04x \"",
215 label, tag, p->msg.arg0, p->msg.arg1, p->msg.data_length);
216 count = p->msg.data_length;
217 const char* x = p->payload.data();
218 if (count > DUMPMAX) {
219 count = DUMPMAX;
220 tag = "\n";
221 } else {
222 tag = "\"\n";
223 }
224 while (count-- > 0) {
225 if ((*x >= ' ') && (*x < 127)) {
226 fputc(*x, stderr);
227 } else {
228 fputc('.', stderr);
229 }
230 x++;
231 }
232 fputs(tag, stderr);
233 }
234 #endif
235
send_ready(unsigned local,unsigned remote,atransport * t)236 static void send_ready(unsigned local, unsigned remote, atransport *t)
237 {
238 D("Calling send_ready");
239 apacket *p = get_apacket();
240 p->msg.command = A_OKAY;
241 p->msg.arg0 = local;
242 p->msg.arg1 = remote;
243 send_packet(p, t);
244 }
245
send_close(unsigned local,unsigned remote,atransport * t)246 static void send_close(unsigned local, unsigned remote, atransport *t)
247 {
248 D("Calling send_close");
249 apacket *p = get_apacket();
250 p->msg.command = A_CLSE;
251 p->msg.arg0 = local;
252 p->msg.arg1 = remote;
253 send_packet(p, t);
254 }
255
get_connection_string()256 std::string get_connection_string() {
257 std::vector<std::string> connection_properties;
258
259 #if !ADB_HOST
260 static const char* cnxn_props[] = {
261 "ro.product.name",
262 "ro.product.model",
263 "ro.product.device",
264 };
265
266 for (const auto& prop : cnxn_props) {
267 std::string value = std::string(prop) + "=" + android::base::GetProperty(prop, "");
268 connection_properties.push_back(value);
269 }
270 #endif
271
272 connection_properties.push_back(android::base::StringPrintf(
273 "features=%s", FeatureSetToString(supported_features()).c_str()));
274
275 return android::base::StringPrintf(
276 "%s::%s", adb_device_banner,
277 android::base::Join(connection_properties, ';').c_str());
278 }
279
send_tls_request(atransport * t)280 void send_tls_request(atransport* t) {
281 D("Calling send_tls_request");
282 apacket* p = get_apacket();
283 p->msg.command = A_STLS;
284 p->msg.arg0 = A_STLS_VERSION;
285 p->msg.data_length = 0;
286 send_packet(p, t);
287 }
288
send_connect(atransport * t)289 void send_connect(atransport* t) {
290 D("Calling send_connect");
291 apacket* cp = get_apacket();
292 cp->msg.command = A_CNXN;
293 // Send the max supported version, but because the transport is
294 // initialized to A_VERSION_MIN, this will be compatible with every
295 // device.
296 cp->msg.arg0 = A_VERSION;
297 cp->msg.arg1 = t->get_max_payload();
298
299 std::string connection_str = get_connection_string();
300 // Connect and auth packets are limited to MAX_PAYLOAD_V1 because we don't
301 // yet know how much data the other size is willing to accept.
302 if (connection_str.length() > MAX_PAYLOAD_V1) {
303 LOG(FATAL) << "Connection banner is too long (length = "
304 << connection_str.length() << ")";
305 }
306
307 cp->payload.assign(connection_str.begin(), connection_str.end());
308 cp->msg.data_length = cp->payload.size();
309
310 send_packet(cp, t);
311 }
312
parse_banner(const std::string & banner,atransport * t)313 void parse_banner(const std::string& banner, atransport* t) {
314 D("parse_banner: %s", banner.c_str());
315
316 // The format is something like:
317 // "device::ro.product.name=x;ro.product.model=y;ro.product.device=z;".
318 std::vector<std::string> pieces = android::base::Split(banner, ":");
319
320 // Reset the features list or else if the server sends no features we may
321 // keep the existing feature set (http://b/24405971).
322 t->SetFeatures("");
323
324 if (pieces.size() > 2) {
325 const std::string& props = pieces[2];
326 for (const auto& prop : android::base::Split(props, ";")) {
327 // The list of properties was traditionally ;-terminated rather than ;-separated.
328 if (prop.empty()) continue;
329
330 std::vector<std::string> key_value = android::base::Split(prop, "=");
331 if (key_value.size() != 2) continue;
332
333 const std::string& key = key_value[0];
334 const std::string& value = key_value[1];
335 if (key == "ro.product.name") {
336 t->product = value;
337 } else if (key == "ro.product.model") {
338 t->model = value;
339 } else if (key == "ro.product.device") {
340 t->device = value;
341 } else if (key == "features") {
342 t->SetFeatures(value);
343 }
344 }
345 }
346
347 const std::string& type = pieces[0];
348 if (type == "bootloader") {
349 D("setting connection_state to kCsBootloader");
350 t->SetConnectionState(kCsBootloader);
351 } else if (type == "device") {
352 D("setting connection_state to kCsDevice");
353 t->SetConnectionState(kCsDevice);
354 } else if (type == "recovery") {
355 D("setting connection_state to kCsRecovery");
356 t->SetConnectionState(kCsRecovery);
357 } else if (type == "sideload") {
358 D("setting connection_state to kCsSideload");
359 t->SetConnectionState(kCsSideload);
360 } else if (type == "rescue") {
361 D("setting connection_state to kCsRescue");
362 t->SetConnectionState(kCsRescue);
363 } else {
364 D("setting connection_state to kCsHost");
365 t->SetConnectionState(kCsHost);
366 }
367 }
368
handle_new_connection(atransport * t,apacket * p)369 static void handle_new_connection(atransport* t, apacket* p) {
370 handle_offline(t);
371
372 t->update_version(p->msg.arg0, p->msg.arg1);
373 std::string banner(p->payload.begin(), p->payload.end());
374 parse_banner(banner, t);
375
376 #if ADB_HOST
377 handle_online(t);
378 #else
379 ADB_LOG(Connection) << "received CNXN: version=" << p->msg.arg0 << ", maxdata = " << p->msg.arg1
380 << ", banner = '" << banner << "'";
381
382 if (t->use_tls) {
383 // We still handshake in TLS mode. If auth_required is disabled,
384 // we'll just not verify the client's certificate. This should be the
385 // first packet the client receives to indicate the new protocol.
