/* * Copyright (C) 2018 The Android Open Source Project * * Licensed under the Apache License, Version 2.0 (the "License"); * you may not use this file except in compliance with the License. * You may obtain a copy of the License at * * http://www.apache.org/licenses/LICENSE-2.0 * * Unless required by applicable law or agreed to in writing, software * distributed under the License is distributed on an "AS IS" BASIS, * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. * See the License for the specific language governing permissions and * limitations under the License. */ #ifndef ANDROID_APEXD_APEXD_H_ #define ANDROID_APEXD_APEXD_H_ #include #include #include #include #include #include "apex_classpath.h" #include "apex_constants.h" #include "apex_database.h" #include "apex_file.h" #include "apex_file_repository.h" #include "apexd_session.h" namespace android { namespace apex { // A structure containing all the values that might need to be injected for // testing (e.g. apexd status property, etc.) // // Ideally we want to introduce Apexd class and use dependency injection for // such values, but that will require a sizeable refactoring. For the time being // this config should do the trick. struct ApexdConfig { const char* apex_status_sysprop; std::vector apex_built_in_dirs; const char* active_apex_data_dir; const char* decompression_dir; const char* ota_reserved_dir; const char* apex_hash_tree_dir; const char* staged_session_dir; const char* metadata_sepolicy_staged_dir; // Overrides the path to the "metadata" partition which is by default // /dev/block/by-name/payload-metadata It should be a path pointing the first // partition of the VM payload disk. So, realpath() of this path is checked if // it has the suffix "1". For example, /test-dir/test-metadata-1 can be valid // and the subsequent numbers should point APEX files. const char* vm_payload_metadata_partition_prop; const char* active_apex_selinux_ctx; }; static const ApexdConfig kDefaultConfig = { kApexStatusSysprop, kApexPackageBuiltinDirs, kActiveApexPackagesDataDir, kApexDecompressedDir, kOtaReservedDir, kApexHashTreeDir, kStagedSessionsDir, kMetadataSepolicyStagedDir, kVmPayloadMetadataPartitionProp, "u:object_r:staging_data_file", }; class CheckpointInterface; void SetConfig(const ApexdConfig& config); // Exposed only for testing. android::base::Result Unmount( const MountedApexDatabase::MountedApexData& data, bool deferred); android::base::Result ResumeRevertIfNeeded(); android::base::Result PreinstallPackages( const std::vector& paths) WARN_UNUSED; android::base::Result StagePackages( const std::vector& tmpPaths) WARN_UNUSED; android::base::Result UnstagePackages( const std::vector& paths) WARN_UNUSED; android::base::Result> SubmitStagedSession( const int session_id, const std::vector& child_session_ids, const bool has_rollback_enabled, const bool is_rollback, const int rollback_id) WARN_UNUSED; android::base::Result> GetStagedApexFiles( const int session_id, const std::vector& child_session_ids) WARN_UNUSED; android::base::Result MountAndDeriveClassPath( const std::vector&) WARN_UNUSED; android::base::Result MarkStagedSessionReady(const int session_id) WARN_UNUSED; android::base::Result MarkStagedSessionSuccessful(const int session_id) WARN_UNUSED; // Only only of the parameters should be passed during revert android::base::Result RevertActiveSessions( const std::string& crashing_native_process, const std::string& error_message); // Only only of the parameters should be passed during revert android::base::Result RevertActiveSessionsAndReboot( const std::string& crashing_native_process, const std::string& error_message); android::base::Result ActivatePackage(const std::string& full_path) WARN_UNUSED; android::base::Result DeactivatePackage(const std::string& full_path) WARN_UNUSED; std::vector GetActivePackages(); android::base::Result GetActivePackage( const std::string& package_name); std::vector GetFactoryPackages(); android::base::Result AbortStagedSession(const int session_id); android::base::Result SnapshotCeData(const int user_id, const int rollback_id, const