Gitiles
Code Review Sign In
gerrit.omnirom.org / android_frameworks_native / f784183c17a4985b9703ac22d063ad4ef8b9090f / . / libs / binder / Parcel.cpp
blob: ef14475ae2f0ee0ad29ae2d7dfd72d8e5ee2ad93 [file] [log] [blame]
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]1/*
2 * Copyright (C) 2005 The Android Open Source Project
3 *
4 * Licensed under the Apache License, Version 2.0 (the "License");
5 * you may not use this file except in compliance with the License.
6 * You may obtain a copy of the License at
7 *
8 * http://www.apache.org/licenses/LICENSE-2.0
9 *
10 * Unless required by applicable law or agreed to in writing, software
11 * distributed under the License is distributed on an "AS IS" BASIS,
12 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13 * See the License for the specific language governing permissions and
14 * limitations under the License.
15 */
16
17#define LOG_TAG "Parcel"
18//#define LOG_NDEBUG 0
19
Mathias Agopianc5b2c0b2009-05-19 19:08:10 -0700[diff] [blame]20#include <binder/Parcel.h>
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]21
Brad Fitzpatrick702ea9d2010-06-18 13:07:53 -0700[diff] [blame]22#include <binder/IPCThreadState.h>
Mathias Agopianc5b2c0b2009-05-19 19:08:10 -0700[diff] [blame]23#include <binder/Binder.h>
24#include <binder/BpBinder.h>
Mathias Agopianc5b2c0b2009-05-19 19:08:10 -0700[diff] [blame]25#include <binder/ProcessState.h>
Mathias Agopian002e1e52013-05-06 20:20:50 -0700[diff] [blame]26#include <binder/TextOutput.h>
27
Jun Jiangabf8a2c2014-04-29 14:22:10 +0800[diff] [blame]28#include <errno.h>
Mathias Agopian002e1e52013-05-06 20:20:50 -0700[diff] [blame]29#include <utils/Debug.h>
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]30#include <utils/Log.h>
31#include <utils/String8.h>
32#include <utils/String16.h>
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]33#include <utils/misc.h>
Mathias Agopian98e71dd2010-02-11 17:30:52 -0800[diff] [blame]34#include <utils/Flattenable.h>
Jeff Brown5707dbf2011-09-23 21:17:56 -0700[diff] [blame]35#include <cutils/ashmem.h>
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]36
Mathias Agopian208059f2009-05-18 15:08:03 -0700[diff] [blame]37#include <private/binder/binder_module.h>
Dianne Hackborn7e790af2014-11-11 12:22:53 -0800[diff] [blame]38#include <private/binder/Static.h>
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]39
Arve Hjønnevågf50b9ea2014-02-13 19:22:08 -0800[diff] [blame]40#include <inttypes.h>
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]41#include <stdio.h>
42#include <stdlib.h>
43#include <stdint.h>
Jeff Brown5707dbf2011-09-23 21:17:56 -0700[diff] [blame]44#include <sys/mman.h>
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]45
46#ifndef INT32_MAX
47#define INT32_MAX ((int32_t)(2147483647))
48#endif
49
50#define LOG_REFS(...)
Steve Block9f760152011-10-12 17:27:03 +0100[diff] [blame]51//#define LOG_REFS(...) ALOG(LOG_DEBUG, "Parcel", __VA_ARGS__)
Dianne Hackborn7e790af2014-11-11 12:22:53 -0800[diff] [blame]52#define LOG_ALLOC(...)
53//#define LOG_ALLOC(...) ALOG(LOG_DEBUG, "Parcel", __VA_ARGS__)
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]54
55// ---------------------------------------------------------------------------
56
Nick Kralevichb6b14232015-04-02 09:36:02 -0700[diff] [blame]57// This macro should never be used at runtime, as a too large value
58// of s could cause an integer overflow. Instead, you should always
59// use the wrapper function pad_size()
60#define PAD_SIZE_UNSAFE(s) (((s)+3)&~3)
61
62static size_t pad_size(size_t s) {
63 if (s > (SIZE_T_MAX - 3)) {
64 abort();
65 }
66 return PAD_SIZE_UNSAFE(s);
67}
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]68
Brad Fitzpatricka877cd82010-07-07 16:06:39 -0700[diff] [blame]69// Note: must be kept in sync with android/os/StrictMode.java's PENALTY_GATHER
Jeff Sharkey0c1f5cb2014-12-18 10:26:57 -0800[diff] [blame]70#define STRICT_MODE_PENALTY_GATHER (0x40 << 16)
Brad Fitzpatricka877cd82010-07-07 16:06:39 -0700[diff] [blame]71
Brad Fitzpatrickd36f4a52010-07-12 11:05:38 -0700[diff] [blame]72// Note: must be kept in sync with android/os/Parcel.java's EX_HAS_REPLY_HEADER
73#define EX_HAS_REPLY_HEADER -128
74
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]75// XXX This can be made public if we want to provide
76// support for typed data.
77struct small_flat_data
78{
79 uint32_t type;
80 uint32_t data;
81};
82
83namespace android {
84
Dianne Hackborna4cff882014-11-13 17:07:40 -0800[diff] [blame]85static pthread_mutex_t gParcelGlobalAllocSizeLock = PTHREAD_MUTEX_INITIALIZER;
86static size_t gParcelGlobalAllocSize = 0;
87static size_t gParcelGlobalAllocCount = 0;
88
Jeff Brown13b16042014-11-11 16:44:25 -0800[diff] [blame]89// Maximum size of a blob to transfer in-place.
90static const size_t BLOB_INPLACE_LIMIT = 16 * 1024;
91
92enum {
93 BLOB_INPLACE = 0,
94 BLOB_ASHMEM_IMMUTABLE = 1,
95 BLOB_ASHMEM_MUTABLE = 2,
96};
97
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]98void acquire_object(const sp<ProcessState>& proc,
99 const flat_binder_object& obj, const void* who)
100{
101 switch (obj.type) {
102 case BINDER_TYPE_BINDER:
103 if (obj.binder) {
104 LOG_REFS("Parcel %p acquiring reference on local %p", who, obj.cookie);
Arve Hjønnevåg84e625a2014-01-28 20:12:59 -0800[diff] [blame]105 reinterpret_cast<IBinder*>(obj.cookie)->incStrong(who);
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]106 }
107 return;
108 case BINDER_TYPE_WEAK_BINDER:
109 if (obj.binder)
Arve Hjønnevåg84e625a2014-01-28 20:12:59 -0800[diff] [blame]110 reinterpret_cast<RefBase::weakref_type*>(obj.binder)->incWeak(who);
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]111 return;
112 case BINDER_TYPE_HANDLE: {
113 const sp<IBinder> b = proc->getStrongProxyForHandle(obj.handle);
114 if (b != NULL) {
115 LOG_REFS("Parcel %p acquiring reference on remote %p", who, b.get());
116 b->incStrong(who);
117 }
118 return;
119 }
120 case BINDER_TYPE_WEAK_HANDLE: {
121 const wp<IBinder> b = proc->getWeakProxyForHandle(obj.handle);
122 if (b != NULL) b.get_refs()->incWeak(who);
123 return;
124 }
125 case BINDER_TYPE_FD: {
126 // intentionally blank -- nothing to do to acquire this, but we do
127 // recognize it as a legitimate object type.
128 return;
129 }
130 }
131
Colin Cross6f4f3ab2014-02-05 17:42:44 -0800[diff] [blame]132 ALOGD("Invalid object type 0x%08x", obj.type);
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]133}
134
135void release_object(const sp<ProcessState>& proc,
136 const flat_binder_object& obj, const void* who)
137{
138 switch (obj.type) {
139 case BINDER_TYPE_BINDER:
140 if (obj.binder) {
141 LOG_REFS("Parcel %p releasing reference on local %p", who, obj.cookie);
Arve Hjønnevåg84e625a2014-01-28 20:12:59 -0800[diff] [blame]142 reinterpret_cast<IBinder*>(obj.cookie)->decStrong(who);
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]143 }
144 return;
145 case BINDER_TYPE_WEAK_BINDER:
146 if (obj.binder)
Arve Hjønnevåg84e625a2014-01-28 20:12:59 -0800[diff] [blame]147 reinterpret_cast<RefBase::weakref_type*>(obj.binder)->decWeak(who);
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]148 return;
149 case BINDER_TYPE_HANDLE: {
150 const sp<IBinder> b = proc->getStrongProxyForHandle(obj.handle);
151 if (b != NULL) {
152 LOG_REFS("Parcel %p releasing reference on remote %p", who, b.get());
153 b->decStrong(who);
154 }
155 return;
156 }
157 case BINDER_TYPE_WEAK_HANDLE: {
158 const wp<IBinder> b = proc->getWeakProxyForHandle(obj.handle);
159 if (b != NULL) b.get_refs()->decWeak(who);
160 return;
161 }
162 case BINDER_TYPE_FD: {
Arve Hjønnevåg84e625a2014-01-28 20:12:59 -0800[diff] [blame]163 if (obj.cookie != 0) close(obj.handle);
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]164 return;
165 }
166 }
167
Colin Cross6f4f3ab2014-02-05 17:42:44 -0800[diff] [blame]168 ALOGE("Invalid object type 0x%08x", obj.type);
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]169}
170
171inline static status_t finish_flatten_binder(
Colin Cross6f4f3ab2014-02-05 17:42:44 -0800[diff] [blame]172 const sp<IBinder>& /*binder*/, const flat_binder_object& flat, Parcel* out)
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]173{
174 return out->writeObject(flat, false);
175}
176
Colin Cross6f4f3ab2014-02-05 17:42:44 -0800[diff] [blame]177status_t flatten_binder(const sp<ProcessState>& /*proc*/,
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]178 const sp<IBinder>& binder, Parcel* out)
179{
180 flat_binder_object obj;
Mark Salyzynd4ecccf2014-05-30 16:35:57 -0700[diff] [blame]181
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]182 obj.flags = 0x7f | FLAT_BINDER_FLAG_ACCEPTS_FDS;
183 if (binder != NULL) {
184 IBinder *local = binder->localBinder();
185 if (!local) {
186 BpBinder *proxy = binder->remoteBinder();
187 if (proxy == NULL) {
Steve Blocke6f43dd2012-01-06 19:20:56 +0000[diff] [blame]188 ALOGE("null proxy");
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]189 }
190 const int32_t handle = proxy ? proxy->handle() : 0;
191 obj.type = BINDER_TYPE_HANDLE;
Arve Hjønnevåg07fd0f12014-02-18 21:10:29 -0800[diff] [blame]192 obj.binder = 0; /* Don't pass uninitialized stack data to a remote process */
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]193 obj.handle = handle;
Arve Hjønnevåg84e625a2014-01-28 20:12:59 -0800[diff] [blame]194 obj.cookie = 0;
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]195 } else {
196 obj.type = BINDER_TYPE_BINDER;
Arve Hjønnevåg84e625a2014-01-28 20:12:59 -0800[diff] [blame]197 obj.binder = reinterpret_cast<uintptr_t>(local->getWeakRefs());
198 obj.cookie = reinterpret_cast<uintptr_t>(local);
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]199 }
200 } else {
201 obj.type = BINDER_TYPE_BINDER;
Arve Hjønnevåg84e625a2014-01-28 20:12:59 -0800[diff] [blame]202 obj.binder = 0;
203 obj.cookie = 0;
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]204 }
Mark Salyzynd4ecccf2014-05-30 16:35:57 -0700[diff] [blame]205
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]206 return finish_flatten_binder(binder, obj, out);
207}
208
Colin Cross6f4f3ab2014-02-05 17:42:44 -0800[diff] [blame]209status_t flatten_binder(const sp<ProcessState>& /*proc*/,
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]210 const wp<IBinder>& binder, Parcel* out)
211{
212 flat_binder_object obj;
Mark Salyzynd4ecccf2014-05-30 16:35:57 -0700[diff] [blame]213
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]214 obj.flags = 0x7f | FLAT_BINDER_FLAG_ACCEPTS_FDS;
215 if (binder != NULL) {
216 sp<IBinder> real = binder.promote();
217 if (real != NULL) {
218 IBinder *local = real->localBinder();
219 if (!local) {
220 BpBinder *proxy = real->remoteBinder();
221 if (proxy == NULL) {
Steve Blocke6f43dd2012-01-06 19:20:56 +0000[diff] [blame]222 ALOGE("null proxy");
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]223 }
224 const int32_t handle = proxy ? proxy->handle() : 0;
225 obj.type = BINDER_TYPE_WEAK_HANDLE;
Arve Hjønnevåg07fd0f12014-02-18 21:10:29 -0800[diff] [blame]226 obj.binder = 0; /* Don't pass uninitialized stack data to a remote process */
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]227 obj.handle = handle;
Arve Hjønnevåg84e625a2014-01-28 20:12:59 -0800[diff] [blame]228 obj.cookie = 0;
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]229 } else {
230 obj.type = BINDER_TYPE_WEAK_BINDER;
Arve Hjønnevåg84e625a2014-01-28 20:12:59 -0800[diff] [blame]231 obj.binder = reinterpret_cast<uintptr_t>(binder.get_refs());
232 obj.cookie = reinterpret_cast<uintptr_t>(binder.unsafe_get());
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]233 }
234 return finish_flatten_binder(real, obj, out);
235 }
Mark Salyzynd4ecccf2014-05-30 16:35:57 -0700[diff] [blame]236
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]237 // XXX How to deal? In order to flatten the given binder,
238 // we need to probe it for information, which requires a primary
239 // reference... but we don't have one.