386 send_tls_request(t);
387 } else if (!auth_required) {
388 LOG(INFO) << "authentication not required";
389 handle_online(t);
390 send_connect(t);
391 } else {
392 send_auth_request(t);
393 }
394 #endif
395
396 update_transports();
397 }
398
handle_packet(apacket * p,atransport * t)399 void handle_packet(apacket *p, atransport *t)
400 {
401 D("handle_packet() %c%c%c%c", ((char*) (&(p->msg.command)))[0],
402 ((char*) (&(p->msg.command)))[1],
403 ((char*) (&(p->msg.command)))[2],
404 ((char*) (&(p->msg.command)))[3]);
405 print_packet("recv", p);
406 CHECK_EQ(p->payload.size(), p->msg.data_length);
407
408 switch(p->msg.command){
409 case A_CNXN: // CONNECT(version, maxdata, "system-id-string")
410 handle_new_connection(t, p);
411 break;
412 case A_STLS: // TLS(version, "")
413 t->use_tls = true;
414 #if ADB_HOST
415 send_tls_request(t);
416 adb_auth_tls_handshake(t);
417 #else
418 adbd_auth_tls_handshake(t);
419 #endif
420 break;
421
422 case A_AUTH:
423 // All AUTH commands are ignored in TLS mode
424 if (t->use_tls) {
425 break;
426 }
427 switch (p->msg.arg0) {
428 #if ADB_HOST
429 case ADB_AUTH_TOKEN:
430 if (t->GetConnectionState() != kCsAuthorizing) {
431 t->SetConnectionState(kCsAuthorizing);
432 }
433 send_auth_response(p->payload.data(), p->msg.data_length, t);
434 break;
435 #else
436 case ADB_AUTH_SIGNATURE: {
437 // TODO: Switch to string_view.
438 std::string signature(p->payload.begin(), p->payload.end());
439 std::string auth_key;
440 if (adbd_auth_verify(t->token, sizeof(t->token), signature, &auth_key)) {
441 adbd_auth_verified(t);
442 t->failed_auth_attempts = 0;
443 t->auth_key = auth_key;
444 adbd_notify_framework_connected_key(t);
445 } else {
446 if (t->failed_auth_attempts++ > 256) std::this_thread::sleep_for(1s);
447 send_auth_request(t);
448 }
449 break;
450 }
451
452 case ADB_AUTH_RSAPUBLICKEY:
453 t->auth_key = std::string(p->payload.data());
454 adbd_auth_confirm_key(t);
455 break;
456 #endif
457 default:
458 t->SetConnectionState(kCsOffline);
459 handle_offline(t);
460 break;
461 }
462 break;
463
464 case A_OPEN: /* OPEN(local-id, 0, "destination") */
465 if (t->online && p->msg.arg0 != 0 && p->msg.arg1 == 0) {
466 std::string_view address(p->payload.begin(), p->payload.size());
467
468 // Historically, we received service names as a char*, and stopped at the first NUL
469 // byte. The client sent strings with null termination, which post-string_view, start
470 // being interpreted as part of the string, unless we explicitly strip them.
471 address = StripTrailingNulls(address);
472
473 asocket* s = create_local_service_socket(address, t);
474 if (s == nullptr) {
475 send_close(0, p->msg.arg0, t);
476 } else {
477 s->peer = create_remote_socket(p->msg.arg0, t);
478 s->peer->peer = s;
479 send_ready(s->id, s->peer->id, t);
480 s->ready(s);
481 }
482 }
483 break;
484
485 case A_OKAY: /* READY(local-id, remote-id, "") */
486 if (t->online && p->msg.arg0 != 0 && p->msg.arg1 != 0) {
487 asocket* s = find_local_socket(p->msg.arg1, 0);
488 if (s) {
489 if(s->peer == nullptr) {
490 /* On first READY message, create the connection. */
491 s->peer = create_remote_socket(p->msg.arg0, t);
492 s->peer->peer = s;
493 s->ready(s);
494 } else if (s->peer->id == p->msg.arg0) {
495 /* Other READY messages must use the same local-id */
496 s->ready(s);
497 } else {
498 D("Invalid A_OKAY(%d,%d), expected A_OKAY(%d,%d) on transport %s", p->msg.arg0,
499 p->msg.arg1, s->peer->id, p->msg.arg1, t->serial.c_str());
500 }
501 } else {
502 // When receiving A_OKAY from device for A_OPEN request, the host server may
503 // have closed the local socket because of client disconnection. Then we need
504 // to send A_CLSE back to device to close the service on device.
505 send_close(p->msg.arg1, p->msg.arg0, t);
506 }
507 }
508 break;
509
510 case A_CLSE: /* CLOSE(local-id, remote-id, "") or CLOSE(0, remote-id, "") */
511 if (t->online && p->msg.arg1 != 0) {
512 asocket* s = find_local_socket(p->msg.arg1, p->msg.arg0);
513 if (s) {
514 /* According to protocol.txt, p->msg.arg0 might be 0 to indicate
515 * a failed OPEN only. However, due to a bug in previous ADB
516 * versions, CLOSE(0, remote-id, "") was also used for normal
517 * CLOSE() operations.
518 *
519 * This is bad because it means a compromised adbd could
520 * send packets to close connections between the host and
521 * other devices. To avoid this, only allow this if the local
522 * socket has a peer on the same transport.
523 */
524 if (p->msg.arg0 == 0 && s->peer && s->peer->transport != t) {
525 D("Invalid A_CLSE(0, %u) from transport %s, expected transport %s", p->msg.arg1,
526 t->serial.c_str(), s->peer->transport->serial.c_str());
527 } else {
528 s->close(s);
529 }
530 }
531 }
532 break;
533
534 case A_WRTE: /* WRITE(local-id, remote-id, <data>) */
535 if (t->online && p->msg.arg0 != 0 && p->msg.arg1 != 0) {
536 asocket* s = find_local_socket(p->msg.arg1, p->msg.arg0);
537 if (s) {
538 unsigned rid = p->msg.arg0;
539 if (s->enqueue(s, std::move(p->payload)) == 0) {
540 D("Enqueue the socket");
541 send_ready(s->id, rid, t);
542 }
543 }
544 }
545 break;
546
547 default:
548 printf("handle_packet: what is %08x?!\n", p->msg.command);
549 }
550
551 put_apacket(p);
552 }
553
554 #if ADB_HOST
555
556 #ifdef _WIN32
557
558 // Try to make a handle non-inheritable and if there is an error, don't output
559 // any error info, but leave GetLastError() for the caller to read. This is
560 // convenient if the caller is expecting that this may fail and they'd like to
561 // ignore such a failure.
