First checkin of incident reporting.
There are a few major pieces here:
incidentd
---------
This daemon (started by init) runs and accepts incoming requests to take
incident reports. When prompted, it calls into various system services
and fills in an IncidentProto data structure, and then writes the report
into dropbox.
The next steps for incidentd:
- Security review of SELinux policies. These will be a subset of
the dumpstate permissions. Until this is done, incidentd is
not started at boot time.
incident
--------
This shell command calls into incidentd, and can initiate an incident
report and either capture the output or leave for dropbox.
incident_report
---------------
This host side tool can call adb shell with the correct parameters
and also format the incident report as text. This formatting code
was left of the device on purpose. Right now it's pretty small, but
as the number of fields increases, the metadata and code to do the
formatting will start to grow.
The incident_report command also contains a workaround to let it
work before incidentd is turned on by default. Right now, it is
implemented to call adb shell dumpsys <service> --proto directly,
whereas in the future it will go through the full incidentd flow.
incident_section_gen
--------------------
A build-time tool that generates a stripped down set of information
about the fields that are available.
libincident
-----------
This library contains the code to connect to incidentd, and the
meta proto definitions that are used by the framework protos.
The basics are here now, but they are not fully fleshed out yet.
The privacy.proto file contains annotations that can go in the
proto file that we will later use to filter which fields are
uploaded, and which are used by local sources. For example, a
device in a test lab is safe to upload much much more information
than a real user. These will share the same mechanism, but the
user's output will be filtered according to these annotations.
frameworks/core/proto
---------------------
These .proto files contain the definitions of the system's
output. There is one master android.os.IncidentProto file that
is the top level of an incident report, but some other services
(notification, fingerprint, batterystats, etc) will have others
that are used directly by the logging mechanism.
Other files which are shared by several of the services also go
here, such as ComponentName, Locale, Configuration, etc. There
will be many more.
There is also a first iplementation of a dump method handling
--proto in the fingerprint service.
IncidentManager
---------------
The java API to trigger an incident report.
Test: Not written yet
Change-Id: I59568b115ac7fcf73af70c946c95752bf33ae67f
2016-11-21 17:51:35 -08:00
|
|
|
/*
|
|
|
|
|
* Copyright (C) 2016 The Android Open Source Project
|
|
|
|
|
*
|
|
|
|
|
* Licensed under the Apache License, Version 2.0 (the "License");
|
|
|
|
|
* you may not use this file except in compliance with the License.
|
|
|
|
|
* You may obtain a copy of the License at
|
|
|
|
|
*
|
|
|
|
|
* http://www.apache.org/licenses/LICENSE-2.0
|
|
|
|
|
*
|
|
|
|
|
* Unless required by applicable law or agreed to in writing, software
|
|
|
|
|
* distributed under the License is distributed on an "AS IS" BASIS,
|
|
|
|
|
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
|
|
|
|
* See the License for the specific language governing permissions and
|
|
|
|
|
* limitations under the License.
|
|
|
|
|
*/
|
|
|
|
|
|
2016-12-20 08:18:32 -08:00
|
|
|
#include <frameworks/base/core/proto/android/os/incident.pb.h>
|
First checkin of incident reporting.
There are a few major pieces here:
incidentd
---------
This daemon (started by init) runs and accepts incoming requests to take
incident reports. When prompted, it calls into various system services
and fills in an IncidentProto data structure, and then writes the report
into dropbox.
The next steps for incidentd:
- Security review of SELinux policies. These will be a subset of
the dumpstate permissions. Until this is done, incidentd is
not started at boot time.
incident
--------
This shell command calls into incidentd, and can initiate an incident
report and either capture the output or leave for dropbox.
incident_report
---------------
This host side tool can call adb shell with the correct parameters
and also format the incident report as text. This formatting code
was left of the device on purpose. Right now it's pretty small, but
as the number of fields increases, the metadata and code to do the
formatting will start to grow.
The incident_report command also contains a workaround to let it
work before incidentd is turned on by default. Right now, it is
implemented to call adb shell dumpsys <service> --proto directly,
whereas in the future it will go through the full incidentd flow.
incident_section_gen
--------------------
A build-time tool that generates a stripped down set of information
about the fields that are available.
libincident
-----------
This library contains the code to connect to incidentd, and the
meta proto definitions that are used by the framework protos.
The basics are here now, but they are not fully fleshed out yet.
The privacy.proto file contains annotations that can go in the
proto file that we will later use to filter which fields are
uploaded, and which are used by local sources. For example, a
device in a test lab is safe to upload much much more information
than a real user. These will share the same mechanism, but the
user's output will be filtered according to these annotations.
frameworks/core/proto
---------------------
These .proto files contain the definitions of the system's
output. There is one master android.os.IncidentProto file that
is the top level of an incident report, but some other services
(notification, fingerprint, batterystats, etc) will have others
that are used directly by the logging mechanism.
Other files which are shared by several of the services also go
here, such as ComponentName, Locale, Configuration, etc. There
will be many more.
There is also a first iplementation of a dump method handling
--proto in the fingerprint service.
IncidentManager
---------------
The java API to trigger an incident report.
Test: Not written yet
Change-Id: I59568b115ac7fcf73af70c946c95752bf33ae67f
2016-11-21 17:51:35 -08:00
|
|
|
|
|
|
|
|
#include <map>
|
2017-10-24 12:30:24 -07:00
|
|
|
#include <set>
|
2017-11-16 18:19:45 -08:00
|
|
|
#include <sstream>
|
2018-04-16 16:54:24 -07:00
|
|
|
#include <string>
|
First checkin of incident reporting.
There are a few major pieces here:
incidentd
---------
This daemon (started by init) runs and accepts incoming requests to take
incident reports. When prompted, it calls into various system services
and fills in an IncidentProto data structure, and then writes the report
into dropbox.
The next steps for incidentd:
- Security review of SELinux policies. These will be a subset of
the dumpstate permissions. Until this is done, incidentd is
not started at boot time.
incident
--------
This shell command calls into incidentd, and can initiate an incident
report and either capture the output or leave for dropbox.
incident_report
---------------
This host side tool can call adb shell with the correct parameters
and also format the incident report as text. This formatting code
was left of the device on purpose. Right now it's pretty small, but
as the number of fields increases, the metadata and code to do the
formatting will start to grow.
The incident_report command also contains a workaround to let it
work before incidentd is turned on by default. Right now, it is
implemented to call adb shell dumpsys <service> --proto directly,
whereas in the future it will go through the full incidentd flow.
incident_section_gen
--------------------
A build-time tool that generates a stripped down set of information
about the fields that are available.
libincident
-----------
This library contains the code to connect to incidentd, and the
meta proto definitions that are used by the framework protos.
The basics are here now, but they are not fully fleshed out yet.
The privacy.proto file contains annotations that can go in the
proto file that we will later use to filter which fields are
uploaded, and which are used by local sources. For example, a
device in a test lab is safe to upload much much more information
than a real user. These will share the same mechanism, but the
user's output will be filtered according to these annotations.
frameworks/core/proto
---------------------
These .proto files contain the definitions of the system's
output. There is one master android.os.IncidentProto file that
is the top level of an incident report, but some other services
(notification, fingerprint, batterystats, etc) will have others
that are used directly by the logging mechanism.
Other files which are shared by several of the services also go
here, such as ComponentName, Locale, Configuration, etc. There
will be many more.