240 //
241 // The OpenBinder implementation uses a dynamic_cast<> here,
242 // but we can't do that with the different reference counting
243 // implementation we are using.
Steve Blocke6f43dd2012-01-06 19:20:56 +0000[diff] [blame]244 ALOGE("Unable to unflatten Binder weak reference!");
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]245 obj.type = BINDER_TYPE_BINDER;
Arve Hjønnevåg84e625a2014-01-28 20:12:59 -0800[diff] [blame]246 obj.binder = 0;
247 obj.cookie = 0;
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]248 return finish_flatten_binder(NULL, obj, out);
Mark Salyzynd4ecccf2014-05-30 16:35:57 -0700[diff] [blame]249
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]250 } else {
251 obj.type = BINDER_TYPE_BINDER;
Arve Hjønnevåg84e625a2014-01-28 20:12:59 -0800[diff] [blame]252 obj.binder = 0;
253 obj.cookie = 0;
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]254 return finish_flatten_binder(NULL, obj, out);
255 }
256}
257
258inline static status_t finish_unflatten_binder(
Colin Cross6f4f3ab2014-02-05 17:42:44 -0800[diff] [blame]259 BpBinder* /*proxy*/, const flat_binder_object& /*flat*/,
260 const Parcel& /*in*/)
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]261{
262 return NO_ERROR;
263}
Mark Salyzynd4ecccf2014-05-30 16:35:57 -0700[diff] [blame]264
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]265status_t unflatten_binder(const sp<ProcessState>& proc,
266 const Parcel& in, sp<IBinder>* out)
267{
268 const flat_binder_object* flat = in.readObject(false);
Mark Salyzynd4ecccf2014-05-30 16:35:57 -0700[diff] [blame]269
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]270 if (flat) {
271 switch (flat->type) {
272 case BINDER_TYPE_BINDER:
Arve Hjønnevåg84e625a2014-01-28 20:12:59 -0800[diff] [blame]273 *out = reinterpret_cast<IBinder*>(flat->cookie);
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]274 return finish_unflatten_binder(NULL, *flat, in);
275 case BINDER_TYPE_HANDLE:
276 *out = proc->getStrongProxyForHandle(flat->handle);
277 return finish_unflatten_binder(
278 static_cast<BpBinder*>(out->get()), *flat, in);
Mark Salyzynd4ecccf2014-05-30 16:35:57 -0700[diff] [blame]279 }
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]280 }
281 return BAD_TYPE;
282}
283
284status_t unflatten_binder(const sp<ProcessState>& proc,
285 const Parcel& in, wp<IBinder>* out)
286{
287 const flat_binder_object* flat = in.readObject(false);
Mark Salyzynd4ecccf2014-05-30 16:35:57 -0700[diff] [blame]288
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]289 if (flat) {
290 switch (flat->type) {
291 case BINDER_TYPE_BINDER:
Arve Hjønnevåg84e625a2014-01-28 20:12:59 -0800[diff] [blame]292 *out = reinterpret_cast<IBinder*>(flat->cookie);
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]293 return finish_unflatten_binder(NULL, *flat, in);
294 case BINDER_TYPE_WEAK_BINDER:
Arve Hjønnevåg84e625a2014-01-28 20:12:59 -0800[diff] [blame]295 if (flat->binder != 0) {
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]296 out->set_object_and_refs(
Arve Hjønnevåg84e625a2014-01-28 20:12:59 -0800[diff] [blame]297 reinterpret_cast<IBinder*>(flat->cookie),
298 reinterpret_cast<RefBase::weakref_type*>(flat->binder));
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]299 } else {
300 *out = NULL;
301 }
302 return finish_unflatten_binder(NULL, *flat, in);
303 case BINDER_TYPE_HANDLE:
304 case BINDER_TYPE_WEAK_HANDLE:
305 *out = proc->getWeakProxyForHandle(flat->handle);
306 return finish_unflatten_binder(
307 static_cast<BpBinder*>(out->unsafe_get()), *flat, in);
308 }
309 }
310 return BAD_TYPE;
311}
312
313// ---------------------------------------------------------------------------
314
315Parcel::Parcel()
316{
Dianne Hackborn7e790af2014-11-11 12:22:53 -0800[diff] [blame]317 LOG_ALLOC("Parcel %p: constructing", this);
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]318 initState();
319}
320
321Parcel::~Parcel()
322{
323 freeDataNoInit();
Dianne Hackborn7e790af2014-11-11 12:22:53 -0800[diff] [blame]324 LOG_ALLOC("Parcel %p: destroyed", this);
325}
326
327size_t Parcel::getGlobalAllocSize() {
Dianne Hackborna4cff882014-11-13 17:07:40 -0800[diff] [blame]328 pthread_mutex_lock(&gParcelGlobalAllocSizeLock);
329 size_t size = gParcelGlobalAllocSize;
330 pthread_mutex_unlock(&gParcelGlobalAllocSizeLock);
331 return size;
Dianne Hackborn7e790af2014-11-11 12:22:53 -0800[diff] [blame]332}
333
334size_t Parcel::getGlobalAllocCount() {
Dianne Hackborna4cff882014-11-13 17:07:40 -0800[diff] [blame]335 pthread_mutex_lock(&gParcelGlobalAllocSizeLock);
336 size_t count = gParcelGlobalAllocCount;
337 pthread_mutex_unlock(&gParcelGlobalAllocSizeLock);
338 return count;
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]339}
340
341const uint8_t* Parcel::data() const
342{
343 return mData;
344}
345
346size_t Parcel::dataSize() const
347{
348 return (mDataSize > mDataPos ? mDataSize : mDataPos);
349}
350
351size_t Parcel::dataAvail() const
352{
353 // TODO: decide what to do about the possibility that this can
354 // report an available-data size that exceeds a Java int's max
355 // positive value, causing havoc. Fortunately this will only
356 // happen if someone constructs a Parcel containing more than two
357 // gigabytes of data, which on typical phone hardware is simply
358 // not possible.
359 return dataSize() - dataPosition();
360}
361
362size_t Parcel::dataPosition() const
363{
364 return mDataPos;
365}
366
367size_t Parcel::dataCapacity() const
368{
369 return mDataCapacity;
370}
371
372status_t Parcel::setDataSize(size_t size)
373{
Nick Kralevichb6b14232015-04-02 09:36:02 -0700[diff] [blame]374 if (size > INT32_MAX) {
375 // don't accept size_t values which may have come from an
376 // inadvertent conversion from a negative int.
377 return BAD_VALUE;
378 }
379
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]380 status_t err;
381 err = continueWrite(size);
382 if (err == NO_ERROR) {
383 mDataSize = size;
Mark Salyzynd4ecccf2014-05-30 16:35:57 -0700[diff] [blame]384 ALOGV("setDataSize Setting data size of %p to %zu", this, mDataSize);
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]385 }
386 return err;
387}
388
389void Parcel::setDataPosition(size_t pos) const
390{
Nick Kralevichb6b14232015-04-02 09:36:02 -0700[diff] [blame]391 if (pos > INT32_MAX) {
392 // don't accept size_t values which may have come from an
393 // inadvertent conversion from a negative int.
394 abort();
395 }
396
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]397 mDataPos = pos;
398 mNextObjectHint = 0;
akirilovf7841832018-04-03 12:56:06 -0700[diff] [blame^]399 mObjectsSorted = false;
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]400}
401
402status_t Parcel::setDataCapacity(size_t size)
403{
Nick Kralevichb6b14232015-04-02 09:36:02 -0700[diff] [blame]404 if (size > INT32_MAX) {
405 // don't accept size_t values which may have come from an
406 // inadvertent conversion from a negative int.
407 return BAD_VALUE;
408 }
409
Dianne Hackborn97e2bcd2011-04-13 18:15:56 -0700[diff] [blame]410 if (size > mDataCapacity) return continueWrite(size);
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]411 return NO_ERROR;
412}
413
414status_t Parcel::setData(const uint8_t* buffer, size_t len)
415{
Nick Kralevichb6b14232015-04-02 09:36:02 -0700[diff] [blame]416 if (len > INT32_MAX) {
417 // don't accept size_t values which may have come from an
418 // inadvertent conversion from a negative int.
419 return BAD_VALUE;
420 }
421
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]422 status_t err = restartWrite(len);
423 if (err == NO_ERROR) {
424 memcpy(const_cast<uint8_t*>(data()), buffer, len);
425 mDataSize = len;
426 mFdsKnown = false;
427 }
428 return err;
429}
430
Andreas Huber51faf462011-04-13 10:21:56 -0700[diff] [blame]431status_t Parcel::appendFrom(const Parcel *parcel, size_t offset, size_t len)
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]432{
433 const sp<ProcessState> proc(ProcessState::self());
434 status_t err;
Andreas Huber51faf462011-04-13 10:21:56 -0700[diff] [blame]435 const uint8_t *data = parcel->mData;
Arve Hjønnevåg84e625a2014-01-28 20:12:59 -0800[diff] [blame]436 const binder_size_t *objects = parcel->mObjects;
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]437 size_t size = parcel->mObjectsSize;
438 int startPos = mDataPos;
439 int firstIndex = -1, lastIndex = -2;
440
441 if (len == 0) {
442 return NO_ERROR;
443 }
444
Nick Kralevichb6b14232015-04-02 09:36:02 -0700[diff] [blame]445 if (len > INT32_MAX) {
446 // don't accept size_t values which may have come from an
447 // inadvertent conversion from a negative int.
448 return BAD_VALUE;
449 }
450
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]451 // range checks against the source parcel size
452 if ((offset > parcel->mDataSize)
453 || (len > parcel->mDataSize)
454 || (offset + len > parcel->mDataSize)) {
455 return BAD_VALUE;
456 }
457
458 // Count objects in range
459 for (int i = 0; i < (int) size; i++) {
460 size_t off = objects[i];
Christopher Tate27182be2015-05-27 17:53:02 -0700[diff] [blame]461 if ((off >= offset) && (off + sizeof(flat_binder_object) <= offset + len)) {
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]462 if (firstIndex == -1) {
463 firstIndex = i;
464 }
465 lastIndex = i;
466 }
467 }
468 int numObjects = lastIndex - firstIndex + 1;
469
Dianne Hackborn97e2bcd2011-04-13 18:15:56 -0700[diff] [blame]470 if ((mDataSize+len) > mDataCapacity) {
471 // grow data
472 err = growData(len);
473 if (err != NO_ERROR) {
474 return err;
475 }
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]476 }
477
478 // append data
479 memcpy(mData + mDataPos, data + offset, len);
480 mDataPos += len;
481 mDataSize += len;
482
Dianne Hackborn8938ed22011-09-28 23:19:47 -0400[diff] [blame]483 err = NO_ERROR;
484
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]485 if (numObjects > 0) {
486 // grow objects
487 if (mObjectsCapacity < mObjectsSize + numObjects) {
Christopher Tateed7a50c2015-06-08 14:45:14 -0700[diff] [blame]488 size_t newSize = ((mObjectsSize + numObjects)*3)/2;
Christopher Tate8b643072016-11-03 13:32:41 -0700[diff] [blame]489 if (newSize*sizeof(binder_size_t) < mObjectsSize) return NO_MEMORY; // overflow
Arve Hjønnevåg84e625a2014-01-28 20:12:59 -0800[diff] [blame]490 binder_size_t *objects =
491 (binder_size_t*)realloc(mObjects, newSize*sizeof(binder_size_t));
492 if (objects == (binder_size_t*)0) {
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]493 return NO_MEMORY;
494 }
495 mObjects = objects;
496 mObjectsCapacity = newSize;
497 }
Mark Salyzynd4ecccf2014-05-30 16:35:57 -0700[diff] [blame]498
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]499 // append and acquire objects
500 int idx = mObjectsSize;
501 for (int i = firstIndex; i <= lastIndex; i++) {
502 size_t off = objects[i] - offset + startPos;
503 mObjects[idx++] = off;
504 mObjectsSize++;
505
Dianne Hackborn8af0f822009-05-22 13:20:23 -0700[diff] [blame]506 flat_binder_object* flat
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]507 = reinterpret_cast<flat_binder_object*>(mData + off);
508 acquire_object(proc, *flat, this);
509
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]510 if (flat->type == BINDER_TYPE_FD) {
Dianne Hackborn8af0f822009-05-22 13:20:23 -0700[diff] [blame]511 // If this is a file descriptor, we need to dup it so the
512 // new Parcel now owns its own fd, and can declare that we
513 // officially know we have fds.