_try_make_handle_noninheritable(HANDLE h)562 static bool _try_make_handle_noninheritable(HANDLE h) {
563 if (h != INVALID_HANDLE_VALUE && h != NULL) {
564 return SetHandleInformation(h, HANDLE_FLAG_INHERIT, 0) ? true : false;
565 }
566
567 return true;
568 }
569
570 // Try to make a handle non-inheritable with the expectation that this should
571 // succeed, so if this fails, output error info.
_make_handle_noninheritable(HANDLE h)572 static bool _make_handle_noninheritable(HANDLE h) {
573 if (!_try_make_handle_noninheritable(h)) {
574 // Show the handle value to give us a clue in case we have problems
575 // with pseudo-handle values.
576 fprintf(stderr, "adb: cannot make handle 0x%p non-inheritable: %s\n", h,
577 android::base::SystemErrorCodeToString(GetLastError()).c_str());
578 return false;
579 }
580
581 return true;
582 }
583
584 // Create anonymous pipe, preventing inheritance of the read pipe and setting
585 // security of the write pipe to sa.
_create_anonymous_pipe(unique_handle * pipe_read_out,unique_handle * pipe_write_out,SECURITY_ATTRIBUTES * sa)586 static bool _create_anonymous_pipe(unique_handle* pipe_read_out,
587 unique_handle* pipe_write_out,
588 SECURITY_ATTRIBUTES* sa) {
589 HANDLE pipe_read_raw = NULL;
590 HANDLE pipe_write_raw = NULL;
591 if (!CreatePipe(&pipe_read_raw, &pipe_write_raw, sa, 0)) {
592 fprintf(stderr, "adb: CreatePipe failed: %s\n",
593 android::base::SystemErrorCodeToString(GetLastError()).c_str());
594 return false;
595 }
596
597 unique_handle pipe_read(pipe_read_raw);
598 pipe_read_raw = NULL;
599 unique_handle pipe_write(pipe_write_raw);
600 pipe_write_raw = NULL;
601
602 if (!_make_handle_noninheritable(pipe_read.get())) {
603 return false;
604 }
605
606 *pipe_read_out = std::move(pipe_read);
607 *pipe_write_out = std::move(pipe_write);
608
609 return true;
610 }
611
612 // Read from a pipe (that we take ownership of) and write the result to stdout/stderr. Return on
613 // error or when the pipe is closed. Internally makes inheritable handles, so this should not be
614 // called if subprocesses may be started concurrently.
_redirect_pipe_thread(HANDLE h,DWORD nStdHandle)615 static unsigned _redirect_pipe_thread(HANDLE h, DWORD nStdHandle) {
616 // Take ownership of the HANDLE and close when we're done.
617 unique_handle read_pipe(h);
618 const char* output_name = nStdHandle == STD_OUTPUT_HANDLE ? "stdout" : "stderr";
619 const int original_fd = fileno(nStdHandle == STD_OUTPUT_HANDLE ? stdout : stderr);
620 std::unique_ptr<FILE, decltype(&fclose)> stream(nullptr, fclose);
621
622 if (original_fd == -1) {
623 fprintf(stderr, "adb: failed to get file descriptor for %s: %s\n", output_name,
624 strerror(errno));
625 return EXIT_FAILURE;
626 }
627
628 // If fileno() is -2, stdout/stderr is not associated with an output stream, so we should read,
629 // but don't write. Otherwise, make a FILE* identical to stdout/stderr except that it is in
630 // binary mode with no CR/LR translation since we're reading raw.
631 if (original_fd >= 0) {
632 // This internally makes a duplicate file handle that is inheritable, so callers should not
633 // call this function if subprocesses may be started concurrently.
634 const int fd = dup(original_fd);
635 if (fd == -1) {
636 fprintf(stderr, "adb: failed to duplicate file descriptor for %s: %s\n", output_name,
637 strerror(errno));
638 return EXIT_FAILURE;
639 }
640
641 // Note that although we call fdopen() below with a binary flag, it may not adhere to that
642 // flag, so we have to set the mode manually.
643 if (_setmode(fd, _O_BINARY) == -1) {
644 fprintf(stderr, "adb: failed to set binary mode for duplicate of %s: %s\n", output_name,
645 strerror(errno));
646 unix_close(fd);
647 return EXIT_FAILURE;
648 }
649
650 stream.reset(fdopen(fd, "wb"));
651 if (stream.get() == nullptr) {
652 fprintf(stderr, "adb: failed to open duplicate stream for %s: %s\n", output_name,
653 strerror(errno));
654 unix_close(fd);
655 return EXIT_FAILURE;
656 }
657
658 // Unbuffer the stream because it will be buffered by default and we want subprocess output
659 // to be shown immediately.
660 if (setvbuf(stream.get(), NULL, _IONBF, 0) == -1) {
661 fprintf(stderr, "adb: failed to unbuffer %s: %s\n", output_name, strerror(errno));
662 return EXIT_FAILURE;
663 }
664
665 // fd will be closed when stream is closed.
666 }
667
668 while (true) {
669 char buf[64 * 1024];
670 DWORD bytes_read = 0;
671 if (!ReadFile(read_pipe.get(), buf, sizeof(buf), &bytes_read, NULL)) {
672 const DWORD err = GetLastError();
673 // ERROR_BROKEN_PIPE is expected when the subprocess closes
674 // the other end of the pipe.
675 if (err == ERROR_BROKEN_PIPE) {
676 return EXIT_SUCCESS;
677 } else {
678 fprintf(stderr, "adb: failed to read from %s: %s\n", output_name,
679 android::base::SystemErrorCodeToString(err).c_str());
680 return EXIT_FAILURE;
681 }
682 }
683
684 // Don't try to write if our stdout/stderr was not setup by the parent process.
685 if (stream) {
686 // fwrite() actually calls adb_fwrite() which can write UTF-8 to the console.
687 const size_t bytes_written = fwrite(buf, 1, bytes_read, stream.get());
688 if (bytes_written != bytes_read) {
689 fprintf(stderr, "adb: error: only wrote %zu of %lu bytes to %s\n", bytes_written,
690 bytes_read, output_name);
691 return EXIT_FAILURE;
692 }
693 }
694 }
695 }
696
_redirect_stdout_thread(HANDLE h)697 static unsigned __stdcall _redirect_stdout_thread(HANDLE h) {
698 adb_thread_setname("stdout redirect");
699 return _redirect_pipe_thread(h, STD_OUTPUT_HANDLE);
700 }
701
_redirect_stderr_thread(HANDLE h)702 static unsigned __stdcall _redirect_stderr_thread(HANDLE h) {
703 adb_thread_setname("stderr redirect");
704 return _redirect_pipe_thread(h, STD_ERROR_HANDLE);
705 }
706
707 #endif
708
ReportServerStartupFailure(pid_t pid)709 static void ReportServerStartupFailure(pid_t pid) {
710 fprintf(stderr, "ADB server didn't ACK\n");
711 fprintf(stderr, "Full server startup log: %s\n", GetLogFilePath().c_str());
712 fprintf(stderr, "Server had pid: %d\n", pid);
713
714 android::base::unique_fd fd(unix_open(GetLogFilePath(), O_RDONLY));
715 if (fd == -1) return;
716
717 // Let's not show more than 128KiB of log...