There is also a first iplementation of a dump method handling
--proto in the fingerprint service.
IncidentManager
---------------
The java API to trigger an incident report.
Test: Not written yet
Change-Id: I59568b115ac7fcf73af70c946c95752bf33ae67f
2016-11-21 17:51:35 -08:00
|
|
|
|
2017-08-15 22:01:41 -07:00
|
|
|
using namespace android;
|
First checkin of incident reporting.
There are a few major pieces here:
incidentd
---------
This daemon (started by init) runs and accepts incoming requests to take
incident reports. When prompted, it calls into various system services
and fills in an IncidentProto data structure, and then writes the report
into dropbox.
The next steps for incidentd:
- Security review of SELinux policies. These will be a subset of
the dumpstate permissions. Until this is done, incidentd is
not started at boot time.
incident
--------
This shell command calls into incidentd, and can initiate an incident
report and either capture the output or leave for dropbox.
incident_report
---------------
This host side tool can call adb shell with the correct parameters
and also format the incident report as text. This formatting code
was left of the device on purpose. Right now it's pretty small, but
as the number of fields increases, the metadata and code to do the
formatting will start to grow.
The incident_report command also contains a workaround to let it
work before incidentd is turned on by default. Right now, it is
implemented to call adb shell dumpsys <service> --proto directly,
whereas in the future it will go through the full incidentd flow.
incident_section_gen
--------------------
A build-time tool that generates a stripped down set of information
about the fields that are available.
libincident
-----------
This library contains the code to connect to incidentd, and the
meta proto definitions that are used by the framework protos.
The basics are here now, but they are not fully fleshed out yet.
The privacy.proto file contains annotations that can go in the
proto file that we will later use to filter which fields are
uploaded, and which are used by local sources. For example, a
device in a test lab is safe to upload much much more information
than a real user. These will share the same mechanism, but the
user's output will be filtered according to these annotations.
frameworks/core/proto
---------------------
These .proto files contain the definitions of the system's
output. There is one master android.os.IncidentProto file that
is the top level of an incident report, but some other services
(notification, fingerprint, batterystats, etc) will have others
that are used directly by the logging mechanism.
Other files which are shared by several of the services also go
here, such as ComponentName, Locale, Configuration, etc. There
will be many more.
There is also a first iplementation of a dump method handling
--proto in the fingerprint service.
IncidentManager
---------------
The java API to trigger an incident report.
Test: Not written yet
Change-Id: I59568b115ac7fcf73af70c946c95752bf33ae67f
2016-11-21 17:51:35 -08:00
|
|
|
using namespace android::os;
|
|
|
|
|
using namespace google::protobuf;
|
|
|
|
|
using namespace google::protobuf::io;
|
|
|
|
|
using namespace google::protobuf::internal;
|
|
|
|
|
using namespace std;
|
|
|
|
|
|
2017-10-24 12:30:24 -07:00
|
|
|
/**
|
|
|
|
|
* Implementation details:
|
|
|
|
|
* This binary auto generates .cpp files for incident and incidentd.
|
|
|
|
|
*
|
|
|
|
|
* When argument "incident" is specified, it generates incident_section.cpp file.
|
|
|
|
|
*
|
|
|
|
|
* When argument "incidentd" is specified, it generates section_list.cpp file.
|
|
|
|
|
*
|
|
|
|
|
* In section_list.cpp file, it generates a SECTION_LIST array and a PRIVACY_POLICY_LIST array.
|
|
|
|
|
* For SECTION_LIST, it generates Section.h classes only for proto fields with section option enabled.
|
|
|
|
|
* For PRIVACY_POLICY_LIST, it generates Privacy.h classes only for proto fields with privacy option enabled.
|
|
|
|
|
*
|
|
|
|
|
* For Privacy struct, it is possible to have self recursion definitions since protobuf is defining "classes"
|
|
|
|
|
* So the logic to handle it becomes very complicated when Privacy tag of a message contains a list of Privacies
|
|
|
|
|
* of its sub-messages. The code also handles multiple depth of self recursion fields.
|
|
|
|
|
*
|
|
|
|
|
* For example here is a one level self recursion message WindowManager:
|
|
|
|
|
* message WindowState {
|
|
|
|
|
* string state = 1 [(privacy).dest = LOCAL];
|
|
|
|
|
* int32 display_id = 2;
|
|
|
|
|
* repeated WindowState child_windows = 3;
|
|
|
|
|
* }
|
|
|
|
|
*
|
|
|
|
|
* message WindowManager {
|
|
|
|
|
* WindowState my_window = 1;
|
|
|
|
|
* }
|
|
|
|
|
*
|
|
|
|
|
* When generating Privacy options for WindowManager, this tool will generate cpp syntax source code:
|
|
|
|
|
*
|
|
|
|
|
* #include "section_list.h"
|
|
|
|
|
* ...
|
2017-11-14 17:58:19 -08:00
|
|
|
* Privacy WindowState__state { 1, 9, NULL, LOCAL, NULL }; // first two integers are values for field id and proto type.
|
|
|
|
|
* Privacy WindowState__child_windows { 3, 11, NULL, UNSET, NULL }; // reserved for WindowState_LIST
|
|
|
|
|
* Privacy* WindowState__MSG__UNSET[] = {
|
2017-10-24 12:30:24 -07:00
|
|
|
* &WindowState_state,
|
|
|
|
|
* // display id is default, nothing is generated.
|
|
|
|
|
* &WindowState_child_windows,
|
|
|
|
|
* NULL // terminator of the array
|
|
|
|
|
* };
|
2017-11-14 17:58:19 -08:00
|
|
|
* Privacy WindowState__my_window { 1, 11, WindowState__MSG__UNSET, UNSET, NULL };
|
2017-10-24 12:30:24 -07:00
|
|
|
*
|
|
|
|
|
* createList() {
|
|
|
|
|
* ...
|
2017-11-14 17:58:19 -08:00
|
|
|
* WindowState_child_windows.children = WindowState__MSG_UNSET; // point to its own definition after the list is defined.
|
2017-10-24 12:30:24 -07:00
|
|
|
* ...
|
|
|
|
|
* }
|
|
|
|
|
*
|
|
|
|
|
* const Privacy** PRIVACY_POLICY_LIST = createList();
|
|
|
|
|
* const int PRIVACY_POLICY_COUNT = 1;
|
2017-11-14 17:58:19 -08:00
|
|
|
*
|
|
|
|
|
* Privacy Value Inheritance rules:
|
|
|
|
|
* 1. Both field and message can be tagged with DESTINATION: LOCAL(L), EXPLICIT(E), AUTOMATIC(A).
|
|
|
|
|
* 2. Primitives inherits containing message's tag unless defined explicitly.
|
|
|
|
|
* 3. Containing message's tag doesn't apply to message fields, even when unset (in this case, uses its default message tag).
|
|
|
|
|
* 4. Message field tag overrides its default message tag.
|
|
|
|
|
* 5. UNSET tag defaults to EXPLICIT.
|
2017-10-24 12:30:24 -07:00
|
|
|
*/
|
|
|
|
|
|
|
|
|
|
// The assignments will be called when constructs PRIVACY_POLICY_LIST, has to be global variable
|
|
|
|
|
vector<string> gSelfRecursionAssignments;
|
|
|
|
|
|
2017-08-18 14:51:20 -07:00
|
|
|
static inline void emptyline() {
|
|
|
|
|
printf("\n");
|
|
|
|
|
}
|
|
|
|
|
|
2017-08-15 22:01:41 -07:00
|
|
|
static void generateHead(const char* header) {
|
First checkin of incident reporting.