514 flat->handle = dup(flat->handle);
Arve Hjønnevåg84e625a2014-01-28 20:12:59 -0800[diff] [blame]515 flat->cookie = 1;
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]516 mHasFds = mFdsKnown = true;
Dianne Hackborn8938ed22011-09-28 23:19:47 -0400[diff] [blame]517 if (!mAllowFds) {
518 err = FDS_NOT_ALLOWED;
519 }
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]520 }
521 }
522 }
523
Dianne Hackborn8938ed22011-09-28 23:19:47 -0400[diff] [blame]524 return err;
525}
526
Jeff Brown13b16042014-11-11 16:44:25 -0800[diff] [blame]527bool Parcel::allowFds() const
528{
529 return mAllowFds;
530}
531
Dianne Hackborn7746cc32011-10-03 21:09:35 -0700[diff] [blame]532bool Parcel::pushAllowFds(bool allowFds)
Dianne Hackborn8938ed22011-09-28 23:19:47 -0400[diff] [blame]533{
534 const bool origValue = mAllowFds;
Dianne Hackborn7746cc32011-10-03 21:09:35 -0700[diff] [blame]535 if (!allowFds) {
536 mAllowFds = false;
537 }
Dianne Hackborn8938ed22011-09-28 23:19:47 -0400[diff] [blame]538 return origValue;
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]539}
540
Dianne Hackborn7746cc32011-10-03 21:09:35 -0700[diff] [blame]541void Parcel::restoreAllowFds(bool lastValue)
542{
543 mAllowFds = lastValue;
544}
545
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]546bool Parcel::hasFileDescriptors() const
547{
548 if (!mFdsKnown) {
549 scanForFds();
550 }
551 return mHasFds;
552}
553
Brad Fitzpatrick702ea9d2010-06-18 13:07:53 -0700[diff] [blame]554// Write RPC headers. (previously just the interface token)
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]555status_t Parcel::writeInterfaceToken(const String16& interface)
556{
Brad Fitzpatricka877cd82010-07-07 16:06:39 -0700[diff] [blame]557 writeInt32(IPCThreadState::self()->getStrictModePolicy() |
558 STRICT_MODE_PENALTY_GATHER);
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]559 // currently the interface identification token is just its name as a string
560 return writeString16(interface);
561}
562
Mathias Agopian83c04462009-05-22 19:00:22 -0700[diff] [blame]563bool Parcel::checkInterface(IBinder* binder) const
564{
Brad Fitzpatrick702ea9d2010-06-18 13:07:53 -0700[diff] [blame]565 return enforceInterface(binder->getInterfaceDescriptor());
Mathias Agopian83c04462009-05-22 19:00:22 -0700[diff] [blame]566}
567
Brad Fitzpatricka877cd82010-07-07 16:06:39 -0700[diff] [blame]568bool Parcel::enforceInterface(const String16& interface,
Brad Fitzpatrick70081a12010-07-27 09:49:11 -0700[diff] [blame]569 IPCThreadState* threadState) const
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]570{
Brad Fitzpatrick70081a12010-07-27 09:49:11 -0700[diff] [blame]571 int32_t strictPolicy = readInt32();
572 if (threadState == NULL) {
573 threadState = IPCThreadState::self();
Brad Fitzpatricka877cd82010-07-07 16:06:39 -0700[diff] [blame]574 }
Brad Fitzpatrick52736032010-08-30 16:01:16 -0700[diff] [blame]575 if ((threadState->getLastTransactionBinderFlags() &
576 IBinder::FLAG_ONEWAY) != 0) {
577 // For one-way calls, the callee is running entirely
578 // disconnected from the caller, so disable StrictMode entirely.
579 // Not only does disk/network usage not impact the caller, but
580 // there's no way to commuicate back any violations anyway.
581 threadState->setStrictModePolicy(0);
582 } else {
583 threadState->setStrictModePolicy(strictPolicy);
584 }
Mathias Agopian83c04462009-05-22 19:00:22 -0700[diff] [blame]585 const String16 str(readString16());
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]586 if (str == interface) {
587 return true;
588 } else {
Mark Salyzynd4ecccf2014-05-30 16:35:57 -0700[diff] [blame]589 ALOGW("**** enforceInterface() expected '%s' but read '%s'",
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]590 String8(interface).string(), String8(str).string());
591 return false;
592 }
Brad Fitzpatrick702ea9d2010-06-18 13:07:53 -0700[diff] [blame]593}
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]594
Arve Hjønnevåg84e625a2014-01-28 20:12:59 -0800[diff] [blame]595const binder_size_t* Parcel::objects() const
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]596{
597 return mObjects;
598}
599
600size_t Parcel::objectsCount() const
601{
602 return mObjectsSize;
603}
604
605status_t Parcel::errorCheck() const
606{
607 return mError;
608}
609
610void Parcel::setError(status_t err)
611{
612 mError = err;
613}
614
615status_t Parcel::finishWrite(size_t len)
616{
Nick Kralevichb6b14232015-04-02 09:36:02 -0700[diff] [blame]617 if (len > INT32_MAX) {
618 // don't accept size_t values which may have come from an
619 // inadvertent conversion from a negative int.
620 return BAD_VALUE;
621 }
622
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]623 //printf("Finish write of %d\n", len);
624 mDataPos += len;
Mark Salyzynd4ecccf2014-05-30 16:35:57 -0700[diff] [blame]625 ALOGV("finishWrite Setting data pos of %p to %zu", this, mDataPos);
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]626 if (mDataPos > mDataSize) {
627 mDataSize = mDataPos;
Mark Salyzynd4ecccf2014-05-30 16:35:57 -0700[diff] [blame]628 ALOGV("finishWrite Setting data size of %p to %zu", this, mDataSize);
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]629 }
630 //printf("New pos=%d, size=%d\n", mDataPos, mDataSize);
631 return NO_ERROR;
632}
633
634status_t Parcel::writeUnpadded(const void* data, size_t len)
635{
Nick Kralevichb6b14232015-04-02 09:36:02 -0700[diff] [blame]636 if (len > INT32_MAX) {
637 // don't accept size_t values which may have come from an
638 // inadvertent conversion from a negative int.
639 return BAD_VALUE;
640 }
641
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]642 size_t end = mDataPos + len;
643 if (end < mDataPos) {
644 // integer overflow
645 return BAD_VALUE;
646 }
647
648 if (end <= mDataCapacity) {
649restart_write:
650 memcpy(mData+mDataPos, data, len);
651 return finishWrite(len);
652 }
653
654 status_t err = growData(len);
655 if (err == NO_ERROR) goto restart_write;
656 return err;
657}
658
659status_t Parcel::write(const void* data, size_t len)
660{
Nick Kralevichb6b14232015-04-02 09:36:02 -0700[diff] [blame]661 if (len > INT32_MAX) {
662 // don't accept size_t values which may have come from an
663 // inadvertent conversion from a negative int.
664 return BAD_VALUE;
665 }
666
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]667 void* const d = writeInplace(len);
668 if (d) {
669 memcpy(d, data, len);
670 return NO_ERROR;
671 }
672 return mError;
673}
674
675void* Parcel::writeInplace(size_t len)
676{
Nick Kralevichb6b14232015-04-02 09:36:02 -0700[diff] [blame]677 if (len > INT32_MAX) {
678 // don't accept size_t values which may have come from an
679 // inadvertent conversion from a negative int.
680 return NULL;
681 }
682
683 const size_t padded = pad_size(len);
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]684
685 // sanity check for integer overflow
686 if (mDataPos+padded < mDataPos) {
687 return NULL;
688 }
689
690 if ((mDataPos+padded) <= mDataCapacity) {
691restart_write:
692 //printf("Writing %ld bytes, padded to %ld\n", len, padded);
693 uint8_t* const data = mData+mDataPos;
694
695 // Need to pad at end?
696 if (padded != len) {
697#if BYTE_ORDER == BIG_ENDIAN
698 static const uint32_t mask[4] = {
699 0x00000000, 0xffffff00, 0xffff0000, 0xff000000
700 };
701#endif
702#if BYTE_ORDER == LITTLE_ENDIAN
703 static const uint32_t mask[4] = {
704 0x00000000, 0x00ffffff, 0x0000ffff, 0x000000ff
705 };
706#endif
707 //printf("Applying pad mask: %p to %p\n", (void*)mask[padded-len],
708 // *reinterpret_cast<void**>(data+padded-4));
709 *reinterpret_cast<uint32_t*>(data+padded-4) &= mask[padded-len];
710 }
711
712 finishWrite(padded);
713 return data;
714 }
715
716 status_t err = growData(padded);
717 if (err == NO_ERROR) goto restart_write;
718 return NULL;
719}
720
721status_t Parcel::writeInt32(int32_t val)
722{
Andreas Huber84a6d042009-08-17 13:33:27 -0700[diff] [blame]723 return writeAligned(val);
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]724}
Dan Stoza41a0f2f2014-12-01 10:01:10 -0800[diff] [blame]725
726status_t Parcel::writeUint32(uint32_t val)
727{
728 return writeAligned(val);
729}
730
Marco Nelissen5c0106e2013-10-16 10:57:51 -0700[diff] [blame]731status_t Parcel::writeInt32Array(size_t len, const int32_t *val) {
Nick Kralevichb6b14232015-04-02 09:36:02 -0700[diff] [blame]732 if (len > INT32_MAX) {
733 // don't accept size_t values which may have come from an
734 // inadvertent conversion from a negative int.
735 return BAD_VALUE;
736 }
737
Marco Nelissen5c0106e2013-10-16 10:57:51 -0700[diff] [blame]738 if (!val) {
Chad Brubakere59cb432015-06-30 14:03:55 -0700[diff] [blame]739 return writeInt32(-1);
Marco Nelissen5c0106e2013-10-16 10:57:51 -0700[diff] [blame]740 }
Chad Brubakere59cb432015-06-30 14:03:55 -0700[diff] [blame]741 status_t ret = writeInt32(static_cast<uint32_t>(len));
Marco Nelissen5c0106e2013-10-16 10:57:51 -0700[diff] [blame]742 if (ret == NO_ERROR) {
743 ret = write(val, len * sizeof(*val));
744 }
745 return ret;
746}
Marco Nelissenf0190bf2014-03-13 14:17:40 -0700[diff] [blame]747status_t Parcel::writeByteArray(size_t len, const uint8_t *val) {
Nick Kralevichb6b14232015-04-02 09:36:02 -0700[diff] [blame]748 if (len > INT32_MAX) {
749 // don't accept size_t values which may have come from an
750 // inadvertent conversion from a negative int.
751 return BAD_VALUE;
752 }
753
Marco Nelissenf0190bf2014-03-13 14:17:40 -0700[diff] [blame]754 if (!val) {
Chad Brubakere59cb432015-06-30 14:03:55 -0700[diff] [blame]755 return writeInt32(-1);
Marco Nelissenf0190bf2014-03-13 14:17:40 -0700[diff] [blame]756 }
Chad Brubakere59cb432015-06-30 14:03:55 -0700[diff] [blame]757 status_t ret = writeInt32(static_cast<uint32_t>(len));
Marco Nelissenf0190bf2014-03-13 14:17:40 -0700[diff] [blame]758 if (ret == NO_ERROR) {
759 ret = write(val, len * sizeof(*val));
760 }
761 return ret;
762}
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]763
764status_t Parcel::writeInt64(int64_t val)
765{
Andreas Huber84a6d042009-08-17 13:33:27 -0700[diff] [blame]766 return writeAligned(val);
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]767}
768
Ronghua Wu2d13afd2015-03-16 11:11:07 -0700[diff] [blame]769status_t Parcel::writeUint64(uint64_t val)
770{
771 return writeAligned(val);
772}
773
Serban Constantinescuf683e012013-11-05 16:53:55 +0000[diff] [blame]774status_t Parcel::writePointer(uintptr_t val)
775{
Arve Hjønnevåg84e625a2014-01-28 20:12:59 -0800[diff] [blame]776 return writeAligned<binder_uintptr_t>(val);
Serban Constantinescuf683e012013-11-05 16:53:55 +0000[diff] [blame]777}
778
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]779status_t Parcel::writeFloat(float val)
780{
Andreas Huber84a6d042009-08-17 13:33:27 -0700[diff] [blame]781 return writeAligned(val);
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]782}
783
Douglas Leungcc1a4bb2013-01-11 15:00:55 -0800[diff] [blame]784#if defined(__mips__) && defined(__mips_hard_float)
785
786status_t Parcel::writeDouble(double val)
787{
788 union {
789 double d;
790 unsigned long long ll;
791 } u;
792 u.d = val;
793 return writeAligned(u.ll);
794}
795
796#else
797
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]798status_t Parcel::writeDouble(double val)
799{
Andreas Huber84a6d042009-08-17 13:33:27 -0700[diff] [blame]800 return writeAligned(val);
801}
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]802
Douglas Leungcc1a4bb2013-01-11 15:00:55 -0800[diff] [blame]803#endif
804
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]805status_t Parcel::writeCString(const char* str)
806{
807 return write(str, strlen(str)+1);
808}
809
810status_t Parcel::writeString8(const String8& str)
811{
812 status_t err = writeInt32(str.bytes());
Pravat Dalbeherad1dff8d2010-12-15 08:40:00 +0100[diff] [blame]813 // only write string if its length is more than zero characters,
814 // as readString8 will only read if the length field is non-zero.
815 // this is slightly different from how writeString16 works.