718 unix_lseek(fd, -128 * 1024, SEEK_END);
719 std::string content;
720 if (!android::base::ReadFdToString(fd, &content)) return;
721
722 std::string header = android::base::StringPrintf("--- adb starting (pid %d) ---", pid);
723 std::vector<std::string> lines = android::base::Split(content, "\n");
724 int i = lines.size() - 1;
725 while (i >= 0 && lines[i] != header) --i;
726 while (static_cast<size_t>(i) < lines.size()) fprintf(stderr, "%s\n", lines[i++].c_str());
727 }
728
launch_server(const std::string & socket_spec,const char * one_device)729 int launch_server(const std::string& socket_spec, const char* one_device) {
730 #if defined(_WIN32)
731 /* we need to start the server in the background */
732 /* we create a PIPE that will be used to wait for the server's "OK" */
733 /* message since the pipe handles must be inheritable, we use a */
734 /* security attribute */
735 SECURITY_ATTRIBUTES sa;
736 sa.nLength = sizeof(sa);
737 sa.lpSecurityDescriptor = NULL;
738 sa.bInheritHandle = TRUE;
739
740 // Redirect stdin to Windows /dev/null. If we instead pass an original
741 // stdin/stdout/stderr handle and it is a console handle, when the adb
742 // server starts up, the C Runtime will see a console handle for a process
743 // that isn't connected to a console and it will configure
744 // stdin/stdout/stderr to be closed. At that point, freopen() could be used
745 // to reopen stderr/out, but it would take more massaging to fixup the file
746 // descriptor number that freopen() uses. It's simplest to avoid all of this
747 // complexity by just redirecting stdin to `nul' and then the C Runtime acts
748 // as expected.
749 unique_handle nul_read(CreateFileW(L"nul", GENERIC_READ,
750 FILE_SHARE_READ | FILE_SHARE_WRITE, &sa, OPEN_EXISTING,
751 FILE_ATTRIBUTE_NORMAL, NULL));
752 if (nul_read.get() == INVALID_HANDLE_VALUE) {
753 fprintf(stderr, "adb: CreateFileW 'nul' failed: %s\n",
754 android::base::SystemErrorCodeToString(GetLastError()).c_str());
755 return -1;
756 }
757
758 // Create pipes with non-inheritable read handle, inheritable write handle. We need to connect
759 // the subprocess to pipes instead of just letting the subprocess inherit our existing
760 // stdout/stderr handles because a DETACHED_PROCESS cannot write to a console that it is not
761 // attached to.
762 unique_handle ack_read, ack_write;
763 if (!_create_anonymous_pipe(&ack_read, &ack_write, &sa)) {
764 return -1;
765 }
766 unique_handle stdout_read, stdout_write;
767 if (!_create_anonymous_pipe(&stdout_read, &stdout_write, &sa)) {
768 return -1;
769 }
770 unique_handle stderr_read, stderr_write;
771 if (!_create_anonymous_pipe(&stderr_read, &stderr_write, &sa)) {
772 return -1;
773 }
774
775 /* Some programs want to launch an adb command and collect its output by
776 * calling CreateProcess with inheritable stdout/stderr handles, then
777 * using read() to get its output. When this happens, the stdout/stderr
778 * handles passed to the adb client process will also be inheritable.
779 * When starting the adb server here, care must be taken to reset them
780 * to non-inheritable.
781 * Otherwise, something bad happens: even if the adb command completes,
782 * the calling process is stuck while read()-ing from the stdout/stderr
783 * descriptors, because they're connected to corresponding handles in the
784 * adb server process (even if the latter never uses/writes to them).
785 * Note that even if we don't pass these handles in the STARTUPINFO struct,
786 * if they're marked inheritable, they're still inherited, requiring us to
787 * deal with this.
788 *
789 * If we're still having problems with inheriting random handles in the
790 * future, consider using PROC_THREAD_ATTRIBUTE_HANDLE_LIST to explicitly
791 * specify which handles should be inherited: http://blogs.msdn.com/b/oldnewthing/archive/2011/12/16/10248328.aspx
792 *
793 * Older versions of Windows return console pseudo-handles that cannot be
794 * made non-inheritable, so ignore those failures.
795 */
796 _try_make_handle_noninheritable(GetStdHandle(STD_INPUT_HANDLE));
797 _try_make_handle_noninheritable(GetStdHandle(STD_OUTPUT_HANDLE));
798 _try_make_handle_noninheritable(GetStdHandle(STD_ERROR_HANDLE));
799
800 STARTUPINFOW startup;
801 ZeroMemory( &startup, sizeof(startup) );
802 startup.cb = sizeof(startup);
803 startup.hStdInput = nul_read.get();
804 startup.hStdOutput = stdout_write.get();
805 startup.hStdError = stderr_write.get();
806 startup.dwFlags = STARTF_USESTDHANDLES;
807
808 // Verify that the pipe_write handle value can be passed on the command line
809 // as %d and that the rest of adb code can pass it around in an int.
810 const int ack_write_as_int = cast_handle_to_int(ack_write.get());
811 if (cast_int_to_handle(ack_write_as_int) != ack_write.get()) {
812 // If this fires, either handle values are larger than 32-bits or else
813 // there is a bug in our casting.
814 // https://msdn.microsoft.com/en-us/library/windows/desktop/aa384203%28v=vs.85%29.aspx
815 fprintf(stderr, "adb: cannot fit pipe handle value into 32-bits: 0x%p\n", ack_write.get());
816 return -1;
817 }
818
819 // get path of current program
820 WCHAR program_path[MAX_PATH];
821 const DWORD module_result = GetModuleFileNameW(NULL, program_path,
822 arraysize(program_path));
823 if ((module_result >= arraysize(program_path)) || (module_result == 0)) {
824 // String truncation or some other error.