There are a few major pieces here:
incidentd
---------
This daemon (started by init) runs and accepts incoming requests to take
incident reports. When prompted, it calls into various system services
and fills in an IncidentProto data structure, and then writes the report
into dropbox.
The next steps for incidentd:
- Security review of SELinux policies. These will be a subset of
the dumpstate permissions. Until this is done, incidentd is
not started at boot time.
incident
--------
This shell command calls into incidentd, and can initiate an incident
report and either capture the output or leave for dropbox.
incident_report
---------------
This host side tool can call adb shell with the correct parameters
and also format the incident report as text. This formatting code
was left of the device on purpose. Right now it's pretty small, but
as the number of fields increases, the metadata and code to do the
formatting will start to grow.
The incident_report command also contains a workaround to let it
work before incidentd is turned on by default. Right now, it is
implemented to call adb shell dumpsys <service> --proto directly,
whereas in the future it will go through the full incidentd flow.
incident_section_gen
--------------------
A build-time tool that generates a stripped down set of information
about the fields that are available.
libincident
-----------
This library contains the code to connect to incidentd, and the
meta proto definitions that are used by the framework protos.
The basics are here now, but they are not fully fleshed out yet.
The privacy.proto file contains annotations that can go in the
proto file that we will later use to filter which fields are
uploaded, and which are used by local sources. For example, a
device in a test lab is safe to upload much much more information
than a real user. These will share the same mechanism, but the
user's output will be filtered according to these annotations.
frameworks/core/proto
---------------------
These .proto files contain the definitions of the system's
output. There is one master android.os.IncidentProto file that
is the top level of an incident report, but some other services
(notification, fingerprint, batterystats, etc) will have others
that are used directly by the logging mechanism.
Other files which are shared by several of the services also go
here, such as ComponentName, Locale, Configuration, etc. There
will be many more.
There is also a first iplementation of a dump method handling
--proto in the fingerprint service.
IncidentManager
---------------
The java API to trigger an incident report.
Test: Not written yet
Change-Id: I59568b115ac7fcf73af70c946c95752bf33ae67f
2016-11-21 17:51:35 -08:00
|
|
|
printf("// Auto generated file. Do not modify\n");
|
2017-08-18 14:51:20 -07:00
|
|
|
emptyline();
|
2017-08-15 22:01:41 -07:00
|
|
|
printf("#include \"%s.h\"\n", header);
|
2017-08-18 14:51:20 -07:00
|
|
|
emptyline();
|
2017-08-15 22:01:41 -07:00
|
|
|
}
|
|
|
|
|
|
2017-10-24 12:30:24 -07:00
|
|
|
// ======================== incident_sections =============================
|
2017-08-18 14:51:20 -07:00
|
|
|
static bool generateIncidentSectionsCpp(Descriptor const* descriptor)
|
2017-08-15 22:01:41 -07:00
|
|
|
{
|
|
|
|
|
generateHead("incident_sections");
|
First checkin of incident reporting.
There are a few major pieces here:
incidentd
---------
This daemon (started by init) runs and accepts incoming requests to take
incident reports. When prompted, it calls into various system services
and fills in an IncidentProto data structure, and then writes the report
into dropbox.
The next steps for incidentd:
- Security review of SELinux policies. These will be a subset of
the dumpstate permissions. Until this is done, incidentd is
not started at boot time.
incident
--------
This shell command calls into incidentd, and can initiate an incident
report and either capture the output or leave for dropbox.
incident_report
---------------
This host side tool can call adb shell with the correct parameters
and also format the incident report as text. This formatting code
was left of the device on purpose. Right now it's pretty small, but
as the number of fields increases, the metadata and code to do the
formatting will start to grow.
The incident_report command also contains a workaround to let it
work before incidentd is turned on by default. Right now, it is
implemented to call adb shell dumpsys <service> --proto directly,
whereas in the future it will go through the full incidentd flow.
incident_section_gen
--------------------
A build-time tool that generates a stripped down set of information
about the fields that are available.
libincident
-----------
This library contains the code to connect to incidentd, and the
meta proto definitions that are used by the framework protos.
The basics are here now, but they are not fully fleshed out yet.
The privacy.proto file contains annotations that can go in the
proto file that we will later use to filter which fields are
uploaded, and which are used by local sources. For example, a
device in a test lab is safe to upload much much more information
than a real user. These will share the same mechanism, but the
user's output will be filtered according to these annotations.
frameworks/core/proto
---------------------
These .proto files contain the definitions of the system's
output. There is one master android.os.IncidentProto file that
is the top level of an incident report, but some other services
(notification, fingerprint, batterystats, etc) will have others
that are used directly by the logging mechanism.
Other files which are shared by several of the services also go
here, such as ComponentName, Locale, Configuration, etc. There
will be many more.
There is also a first iplementation of a dump method handling
--proto in the fingerprint service.
IncidentManager
---------------
The java API to trigger an incident report.
Test: Not written yet
Change-Id: I59568b115ac7fcf73af70c946c95752bf33ae67f
2016-11-21 17:51:35 -08:00
|
|
|
|
2017-08-15 22:01:41 -07:00
|
|
|
map<string,FieldDescriptor const*> sections;
|
|
|
|
|
int N;
|
First checkin of incident reporting.
There are a few major pieces here:
incidentd
---------
This daemon (started by init) runs and accepts incoming requests to take
incident reports. When prompted, it calls into various system services
and fills in an IncidentProto data structure, and then writes the report
into dropbox.
The next steps for incidentd:
- Security review of SELinux policies. These will be a subset of
the dumpstate permissions. Until this is done, incidentd is
not started at boot time.
incident
--------
This shell command calls into incidentd, and can initiate an incident
report and either capture the output or leave for dropbox.
incident_report
---------------
This host side tool can call adb shell with the correct parameters
and also format the incident report as text. This formatting code
was left of the device on purpose. Right now it's pretty small, but
as the number of fields increases, the metadata and code to do the
formatting will start to grow.
The incident_report command also contains a workaround to let it
work before incidentd is turned on by default. Right now, it is
implemented to call adb shell dumpsys <service> --proto directly,
whereas in the future it will go through the full incidentd flow.
incident_section_gen
--------------------
A build-time tool that generates a stripped down set of information
about the fields that are available.
libincident
-----------
This library contains the code to connect to incidentd, and the
meta proto definitions that are used by the framework protos.
The basics are here now, but they are not fully fleshed out yet.
The privacy.proto file contains annotations that can go in the
proto file that we will later use to filter which fields are
uploaded, and which are used by local sources. For example, a
device in a test lab is safe to upload much much more information
than a real user. These will share the same mechanism, but the
user's output will be filtered according to these annotations.
frameworks/core/proto
---------------------
These .proto files contain the definitions of the system's
output. There is one master android.os.IncidentProto file that
is the top level of an incident report, but some other services
(notification, fingerprint, batterystats, etc) will have others
that are used directly by the logging mechanism.
Other files which are shared by several of the services also go
here, such as ComponentName, Locale, Configuration, etc. There
will be many more.