816 if (str.bytes() > 0 && err == NO_ERROR) {
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]817 err = write(str.string(), str.bytes()+1);
818 }
819 return err;
820}
821
822status_t Parcel::writeString16(const String16& str)
823{
824 return writeString16(str.string(), str.size());
825}
826
827status_t Parcel::writeString16(const char16_t* str, size_t len)
828{
829 if (str == NULL) return writeInt32(-1);
Mark Salyzynd4ecccf2014-05-30 16:35:57 -0700[diff] [blame]830
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]831 status_t err = writeInt32(len);
832 if (err == NO_ERROR) {
833 len *= sizeof(char16_t);
834 uint8_t* data = (uint8_t*)writeInplace(len+sizeof(char16_t));
835 if (data) {
836 memcpy(data, str, len);
837 *reinterpret_cast<char16_t*>(data+len) = 0;
838 return NO_ERROR;
839 }
840 err = mError;
841 }
842 return err;
843}
844
845status_t Parcel::writeStrongBinder(const sp<IBinder>& val)
846{
847 return flatten_binder(ProcessState::self(), val, this);
848}
849
850status_t Parcel::writeWeakBinder(const wp<IBinder>& val)
851{
852 return flatten_binder(ProcessState::self(), val, this);
853}
854
Mathias Agopiana47f02a2009-05-21 16:29:38 -0700[diff] [blame]855status_t Parcel::writeNativeHandle(const native_handle* handle)
The Android Open Source Project5f78a482009-01-20 14:03:58 -0800[diff] [blame]856{
Mathias Agopian1d0a95b2009-07-31 16:12:13 -0700[diff] [blame]857 if (!handle || handle->version != sizeof(native_handle))
The Android Open Source Project5f78a482009-01-20 14:03:58 -0800[diff] [blame]858 return BAD_TYPE;
859
860 status_t err;
Mathias Agopiana47f02a2009-05-21 16:29:38 -0700[diff] [blame]861 err = writeInt32(handle->numFds);
The Android Open Source Project5f78a482009-01-20 14:03:58 -0800[diff] [blame]862 if (err != NO_ERROR) return err;
The Android Open Source Projectedbf3b62009-03-03 19:31:44 -0800[diff] [blame]863
Mathias Agopiana47f02a2009-05-21 16:29:38 -0700[diff] [blame]864 err = writeInt32(handle->numInts);
The Android Open Source Project5f78a482009-01-20 14:03:58 -0800[diff] [blame]865 if (err != NO_ERROR) return err;
The Android Open Source Projectedbf3b62009-03-03 19:31:44 -0800[diff] [blame]866
Mathias Agopiana47f02a2009-05-21 16:29:38 -0700[diff] [blame]867 for (int i=0 ; err==NO_ERROR && i<handle->numFds ; i++)
868 err = writeDupFileDescriptor(handle->data[i]);
The Android Open Source Projectedbf3b62009-03-03 19:31:44 -0800[diff] [blame]869
870 if (err != NO_ERROR) {
Steve Block9d453682011-12-20 16:23:08 +0000[diff] [blame]871 ALOGD("write native handle, write dup fd failed");
The Android Open Source Projectedbf3b62009-03-03 19:31:44 -0800[diff] [blame]872 return err;
873 }
Mathias Agopiana47f02a2009-05-21 16:29:38 -0700[diff] [blame]874 err = write(handle->data + handle->numFds, sizeof(int)*handle->numInts);
The Android Open Source Project5f78a482009-01-20 14:03:58 -0800[diff] [blame]875 return err;
876}
877
Jeff Brown93ff1f92011-11-04 19:01:44 -0700[diff] [blame]878status_t Parcel::writeFileDescriptor(int fd, bool takeOwnership)
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]879{
880 flat_binder_object obj;
881 obj.type = BINDER_TYPE_FD;
882 obj.flags = 0x7f | FLAT_BINDER_FLAG_ACCEPTS_FDS;
Arve Hjønnevåg07fd0f12014-02-18 21:10:29 -0800[diff] [blame]883 obj.binder = 0; /* Don't pass uninitialized stack data to a remote process */
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]884 obj.handle = fd;
Arve Hjønnevåg84e625a2014-01-28 20:12:59 -0800[diff] [blame]885 obj.cookie = takeOwnership ? 1 : 0;
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]886 return writeObject(obj, true);
887}
888
889status_t Parcel::writeDupFileDescriptor(int fd)
890{
Jeff Brownd341c712011-11-04 20:19:33 -0700[diff] [blame]891 int dupFd = dup(fd);
892 if (dupFd < 0) {
893 return -errno;
894 }
895 status_t err = writeFileDescriptor(dupFd, true /*takeOwnership*/);
896 if (err) {
897 close(dupFd);
898 }
899 return err;
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]900}
901
Jeff Brown13b16042014-11-11 16:44:25 -0800[diff] [blame]902status_t Parcel::writeBlob(size_t len, bool mutableCopy, WritableBlob* outBlob)
Jeff Brown5707dbf2011-09-23 21:17:56 -0700[diff] [blame]903{
Nick Kralevichb6b14232015-04-02 09:36:02 -0700[diff] [blame]904 if (len > INT32_MAX) {
905 // don't accept size_t values which may have come from an
906 // inadvertent conversion from a negative int.
907 return BAD_VALUE;
908 }
909
Jeff Brown13b16042014-11-11 16:44:25 -0800[diff] [blame]910 status_t status;
911 if (!mAllowFds || len <= BLOB_INPLACE_LIMIT) {
Steve Block6807e592011-10-20 11:56:00 +0100[diff] [blame]912 ALOGV("writeBlob: write in place");
Jeff Brown13b16042014-11-11 16:44:25 -0800[diff] [blame]913 status = writeInt32(BLOB_INPLACE);
Jeff Brown5707dbf2011-09-23 21:17:56 -0700[diff] [blame]914 if (status) return status;
915
916 void* ptr = writeInplace(len);
917 if (!ptr) return NO_MEMORY;
918
Jeff Brown13b16042014-11-11 16:44:25 -0800[diff] [blame]919 outBlob->init(-1, ptr, len, false);
Jeff Brown5707dbf2011-09-23 21:17:56 -0700[diff] [blame]920 return NO_ERROR;
921 }
922
Steve Block6807e592011-10-20 11:56:00 +0100[diff] [blame]923 ALOGV("writeBlob: write to ashmem");
Jeff Brown5707dbf2011-09-23 21:17:56 -0700[diff] [blame]924 int fd = ashmem_create_region("Parcel Blob", len);
925 if (fd < 0) return NO_MEMORY;
926
Dan Sandleraa5c2342015-04-10 10:08:45 -0400[diff] [blame]927 mBlobAshmemSize += len;
928
Jeff Brown5707dbf2011-09-23 21:17:56 -0700[diff] [blame]929 int result = ashmem_set_prot_region(fd, PROT_READ | PROT_WRITE);
930 if (result < 0) {
Jeff Brownec4e0062011-10-10 14:50:10 -0700[diff] [blame]931 status = result;
Jeff Brown5707dbf2011-09-23 21:17:56 -0700[diff] [blame]932 } else {
933 void* ptr = ::mmap(NULL, len, PROT_READ | PROT_WRITE, MAP_SHARED, fd, 0);
934 if (ptr == MAP_FAILED) {
935 status = -errno;
936 } else {
Jeff Brown13b16042014-11-11 16:44:25 -0800[diff] [blame]937 if (!mutableCopy) {
938 result = ashmem_set_prot_region(fd, PROT_READ);
939 }
Jeff Brown5707dbf2011-09-23 21:17:56 -0700[diff] [blame]940 if (result < 0) {
Jeff Brownec4e0062011-10-10 14:50:10 -0700[diff] [blame]941 status = result;
Jeff Brown5707dbf2011-09-23 21:17:56 -0700[diff] [blame]942 } else {
Jeff Brown13b16042014-11-11 16:44:25 -0800[diff] [blame]943 status = writeInt32(mutableCopy ? BLOB_ASHMEM_MUTABLE : BLOB_ASHMEM_IMMUTABLE);
Jeff Brown5707dbf2011-09-23 21:17:56 -0700[diff] [blame]944 if (!status) {
Jeff Brown93ff1f92011-11-04 19:01:44 -0700[diff] [blame]945 status = writeFileDescriptor(fd, true /*takeOwnership*/);
Jeff Brown5707dbf2011-09-23 21:17:56 -0700[diff] [blame]946 if (!status) {
Jeff Brown13b16042014-11-11 16:44:25 -0800[diff] [blame]947 outBlob->init(fd, ptr, len, mutableCopy);
Jeff Brown5707dbf2011-09-23 21:17:56 -0700[diff] [blame]948 return NO_ERROR;
949 }
950 }
951 }
952 }
953 ::munmap(ptr, len);
954 }
955 ::close(fd);
956 return status;
957}
958
Jeff Brown13b16042014-11-11 16:44:25 -0800[diff] [blame]959status_t Parcel::writeDupImmutableBlobFileDescriptor(int fd)
960{
961 // Must match up with what's done in writeBlob.
962 if (!mAllowFds) return FDS_NOT_ALLOWED;
963 status_t status = writeInt32(BLOB_ASHMEM_IMMUTABLE);
964 if (status) return status;
965 return writeDupFileDescriptor(fd);
966}
967
Mathias Agopiane1424282013-07-29 21:24:40 -0700[diff] [blame]968status_t Parcel::write(const FlattenableHelperInterface& val)
Mathias Agopian98e71dd2010-02-11 17:30:52 -0800[diff] [blame]969{
970 status_t err;
971
972 // size if needed
Mathias Agopiane1424282013-07-29 21:24:40 -0700[diff] [blame]973 const size_t len = val.getFlattenedSize();
974 const size_t fd_count = val.getFdCount();
Mathias Agopian98e71dd2010-02-11 17:30:52 -0800[diff] [blame]975
Nick Kralevichb6b14232015-04-02 09:36:02 -0700[diff] [blame]976 if ((len > INT32_MAX) || (fd_count > INT32_MAX)) {
977 // don't accept size_t values which may have come from an
978 // inadvertent conversion from a negative int.
979 return BAD_VALUE;
980 }
981
Mathias Agopian98e71dd2010-02-11 17:30:52 -0800[diff] [blame]982 err = this->writeInt32(len);
983 if (err) return err;
984
985 err = this->writeInt32(fd_count);
986 if (err) return err;
987
988 // payload
Nick Kralevichb6b14232015-04-02 09:36:02 -0700[diff] [blame]989 void* const buf = this->writeInplace(pad_size(len));
Mathias Agopian98e71dd2010-02-11 17:30:52 -0800[diff] [blame]990 if (buf == NULL)
991 return BAD_VALUE;
992
993 int* fds = NULL;
994 if (fd_count) {
995 fds = new int[fd_count];
996 }
997
998 err = val.flatten(buf, len, fds, fd_count);
999 for (size_t i=0 ; i<fd_count && err==NO_ERROR ; i++) {
1000 err = this->writeDupFileDescriptor( fds[i] );
1001 }
1002
1003 if (fd_count) {
1004 delete [] fds;
1005 }
1006
1007 return err;
1008}
1009
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]1010status_t Parcel::writeObject(const flat_binder_object& val, bool nullMetaData)
1011{
1012 const bool enoughData = (mDataPos+sizeof(val)) <= mDataCapacity;
1013 const bool enoughObjects = mObjectsSize < mObjectsCapacity;
1014 if (enoughData && enoughObjects) {
1015restart_write:
1016 *reinterpret_cast<flat_binder_object*>(mData+mDataPos) = val;
Mark Salyzynd4ecccf2014-05-30 16:35:57 -0700[diff] [blame]1017
Christopher Tate98e67d32015-06-03 18:44:15 -0700[diff] [blame]1018 // remember if it's a file descriptor
1019 if (val.type == BINDER_TYPE_FD) {
1020 if (!mAllowFds) {
1021 // fail before modifying our object index
1022 return FDS_NOT_ALLOWED;
1023 }
1024 mHasFds = mFdsKnown = true;
1025 }
1026
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]1027 // Need to write meta-data?
Arve Hjønnevåg84e625a2014-01-28 20:12:59 -0800[diff] [blame]1028 if (nullMetaData || val.binder != 0) {
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]1029 mObjects[mObjectsSize] = mDataPos;
1030 acquire_object(ProcessState::self(), val, this);
1031 mObjectsSize++;
1032 }
Mark Salyzynd4ecccf2014-05-30 16:35:57 -0700[diff] [blame]1033
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]1034 return finishWrite(sizeof(flat_binder_object));
1035 }
1036
1037 if (!enoughData) {
1038 const status_t err = growData(sizeof(val));
1039 if (err != NO_ERROR) return err;
1040 }
1041 if (!enoughObjects) {
1042 size_t newSize = ((mObjectsSize+2)*3)/2;
Christopher Tate8b643072016-11-03 13:32:41 -0700[diff] [blame]1043 if (newSize*sizeof(binder_size_t) < mObjectsSize) return NO_MEMORY; // overflow
Arve Hjønnevåg84e625a2014-01-28 20:12:59 -0800[diff] [blame]1044 binder_size_t* objects = (binder_size_t*)realloc(mObjects, newSize*sizeof(binder_size_t));
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]1045 if (objects == NULL) return NO_MEMORY;
1046 mObjects = objects;
1047 mObjectsCapacity = newSize;
1048 }
Mark Salyzynd4ecccf2014-05-30 16:35:57 -0700[diff] [blame]1049
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]1050 goto restart_write;
1051}
1052
Brad Fitzpatrick837a0d02010-07-13 15:33:35 -0700[diff] [blame]1053status_t Parcel::writeNoException()
1054{
1055 return writeInt32(0);
1056}
1057
Colin Cross6f4f3ab2014-02-05 17:42:44 -0800[diff] [blame]1058void Parcel::remove(size_t /*start*/, size_t /*amt*/)
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]1059{
1060 LOG_ALWAYS_FATAL("Parcel::remove() not yet implemented!");
1061}
1062
akirilovf7841832018-04-03 12:56:06 -0700[diff] [blame^]1063status_t Parcel::validateReadData(size_t upperBound) const
1064{
1065 // Don't allow non-object reads on object data
1066 if (mObjectsSorted || mObjectsSize <= 1) {
1067data_sorted:
1068 // Expect to check only against the next object
1069 if (mNextObjectHint < mObjectsSize && upperBound > mObjects[mNextObjectHint]) {
1070 // For some reason the current read position is greater than the next object
1071 // hint. Iterate until we find the right object
1072 size_t nextObject = mNextObjectHint;
1073 do {
1074 if (mDataPos < mObjects[nextObject] + sizeof(flat_binder_object)) {
1075 // Requested info overlaps with an object
1076 ALOGE("Attempt to read from protected data in Parcel %p", this);
1077 return PERMISSION_DENIED;
1078 }
1079 nextObject++;
1080 } while (nextObject < mObjectsSize && upperBound > mObjects[nextObject]);
1081 mNextObjectHint = nextObject;
1082 }
1083 return NO_ERROR;
1084 }
1085 // Quickly determine if mObjects is sorted.