825 fprintf(stderr, "adb: cannot get executable path: %s\n",
826 android::base::SystemErrorCodeToString(GetLastError()).c_str());
827 return -1;
828 }
829
830 WCHAR args[64];
831 if (one_device) {
832 snwprintf(args, arraysize(args),
833 L"adb -L %s fork-server server --reply-fd %d --one-device %s",
834 socket_spec.c_str(), ack_write_as_int, one_device);
835 } else {
836 snwprintf(args, arraysize(args), L"adb -L %s fork-server server --reply-fd %d",
837 socket_spec.c_str(), ack_write_as_int);
838 }
839
840 PROCESS_INFORMATION pinfo;
841 ZeroMemory(&pinfo, sizeof(pinfo));
842
843 if (!CreateProcessW(
844 program_path, /* program path */
845 args,
846 /* the fork-server argument will set the
847 debug = 2 in the child */
848 NULL, /* process handle is not inheritable */
849 NULL, /* thread handle is not inheritable */
850 TRUE, /* yes, inherit some handles */
851 DETACHED_PROCESS, /* the new process doesn't have a console */
852 NULL, /* use parent's environment block */
853 NULL, /* use parent's starting directory */
854 &startup, /* startup info, i.e. std handles */
855 &pinfo )) {
856 fprintf(stderr, "adb: CreateProcessW failed: %s\n",
857 android::base::SystemErrorCodeToString(GetLastError()).c_str());
858 return -1;
859 }
860
861 unique_handle process_handle(pinfo.hProcess);
862 pinfo.hProcess = NULL;
863
864 // Close handles that we no longer need to complete the rest.
865 CloseHandle(pinfo.hThread);
866 pinfo.hThread = NULL;
867
868 nul_read.reset();
869 ack_write.reset();
870 stdout_write.reset();
871 stderr_write.reset();
872
873 // Start threads to read from subprocess stdout/stderr and write to ours to make subprocess
874 // errors easier to diagnose. Note that the threads internally create inheritable handles, but
875 // that is ok because we've already spawned the subprocess.
876
877 // In the past, reading from a pipe before the child process's C Runtime
878 // started up and called GetFileType() caused a hang: http://blogs.msdn.com/b/oldnewthing/archive/2011/12/02/10243553.aspx#10244216
879 // This is reportedly fixed in Windows Vista: https://support.microsoft.com/en-us/kb/2009703
880 // I was unable to reproduce the problem on Windows XP. It sounds like a
881 // Windows Update may have fixed this: https://www.duckware.com/tech/peeknamedpipe.html
882 unique_handle stdout_thread(reinterpret_cast<HANDLE>(
883 _beginthreadex(NULL, 0, _redirect_stdout_thread, stdout_read.get(),
884 0, NULL)));
885 if (stdout_thread.get() == nullptr) {
886 fprintf(stderr, "adb: cannot create thread: %s\n", strerror(errno));
887 return -1;
888 }
889 stdout_read.release(); // Transfer ownership to new thread
890
891 unique_handle stderr_thread(reinterpret_cast<HANDLE>(
892 _beginthreadex(NULL, 0, _redirect_stderr_thread, stderr_read.get(),
893 0, NULL)));
894 if (stderr_thread.get() == nullptr) {
895 fprintf(stderr, "adb: cannot create thread: %s\n", strerror(errno));
896 return -1;
897 }
898 stderr_read.release(); // Transfer ownership to new thread
899
900 bool got_ack = false;
901
902 // Wait for the "OK\n" message, for the pipe to be closed, or other error.
903 {
904 char temp[3];
905 DWORD count = 0;
906
907 if (ReadFile(ack_read.get(), temp, sizeof(temp), &count, NULL)) {
908 const CHAR expected[] = "OK\n";
909 const DWORD expected_length = arraysize(expected) - 1;
910 if (count == expected_length &&
911 memcmp(temp, expected, expected_length) == 0) {
912 got_ack = true;
913 } else {
914 ReportServerStartupFailure(pinfo.dwProcessId);
915 return -1;
916 }
917 } else {
918 const DWORD err = GetLastError();
919 // If the ACK was not written and the process exited, GetLastError()
920 // is probably ERROR_BROKEN_PIPE, in which case that info is not
921 // useful to the user.
922 fprintf(stderr, "could not read ok from ADB Server%s\n",
923 err == ERROR_BROKEN_PIPE ? "" :
924 android::base::StringPrintf(": %s",
925 android::base::SystemErrorCodeToString(err).c_str()).c_str());
926 }
927 }
928
929 // Always try to wait a bit for threads reading stdout/stderr to finish.
930 // If the process started ok, it should close the pipes causing the threads
931 // to finish. If the process had an error, it should exit, also causing
932 // the pipes to be closed. In that case we want to read all of the output
933 // and write it out so that the user can diagnose failures.
934 const DWORD thread_timeout_ms = 15 * 1000;
935 const HANDLE threads[] = { stdout_thread.get(), stderr_thread.get() };
936 const DWORD wait_result = WaitForMultipleObjects(arraysize(threads),
937 threads, TRUE, thread_timeout_ms);
938 if (wait_result == WAIT_TIMEOUT) {
939 // Threads did not finish after waiting a little while. Perhaps the
940 // server didn't close pipes, or it is hung.
941 fprintf(stderr, "adb: timed out waiting for threads to finish reading from ADB server\n");
942 // Process handles are signaled when the process exits, so if we wait
943 // on the handle for 0 seconds and it returns 'timeout', that means that
944 // the process is still running.
945 if (WaitForSingleObject(process_handle.get(), 0) == WAIT_TIMEOUT) {
946 // We could TerminateProcess(), but that seems somewhat presumptive.
947 fprintf(stderr, "adb: server is running with process id %lu\n", pinfo.dwProcessId);
948 }
949 return -1;
950 }
951
952 if (wait_result != WAIT_OBJECT_0) {
953 fprintf(stderr, "adb: unexpected result waiting for threads: %lu: %s\n", wait_result,
954 android::base::SystemErrorCodeToString(GetLastError()).c_str());
955 return -1;
956 }
957
958 // For now ignore the thread exit codes and assume they worked properly.
959
960 if (!got_ack) {
961 return -1;
962 }
963 #else /* !defined(_WIN32) */
964 // set up a pipe so the child can tell us when it is ready.
965 unique_fd pipe_read, pipe_write;
966 if (!Pipe(&pipe_read, &pipe_write)) {
967 fprintf(stderr, "pipe failed in launch_server, errno: %d\n", errno);
968 return -1;
969 }
970
971 std::string path = android::base::GetExecutablePath();
972
973 pid_t pid = fork();
974 if (pid < 0) return -1;
975
976 if (pid == 0) {
977 // child side of the fork
978 pipe_read.reset();
979
980 // android::base::Pipe unconditionally opens the pipe with O_CLOEXEC.
981 // Undo this manually.