There is also a first iplementation of a dump method handling
--proto in the fingerprint service.
IncidentManager
---------------
The java API to trigger an incident report.
Test: Not written yet
Change-Id: I59568b115ac7fcf73af70c946c95752bf33ae67f
2016-11-21 17:51:35 -08:00
|
|
|
N = descriptor->field_count();
|
|
|
|
|
for (int i=0; i<N; i++) {
|
|
|
|
|
const FieldDescriptor* field = descriptor->field(i);
|
|
|
|
|
if (field->type() == FieldDescriptor::TYPE_MESSAGE) {
|
|
|
|
|
sections[field->name()] = field;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
printf("IncidentSection const INCIDENT_SECTIONS[] = {\n");
|
|
|
|
|
N = sections.size();
|
|
|
|
|
int i = 0;
|
|
|
|
|
for (map<string,FieldDescriptor const*>::const_iterator it = sections.begin();
|
|
|
|
|
it != sections.end(); it++, i++) {
|
|
|
|
|
const FieldDescriptor* field = it->second;
|
|
|
|
|
printf(" { %d, \"%s\" }", field->number(), field->name().c_str());
|
|
|
|
|
if (i != N-1) {
|
|
|
|
|
printf(",\n");
|
|
|
|
|
} else {
|
|
|
|
|
printf("\n");
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
printf("};\n");
|
|
|
|
|
|
|
|
|
|
printf("const int INCIDENT_SECTION_COUNT = %d;\n", N);
|
|
|
|
|
|
2017-08-15 22:01:41 -07:00
|
|
|
return true;
|
|
|
|
|
}
|
|
|
|
|
|
2017-10-24 12:30:24 -07:00
|
|
|
// ========================= section_list ===================================
|
2017-08-15 22:01:41 -07:00
|
|
|
static void splitAndPrint(const string& args) {
|
|
|
|
|
size_t base = 0;
|
|
|
|
|
size_t found;
|
|
|
|
|
while (true) {
|
|
|
|
|
found = args.find_first_of(" ", base);
|
|
|
|
|
if (found != base) {
|
|
|
|
|
string arg = args.substr(base, found - base);
|
|
|
|
|
printf(" \"%s\",", arg.c_str());
|
|
|
|
|
}
|
|
|
|
|
if (found == args.npos) break;
|
|
|
|
|
base = found + 1;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2017-10-24 12:30:24 -07:00
|
|
|
static string replaceAll(const string& fieldName, const char oldC, const string& newS) {
|
|
|
|
|
if (fieldName.find_first_of(oldC) == fieldName.npos) return fieldName.c_str();
|
2017-08-18 14:51:20 -07:00
|
|
|
size_t pos = 0, idx = 0;
|
2017-10-24 12:30:24 -07:00
|
|
|
char* res = new char[fieldName.size() * newS.size() + 1]; // assign a larger buffer
|
|
|
|
|
while (pos != fieldName.size()) {
|
|
|
|
|
char cur = fieldName[pos++];
|
2017-08-18 14:51:20 -07:00
|
|
|
if (cur != oldC) {
|
|
|
|
|
res[idx++] = cur;
|
|
|
|
|
continue;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
for (size_t i=0; i<newS.size(); i++) {
|
|
|
|
|
res[idx++] = newS[i];
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
res[idx] = '\0';
|
2017-10-24 12:30:24 -07:00
|
|
|
string result(res);
|
2017-09-05 15:50:58 -07:00
|
|
|
delete [] res;
|
|
|
|
|
return result;
|
2017-08-18 14:51:20 -07:00
|
|
|
}
|
|
|
|
|
|
2017-11-14 17:58:19 -08:00
|
|
|
static inline void printPrivacy(const string& name, const FieldDescriptor* field, const string& children,
|
|
|
|
|
const Destination dest, const string& patterns, const string& comments = "") {
|
|
|
|
|
printf("Privacy %s = { %d, %d, %s, %d, %s };%s\n", name.c_str(), field->number(), field->type(),
|
|
|
|
|
children.c_str(), dest, patterns.c_str(), comments.c_str());
|
2017-10-24 12:30:24 -07:00
|
|
|
}
|
|
|
|
|
|
2017-11-14 17:58:19 -08:00
|
|
|
// Get Custom Options ================================================================================
|
2017-10-24 12:30:24 -07:00
|
|
|
static inline SectionFlags getSectionFlags(const FieldDescriptor* field) {
|
|
|
|
|
return field->options().GetExtension(section);
|
2017-08-18 14:51:20 -07:00
|
|
|
}
|
|
|
|
|
|
2017-10-24 12:30:24 -07:00
|
|
|
static inline PrivacyFlags getPrivacyFlags(const FieldDescriptor* field) {
|
|
|
|
|
return field->options().GetExtension(privacy);
|
|
|
|
|
}
|
|
|
|
|
|
2017-11-14 17:58:19 -08:00
|
|
|
static inline PrivacyFlags getPrivacyFlags(const Descriptor* descriptor) {
|
|
|
|
|
return descriptor->options().GetExtension(msg_privacy);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Get Destinations ===================================================================================
|
|
|
|
|
static inline Destination getMessageDest(const Descriptor* descriptor, const Destination overridden) {
|
|
|
|
|
return overridden != DEST_UNSET ? overridden : getPrivacyFlags(descriptor).dest();
|
2017-10-24 12:30:24 -07:00
|
|
|
}
|
|
|
|
|
|
2017-11-14 17:58:19 -08:00
|
|
|
// Returns field's own dest, when it is a message field, uses its message default tag if unset.
|
|
|
|
|
static inline Destination getFieldDest(const FieldDescriptor* field) {
|
|
|
|
|
Destination fieldDest = getPrivacyFlags(field).dest();
|
|
|
|
|
return field->type() != FieldDescriptor::TYPE_MESSAGE ? fieldDest :
|
|
|
|
|
getMessageDest(field->message_type(), fieldDest);
|
|
|
|
|
}
|
|
|
|
|
|
2018-02-22 15:05:48 -08:00
|
|
|
// Converts Destination to a string.
|
|
|
|
|
static inline string getDestString(const Destination dest) {
|
|
|
|
|
switch (dest) {
|
|
|
|
|
case DEST_AUTOMATIC: return "AUTOMATIC";
|
|
|
|
|
case DEST_LOCAL: return "LOCAL";
|
|
|
|
|
case DEST_EXPLICIT: return "EXPLICIT";
|
|
|
|
|
// UNSET is considered EXPLICIT by default.
|
|
|
|
|
case DEST_UNSET: return "EXPLICIT";
|
|
|
|
|
default: return "UNKNOWN";
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2017-11-14 17:58:19 -08:00
|
|
|
// Get Names ===========================================================================================
|
|
|
|
|
static inline string getFieldName(const FieldDescriptor* field) {
|
|
|
|
|
// replace . with double underscores to avoid name conflicts since fields use snake naming convention
|
|
|
|
|
return replaceAll(field->full_name(), '.', "__");
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
static inline string getMessageName(const Descriptor* descriptor, const Destination overridden) {
|
|
|
|
|
// replace . with one underscore since messages use camel naming convention
|
|
|
|
|
return replaceAll(descriptor->full_name(), '.', "_") + "__MSG__" +
|
|
|
|
|
to_string(getMessageDest(descriptor, overridden));
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// IsDefault ============================================================================================
|
|
|
|
|
// Returns true if a field is default. Default is defined as this field has same dest as its containing message.
