1 /*
2  * Copyright (C) 2018 The Android Open Source Project
3  *
4  * Licensed under the Apache License, Version 2.0 (the "License");
5  * you may not use this file except in compliance with the License.
6  * You may obtain a copy of the License at
7  *
8  *      http://www.apache.org/licenses/LICENSE-2.0
9  *
10  * Unless required by applicable law or agreed to in writing, software
11  * distributed under the License is distributed on an "AS IS" BASIS,
12  * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13  * See the License for the specific language governing permissions and
14  * limitations under the License.
15  */
16 
17 #ifndef ART_LIBARTBASE_BASE_HIDDENAPI_FLAGS_H_
18 #define ART_LIBARTBASE_BASE_HIDDENAPI_FLAGS_H_
19 
20 #include "sdk_version.h"
21 
22 #include <vector>
23 
24 #include "android-base/logging.h"
25 #include "base/bit_utils.h"
26 #include "base/dumpable.h"
27 #include "base/macros.h"
28 #include "base/hiddenapi_stubs.h"
29 
30 namespace art {
31 namespace hiddenapi {
32 
33 // Helper methods used inside ApiList. These were moved outside of the ApiList
34 // class so that they can be used in static_asserts. If they were inside, they
35 // would be part of an unfinished type.
36 namespace helper {
37   // Casts enum value to uint32_t.
38   template<typename T>
ToUint(T val)39   constexpr uint32_t ToUint(T val) { return static_cast<uint32_t>(val); }
40 
41   // Returns uint32_t with one bit set at an index given by an enum value.
42   template<typename T>
ToBit(T val)43   constexpr uint32_t ToBit(T val) { return 1u << ToUint(val); }
44 
45   // Returns a bit mask with `size` least significant bits set.
BitMask(uint32_t size)46   constexpr uint32_t BitMask(uint32_t size) { return (1u << size) - 1; }
47 
48   // Returns a bit mask formed from an enum defining kMin and kMax. The values
49   // are assumed to be indices of min/max bits and the resulting bitmask has
50   // bits [kMin, kMax] set.
51   template<typename T>
BitMask()52   constexpr uint32_t BitMask() {
53     return BitMask(ToUint(T::kMax) + 1) & (~BitMask(ToUint(T::kMin)));
54   }
55 
56   // Returns true if `val` is a bitwise subset of `mask`.
MatchesBitMask(uint32_t val,uint32_t mask)57   constexpr bool MatchesBitMask(uint32_t val, uint32_t mask) { return (val & mask) == val; }
58 
59   // Returns true if the uint32_t value of `val` is a bitwise subset of `mask`.
60   template<typename T>
MatchesBitMask(T val,uint32_t mask)61   constexpr bool MatchesBitMask(T val, uint32_t mask) { return MatchesBitMask(ToUint(val), mask); }
62 
63   // Returns the number of values defined in an enum, assuming the enum defines
64   // kMin and kMax and no integer values are skipped between them.
65   template<typename T>
NumValues()66   constexpr uint32_t NumValues() { return ToUint(T::kMax) - ToUint(T::kMin) + 1; }
67 
68   // Returns enum value at position i from enum list.
69   template <typename T>
GetEnumAt(uint32_t i)70   constexpr T GetEnumAt(uint32_t i) {
71     return static_cast<T>(ToUint(T::kMin) + i);
72   }
73 
74 }  // namespace helper
75 
76 /*
77  * This class represents the information whether a field/method is in
78  * public API (SDK) or if it isn't, apps targeting which SDK
79  * versions are allowed to access it.
80  */
81 class ApiList {
82  private:
83   // Number of bits reserved for Value in dex flags, and the corresponding bit mask.
84   static constexpr uint32_t kValueBitSize = 4;
85   static constexpr uint32_t kValueBitMask = helper::BitMask(kValueBitSize);
86 
87   enum class Value : uint32_t {
88     // Values independent of target SDK version of app
89     kSdk =    0,
90     kUnsupported =     1,
91     kBlocked =    2,
92 
93     // Values dependent on target SDK version of app. Put these last as
94     // their list will be extended in future releases.
95     // The max release code implicitly includes all maintenance releases,
96     // e.g. MaxTargetO is accessible to targetSdkVersion <= 27 (O_MR1).