982 fcntl(pipe_write.get(), F_SETFD, 0);
983
984 char reply_fd[30];
985 snprintf(reply_fd, sizeof(reply_fd), "%d", pipe_write.get());
986 // child process
987 std::vector<const char*> child_argv = {
988 "adb", "-L", socket_spec.c_str(), "fork-server", "server", "--reply-fd", reply_fd};
989 if (one_device) {
990 child_argv.push_back("--one-device");
991 child_argv.push_back(one_device);
992 }
993 child_argv.push_back(nullptr);
994 int result = execv(path.c_str(), const_cast<char* const*>(child_argv.data()));
995 // this should not return
996 fprintf(stderr, "adb: execl returned %d: %s\n", result, strerror(errno));
997 } else {
998 // parent side of the fork
999 char temp[3] = {};
1000 // wait for the "OK\n" message
1001 pipe_write.reset();
1002 int ret = adb_read(pipe_read.get(), temp, 3);
1003 int saved_errno = errno;
1004 pipe_read.reset();
1005 if (ret < 0) {
1006 fprintf(stderr, "could not read ok from ADB Server, errno = %d\n", saved_errno);
1007 return -1;
1008 }
1009 if (ret != 3 || temp[0] != 'O' || temp[1] != 'K' || temp[2] != '\n') {
1010 ReportServerStartupFailure(pid);
1011 return -1;
1012 }
1013 }
1014 #endif /* !defined(_WIN32) */
1015 return 0;
1016 }
1017 #endif /* ADB_HOST */
1018
handle_forward_request(const char * service,atransport * transport,int reply_fd)1019 bool handle_forward_request(const char* service, atransport* transport, int reply_fd) {
1020 return handle_forward_request(service, [transport](std::string*) { return transport; },
1021 reply_fd);
1022 }
1023
1024 // Try to handle a network forwarding request.
handle_forward_request(const char * service,std::function<atransport * (std::string * error)> transport_acquirer,int reply_fd)1025 bool handle_forward_request(const char* service,
1026 std::function<atransport*(std::string* error)> transport_acquirer,
1027 int reply_fd) {
1028 if (!strcmp(service, "list-forward")) {
1029 // Create the list of forward redirections.
1030 std::string listeners = format_listeners();
1031 #if ADB_HOST
1032 SendOkay(reply_fd);
1033 #endif
1034 SendProtocolString(reply_fd, listeners);
1035 return true;
1036 }
1037
1038 if (!strcmp(service, "killforward-all")) {
1039 remove_all_listeners();
1040 #if ADB_HOST
1041 /* On the host: 1st OKAY is connect, 2nd OKAY is status */
1042 SendOkay(reply_fd);
1043 #endif
1044 SendOkay(reply_fd);
1045 return true;
1046 }
1047
1048 if (!strncmp(service, "forward:", 8) || !strncmp(service, "killforward:", 12)) {
1049 // killforward:local
1050 // forward:(norebind:)?local;remote
1051 std::string error;
1052 atransport* transport = transport_acquirer(&error);
1053 if (!transport) {
1054 SendFail(reply_fd, error);
1055 return true;
1056 }
1057
1058 bool kill_forward = false;
1059 bool no_rebind = false;
1060 if (android::base::StartsWith(service, "killforward:")) {
1061 kill_forward = true;
1062 service += 12;
1063 } else {
1064 service += 8; // skip past "forward:"
1065 if (android::base::StartsWith(service, "norebind:")) {
1066 no_rebind = true;
1067 service += 9;
1068 }
1069 }
1070
1071 std::vector<std::string> pieces = android::base::Split(service, ";");
1072
1073 if (kill_forward) {
1074 // Check killforward: parameter format: '<local>'
1075 if (pieces.size() != 1 || pieces[0].empty()) {
1076 SendFail(reply_fd, android::base::StringPrintf("bad killforward: %s", service));
1077 return true;
1078 }
1079 } else {
1080 // Check forward: parameter format: '<local>;<remote>'
1081 if (pieces.size() != 2 || pieces[0].empty() || pieces[1].empty() || pieces[1][0] == '*') {
1082 SendFail(reply_fd, android::base::StringPrintf("bad forward: %s", service));
1083 return true;
1084 }
1085 }
1086
1087 InstallStatus r;
1088 int resolved_tcp_port = 0;
1089 if (kill_forward) {
1090 r = remove_listener(pieces[0].c_str(), transport);
1091 } else {
1092 int flags = 0;
1093 if (no_rebind) {
1094 flags |= INSTALL_LISTENER_NO_REBIND;
1095 }
1096 r = install_listener(pieces[0], pieces[1].c_str(), transport, flags, &resolved_tcp_port,
1097 &error);
1098 }
1099 if (r == INSTALL_STATUS_OK) {
1100 #if ADB_HOST
1101 // On the host: 1st OKAY is connect, 2nd OKAY is status.
1102 SendOkay(reply_fd);
1103 #endif
1104 SendOkay(reply_fd);
1105
1106 // If a TCP port was resolved, send the actual port number back.
1107 if (resolved_tcp_port != 0) {
1108 SendProtocolString(reply_fd, android::base::StringPrintf("%d", resolved_tcp_port));
1109 }
1110
1111 return true;
1112 }
1113
1114 std::string message;
1115 switch (r) {
1116 case INSTALL_STATUS_OK: message = "success (!)"; break;
1117 case INSTALL_STATUS_INTERNAL_ERROR: message = "internal error"; break;
1118 case INSTALL_STATUS_CANNOT_BIND:
1119 message = android::base::StringPrintf("cannot bind listener: %s",
1120 error.c_str());
1121 break;
1122 case INSTALL_STATUS_CANNOT_REBIND:
1123 message = android::base::StringPrintf("cannot rebind existing socket");
1124 break;
1125 case INSTALL_STATUS_LISTENER_NOT_FOUND:
1126 message = android::base::StringPrintf("listener '%s' not found", service);
1127 break;
1128 }
1129 SendFail(reply_fd, message);
1130 return true;
1131 }
1132
1133 return false;
1134 }
1135
1136 #if ADB_HOST
SendOkay(int fd,const std::string & s)1137 static int SendOkay(int fd, const std::string& s) {
1138 SendOkay(fd);
1139 SendProtocolString(fd, s);
1140 return 0;
1141 }
1142
1143 static bool g_reject_kill_server = false;
adb_set_reject_kill_server(bool value)1144 void adb_set_reject_kill_server(bool value) {
1145 g_reject_kill_server = value;
1146 }
1147
handle_mdns_request(std::string_view service,int reply_fd)1148 static bool handle_mdns_request(std::string_view service, int reply_fd) {
1149 if (!android::base::ConsumePrefix(&service, "mdns:")) {
1150 return false;
1151 }
1152
1153 if (service == "check") {
1154 std::string check = mdns_check();
1155 SendOkay(reply_fd, check);
1156 return true;
1157 }
1158 if (service == "services") {
1159 std::string services_list = mdns_list_discovered_services();
1160 SendOkay(reply_fd, services_list);
1161 return true;
1162 }
1163
1164 return false;
1165 }
1166
handle_host_request(std::string_view service,TransportType type,const char * serial,TransportId transport_id,int reply_fd,asocket * s)1167 HostRequestResult handle_host_request(std::string_view service, TransportType type,
1168 const char* serial, TransportId transport_id, int reply_fd,
1169 asocket* s) {
1170 if (service == "kill") {
1171 if (g_reject_kill_server) {
1172 LOG(WARNING) << "adb server ignoring kill-server";
1173 SendFail(reply_fd, "kill-server rejected by remote server");
1174 } else {
1175 fprintf(stderr, "adb server killed by remote request\n");
1176 SendOkay(reply_fd);
1177
1178 // Rely on process exit to close the socket for us.