|
2018-02-22 15:05:48 -08:00
|
|
|
// For message fields, it only looks at its field tag and own default message tag, doesn't recursively go deeper.
|
2017-11-14 17:58:19 -08:00
|
|
|
static inline bool isDefaultField(const FieldDescriptor* field, const Destination containerDest) {
|
|
|
|
|
Destination fieldDest = getFieldDest(field);
|
|
|
|
|
if (field->type() != FieldDescriptor::TYPE_MESSAGE) {
|
|
|
|
|
return fieldDest == containerDest || (fieldDest == DEST_UNSET);
|
|
|
|
|
} else {
|
|
|
|
|
return fieldDest == containerDest ||
|
|
|
|
|
(containerDest == DEST_UNSET && fieldDest == DEST_EXPLICIT) ||
|
|
|
|
|
(containerDest == DEST_EXPLICIT && fieldDest == DEST_UNSET);
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
static bool isDefaultMessageImpl(const Descriptor* descriptor, const Destination dest, set<string>* parents) {
|
|
|
|
|
const int N = descriptor->field_count();
|
|
|
|
|
const Destination messageDest = getMessageDest(descriptor, dest);
|
2017-10-24 12:30:24 -07:00
|
|
|
parents->insert(descriptor->full_name());
|
|
|
|
|
for (int i=0; i<N; ++i) {
|
|
|
|
|
const FieldDescriptor* field = descriptor->field(i);
|
2017-11-14 17:58:19 -08:00
|
|
|
const Destination fieldDest = getFieldDest(field);
|
|
|
|
|
// If current field is not default, return false immediately
|
|
|
|
|
if (!isDefaultField(field, messageDest)) return false;
|
2017-10-24 12:30:24 -07:00
|
|
|
switch (field->type()) {
|
|
|
|
|
case FieldDescriptor::TYPE_MESSAGE:
|
|
|
|
|
// if self recursion, don't go deep.
|
|
|
|
|
if (parents->find(field->message_type()->full_name()) != parents->end()) break;
|
|
|
|
|
// if is a default message, just continue
|
2017-11-14 17:58:19 -08:00
|
|
|
if (isDefaultMessageImpl(field->message_type(), fieldDest, parents)) break;
|
2017-10-24 12:30:24 -07:00
|
|
|
// sub message is not default, so this message is always not default
|
|
|
|
|
return false;
|
|
|
|
|
case FieldDescriptor::TYPE_STRING:
|
|
|
|
|
if (getPrivacyFlags(field).patterns_size() != 0) return false;
|
|
|
|
|
default:
|
|
|
|
|
continue;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
parents->erase(descriptor->full_name());
|
|
|
|
|
return true;
|
|
|
|
|
}
|
|
|
|
|
|
2017-11-14 17:58:19 -08:00
|
|
|
// Recursively look at if this message is default, meaning all its fields and sub-messages
|
|
|
|
|
// can be described by the same dest.
|
|
|
|
|
static bool isDefaultMessage(const Descriptor* descriptor, const Destination dest) {
|
2017-10-24 12:30:24 -07:00
|
|
|
set<string> parents;
|
2017-11-14 17:58:19 -08:00
|
|
|
return isDefaultMessageImpl(descriptor, dest, &parents);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// ===============================================================================================================
|
|
|
|
|
static bool numberInOrder(const FieldDescriptor* f1, const FieldDescriptor* f2) {
|
|
|
|
|
return f1->number() < f2->number();
|
2017-10-24 12:30:24 -07:00
|
|
|
}
|
|
|
|
|
|
2017-11-14 17:58:19 -08:00
|
|
|
// field numbers are possibly out of order, sort them here.
|
|
|
|
|
static vector<const FieldDescriptor*> sortFields(const Descriptor* descriptor) {
|
|
|
|
|
vector<const FieldDescriptor*> fields;
|
|
|
|
|
fields.reserve(descriptor->field_count());
|
|
|
|
|
for (int i=0; i<descriptor->field_count(); i++) {
|
|
|
|
|
fields.push_back(descriptor->field(i));
|
|
|
|
|
}
|
|
|
|
|
std::sort(fields.begin(), fields.end(), numberInOrder);
|
|
|
|
|
return fields;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// This function looks for privacy tags of a message type and recursively its sub-messages.
|
|
|
|
|
// It generates Privacy objects for each non-default fields including non-default sub-messages.
|
|
|
|
|
// And if the message has Privacy objects generated, it returns a list of them.
|
2017-10-16 14:42:50 -07:00
|
|
|
// Returns false if the descriptor doesn't have any non default privacy flags set, including its submessages
|
2017-11-14 17:58:19 -08:00
|
|
|
static bool generatePrivacyFlags(const Descriptor* descriptor, const Destination overridden,
|
|
|
|
|
map<string, bool> &variableNames, set<string>* parents) {
|
|
|
|
|
const string messageName = getMessageName(descriptor, overridden);
|
|
|
|
|
const Destination messageDest = getMessageDest(descriptor, overridden);
|
|
|
|
|
|
|
|
|
|
if (variableNames.find(messageName) != variableNames.end()) {
|
|
|
|
|
bool hasDefault = variableNames[messageName];
|
|
|
|
|
return !hasDefault; // if has default, then don't generate privacy flags.
|
2017-10-24 12:30:24 -07:00
|
|
|
}
|
|
|
|
|
// insert the message type name so sub-message will figure out if self-recursion occurs
|
2017-11-14 17:58:19 -08:00
|
|
|
parents->insert(messageName);
|
2017-10-24 12:30:24 -07:00
|
|
|
|
2017-11-14 17:58:19 -08:00
|
|
|
// sort fields based on number, iterate though them and generate sub flags first
|
|
|
|
|
vector<const FieldDescriptor*> fieldsInOrder = sortFields(descriptor);
|
|
|
|
|
bool hasDefaultFlags[fieldsInOrder.size()];
|
|
|
|
|
for (size_t i=0; i<fieldsInOrder.size(); i++) {
|
|
|
|
|
const FieldDescriptor* field = fieldsInOrder[i];
|
2017-10-24 12:30:24 -07:00
|
|
|
const string fieldName = getFieldName(field);
|
2017-11-14 17:58:19 -08:00
|
|
|
const Destination fieldDest = getFieldDest(field);
|
|
|
|
|
|
|
|
|
|
if (variableNames.find(fieldName) != variableNames.end()) {
|
|
|
|
|
hasDefaultFlags[i] = variableNames[fieldName];
|
2017-08-18 14:51:20 -07:00
|
|
|
continue;
|
2017-11-14 17:58:19 -08:00
|
|
|
}
|
|
|
|
|
hasDefaultFlags[i] = isDefaultField(field, messageDest);
|
2017-08-18 14:51:20 -07:00
|
|
|
|
2017-10-24 12:30:24 -07:00
|
|
|
string fieldMessageName;
|
2017-11-14 17:58:19 -08:00
|
|
|
PrivacyFlags p = getPrivacyFlags(field);
|
2017-08-18 14:51:20 -07:00
|
|
|
switch (field->type()) {
|
|
|
|
|
case FieldDescriptor::TYPE_MESSAGE:
|
2017-11-14 17:58:19 -08:00
|
|
|
fieldMessageName = getMessageName(field->message_type(), fieldDest);
|
2017-10-24 12:30:24 -07:00
|
|
|
if (parents->find(fieldMessageName) != parents->end()) { // Self-Recursion proto definition
|
2017-11-14 17:58:19 -08:00
|
|
|
if (hasDefaultFlags[i]) {
|
|
|
|
|
hasDefaultFlags[i] = isDefaultMessage(field->message_type(), fieldDest);
|
2017-10-24 12:30:24 -07:00
|
|
|
}
|
|
|
|
|
if (!hasDefaultFlags[i]) {
|
2017-11-14 17:58:19 -08:00
|
|
|
printPrivacy(fieldName, field, "NULL", fieldDest, "NULL",
|
|
|
|
|
" // self recursion field of " + fieldMessageName);
|
2017-10-24 12:30:24 -07:00
|
|
|
// generate the assignment and used to construct createList function later on.