1086 binder_size_t* currObj = mObjects + mObjectsSize - 1;
1087 binder_size_t* prevObj = currObj;
1088 while (currObj > mObjects) {
1089 prevObj--;
1090 if(*prevObj > *currObj) {
1091 goto data_unsorted;
1092 }
1093 currObj--;
1094 }
1095 mObjectsSorted = true;
1096 goto data_sorted;
1097
1098data_unsorted:
1099 // Insertion Sort mObjects
1100 // Great for mostly sorted lists. If randomly sorted or reverse ordered mObjects become common,
1101 // switch to std::sort(mObjects, mObjects + mObjectsSize);
1102 for (binder_size_t* iter0 = mObjects + 1; iter0 < mObjects + mObjectsSize; iter0++) {
1103 binder_size_t temp = *iter0;
1104 binder_size_t* iter1 = iter0 - 1;
1105 while (iter1 >= mObjects && *iter1 > temp) {
1106 *(iter1 + 1) = *iter1;
1107 iter1--;
1108 }
1109 *(iter1 + 1) = temp;
1110 }
1111 mNextObjectHint = 0;
1112 mObjectsSorted = true;
1113 goto data_sorted;
1114}
1115
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]1116status_t Parcel::read(void* outData, size_t len) const
1117{
Nick Kralevichb6b14232015-04-02 09:36:02 -0700[diff] [blame]1118 if (len > INT32_MAX) {
1119 // don't accept size_t values which may have come from an
1120 // inadvertent conversion from a negative int.
1121 return BAD_VALUE;
1122 }
1123
1124 if ((mDataPos+pad_size(len)) >= mDataPos && (mDataPos+pad_size(len)) <= mDataSize
1125 && len <= pad_size(len)) {
akirilovf7841832018-04-03 12:56:06 -0700[diff] [blame^]1126 if (mObjectsSize > 0) {
1127 status_t err = validateReadData(mDataPos + pad_size(len));
1128 if(err != NO_ERROR) return err;
1129 }
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]1130 memcpy(outData, mData+mDataPos, len);
Nick Kralevichb6b14232015-04-02 09:36:02 -0700[diff] [blame]1131 mDataPos += pad_size(len);
Mark Salyzynd4ecccf2014-05-30 16:35:57 -0700[diff] [blame]1132 ALOGV("read Setting data pos of %p to %zu", this, mDataPos);
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]1133 return NO_ERROR;
1134 }
1135 return NOT_ENOUGH_DATA;
1136}
1137
1138const void* Parcel::readInplace(size_t len) const
1139{
Nick Kralevichb6b14232015-04-02 09:36:02 -0700[diff] [blame]1140 if (len > INT32_MAX) {
1141 // don't accept size_t values which may have come from an
1142 // inadvertent conversion from a negative int.
1143 return NULL;
1144 }
1145
1146 if ((mDataPos+pad_size(len)) >= mDataPos && (mDataPos+pad_size(len)) <= mDataSize
1147 && len <= pad_size(len)) {
akirilovf7841832018-04-03 12:56:06 -0700[diff] [blame^]1148 if (mObjectsSize > 0) {
1149 status_t err = validateReadData(mDataPos + pad_size(len));
1150 if(err != NO_ERROR) return NULL;
1151 }
1152
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]1153 const void* data = mData+mDataPos;
Nick Kralevichb6b14232015-04-02 09:36:02 -0700[diff] [blame]1154 mDataPos += pad_size(len);
Mark Salyzynd4ecccf2014-05-30 16:35:57 -0700[diff] [blame]1155 ALOGV("readInplace Setting data pos of %p to %zu", this, mDataPos);
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]1156 return data;
1157 }
1158 return NULL;
1159}
1160
Andreas Huber84a6d042009-08-17 13:33:27 -0700[diff] [blame]1161template<class T>
1162status_t Parcel::readAligned(T *pArg) const {
Nick Kralevichb6b14232015-04-02 09:36:02 -0700[diff] [blame]1163 COMPILE_TIME_ASSERT_FUNCTION_SCOPE(PAD_SIZE_UNSAFE(sizeof(T)) == sizeof(T));
Andreas Huber84a6d042009-08-17 13:33:27 -0700[diff] [blame]1164
1165 if ((mDataPos+sizeof(T)) <= mDataSize) {
akirilovf7841832018-04-03 12:56:06 -0700[diff] [blame^]1166 if (mObjectsSize > 0) {
1167 status_t err = validateReadData(mDataPos + sizeof(T));
1168 if(err != NO_ERROR) return err;
1169 }
1170
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]1171 const void* data = mData+mDataPos;
Andreas Huber84a6d042009-08-17 13:33:27 -0700[diff] [blame]1172 mDataPos += sizeof(T);
1173 *pArg = *reinterpret_cast<const T*>(data);
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]1174 return NO_ERROR;
1175 } else {
1176 return NOT_ENOUGH_DATA;
1177 }
1178}
1179
Andreas Huber84a6d042009-08-17 13:33:27 -0700[diff] [blame]1180template<class T>
1181T Parcel::readAligned() const {
1182 T result;
1183 if (readAligned(&result) != NO_ERROR) {
1184 result = 0;
1185 }
1186
1187 return result;
1188}
1189
1190template<class T>
1191status_t Parcel::writeAligned(T val) {
Nick Kralevichb6b14232015-04-02 09:36:02 -0700[diff] [blame]1192 COMPILE_TIME_ASSERT_FUNCTION_SCOPE(PAD_SIZE_UNSAFE(sizeof(T)) == sizeof(T));
Andreas Huber84a6d042009-08-17 13:33:27 -0700[diff] [blame]1193
1194 if ((mDataPos+sizeof(val)) <= mDataCapacity) {
1195restart_write:
1196 *reinterpret_cast<T*>(mData+mDataPos) = val;
1197 return finishWrite(sizeof(val));
1198 }
1199
1200 status_t err = growData(sizeof(val));
1201 if (err == NO_ERROR) goto restart_write;
1202 return err;
1203}
1204
1205status_t Parcel::readInt32(int32_t *pArg) const
1206{
1207 return readAligned(pArg);
1208}
1209
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]1210int32_t Parcel::readInt32() const
1211{
Andreas Huber84a6d042009-08-17 13:33:27 -0700[diff] [blame]1212 return readAligned<int32_t>();
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]1213}
1214
Dan Stoza41a0f2f2014-12-01 10:01:10 -0800[diff] [blame]1215status_t Parcel::readUint32(uint32_t *pArg) const
1216{
1217 return readAligned(pArg);
1218}
1219
1220uint32_t Parcel::readUint32() const
1221{
1222 return readAligned<uint32_t>();
1223}
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]1224
1225status_t Parcel::readInt64(int64_t *pArg) const
1226{
Andreas Huber84a6d042009-08-17 13:33:27 -0700[diff] [blame]1227 return readAligned(pArg);
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]1228}
1229
1230
1231int64_t Parcel::readInt64() const
1232{
Andreas Huber84a6d042009-08-17 13:33:27 -0700[diff] [blame]1233 return readAligned<int64_t>();
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]1234}
1235
Ronghua Wu2d13afd2015-03-16 11:11:07 -0700[diff] [blame]1236status_t Parcel::readUint64(uint64_t *pArg) const
1237{
1238 return readAligned(pArg);
1239}
1240
1241uint64_t Parcel::readUint64() const
1242{
1243 return readAligned<uint64_t>();
1244}
1245
Serban Constantinescuf683e012013-11-05 16:53:55 +0000[diff] [blame]1246status_t Parcel::readPointer(uintptr_t *pArg) const
1247{
Arve Hjønnevåg84e625a2014-01-28 20:12:59 -0800[diff] [blame]1248 status_t ret;
1249 binder_uintptr_t ptr;
1250 ret = readAligned(&ptr);
1251 if (!ret)
1252 *pArg = ptr;
1253 return ret;
Serban Constantinescuf683e012013-11-05 16:53:55 +0000[diff] [blame]1254}
1255
1256uintptr_t Parcel::readPointer() const
1257{
Arve Hjønnevåg84e625a2014-01-28 20:12:59 -0800[diff] [blame]1258 return readAligned<binder_uintptr_t>();
Serban Constantinescuf683e012013-11-05 16:53:55 +0000[diff] [blame]1259}
1260
1261
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]1262status_t Parcel::readFloat(float *pArg) const
1263{
Andreas Huber84a6d042009-08-17 13:33:27 -0700[diff] [blame]1264 return readAligned(pArg);
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]1265}
1266
1267
1268float Parcel::readFloat() const
1269{
Andreas Huber84a6d042009-08-17 13:33:27 -0700[diff] [blame]1270 return readAligned<float>();
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]1271}
1272
Douglas Leungcc1a4bb2013-01-11 15:00:55 -0800[diff] [blame]1273#if defined(__mips__) && defined(__mips_hard_float)
1274
1275status_t Parcel::readDouble(double *pArg) const
1276{
1277 union {
1278 double d;
1279 unsigned long long ll;
1280 } u;
Narayan Kamath2c68d382014-06-04 15:04:29 +0100[diff] [blame]1281 u.d = 0;
Douglas Leungcc1a4bb2013-01-11 15:00:55 -0800[diff] [blame]1282 status_t status;
1283 status = readAligned(&u.ll);
1284 *pArg = u.d;
1285 return status;
1286}
1287
1288double Parcel::readDouble() const
1289{
1290 union {
1291 double d;
1292 unsigned long long ll;
1293 } u;
1294 u.ll = readAligned<unsigned long long>();
1295 return u.d;
1296}
1297
1298#else
1299
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]1300status_t Parcel::readDouble(double *pArg) const
1301{
Andreas Huber84a6d042009-08-17 13:33:27 -0700[diff] [blame]1302 return readAligned(pArg);
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]1303}
1304
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]1305double Parcel::readDouble() const
1306{
Andreas Huber84a6d042009-08-17 13:33:27 -0700[diff] [blame]1307 return readAligned<double>();
1308}
1309
Douglas Leungcc1a4bb2013-01-11 15:00:55 -0800[diff] [blame]1310#endif
1311
Andreas Huber84a6d042009-08-17 13:33:27 -0700[diff] [blame]1312status_t Parcel::readIntPtr(intptr_t *pArg) const
1313{
1314 return readAligned(pArg);
1315}
1316
1317
1318intptr_t Parcel::readIntPtr() const
1319{
1320 return readAligned<intptr_t>();
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]1321}
1322
1323
1324const char* Parcel::readCString() const
1325{
1326 const size_t avail = mDataSize-mDataPos;
1327 if (avail > 0) {
1328 const char* str = reinterpret_cast<const char*>(mData+mDataPos);
1329 // is the string's trailing NUL within the parcel's valid bounds?
