Implement rate limiting on a per app basis for confirmationui Implements the following strategy per app: * Every attempted prompt increments a try counter. * A prompt that was confirmed by the user resets the try counter. * No penalty is applied after the first two cancelled attempts. * A penalty of 30s is applied after attempt 3, 4, and 5 when cancelled by the user * A penalty of 60s * 2**(N - 6) after the Nth cancelled attempt for attempts 6... * A try counter that was not updated in 24h gets garbage collected. Test: /data/nativetest64/keystore_unit_tests/keystore_unit_tests Bug: 73892492 Change-Id: I0b50869259bfe920338c0c049cb9a715143ab103

commit: 064ce8561211612a4bf08dd2134657ad855bc801 [log] [tgz]
author: Janis Danisevskis <jdanis@google.com> Mon Mar 12 16:49:16 2018 -0700
committer: Janis Danisevskis <jdanis@google.com> Wed Mar 14 13:36:56 2018 -0700
tree: 7bd5f6700485917132ad860a1a0e3bdb1dea591f
parent: eec88d343a1105d4da5c108c49258e2ccc131f4a [diff] [blame]
diff --git a/keystore/confirmation_manager.h b/keystore/confirmation_manager.h
index b92deda..46b623c 100644
--- a/keystore/confirmation_manager.h
+++ b/keystore/confirmation_manager.h

@@ -29,6 +29,8 @@
 #include <utils/StrongPointer.h>
 #include <vector>
 
+#include "confirmationui_rate_limiting.h"
+
 namespace keystore {
 
 using android::binder::Status;
@@ -94,6 +96,7 @@
     android::sp<android::hardware::confirmationui::V1_0::IConfirmationUI> mCurrentConfirmationUI;
     android::IBinder::DeathRecipient* mDeathRecipient;
     hidl_vec<uint8_t> mLatestConfirmationToken;
+    RateLimiting<> mRateLimiting;
 };
 
 }  // namespace keystore
commit	064ce8561211612a4bf08dd2134657ad855bc801	[log] [tgz]
author	Janis Danisevskis <jdanis@google.com>	Mon Mar 12 16:49:16 2018 -0700
committer	Janis Danisevskis <jdanis@google.com>	Wed Mar 14 13:36:56 2018 -0700
tree	7bd5f6700485917132ad860a1a0e3bdb1dea591f
parent	eec88d343a1105d4da5c108c49258e2ccc131f4a [diff] [blame]