|
|
|
|
|
gSelfRecursionAssignments.push_back(fieldName + ".children = " + fieldMessageName);
|
|
|
|
|
}
|
2017-11-14 17:58:19 -08:00
|
|
|
} else if (generatePrivacyFlags(field->message_type(), p.dest(), variableNames, parents)) {
|
|
|
|
|
if (variableNames.find(fieldName) == variableNames.end()) {
|
|
|
|
|
printPrivacy(fieldName, field, fieldMessageName, fieldDest, "NULL");
|
|
|
|
|
}
|
|
|
|
|
hasDefaultFlags[i] = false;
|
|
|
|
|
} else if (!hasDefaultFlags[i]) {
|
|
|
|
|
printPrivacy(fieldName, field, "NULL", fieldDest, "NULL");
|
2017-10-16 14:42:50 -07:00
|
|
|
}
|
2017-08-18 14:51:20 -07:00
|
|
|
break;
|
|
|
|
|
case FieldDescriptor::TYPE_STRING:
|
2017-11-14 17:58:19 -08:00
|
|
|
if (p.patterns_size() != 0) { // if patterns are specified
|
|
|
|
|
if (hasDefaultFlags[i]) break;
|
|
|
|
|
printf("const char* %s_patterns[] = {\n", fieldName.c_str());
|
|
|
|
|
for (int j=0; j<p.patterns_size(); j++) {
|
|
|
|
|
// generated string needs to escape backslash too, duplicate it to allow escape again.
|
|
|
|
|
printf(" \"%s\",\n", replaceAll(p.patterns(j), '\\', "\\\\").c_str());
|
|
|
|
|
}
|
|
|
|
|
printf(" NULL };\n");
|
|
|
|
|
printPrivacy(fieldName, field, "NULL", fieldDest, fieldName + "_patterns");
|
|
|
|
|
break;
|
2017-08-18 14:51:20 -07:00
|
|
|
}
|
2017-11-14 17:58:19 -08:00
|
|
|
// else treat string field as primitive field and goes to default
|
2017-08-18 14:51:20 -07:00
|
|
|
default:
|
2017-11-14 17:58:19 -08:00
|
|
|
if (!hasDefaultFlags[i]) printPrivacy(fieldName, field, "NULL", fieldDest, "NULL");
|
2017-08-18 14:51:20 -07:00
|
|
|
}
|
2017-11-14 17:58:19 -08:00
|
|
|
// Don't generate a variable twice
|
|
|
|
|
if (!hasDefaultFlags[i]) variableNames[fieldName] = false;
|
2017-08-18 14:51:20 -07:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
bool allDefaults = true;
|
2017-11-14 17:58:19 -08:00
|
|
|
for (size_t i=0; i<fieldsInOrder.size(); i++) {
|
2017-08-18 14:51:20 -07:00
|
|
|
allDefaults &= hasDefaultFlags[i];
|
|
|
|
|
}
|
2017-10-24 12:30:24 -07:00
|
|
|
|
2017-11-14 17:58:19 -08:00
|
|
|
parents->erase(messageName); // erase the message type name when exit the message.
|
|
|
|
|
variableNames[messageName] = allDefaults; // store the privacy tags of the message here to avoid overhead.
|
2017-10-24 12:30:24 -07:00
|
|
|
|
2017-10-16 14:42:50 -07:00
|
|
|
if (allDefaults) return false;
|
2017-08-18 14:51:20 -07:00
|
|
|
|
|
|
|
|
emptyline();
|
2017-09-12 20:00:25 -07:00
|
|
|
int policyCount = 0;
|
2017-11-14 17:58:19 -08:00
|
|
|
printf("Privacy* %s[] = {\n", messageName.c_str());
|
|
|
|
|
for (size_t i=0; i<fieldsInOrder.size(); i++) {
|
|
|
|
|
const FieldDescriptor* field = fieldsInOrder[i];
|
2017-08-18 14:51:20 -07:00
|
|
|
if (hasDefaultFlags[i]) continue;
|
2017-10-24 12:30:24 -07:00
|
|
|
printf(" &%s,\n", getFieldName(field).c_str());
|
2017-09-12 20:00:25 -07:00
|
|
|
policyCount++;
|
|
|
|
|
}
|
2017-10-24 12:30:24 -07:00
|
|
|
printf(" NULL };\n");
|
2017-08-18 14:51:20 -07:00
|
|
|
emptyline();
|
2017-10-16 14:42:50 -07:00
|
|
|
return true;
|
2017-08-18 14:51:20 -07:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
static bool generateSectionListCpp(Descriptor const* descriptor) {
|
2017-08-15 22:01:41 -07:00
|
|
|
generateHead("section_list");
|
|
|
|
|
|
2018-03-30 14:04:52 -07:00
|
|
|
// generate namespaces
|
|
|
|
|
printf("namespace android {\n");
|
|
|
|
|
printf("namespace os {\n");
|
|
|
|
|
printf("namespace incidentd {\n");
|
|
|
|
|
|
2017-08-18 14:51:20 -07:00
|
|
|
// generates SECTION_LIST
|
2017-10-24 12:30:24 -07:00
|
|
|
printf("// Generate SECTION_LIST.\n\n");
|
|
|
|
|
|
2017-08-15 22:01:41 -07:00
|
|
|
printf("const Section* SECTION_LIST[] = {\n");
|
|
|
|
|
for (int i=0; i<descriptor->field_count(); i++) {
|
|
|
|
|
const FieldDescriptor* field = descriptor->field(i);
|
|
|
|
|
|
|
|
|
|
if (field->type() != FieldDescriptor::TYPE_MESSAGE) {
|
|
|
|
|
continue;
|
|
|
|
|
}
|
2017-10-24 12:30:24 -07:00
|
|
|
const SectionFlags s = getSectionFlags(field);
|
2017-08-15 22:01:41 -07:00
|
|
|
switch (s.type()) {
|
|
|
|
|
case SECTION_NONE:
|
|
|
|
|
continue;
|
|
|
|
|
case SECTION_FILE:
|
2018-04-16 16:13:04 -07:00
|
|
|
printf(" new FileSection(%d, \"%s\", %s),\n", field->number(), s.args().c_str(),
|
|
|
|
|
s.device_specific() ? "true" : "false");
|
2017-08-15 22:01:41 -07:00
|
|
|
break;
|
|
|
|
|
case SECTION_COMMAND:
|
|
|
|
|
printf(" new CommandSection(%d,", field->number());
|
|
|
|
|
splitAndPrint(s.args());
|
|
|
|
|
printf(" NULL),\n");
|
|
|
|
|
break;
|
|
|
|
|
case SECTION_DUMPSYS:
|
2018-05-14 18:04:29 -07:00
|
|
|
printf(" new DumpsysSection(%d, %s,", field->number(),
|
2018-04-16 16:54:24 -07:00
|
|
|
s.userdebug_and_eng_only() ? "true" : "false");
|
2017-08-15 22:01:41 -07:00
|
|
|
splitAndPrint(s.args());
|
|
|
|
|
printf(" NULL),\n");
|
|
|
|
|
break;
|
2017-12-22 17:36:47 -08:00
|
|
|
case SECTION_LOG:
|
|
|
|
|
printf(" new LogSection(%d, %s),\n", field->number(), s.args().c_str());
|
|
|
|
|
break;
|
2018-02-22 16:44:10 -08:00
|
|
|
case SECTION_GZIP:
|
|
|
|
|
printf(" new GZipSection(%d,", field->number());
|
|
|
|
|
splitAndPrint(s.args());
|
|
|
|
|
printf(" NULL),\n");
|
2018-03-15 14:14:26 -07:00
|
|
|
break;
|
2018-02-05 16:45:13 -08:00
|
|
|
case SECTION_TOMBSTONE:
|
|
|
|
|
printf(" new TombstoneSection(%d, \"%s\"),\n", field->number(), s.args().c_str());
|