1330 const char* eos = reinterpret_cast<const char*>(memchr(str, 0, avail));
1331 if (eos) {
1332 const size_t len = eos - str;
Nick Kralevichb6b14232015-04-02 09:36:02 -0700[diff] [blame]1333 mDataPos += pad_size(len+1);
Mark Salyzynd4ecccf2014-05-30 16:35:57 -0700[diff] [blame]1334 ALOGV("readCString Setting data pos of %p to %zu", this, mDataPos);
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]1335 return str;
1336 }
1337 }
1338 return NULL;
1339}
1340
1341String8 Parcel::readString8() const
1342{
1343 int32_t size = readInt32();
1344 // watch for potential int overflow adding 1 for trailing NUL
1345 if (size > 0 && size < INT32_MAX) {
1346 const char* str = (const char*)readInplace(size+1);
1347 if (str) return String8(str, size);
1348 }
1349 return String8();
1350}
1351
1352String16 Parcel::readString16() const
1353{
1354 size_t len;
1355 const char16_t* str = readString16Inplace(&len);
1356 if (str) return String16(str, len);
Steve Blocke6f43dd2012-01-06 19:20:56 +0000[diff] [blame]1357 ALOGE("Reading a NULL string not supported here.");
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]1358 return String16();
1359}
1360
1361const char16_t* Parcel::readString16Inplace(size_t* outLen) const
1362{
1363 int32_t size = readInt32();
1364 // watch for potential int overflow from size+1
1365 if (size >= 0 && size < INT32_MAX) {
1366 *outLen = size;
1367 const char16_t* str = (const char16_t*)readInplace((size+1)*sizeof(char16_t));
1368 if (str != NULL) {
1369 return str;
1370 }
1371 }
1372 *outLen = 0;
1373 return NULL;
1374}
1375
1376sp<IBinder> Parcel::readStrongBinder() const
1377{
1378 sp<IBinder> val;
1379 unflatten_binder(ProcessState::self(), *this, &val);
1380 return val;
1381}
1382
1383wp<IBinder> Parcel::readWeakBinder() const
1384{
1385 wp<IBinder> val;
1386 unflatten_binder(ProcessState::self(), *this, &val);
1387 return val;
1388}
1389
Brad Fitzpatrick837a0d02010-07-13 15:33:35 -0700[diff] [blame]1390int32_t Parcel::readExceptionCode() const
1391{
1392 int32_t exception_code = readAligned<int32_t>();
Brad Fitzpatrickd36f4a52010-07-12 11:05:38 -0700[diff] [blame]1393 if (exception_code == EX_HAS_REPLY_HEADER) {
Magnus Strandberg1ba24572011-05-03 15:44:00 +0200[diff] [blame]1394 int32_t header_start = dataPosition();
Brad Fitzpatrickd36f4a52010-07-12 11:05:38 -0700[diff] [blame]1395 int32_t header_size = readAligned<int32_t>();
1396 // Skip over fat responses headers. Not used (or propagated) in
1397 // native code
Magnus Strandberg1ba24572011-05-03 15:44:00 +0200[diff] [blame]1398 setDataPosition(header_start + header_size);
Brad Fitzpatrickd36f4a52010-07-12 11:05:38 -0700[diff] [blame]1399 // And fat response headers are currently only used when there are no
1400 // exceptions, so return no error:
1401 return 0;
1402 }
Brad Fitzpatrick837a0d02010-07-13 15:33:35 -0700[diff] [blame]1403 return exception_code;
1404}
The Android Open Source Project5f78a482009-01-20 14:03:58 -0800[diff] [blame]1405
Mathias Agopiana47f02a2009-05-21 16:29:38 -0700[diff] [blame]1406native_handle* Parcel::readNativeHandle() const
The Android Open Source Project5f78a482009-01-20 14:03:58 -0800[diff] [blame]1407{
1408 int numFds, numInts;
1409 status_t err;
1410 err = readInt32(&numFds);
1411 if (err != NO_ERROR) return 0;
1412 err = readInt32(&numInts);
1413 if (err != NO_ERROR) return 0;
1414
Mathias Agopiana47f02a2009-05-21 16:29:38 -0700[diff] [blame]1415 native_handle* h = native_handle_create(numFds, numInts);
Adam Lesinskieaac99a2015-05-12 17:35:48 -0700[diff] [blame]1416 if (!h) {
1417 return 0;
1418 }
1419
The Android Open Source Project5f78a482009-01-20 14:03:58 -0800[diff] [blame]1420 for (int i=0 ; err==NO_ERROR && i<numFds ; i++) {
Rebecca Schultz Zavin360211f2009-02-13 16:34:38 -0800[diff] [blame]1421 h->data[i] = dup(readFileDescriptor());
Marco Nelissen1de79662016-04-26 08:44:09 -0700[diff] [blame]1422 if (h->data[i] < 0) {
1423 for (int j = 0; j < i; j++) {
1424 close(h->data[j]);
1425 }
1426 native_handle_delete(h);
1427 return 0;
1428 }
The Android Open Source Project5f78a482009-01-20 14:03:58 -0800[diff] [blame]1429 }
The Android Open Source Project5f78a482009-01-20 14:03:58 -0800[diff] [blame]1430 err = read(h->data + numFds, sizeof(int)*numInts);
The Android Open Source Project5f78a482009-01-20 14:03:58 -0800[diff] [blame]1431 if (err != NO_ERROR) {
Mathias Agopiana47f02a2009-05-21 16:29:38 -0700[diff] [blame]1432 native_handle_close(h);
1433 native_handle_delete(h);
The Android Open Source Project5f78a482009-01-20 14:03:58 -0800[diff] [blame]1434 h = 0;
1435 }
1436 return h;
1437}
1438
1439
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]1440int Parcel::readFileDescriptor() const
1441{
1442 const flat_binder_object* flat = readObject(true);
1443 if (flat) {
1444 switch (flat->type) {
1445 case BINDER_TYPE_FD:
Mark Salyzynd4ecccf2014-05-30 16:35:57 -0700[diff] [blame]1446 //ALOGI("Returning file descriptor %ld from parcel %p", flat->handle, this);
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]1447 return flat->handle;
Mark Salyzynd4ecccf2014-05-30 16:35:57 -0700[diff] [blame]1448 }
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]1449 }
1450 return BAD_TYPE;
1451}
1452
Jeff Brown5707dbf2011-09-23 21:17:56 -0700[diff] [blame]1453status_t Parcel::readBlob(size_t len, ReadableBlob* outBlob) const
1454{
Jeff Brown13b16042014-11-11 16:44:25 -0800[diff] [blame]1455 int32_t blobType;
1456 status_t status = readInt32(&blobType);
Jeff Brown5707dbf2011-09-23 21:17:56 -0700[diff] [blame]1457 if (status) return status;
1458
Jeff Brown13b16042014-11-11 16:44:25 -0800[diff] [blame]1459 if (blobType == BLOB_INPLACE) {
Steve Block6807e592011-10-20 11:56:00 +0100[diff] [blame]1460 ALOGV("readBlob: read in place");
Jeff Brown5707dbf2011-09-23 21:17:56 -0700[diff] [blame]1461 const void* ptr = readInplace(len);
1462 if (!ptr) return BAD_VALUE;
1463
Jeff Brown13b16042014-11-11 16:44:25 -0800[diff] [blame]1464 outBlob->init(-1, const_cast<void*>(ptr), len, false);
Jeff Brown5707dbf2011-09-23 21:17:56 -0700[diff] [blame]1465 return NO_ERROR;
1466 }
1467
Steve Block6807e592011-10-20 11:56:00 +0100[diff] [blame]1468 ALOGV("readBlob: read from ashmem");
Jeff Brown13b16042014-11-11 16:44:25 -0800[diff] [blame]1469 bool isMutable = (blobType == BLOB_ASHMEM_MUTABLE);
Jeff Brown5707dbf2011-09-23 21:17:56 -0700[diff] [blame]1470 int fd = readFileDescriptor();
1471 if (fd == int(BAD_TYPE)) return BAD_VALUE;
1472
Jeff Brown13b16042014-11-11 16:44:25 -0800[diff] [blame]1473 void* ptr = ::mmap(NULL, len, isMutable ? PROT_READ | PROT_WRITE : PROT_READ,
1474 MAP_SHARED, fd, 0);
Narayan Kamath9ea09752014-10-08 17:35:45 +0100[diff] [blame]1475 if (ptr == MAP_FAILED) return NO_MEMORY;
Jeff Brown5707dbf2011-09-23 21:17:56 -0700[diff] [blame]1476
Jeff Brown13b16042014-11-11 16:44:25 -0800[diff] [blame]1477 outBlob->init(fd, ptr, len, isMutable);
Jeff Brown5707dbf2011-09-23 21:17:56 -0700[diff] [blame]1478 return NO_ERROR;
1479}
1480
Mathias Agopiane1424282013-07-29 21:24:40 -0700[diff] [blame]1481status_t Parcel::read(FlattenableHelperInterface& val) const
Mathias Agopian98e71dd2010-02-11 17:30:52 -0800[diff] [blame]1482{
1483 // size
1484 const size_t len = this->readInt32();
1485 const size_t fd_count = this->readInt32();
1486
Nick Kralevichb6b14232015-04-02 09:36:02 -0700[diff] [blame]1487 if (len > INT32_MAX) {
1488 // don't accept size_t values which may have come from an
1489 // inadvertent conversion from a negative int.
1490 return BAD_VALUE;
1491 }
1492
Mathias Agopian98e71dd2010-02-11 17:30:52 -0800[diff] [blame]1493 // payload
Nick Kralevichb6b14232015-04-02 09:36:02 -0700[diff] [blame]1494 void const* const buf = this->readInplace(pad_size(len));
Mathias Agopian98e71dd2010-02-11 17:30:52 -0800[diff] [blame]1495 if (buf == NULL)
1496 return BAD_VALUE;
1497
1498 int* fds = NULL;
1499 if (fd_count) {
1500 fds = new int[fd_count];
1501 }
1502
1503 status_t err = NO_ERROR;
1504 for (size_t i=0 ; i<fd_count && err==NO_ERROR ; i++) {
Jesse Hallfee99042014-11-04 08:36:31 -0800[diff] [blame]1505 fds[i] = dup(this->readFileDescriptor());
Jun Jiangabf8a2c2014-04-29 14:22:10 +0800[diff] [blame]1506 if (fds[i] < 0) {
1507 err = BAD_VALUE;
Jesse Hallfee99042014-11-04 08:36:31 -0800[diff] [blame]1508 ALOGE("dup() failed in Parcel::read, i is %zu, fds[i] is %d, fd_count is %zu, error: %s",
1509 i, fds[i], fd_count, strerror(errno));
Jun Jiangabf8a2c2014-04-29 14:22:10 +0800[diff] [blame]1510 }
Mathias Agopian98e71dd2010-02-11 17:30:52 -0800[diff] [blame]1511 }
1512
1513 if (err == NO_ERROR) {
1514 err = val.unflatten(buf, len, fds, fd_count);
1515 }
1516
1517 if (fd_count) {
1518 delete [] fds;
1519 }
1520
1521 return err;
1522}
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]1523const flat_binder_object* Parcel::readObject(bool nullMetaData) const
1524{
1525 const size_t DPOS = mDataPos;
1526 if ((DPOS+sizeof(flat_binder_object)) <= mDataSize) {
1527 const flat_binder_object* obj
1528 = reinterpret_cast<const flat_binder_object*>(mData+DPOS);
1529 mDataPos = DPOS + sizeof(flat_binder_object);
Arve Hjønnevåg84e625a2014-01-28 20:12:59 -0800[diff] [blame]1530 if (!nullMetaData && (obj->cookie == 0 && obj->binder == 0)) {
The Android Open Source Project5f78a482009-01-20 14:03:58 -0800[diff] [blame]1531 // When transferring a NULL object, we don't write it into
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]1532 // the object list, so we don't want to check for it when
1533 // reading.
Mark Salyzynd4ecccf2014-05-30 16:35:57 -0700[diff] [blame]1534 ALOGV("readObject Setting data pos of %p to %zu", this, mDataPos);
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]1535 return obj;
1536 }
Mark Salyzynd4ecccf2014-05-30 16:35:57 -0700[diff] [blame]1537
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]1538 // Ensure that this object is valid...
Arve Hjønnevåg84e625a2014-01-28 20:12:59 -0800[diff] [blame]1539 binder_size_t* const OBJS = mObjects;
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]1540 const size_t N = mObjectsSize;
1541 size_t opos = mNextObjectHint;
Mark Salyzynd4ecccf2014-05-30 16:35:57 -0700[diff] [blame]1542
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]1543 if (N > 0) {
Mark Salyzynd4ecccf2014-05-30 16:35:57 -0700[diff] [blame]1544 ALOGV("Parcel %p looking for obj at %zu, hint=%zu",
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]1545 this, DPOS, opos);
Mark Salyzynd4ecccf2014-05-30 16:35:57 -0700[diff] [blame]1546
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]1547 // Start at the current hint position, looking for an object at
1548 // the current data position.
1549 if (opos < N) {
1550 while (opos < (N-1) && OBJS[opos] < DPOS) {
1551 opos++;
1552 }
1553 } else {
1554 opos = N-1;
1555 }
1556 if (OBJS[opos] == DPOS) {
1557 // Found it!
Mark Salyzynd4ecccf2014-05-30 16:35:57 -0700[diff] [blame]1558 ALOGV("Parcel %p found obj %zu at index %zu with forward search",
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]1559 this, DPOS, opos);
1560 mNextObjectHint = opos+1;
Mark Salyzynd4ecccf2014-05-30 16:35:57 -0700[diff] [blame]1561 ALOGV("readObject Setting data pos of %p to %zu", this, mDataPos);
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]1562 return obj;
1563 }
Mark Salyzynd4ecccf2014-05-30 16:35:57 -0700[diff] [blame]1564
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]1565 // Look backwards for it...
1566 while (opos > 0 && OBJS[opos] > DPOS) {
1567 opos--;
1568 }
1569 if (OBJS[opos] == DPOS) {
1570 // Found it!