1179 exit(0);
1180 }
1181 }
1182
1183 LOG(DEBUG) << "handle_host_request(" << service << ")";
1184
1185 // Transport selection:
1186 if (service.starts_with("transport") || service.starts_with("tport:")) {
1187 TransportType type = kTransportAny;
1188
1189 std::string serial_storage;
1190 bool legacy = true;
1191
1192 // New transport selection protocol:
1193 // This is essentially identical to the previous version, except it returns the selected
1194 // transport id to the caller as well.
1195 if (android::base::ConsumePrefix(&service, "tport:")) {
1196 legacy = false;
1197 if (android::base::ConsumePrefix(&service, "serial:")) {
1198 serial_storage = service;
1199 serial = serial_storage.c_str();
1200 } else if (service == "usb") {
1201 type = kTransportUsb;
1202 } else if (service == "local") {
1203 type = kTransportLocal;
1204 } else if (service == "any") {
1205 type = kTransportAny;
1206 }
1207
1208 // Selection by id is unimplemented, since you obviously already know the transport id
1209 // you're connecting to.
1210 } else {
1211 if (android::base::ConsumePrefix(&service, "transport-id:")) {
1212 if (!ParseUint(&transport_id, service)) {
1213 SendFail(reply_fd, "invalid transport id");
1214 return HostRequestResult::Handled;
1215 }
1216 } else if (service == "transport-usb") {
1217 type = kTransportUsb;
1218 } else if (service == "transport-local") {
1219 type = kTransportLocal;
1220 } else if (service == "transport-any") {
1221 type = kTransportAny;
1222 } else if (android::base::ConsumePrefix(&service, "transport:")) {
1223 serial_storage = service;
1224 serial = serial_storage.c_str();
1225 }
1226 }
1227
1228 std::string error;
1229 atransport* t = acquire_one_transport(type, serial, transport_id, nullptr, &error);
1230 if (t != nullptr) {
1231 s->transport = t;
1232 SendOkay(reply_fd);
1233
1234 if (!legacy) {
1235 // Nothing we can do if this fails.
1236 WriteFdExactly(reply_fd, &t->id, sizeof(t->id));
1237 }
1238
1239 return HostRequestResult::SwitchedTransport;
1240 } else {
1241 SendFail(reply_fd, error);
1242 return HostRequestResult::Handled;
1243 }
1244 }
1245
1246 // return a list of all connected devices
1247 if (service == "devices" || service == "devices-l") {
1248 bool long_listing = service == "devices-l";
1249 D("Getting device list...");
1250 std::string device_list = list_transports(long_listing);
1251 D("Sending device list...");
1252 SendOkay(reply_fd, device_list);
1253 return HostRequestResult::Handled;
1254 }
1255
1256 if (service == "reconnect-offline") {
1257 std::string response;
1258 close_usb_devices([&response](const atransport* transport) {
1259 if (!ConnectionStateIsOnline(transport->GetConnectionState())) {
1260 response += "reconnecting " + transport->serial_name() + "\n";
1261 return true;
1262 }
1263 return false;
1264 }, true);
1265 if (!response.empty()) {
1266 response.resize(response.size() - 1);
1267 }
1268 SendOkay(reply_fd, response);
1269 return HostRequestResult::Handled;
1270 }
1271
1272 if (service == "features") {
1273 std::string error;
1274 atransport* t =
1275 s->transport ? s->transport
1276 : acquire_one_transport(type, serial, transport_id, nullptr, &error);
1277 if (t != nullptr) {
1278 SendOkay(reply_fd, FeatureSetToString(t->features()));
1279 } else {
1280 SendFail(reply_fd, error);
1281 }
1282 return HostRequestResult::Handled;
1283 }
1284
1285 if (service == "host-features") {
1286 FeatureSet features = supported_features();
1287 // Abuse features to report libusb status.
1288 if (should_use_libusb()) {
1289 features.emplace_back(kFeatureLibusb);
1290 }
1291 features.emplace_back(kFeaturePushSync);
1292 SendOkay(reply_fd, FeatureSetToString(features));
1293 return HostRequestResult::Handled;
1294 }
1295
1296 // remove TCP transport
1297 if (service.starts_with("disconnect:")) {
1298 std::string address(service.substr(11));
1299 if (address.empty()) {
1300 kick_all_tcp_devices();
1301 SendOkay(reply_fd, "disconnected everything");
1302 return HostRequestResult::Handled;
1303 }
1304
1305 // Mdns instance named device
1306 atransport* t = find_transport(address.c_str());
1307 if (t != nullptr) {
1308 kick_transport(t);
1309 SendOkay(reply_fd, android::base::StringPrintf("disconnected %s", address.c_str()));
1310 return HostRequestResult::Handled;
1311 }
1312
1313 std::string serial;
1314 std::string host;
1315 int port = DEFAULT_ADB_LOCAL_TRANSPORT_PORT;
1316 std::string error;
1317 if (address.starts_with("vsock:") || address.starts_with("localfilesystem:")) {
1318 serial = address;
1319 } else if (!android::base::ParseNetAddress(address, &host, &port, &serial, &error)) {
1320 SendFail(reply_fd, android::base::StringPrintf("couldn't parse '%s': %s",
1321 address.c_str(), error.c_str()));
1322 return HostRequestResult::Handled;
1323 }
1324 t = find_transport(serial.c_str());
1325 if (t == nullptr) {
1326 SendFail(reply_fd, android::base::StringPrintf("no such device '%s'", serial.c_str()));
1327 return HostRequestResult::Handled;
1328 }
1329 kick_transport(t);
1330 SendOkay(reply_fd, android::base::StringPrintf("disconnected %s", address.c_str()));
1331 return HostRequestResult::Handled;
1332 }
1333
1334 // Returns our value for ADB_SERVER_VERSION.