2018-02-22 16:44:10 -08:00
|
|
|
break;
|
2017-08-15 22:01:41 -07:00
|
|
|
}
|
|
|
|
|
}
|
2017-08-18 14:51:20 -07:00
|
|
|
printf(" NULL };\n");
|
2017-10-24 12:30:24 -07:00
|
|
|
|
|
|
|
|
emptyline();
|
|
|
|
|
printf("// =============================================================================\n");
|
2017-08-18 14:51:20 -07:00
|
|
|
emptyline();
|
|
|
|
|
|
2017-10-24 12:30:24 -07:00
|
|
|
// generates PRIVACY_POLICY_LIST
|
|
|
|
|
printf("// Generate PRIVACY_POLICY_LIST.\n\n");
|
2017-11-14 17:58:19 -08:00
|
|
|
map<string, bool> variableNames;
|
2017-10-24 12:30:24 -07:00
|
|
|
set<string> parents;
|
2017-11-14 17:58:19 -08:00
|
|
|
vector<const FieldDescriptor*> fieldsInOrder = sortFields(descriptor);
|
|
|
|
|
bool skip[fieldsInOrder.size()];
|
|
|
|
|
const Destination incidentDest = getPrivacyFlags(descriptor).dest();
|
2017-10-24 12:30:24 -07:00
|
|
|
|
2017-11-14 17:58:19 -08:00
|
|
|
for (size_t i=0; i<fieldsInOrder.size(); i++) {
|
|
|
|
|
const FieldDescriptor* field = fieldsInOrder[i];
|
2017-10-24 12:30:24 -07:00
|
|
|
const string fieldName = getFieldName(field);
|
2017-11-14 17:58:19 -08:00
|
|
|
const Destination fieldDest = getFieldDest(field);
|
|
|
|
|
const string fieldMessageName = getMessageName(field->message_type(), fieldDest);
|
2017-10-24 12:30:24 -07:00
|
|
|
|
|
|
|
|
skip[i] = true;
|
|
|
|
|
|
|
|
|
|
if (field->type() != FieldDescriptor::TYPE_MESSAGE) {
|
|
|
|
|
continue;
|
|
|
|
|
}
|
2017-11-14 17:58:19 -08:00
|
|
|
// generate privacy flags for each section.
|
|
|
|
|
if (generatePrivacyFlags(field->message_type(), fieldDest, variableNames, &parents)) {
|
|
|
|
|
printPrivacy(fieldName, field, fieldMessageName, fieldDest, "NULL");
|
|
|
|
|
} else if (isDefaultField(field, incidentDest)) {
|
2017-10-24 12:30:24 -07:00
|
|
|
continue; // don't create a new privacy if the value is default.
|
|
|
|
|
} else {
|
2017-11-14 17:58:19 -08:00
|
|
|
printPrivacy(fieldName, field, "NULL", fieldDest, "NULL");
|
2017-10-24 12:30:24 -07:00
|
|
|
}
|
|
|
|
|
skip[i] = false;
|
2017-08-18 14:51:20 -07:00
|
|
|
}
|
|
|
|
|
|
2017-10-24 12:30:24 -07:00
|
|
|
// generate final PRIVACY_POLICY_LIST
|
|
|
|
|
emptyline();
|
|
|
|
|
int policyCount = 0;
|
|
|
|
|
if (gSelfRecursionAssignments.empty()) {
|
|
|
|
|
printf("Privacy* privacyArray[] = {\n");
|
2017-11-14 17:58:19 -08:00
|
|
|
for (size_t i=0; i<fieldsInOrder.size(); i++) {
|
2017-10-24 12:30:24 -07:00
|
|
|
if (skip[i]) continue;
|
2017-11-14 17:58:19 -08:00
|
|
|
printf(" &%s,\n", getFieldName(fieldsInOrder[i]).c_str());
|
2017-10-24 12:30:24 -07:00
|
|
|
policyCount++;
|
|
|
|
|
}
|
|
|
|
|
printf("};\n\n");
|
|
|
|
|
printf("const Privacy** PRIVACY_POLICY_LIST = const_cast<const Privacy**>(privacyArray);\n\n");
|
|
|
|
|
printf("const int PRIVACY_POLICY_COUNT = %d;\n", policyCount);
|
|
|
|
|
} else {
|
2017-11-14 17:58:19 -08:00
|
|
|
for (size_t i=0; i<fieldsInOrder.size(); i++) {
|
2017-10-24 12:30:24 -07:00
|
|
|
if (!skip[i]) policyCount++;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
printf("static const Privacy** createList() {\n");
|
|
|
|
|
for (size_t i=0; i<gSelfRecursionAssignments.size(); ++i) {
|
|
|
|
|
printf(" %s;\n", gSelfRecursionAssignments[i].c_str());
|
|
|
|
|
}
|
|
|
|
|
printf(" Privacy** privacyArray = (Privacy**)malloc(%d * sizeof(Privacy**));\n", policyCount);
|
|
|
|
|
policyCount = 0; // reset
|
2017-11-14 17:58:19 -08:00
|
|
|
for (size_t i=0; i<fieldsInOrder.size(); i++) {
|
2017-10-24 12:30:24 -07:00
|
|
|
if (skip[i]) continue;
|
2017-11-14 17:58:19 -08:00
|
|
|
printf(" privacyArray[%d] = &%s;\n", policyCount++, getFieldName(fieldsInOrder[i]).c_str());
|
2017-10-24 12:30:24 -07:00
|
|
|
}
|
|
|
|
|
printf(" return const_cast<const Privacy**>(privacyArray);\n");
|
|
|
|
|
printf("}\n\n");
|
|
|
|
|
printf("const Privacy** PRIVACY_POLICY_LIST = createList();\n\n");
|
|
|
|
|
printf("const int PRIVACY_POLICY_COUNT = %d;\n", policyCount);
|
|
|
|
|
}
|
2018-03-30 14:04:52 -07:00
|
|
|
|
|
|
|
|
printf("} // incidentd\n");
|
|
|
|
|
printf("} // os\n");
|
|
|
|
|
printf("} // android\n");
|
2017-08-15 22:01:41 -07:00
|
|
|
return true;
|
|
|
|
|
}
|
|
|
|
|
|
2017-11-16 18:19:45 -08:00
|
|
|
// ================================================================================
|
|
|
|
|
static string replace_string(const string& str, const char replace, const char with)
|
|
|
|
|
{
|
|
|
|
|
string result(str);
|
|
|
|
|
const int N = result.size();
|
|
|
|
|
for (int i=0; i<N; i++) {
|
|
|
|
|
if (result[i] == replace) {
|
|
|
|
|
result[i] = with;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
return result;
|
|
|
|
|
}
|
|
|
|
|
|
2018-02-22 15:05:48 -08:00
|
|
|
static void generateCsv(Descriptor const* descriptor, const string& indent, set<string>* parents, const Destination containerDest = DEST_UNSET) {
|
2017-11-16 18:19:45 -08:00
|
|
|
DebugStringOptions options;
|
|
|
|
|
options.include_comments = true;
|
|
|
|
|
for (int i=0; i<descriptor->field_count(); i++) {
|
|
|
|
|
const FieldDescriptor* field = descriptor->field(i);
|
2018-02-22 15:05:48 -08:00
|
|
|
const Destination fieldDest = getFieldDest(field);
|
2017-11-16 18:19:45 -08:00
|
|
|
stringstream text;
|
|
|
|
|
if (field->type() == FieldDescriptor::TYPE_MESSAGE) {
|
|
|
|
|
text << field->message_type()->name();
|
|
|
|
|
} else {
|
|
|
|
|
text << field->type_name();
|
|
|
|
|
}
|