Mark Salyzynd4ecccf2014-05-30 16:35:57 -0700[diff] [blame]1571 ALOGV("Parcel %p found obj %zu at index %zu with backward search",
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]1572 this, DPOS, opos);
1573 mNextObjectHint = opos+1;
Mark Salyzynd4ecccf2014-05-30 16:35:57 -0700[diff] [blame]1574 ALOGV("readObject Setting data pos of %p to %zu", this, mDataPos);
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]1575 return obj;
1576 }
1577 }
Colin Cross6f4f3ab2014-02-05 17:42:44 -0800[diff] [blame]1578 ALOGW("Attempt to read object from Parcel %p at offset %zu that is not in the object list",
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]1579 this, DPOS);
1580 }
1581 return NULL;
1582}
1583
1584void Parcel::closeFileDescriptors()
1585{
1586 size_t i = mObjectsSize;
1587 if (i > 0) {
Mark Salyzynd4ecccf2014-05-30 16:35:57 -0700[diff] [blame]1588 //ALOGI("Closing file descriptors for %zu objects...", i);
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]1589 }
1590 while (i > 0) {
1591 i--;
1592 const flat_binder_object* flat
1593 = reinterpret_cast<flat_binder_object*>(mData+mObjects[i]);
1594 if (flat->type == BINDER_TYPE_FD) {
Mark Salyzynd4ecccf2014-05-30 16:35:57 -0700[diff] [blame]1595 //ALOGI("Closing fd: %ld", flat->handle);
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]1596 close(flat->handle);
1597 }
1598 }
1599}
1600
Arve Hjønnevåg84e625a2014-01-28 20:12:59 -0800[diff] [blame]1601uintptr_t Parcel::ipcData() const
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]1602{
Arve Hjønnevåg84e625a2014-01-28 20:12:59 -0800[diff] [blame]1603 return reinterpret_cast<uintptr_t>(mData);
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]1604}
1605
1606size_t Parcel::ipcDataSize() const
1607{
1608 return (mDataSize > mDataPos ? mDataSize : mDataPos);
1609}
1610
Arve Hjønnevåg84e625a2014-01-28 20:12:59 -0800[diff] [blame]1611uintptr_t Parcel::ipcObjects() const
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]1612{
Arve Hjønnevåg84e625a2014-01-28 20:12:59 -0800[diff] [blame]1613 return reinterpret_cast<uintptr_t>(mObjects);
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]1614}
1615
1616size_t Parcel::ipcObjectsCount() const
1617{
1618 return mObjectsSize;
1619}
1620
1621void Parcel::ipcSetDataReference(const uint8_t* data, size_t dataSize,
Arve Hjønnevåg84e625a2014-01-28 20:12:59 -0800[diff] [blame]1622 const binder_size_t* objects, size_t objectsCount, release_func relFunc, void* relCookie)
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]1623{
Arve Hjønnevåg6f286112014-02-19 20:42:13 -0800[diff] [blame]1624 binder_size_t minOffset = 0;
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]1625 freeDataNoInit();
1626 mError = NO_ERROR;
1627 mData = const_cast<uint8_t*>(data);
1628 mDataSize = mDataCapacity = dataSize;
Mark Salyzynd4ecccf2014-05-30 16:35:57 -0700[diff] [blame]1629 //ALOGI("setDataReference Setting data size of %p to %lu (pid=%d)", this, mDataSize, getpid());
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]1630 mDataPos = 0;
Mark Salyzynd4ecccf2014-05-30 16:35:57 -0700[diff] [blame]1631 ALOGV("setDataReference Setting data pos of %p to %zu", this, mDataPos);
Arve Hjønnevåg84e625a2014-01-28 20:12:59 -0800[diff] [blame]1632 mObjects = const_cast<binder_size_t*>(objects);
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]1633 mObjectsSize = mObjectsCapacity = objectsCount;
1634 mNextObjectHint = 0;
akirilovf7841832018-04-03 12:56:06 -0700[diff] [blame^]1635 mObjectsSorted = false;
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]1636 mOwner = relFunc;
1637 mOwnerCookie = relCookie;
Arve Hjønnevågf50b9ea2014-02-13 19:22:08 -0800[diff] [blame]1638 for (size_t i = 0; i < mObjectsSize; i++) {
Arve Hjønnevåg6f286112014-02-19 20:42:13 -0800[diff] [blame]1639 binder_size_t offset = mObjects[i];
Arve Hjønnevågf50b9ea2014-02-13 19:22:08 -0800[diff] [blame]1640 if (offset < minOffset) {
Dan Albert3bdc5b82014-11-20 11:50:23 -0800[diff] [blame]1641 ALOGE("%s: bad object offset %" PRIu64 " < %" PRIu64 "\n",
Arve Hjønnevåg6f286112014-02-19 20:42:13 -0800[diff] [blame]1642 __func__, (uint64_t)offset, (uint64_t)minOffset);
Arve Hjønnevågf50b9ea2014-02-13 19:22:08 -0800[diff] [blame]1643 mObjectsSize = 0;
1644 break;
1645 }
1646 minOffset = offset + sizeof(flat_binder_object);
1647 }
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]1648 scanForFds();
1649}
1650
Colin Cross6f4f3ab2014-02-05 17:42:44 -0800[diff] [blame]1651void Parcel::print(TextOutput& to, uint32_t /*flags*/) const
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]1652{
1653 to << "Parcel(";
Mark Salyzynd4ecccf2014-05-30 16:35:57 -0700[diff] [blame]1654
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]1655 if (errorCheck() != NO_ERROR) {
1656 const status_t err = errorCheck();
Colin Cross6f4f3ab2014-02-05 17:42:44 -0800[diff] [blame]1657 to << "Error: " << (void*)(intptr_t)err << " \"" << strerror(-err) << "\"";
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]1658 } else if (dataSize() > 0) {
1659 const uint8_t* DATA = data();
1660 to << indent << HexDump(DATA, dataSize()) << dedent;
Arve Hjønnevåg84e625a2014-01-28 20:12:59 -0800[diff] [blame]1661 const binder_size_t* OBJS = objects();
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]1662 const size_t N = objectsCount();
1663 for (size_t i=0; i<N; i++) {
1664 const flat_binder_object* flat
1665 = reinterpret_cast<const flat_binder_object*>(DATA+OBJS[i]);
1666 to << endl << "Object #" << i << " @ " << (void*)OBJS[i] << ": "
1667 << TypeCode(flat->type & 0x7f7f7f00)
1668 << " = " << flat->binder;
1669 }
1670 } else {
1671 to << "NULL";
1672 }
Mark Salyzynd4ecccf2014-05-30 16:35:57 -0700[diff] [blame]1673
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]1674 to << ")";
1675}
1676
1677void Parcel::releaseObjects()
1678{
1679 const sp<ProcessState> proc(ProcessState::self());
1680 size_t i = mObjectsSize;
1681 uint8_t* const data = mData;
Arve Hjønnevåg84e625a2014-01-28 20:12:59 -0800[diff] [blame]1682 binder_size_t* const objects = mObjects;
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]1683 while (i > 0) {
1684 i--;
1685 const flat_binder_object* flat
1686 = reinterpret_cast<flat_binder_object*>(data+objects[i]);
1687 release_object(proc, *flat, this);
1688 }
1689}
1690
1691void Parcel::acquireObjects()
1692{
1693 const sp<ProcessState> proc(ProcessState::self());
1694 size_t i = mObjectsSize;
1695 uint8_t* const data = mData;
Arve Hjønnevåg84e625a2014-01-28 20:12:59 -0800[diff] [blame]1696 binder_size_t* const objects = mObjects;
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]1697 while (i > 0) {
1698 i--;
1699 const flat_binder_object* flat
1700 = reinterpret_cast<flat_binder_object*>(data+objects[i]);
1701 acquire_object(proc, *flat, this);
1702 }
1703}
1704
1705void Parcel::freeData()
1706{
1707 freeDataNoInit();
1708 initState();
1709}
1710
1711void Parcel::freeDataNoInit()
1712{
1713 if (mOwner) {
Dianne Hackborn7e790af2014-11-11 12:22:53 -0800[diff] [blame]1714 LOG_ALLOC("Parcel %p: freeing other owner data", this);
Mark Salyzynd4ecccf2014-05-30 16:35:57 -0700[diff] [blame]1715 //ALOGI("Freeing data ref of %p (pid=%d)", this, getpid());
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]1716 mOwner(this, mData, mDataSize, mObjects, mObjectsSize, mOwnerCookie);
1717 } else {
Dianne Hackborn7e790af2014-11-11 12:22:53 -0800[diff] [blame]1718 LOG_ALLOC("Parcel %p: freeing allocated data", this);
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]1719 releaseObjects();
Dianne Hackborn7e790af2014-11-11 12:22:53 -0800[diff] [blame]1720 if (mData) {
1721 LOG_ALLOC("Parcel %p: freeing with %zu capacity", this, mDataCapacity);
Dianne Hackborna4cff882014-11-13 17:07:40 -0800[diff] [blame]1722 pthread_mutex_lock(&gParcelGlobalAllocSizeLock);
Dianne Hackborn7e790af2014-11-11 12:22:53 -0800[diff] [blame]1723 gParcelGlobalAllocSize -= mDataCapacity;
1724 gParcelGlobalAllocCount--;
Dianne Hackborna4cff882014-11-13 17:07:40 -0800[diff] [blame]1725 pthread_mutex_unlock(&gParcelGlobalAllocSizeLock);
Dianne Hackborn7e790af2014-11-11 12:22:53 -0800[diff] [blame]1726 free(mData);
1727 }
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]1728 if (mObjects) free(mObjects);
1729 }
1730}
1731
1732status_t Parcel::growData(size_t len)
1733{
Nick Kralevichb6b14232015-04-02 09:36:02 -0700[diff] [blame]1734 if (len > INT32_MAX) {
1735 // don't accept size_t values which may have come from an
1736 // inadvertent conversion from a negative int.
1737 return BAD_VALUE;
1738 }
1739
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]1740 size_t newSize = ((mDataSize+len)*3)/2;
1741 return (newSize <= mDataSize)
1742 ? (status_t) NO_MEMORY
1743 : continueWrite(newSize);
1744}
1745
1746status_t Parcel::restartWrite(size_t desired)
1747{
Nick Kralevichb6b14232015-04-02 09:36:02 -0700[diff] [blame]1748 if (desired > INT32_MAX) {
1749 // don't accept size_t values which may have come from an
1750 // inadvertent conversion from a negative int.
1751 return BAD_VALUE;
1752 }
1753
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]1754 if (mOwner) {
1755 freeData();
1756 return continueWrite(desired);
1757 }
Mark Salyzynd4ecccf2014-05-30 16:35:57 -0700[diff] [blame]1758
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]1759 uint8_t* data = (uint8_t*)realloc(mData, desired);
1760 if (!data && desired > mDataCapacity) {
1761 mError = NO_MEMORY;
1762 return NO_MEMORY;
1763 }
Mark Salyzynd4ecccf2014-05-30 16:35:57 -0700[diff] [blame]1764
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]1765 releaseObjects();
Mark Salyzynd4ecccf2014-05-30 16:35:57 -0700[diff] [blame]1766
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]1767 if (data) {
Dianne Hackborn7e790af2014-11-11 12:22:53 -0800[diff] [blame]1768 LOG_ALLOC("Parcel %p: restart from %zu to %zu capacity", this, mDataCapacity, desired);
Dianne Hackborna4cff882014-11-13 17:07:40 -0800[diff] [blame]1769 pthread_mutex_lock(&gParcelGlobalAllocSizeLock);
Dianne Hackborn7e790af2014-11-11 12:22:53 -0800[diff] [blame]1770 gParcelGlobalAllocSize += desired;
1771 gParcelGlobalAllocSize -= mDataCapacity;
Dianne Hackborna4cff882014-11-13 17:07:40 -0800[diff] [blame]1772 pthread_mutex_unlock(&gParcelGlobalAllocSizeLock);
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]1773 mData = data;
1774 mDataCapacity = desired;
1775 }
Mark Salyzynd4ecccf2014-05-30 16:35:57 -0700[diff] [blame]1776
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]1777 mDataSize = mDataPos = 0;
Mark Salyzynd4ecccf2014-05-30 16:35:57 -0700[diff] [blame]1778 ALOGV("restartWrite Setting data size of %p to %zu", this, mDataSize);
1779 ALOGV("restartWrite Setting data pos of %p to %zu", this, mDataPos);
1780
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]1781 free(mObjects);
1782 mObjects = NULL;
1783 mObjectsSize = mObjectsCapacity = 0;
1784 mNextObjectHint = 0;
akirilovf7841832018-04-03 12:56:06 -0700[diff] [blame^]1785 mObjectsSorted = false;
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]1786 mHasFds = false;
1787 mFdsKnown = true;
Dianne Hackborn8938ed22011-09-28 23:19:47 -0400[diff] [blame]1788 mAllowFds = true;
Mark Salyzynd4ecccf2014-05-30 16:35:57 -0700[diff] [blame]1789
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]1790 return NO_ERROR;
1791}
1792
1793status_t Parcel::continueWrite(size_t desired)
1794{
Nick Kralevichb6b14232015-04-02 09:36:02 -0700[diff] [blame]1795 if (desired > INT32_MAX) {
1796 // don't accept size_t values which may have come from an
1797 // inadvertent conversion from a negative int.
1798 return BAD_VALUE;
1799 }
1800
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]1801 // If shrinking, first adjust for any objects that appear
1802 // after the new data size.