std::string& apex_name); android::base::Result RestoreCeData(const int user_id, const int rollback_id, const std::string& apex_name); android::base::Result DestroyDeSnapshots(const int rollback_id); android::base::Result DestroyCeSnapshots(const int user_id, const int rollback_id); android::base::Result DestroyCeSnapshotsNotSpecified( int user_id, const std::vector& retain_rollback_ids); int OnBootstrap(); // Sets the values of gVoldService and gInFsCheckpointMode. void InitializeVold(CheckpointInterface* checkpoint_service); // Initializes in-memory state (e.g. pre-installed data, activated apexes). // Must be called first before calling any other boot sequence related function. void Initialize(CheckpointInterface* checkpoint_service); // Initializes data apex as in-memory state. Should be called only if we are // not booting, since initialization timing is different when booting void InitializeDataApex(); // Migrates sessions from /data/apex/session to /metadata/session.i // Must only be called during boot (i.e apexd.status is not "ready" or // "activated"). android::base::Result MigrateSessionsDirIfNeeded(); // Apex activation logic. Scans staged apex sessions and activates apexes. // Must only be called during boot (i.e apexd.status is not "ready" or // "activated"). void OnStart(); // For every package X, there can be at most two APEX, pre-installed vs // installed on data. We decide which ones should be activated and return them // as a list std::vector SelectApexForActivation( const std::unordered_map>& all_apex, const ApexFileRepository& instance); std::vector ProcessCompressedApex( const std::vector& compressed_apex, bool is_ota_chroot); // Validate |apex| is same as |capex| android::base::Result ValidateDecompressedApex(const ApexFile& capex, const ApexFile& apex); // Notifies system that apexes are activated by setting apexd.status property to // "activated". // Must only be called during boot (i.e. apexd.status is not "ready" or // "activated"). void OnAllPackagesActivated(bool is_bootstrap); // Notifies system that apexes are ready by setting apexd.status property to // "ready". // Must only be called during boot (i.e. apexd.status is not "ready" or // "activated"). void OnAllPackagesReady(); void OnBootCompleted(); // Exposed for testing void RemoveInactiveDataApex(); void BootCompletedCleanup(); int SnapshotOrRestoreDeUserData(); int UnmountAll(); android::base::Result GetTempMountedApexData(const std::string& package); // Optimistically tries to remount as many APEX packages as possible. // For more documentation see corresponding binder call in IApexService.aidl. android::base::Result RemountPackages(); // Exposed for unit tests bool ShouldAllocateSpaceForDecompression(const std::string& new_apex_name, int64_t new_apex_version, const ApexFileRepository& instance); int64_t CalculateSizeForCompressedApex( const std::vector>& compressed_apexes, const ApexFileRepository& instance); void CollectApexInfoList(std::ostream& os, const std::vector& active_apexs, const std::vector& inactive_apexs); // Reserve |size| bytes in |dest_dir| by creating a zero-filled file android::base::Result ReserveSpaceForCompressedApex( int64_t size, const std::string& dest_dir); // Entry point when running in the VM mode (with --vm arg) int OnStartInVmMode(); // Activates apexes in otapreot_chroot environment. // TODO(b/172911822): support compressed apexes. int OnOtaChrootBootstrap(); // Activates flattened apexes int ActivateFlattenedApex(); int ActivateFlattenedApex(const std::vector& multi_apex_prefixes); android::apex::MountedApexDatabase& GetApexDatabaseForTesting(); // Performs a non-staged install of an APEX specified by |package_path|. // TODO(ioffe): add more documentation. android::base::Result InstallPackage(const std::string& package_path); // Exposed for testing. android::base::Result AddBlockApex(ApexFileRepository& instance); bool IsActiveApexChanged(const ApexFile& apex); // Shouldn't be used outside of apexd_test.cpp std::set& GetChangedActiveApexesForTesting(); } // namespace apex } // namespace android #endif // ANDROID_APEXD_APEXD_H_