1335 if (service == "version") {
1336 SendOkay(reply_fd, android::base::StringPrintf("%04x", ADB_SERVER_VERSION));
1337 return HostRequestResult::Handled;
1338 }
1339
1340 // These always report "unknown" rather than the actual error, for scripts.
1341 if (service == "get-serialno") {
1342 std::string error;
1343 atransport* t =
1344 s->transport ? s->transport
1345 : acquire_one_transport(type, serial, transport_id, nullptr, &error);
1346 if (t) {
1347 SendOkay(reply_fd, !t->serial.empty() ? t->serial : "unknown");
1348 } else {
1349 SendFail(reply_fd, error);
1350 }
1351 return HostRequestResult::Handled;
1352 }
1353 if (service == "get-devpath") {
1354 std::string error;
1355 atransport* t =
1356 s->transport ? s->transport
1357 : acquire_one_transport(type, serial, transport_id, nullptr, &error);
1358 if (t) {
1359 SendOkay(reply_fd, !t->devpath.empty() ? t->devpath : "unknown");
1360 } else {
1361 SendFail(reply_fd, error);
1362 }
1363 return HostRequestResult::Handled;
1364 }
1365 if (service == "get-state") {
1366 std::string error;
1367 atransport* t =
1368 s->transport ? s->transport
1369 : acquire_one_transport(type, serial, transport_id, nullptr, &error);
1370 if (t) {
1371 SendOkay(reply_fd, to_string(t->GetConnectionState()));
1372 } else {
1373 SendFail(reply_fd, error);
1374 }
1375 return HostRequestResult::Handled;
1376 }
1377
1378 // Indicates a new emulator instance has started.
1379 if (android::base::ConsumePrefix(&service, "emulator:")) {
1380 unsigned int port;
1381 if (!ParseUint(&port, service)) {
1382 LOG(ERROR) << "received invalid port for emulator: " << service;
1383 } else {
1384 local_connect(port);
1385 }
1386
1387 /* we don't even need to send a reply */
1388 return HostRequestResult::Handled;
1389 }
1390
1391 if (service == "reconnect") {
1392 std::string response;
1393 atransport* t = s->transport ? s->transport
1394 : acquire_one_transport(type, serial, transport_id, nullptr,
1395 &response, true);
1396 if (t != nullptr) {
1397 kick_transport(t, true);
1398 response = "reconnecting " + t->serial_name() + " [" +
1399 to_string(t->GetConnectionState()) + "]\n";
1400 }
1401 SendOkay(reply_fd, response);
1402 return HostRequestResult::Handled;
1403 }
1404
1405 if (service == "attach") {
1406 std::string error;
1407 atransport* t = s->transport ? s->transport
1408 : acquire_one_transport(type, serial, transport_id, nullptr,
1409 &error, true);
1410 if (!t) {
1411 SendFail(reply_fd, error);
1412 return HostRequestResult::Handled;
1413 }
1414
1415 if (t->Attach(&error)) {
1416 SendOkay(reply_fd,
1417 android::base::StringPrintf("%s attached", t->serial_name().c_str()));
1418 } else {
1419 SendFail(reply_fd, error);
1420 }
1421 return HostRequestResult::Handled;
1422 }
1423
1424 if (service == "detach") {
1425 std::string error;
1426 atransport* t = s->transport ? s->transport
1427 : acquire_one_transport(type, serial, transport_id, nullptr,
1428 &error, true);
1429 if (!t) {
1430 SendFail(reply_fd, error);
1431 return HostRequestResult::Handled;
1432 }
1433
1434 // HACK:
1435 // Detaching the transport will lead to all of its sockets being closed,
1436 // but we're handling one of those sockets right now!
1437 //
1438 // Mark the socket as not having a transport, knowing that it'll be cleaned up by the
1439 // function that called us.
1440 s->transport = nullptr;
1441
1442 if (t->Detach(&error)) {
1443 SendOkay(reply_fd,
1444 android::base::StringPrintf("%s detached", t->serial_name().c_str()));
1445 } else {
1446 SendFail(reply_fd, error);
1447 }
1448 return HostRequestResult::Handled;
1449 }
1450
1451 // TODO: Switch handle_forward_request to string_view.
1452 std::string service_str(service);
1453 auto transport_acquirer = [=](std::string* error) {
1454 if (s->transport) {
1455 return s->transport;
1456 } else {
1457 std::string error;
1458 return acquire_one_transport(type, serial, transport_id, nullptr, &error);
1459 }
1460 };
1461 if (handle_forward_request(service_str.c_str(), transport_acquirer, reply_fd)) {
1462 return HostRequestResult::Handled;
1463 }
1464
1465 if (handle_mdns_request(service, reply_fd)) {
1466 return HostRequestResult::Handled;
1467 }
1468
1469 return HostRequestResult::Unhandled;
1470 }
1471
1472 static auto& init_mutex = *new std::mutex();
1473 static auto& init_cv = *new std::condition_variable();
1474 static bool device_scan_complete = false;
1475 static bool transports_ready = false;
1476
update_transport_status()1477 void update_transport_status() {
1478 bool result = iterate_transports([](const atransport* t) {
1479 if (t->type == kTransportUsb && t->online != 1) {
1480 return false;
1481 }
1482 return true;
1483 });
1484
1485 bool ready;
1486 {
1487 std::lock_guard<std::mutex> lock(init_mutex);
1488 transports_ready = result;
1489 ready = transports_ready && device_scan_complete;
1490 }
1491
1492 if (ready) {
1493 init_cv.notify_all();
1494 }
1495 }
1496
adb_notify_device_scan_complete()1497 void adb_notify_device_scan_complete() {
1498 {
1499 std::lock_guard<std::mutex> lock(init_mutex);
1500 if (device_scan_complete) {
1501 return;
1502 }
1503
1504 device_scan_complete = true;
1505 }
1506
1507 update_transport_status();
1508 }
1509
adb_wait_for_device_initialization()1510 void adb_wait_for_device_initialization() {
1511 std::unique_lock<std::mutex> lock(init_mutex);
1512 init_cv.wait_for(lock, 3s, []() { return device_scan_complete && transports_ready; });
1513 }
1514
1515 #endif // ADB_HOST
1516