1803 size_t objectsSize = mObjectsSize;
1804 if (desired < mDataSize) {
1805 if (desired == 0) {
1806 objectsSize = 0;
1807 } else {
1808 while (objectsSize > 0) {
1809 if (mObjects[objectsSize-1] < desired)
1810 break;
1811 objectsSize--;
1812 }
1813 }
1814 }
Mark Salyzynd4ecccf2014-05-30 16:35:57 -0700[diff] [blame]1815
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]1816 if (mOwner) {
1817 // If the size is going to zero, just release the owner's data.
1818 if (desired == 0) {
1819 freeData();
1820 return NO_ERROR;
1821 }
1822
1823 // If there is a different owner, we need to take
1824 // posession.
1825 uint8_t* data = (uint8_t*)malloc(desired);
1826 if (!data) {
1827 mError = NO_MEMORY;
1828 return NO_MEMORY;
1829 }
Arve Hjønnevåg84e625a2014-01-28 20:12:59 -0800[diff] [blame]1830 binder_size_t* objects = NULL;
Mark Salyzynd4ecccf2014-05-30 16:35:57 -0700[diff] [blame]1831
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]1832 if (objectsSize) {
Nick Kraleviche9881a32015-04-28 16:21:30 -0700[diff] [blame]1833 objects = (binder_size_t*)calloc(objectsSize, sizeof(binder_size_t));
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]1834 if (!objects) {
Hyejin Kim3f727c02013-03-09 11:28:54 +0900[diff] [blame]1835 free(data);
1836
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]1837 mError = NO_MEMORY;
1838 return NO_MEMORY;
1839 }
1840
1841 // Little hack to only acquire references on objects
1842 // we will be keeping.
1843 size_t oldObjectsSize = mObjectsSize;
1844 mObjectsSize = objectsSize;
1845 acquireObjects();
1846 mObjectsSize = oldObjectsSize;
1847 }
Mark Salyzynd4ecccf2014-05-30 16:35:57 -0700[diff] [blame]1848
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]1849 if (mData) {
1850 memcpy(data, mData, mDataSize < desired ? mDataSize : desired);
1851 }
1852 if (objects && mObjects) {
Arve Hjønnevåg84e625a2014-01-28 20:12:59 -0800[diff] [blame]1853 memcpy(objects, mObjects, objectsSize*sizeof(binder_size_t));
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]1854 }
Mark Salyzynd4ecccf2014-05-30 16:35:57 -0700[diff] [blame]1855 //ALOGI("Freeing data ref of %p (pid=%d)", this, getpid());
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]1856 mOwner(this, mData, mDataSize, mObjects, mObjectsSize, mOwnerCookie);
1857 mOwner = NULL;
1858
Dianne Hackborn7e790af2014-11-11 12:22:53 -0800[diff] [blame]1859 LOG_ALLOC("Parcel %p: taking ownership of %zu capacity", this, desired);
Dianne Hackborna4cff882014-11-13 17:07:40 -0800[diff] [blame]1860 pthread_mutex_lock(&gParcelGlobalAllocSizeLock);
Dianne Hackborn7e790af2014-11-11 12:22:53 -0800[diff] [blame]1861 gParcelGlobalAllocSize += desired;
1862 gParcelGlobalAllocCount++;
Dianne Hackborna4cff882014-11-13 17:07:40 -0800[diff] [blame]1863 pthread_mutex_unlock(&gParcelGlobalAllocSizeLock);
Dianne Hackborn7e790af2014-11-11 12:22:53 -0800[diff] [blame]1864
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]1865 mData = data;
1866 mObjects = objects;
1867 mDataSize = (mDataSize < desired) ? mDataSize : desired;
Mark Salyzynd4ecccf2014-05-30 16:35:57 -0700[diff] [blame]1868 ALOGV("continueWrite Setting data size of %p to %zu", this, mDataSize);
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]1869 mDataCapacity = desired;
1870 mObjectsSize = mObjectsCapacity = objectsSize;
1871 mNextObjectHint = 0;
akirilovf7841832018-04-03 12:56:06 -0700[diff] [blame^]1872 mObjectsSorted = false;
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]1873
1874 } else if (mData) {
1875 if (objectsSize < mObjectsSize) {
1876 // Need to release refs on any objects we are dropping.
1877 const sp<ProcessState> proc(ProcessState::self());
1878 for (size_t i=objectsSize; i<mObjectsSize; i++) {
1879 const flat_binder_object* flat
1880 = reinterpret_cast<flat_binder_object*>(mData+mObjects[i]);
1881 if (flat->type == BINDER_TYPE_FD) {
1882 // will need to rescan because we may have lopped off the only FDs
1883 mFdsKnown = false;
1884 }
1885 release_object(proc, *flat, this);
1886 }
Arve Hjønnevåg84e625a2014-01-28 20:12:59 -0800[diff] [blame]1887 binder_size_t* objects =
1888 (binder_size_t*)realloc(mObjects, objectsSize*sizeof(binder_size_t));
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]1889 if (objects) {
1890 mObjects = objects;
1891 }
1892 mObjectsSize = objectsSize;
1893 mNextObjectHint = 0;
akirilovf7841832018-04-03 12:56:06 -0700[diff] [blame^]1894 mObjectsSorted = false;
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]1895 }
1896
1897 // We own the data, so we can just do a realloc().
1898 if (desired > mDataCapacity) {
1899 uint8_t* data = (uint8_t*)realloc(mData, desired);
1900 if (data) {
Dianne Hackborn7e790af2014-11-11 12:22:53 -0800[diff] [blame]1901 LOG_ALLOC("Parcel %p: continue from %zu to %zu capacity", this, mDataCapacity,
1902 desired);
Dianne Hackborna4cff882014-11-13 17:07:40 -0800[diff] [blame]1903 pthread_mutex_lock(&gParcelGlobalAllocSizeLock);
Dianne Hackborn7e790af2014-11-11 12:22:53 -0800[diff] [blame]1904 gParcelGlobalAllocSize += desired;
1905 gParcelGlobalAllocSize -= mDataCapacity;
Dianne Hackborna4cff882014-11-13 17:07:40 -0800[diff] [blame]1906 pthread_mutex_unlock(&gParcelGlobalAllocSizeLock);
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]1907 mData = data;
1908 mDataCapacity = desired;
1909 } else if (desired > mDataCapacity) {
1910 mError = NO_MEMORY;
1911 return NO_MEMORY;
1912 }
1913 } else {
Dianne Hackborn97e2bcd2011-04-13 18:15:56 -0700[diff] [blame]1914 if (mDataSize > desired) {
1915 mDataSize = desired;
Mark Salyzynd4ecccf2014-05-30 16:35:57 -0700[diff] [blame]1916 ALOGV("continueWrite Setting data size of %p to %zu", this, mDataSize);
Dianne Hackborn97e2bcd2011-04-13 18:15:56 -0700[diff] [blame]1917 }
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]1918 if (mDataPos > desired) {
1919 mDataPos = desired;
Mark Salyzynd4ecccf2014-05-30 16:35:57 -0700[diff] [blame]1920 ALOGV("continueWrite Setting data pos of %p to %zu", this, mDataPos);
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]1921 }
1922 }
Mark Salyzynd4ecccf2014-05-30 16:35:57 -0700[diff] [blame]1923
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]1924 } else {
1925 // This is the first data. Easy!
1926 uint8_t* data = (uint8_t*)malloc(desired);
1927 if (!data) {
1928 mError = NO_MEMORY;
1929 return NO_MEMORY;
1930 }
Hyejin Kim3f727c02013-03-09 11:28:54 +0900[diff] [blame]1931
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]1932 if(!(mDataCapacity == 0 && mObjects == NULL
1933 && mObjectsCapacity == 0)) {
Colin Cross6f4f3ab2014-02-05 17:42:44 -0800[diff] [blame]1934 ALOGE("continueWrite: %zu/%p/%zu/%zu", mDataCapacity, mObjects, mObjectsCapacity, desired);
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]1935 }
Mark Salyzynd4ecccf2014-05-30 16:35:57 -0700[diff] [blame]1936
Dianne Hackborn7e790af2014-11-11 12:22:53 -0800[diff] [blame]1937 LOG_ALLOC("Parcel %p: allocating with %zu capacity", this, desired);
Dianne Hackborna4cff882014-11-13 17:07:40 -0800[diff] [blame]1938 pthread_mutex_lock(&gParcelGlobalAllocSizeLock);
Dianne Hackborn7e790af2014-11-11 12:22:53 -0800[diff] [blame]1939 gParcelGlobalAllocSize += desired;
1940 gParcelGlobalAllocCount++;
Dianne Hackborna4cff882014-11-13 17:07:40 -0800[diff] [blame]1941 pthread_mutex_unlock(&gParcelGlobalAllocSizeLock);
Dianne Hackborn7e790af2014-11-11 12:22:53 -0800[diff] [blame]1942
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]1943 mData = data;
1944 mDataSize = mDataPos = 0;
Mark Salyzynd4ecccf2014-05-30 16:35:57 -0700[diff] [blame]1945 ALOGV("continueWrite Setting data size of %p to %zu", this, mDataSize);
1946 ALOGV("continueWrite Setting data pos of %p to %zu", this, mDataPos);
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]1947 mDataCapacity = desired;
1948 }
1949
1950 return NO_ERROR;
1951}
1952
1953void Parcel::initState()
1954{
Dianne Hackborn7e790af2014-11-11 12:22:53 -0800[diff] [blame]1955 LOG_ALLOC("Parcel %p: initState", this);
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]1956 mError = NO_ERROR;
1957 mData = 0;
1958 mDataSize = 0;
1959 mDataCapacity = 0;
1960 mDataPos = 0;
Mark Salyzynd4ecccf2014-05-30 16:35:57 -0700[diff] [blame]1961 ALOGV("initState Setting data size of %p to %zu", this, mDataSize);
1962 ALOGV("initState Setting data pos of %p to %zu", this, mDataPos);
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]1963 mObjects = NULL;
1964 mObjectsSize = 0;
1965 mObjectsCapacity = 0;
1966 mNextObjectHint = 0;
akirilovf7841832018-04-03 12:56:06 -0700[diff] [blame^]1967 mObjectsSorted = false;
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]1968 mHasFds = false;
1969 mFdsKnown = true;
Dianne Hackborn8938ed22011-09-28 23:19:47 -0400[diff] [blame]1970 mAllowFds = true;
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]1971 mOwner = NULL;
Dan Sandleraa5c2342015-04-10 10:08:45 -0400[diff] [blame]1972 mBlobAshmemSize = 0;
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]1973}
1974
1975void Parcel::scanForFds() const
1976{
1977 bool hasFds = false;
1978 for (size_t i=0; i<mObjectsSize; i++) {
1979 const flat_binder_object* flat
1980 = reinterpret_cast<const flat_binder_object*>(mData + mObjects[i]);
1981 if (flat->type == BINDER_TYPE_FD) {
1982 hasFds = true;
1983 break;
1984 }
1985 }
1986 mHasFds = hasFds;
1987 mFdsKnown = true;
1988}
1989
Dan Sandleraa5c2342015-04-10 10:08:45 -0400[diff] [blame]1990size_t Parcel::getBlobAshmemSize() const
1991{
1992 return mBlobAshmemSize;
1993}
1994
Jeff Brown5707dbf2011-09-23 21:17:56 -0700[diff] [blame]1995// --- Parcel::Blob ---
1996
1997Parcel::Blob::Blob() :
Jeff Brown13b16042014-11-11 16:44:25 -0800[diff] [blame]1998 mFd(-1), mData(NULL), mSize(0), mMutable(false) {
Jeff Brown5707dbf2011-09-23 21:17:56 -0700[diff] [blame]1999}
2000
2001Parcel::Blob::~Blob() {
2002 release();
2003}
2004
2005void Parcel::Blob::release() {
Jeff Brown13b16042014-11-11 16:44:25 -0800[diff] [blame]2006 if (mFd != -1 && mData) {
Jeff Brown5707dbf2011-09-23 21:17:56 -0700[diff] [blame]2007 ::munmap(mData, mSize);
2008 }
2009 clear();
2010}
2011
Jeff Brown13b16042014-11-11 16:44:25 -0800[diff] [blame]2012void Parcel::Blob::init(int fd, void* data, size_t size, bool isMutable) {
2013 mFd = fd;
Jeff Brown5707dbf2011-09-23 21:17:56 -0700[diff] [blame]2014 mData = data;
2015 mSize = size;
Jeff Brown13b16042014-11-11 16:44:25 -0800[diff] [blame]2016 mMutable = isMutable;
Jeff Brown5707dbf2011-09-23 21:17:56 -0700[diff] [blame]2017}
2018
2019void Parcel::Blob::clear() {
Jeff Brown13b16042014-11-11 16:44:25 -0800[diff] [blame]2020 mFd = -1;
Jeff Brown5707dbf2011-09-23 21:17:56 -0700[diff] [blame]2021 mData = NULL;
2022 mSize = 0;
Jeff Brown13b16042014-11-11 16:44:25 -0800[diff] [blame]2023 mMutable = false;
Jeff Brown5707dbf2011-09-23 21:17:56 -0700[diff] [blame]2024}
2025
The Android Open Source Project7c1b96a2008-10-21 07:00:00 -0700[diff] [blame]2026}; // namespace android