|
|
|
|
text << " " << field->name();
|
2018-02-22 15:05:48 -08:00
|
|
|
text << " (PRIVACY=";
|
|
|
|
|
if (isDefaultField(field, containerDest)) {
|
|
|
|
|
text << getDestString(containerDest);
|
|
|
|
|
} else {
|
|
|
|
|
text << getDestString(fieldDest);
|
|
|
|
|
}
|
|
|
|
|
text << ")";
|
2017-11-16 18:19:45 -08:00
|
|
|
printf("%s%s,\n", indent.c_str(), replace_string(text.str(), '\n', ' ').c_str());
|
|
|
|
|
if (field->type() == FieldDescriptor::TYPE_MESSAGE &&
|
|
|
|
|
parents->find(field->message_type()->full_name()) == parents->end()) {
|
|
|
|
|
parents->insert(field->message_type()->full_name());
|
2018-02-22 15:05:48 -08:00
|
|
|
generateCsv(field->message_type(), indent + ",", parents, fieldDest);
|
2017-11-16 18:19:45 -08:00
|
|
|
parents->erase(field->message_type()->full_name());
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2017-08-15 22:01:41 -07:00
|
|
|
// ================================================================================
|
|
|
|
|
int main(int argc, char const *argv[])
|
|
|
|
|
{
|
2017-11-16 18:19:45 -08:00
|
|
|
if (argc < 2) return 1;
|
2017-08-15 22:01:41 -07:00
|
|
|
const char* module = argv[1];
|
|
|
|
|
|
2017-08-18 14:51:20 -07:00
|
|
|
Descriptor const* descriptor = IncidentProto::descriptor();
|
|
|
|
|
|
2017-08-15 22:01:41 -07:00
|
|
|
if (strcmp(module, "incident") == 0) {
|
2017-08-18 14:51:20 -07:00
|
|
|
return !generateIncidentSectionsCpp(descriptor);
|
2017-08-15 22:01:41 -07:00
|
|
|
}
|
|
|
|
|
if (strcmp(module, "incidentd") == 0 ) {
|
2017-08-18 14:51:20 -07:00
|
|
|
return !generateSectionListCpp(descriptor);
|
2017-08-15 22:01:41 -07:00
|
|
|
}
|
2017-11-16 18:19:45 -08:00
|
|
|
// Generates Csv Format of proto definition for each section.
|
|
|
|
|
if (strcmp(module, "csv") == 0 && argc > 2) {
|
|
|
|
|
int sectionId = atoi(argv[2]);
|
|
|
|
|
for (int i=0; i<descriptor->field_count(); i++) {
|
|
|
|
|
const FieldDescriptor* field = descriptor->field(i);
|
|
|
|
|
if (strcmp(field->name().c_str(), argv[2]) == 0
|
|
|
|
|
|| field->number() == sectionId) {
|
|
|
|
|
set<string> parents;
|
|
|
|
|
printf("%s\n", field->name().c_str());
|
2018-02-22 15:05:48 -08:00
|
|
|
generateCsv(field->message_type(), "", &parents, getFieldDest(field));
|
2017-11-16 18:19:45 -08:00
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
// Returns failure if csv is enabled to prevent Android building with it.
|
|
|
|
|
// It doesn't matter if this command runs manually.
|
|
|
|
|
return 1;
|
|
|
|
|
}
|
|
|
|
|
// Returns failure if not called by the whitelisted modules
|
2017-08-15 22:01:41 -07:00
|
|
|
return 1;
|
First checkin of incident reporting.
There are a few major pieces here:
incidentd
---------
This daemon (started by init) runs and accepts incoming requests to take
incident reports. When prompted, it calls into various system services
and fills in an IncidentProto data structure, and then writes the report
into dropbox.
The next steps for incidentd:
- Security review of SELinux policies. These will be a subset of
the dumpstate permissions. Until this is done, incidentd is
not started at boot time.
incident
--------
This shell command calls into incidentd, and can initiate an incident
report and either capture the output or leave for dropbox.
incident_report
---------------
This host side tool can call adb shell with the correct parameters
and also format the incident report as text. This formatting code
was left of the device on purpose. Right now it's pretty small, but
as the number of fields increases, the metadata and code to do the
formatting will start to grow.
The incident_report command also contains a workaround to let it
work before incidentd is turned on by default. Right now, it is
implemented to call adb shell dumpsys <service> --proto directly,
whereas in the future it will go through the full incidentd flow.
incident_section_gen
--------------------
A build-time tool that generates a stripped down set of information
about the fields that are available.
libincident
-----------
This library contains the code to connect to incidentd, and the
meta proto definitions that are used by the framework protos.
The basics are here now, but they are not fully fleshed out yet.
The privacy.proto file contains annotations that can go in the
proto file that we will later use to filter which fields are
uploaded, and which are used by local sources. For example, a
device in a test lab is safe to upload much much more information
than a real user. These will share the same mechanism, but the
user's output will be filtered according to these annotations.
frameworks/core/proto
---------------------
These .proto files contain the definitions of the system's
output. There is one master android.os.IncidentProto file that
is the top level of an incident report, but some other services
(notification, fingerprint, batterystats, etc) will have others
that are used directly by the logging mechanism.
Other files which are shared by several of the services also go
here, such as ComponentName, Locale, Configuration, etc. There
will be many more.
There is also a first iplementation of a dump method handling
--proto in the fingerprint service.
IncidentManager
---------------
The java API to trigger an incident report.
Test: Not written yet
Change-Id: I59568b115ac7fcf73af70c946c95752bf33ae67f
2016-11-21 17:51:35 -08:00
|
|
|
}
|