97     kMaxTargetO = 3,
98     kMaxTargetP = 4,
99     kMaxTargetQ = 5,
100     kMaxTargetR = 6,
101     kMaxTargetS = 7,
102 
103     // Special values
104     kInvalid =      (static_cast<uint32_t>(-1) & kValueBitMask),
105     kMin =          kSdk,
106     kMax =          kMaxTargetS,
107   };
108 
109   // Additional bit flags after the first kValueBitSize bits in dex flags.
110   // These are used for domain-specific API.
111   enum class DomainApi : uint32_t {
112     kCorePlatformApi = kValueBitSize,
113     kTestApi = kValueBitSize + 1,
114 
115     // Special values
116     kMin =             kCorePlatformApi,
117     kMax =             kTestApi,
118   };
119 
120   // Bit mask of all domain API flags.
121   static constexpr uint32_t kDomainApiBitMask = helper::BitMask<DomainApi>();
122 
123   // Check that Values fit in the designated number of bits.
124   static_assert(kValueBitSize >= MinimumBitsToStore(helper::ToUint(Value::kMax)),
125                 "Not enough bits to store all ApiList values");
126 
127   // Checks that all Values are covered by kValueBitMask.
128   static_assert(helper::MatchesBitMask(Value::kMin, kValueBitMask));
129   static_assert(helper::MatchesBitMask(Value::kMax, kValueBitMask));
130 
131   // Assert that Value::kInvalid is larger than the maximum Value.
132   static_assert(helper::ToUint(Value::kMax) < helper::ToUint(Value::kInvalid));
133 
134   // Names corresponding to Values.
135   static constexpr const char* kValueNames[] = {
136     "sdk",
137     "unsupported",
138     "blocked",
139     "max-target-o",
140     "max-target-p",
141     "max-target-q",
142     "max-target-r",
143     "max-target-s",
144   };
145 
146   // A magic marker used by tests to mimic a hiddenapi list which doesn't exist
147   // yet.
148   static constexpr const char* kFutureValueName = "max-target-future";
149 
150   // Names corresponding to DomainApis.
151   static constexpr const char* kDomainApiNames[] {
152     "core-platform-api",
153     "test-api",
154   };
155 
156   // Maximum SDK versions allowed to access ApiList of given Value.
157   static constexpr SdkVersion kMaxSdkVersions[] {
158     /* sdk */ SdkVersion::kMax,
159     /* unsupported */ SdkVersion::kMax,
160     /* blocklist */ SdkVersion::kMin,
161     /* max-target-o */ SdkVersion::kO_MR1,
162     /* max-target-p */ SdkVersion::kP,
163     /* max-target-q */ SdkVersion::kQ,
164     /* max-target-r */ SdkVersion::kR,
165     /* max-target-s */ SdkVersion::kS,
166   };
167 
168   explicit ApiList(Value val, uint32_t domain_apis = 0u)
169       : dex_flags_(helper::ToUint(val) | domain_apis) {
170     DCHECK(GetValue() == val);
171     DCHECK_EQ(GetDomainApis(), domain_apis);
172   }
173 
ApiList(DomainApi val)174   explicit ApiList(DomainApi val) : ApiList(Value::kInvalid, helper::ToBit(val)) {}
175 
GetValue()176   Value GetValue() const {
177     uint32_t value = (dex_flags_ & kValueBitMask);
178 
179     // Treat all ones as invalid value
180     if (value == helper::ToUint(Value::kInvalid)) {
181       return Value::kInvalid;
182     } else if (value > helper::ToUint(Value::kMax)) {
183       // For future unknown flag values, return unsupported.
184       return Value::kUnsupported;
185     } else {
186       DCHECK_GE(value, helper::ToUint(Value::kMin));
187       return static_cast<Value>(value);
188     }
189   }
190 
GetDomainApis()191   uint32_t GetDomainApis() const { return (dex_flags_ & kDomainApiBitMask); }
192 
193   uint32_t dex_flags_;
194 
195  public:
ApiList()196   ApiList() : ApiList(Value::kInvalid) {}
197 
ApiList(uint32_t dex_flags)198   explicit ApiList(uint32_t dex_flags) : dex_flags_(dex_flags) {
199     DCHECK_EQ(dex_flags_, (dex_flags_ & kValueBitMask) | (dex_flags_ & kDomainApiBitMask));
200   }
201 
202   // Helpers for conveniently constructing ApiList instances.
Sdk()203   static ApiList Sdk() { return ApiList(Value::kSdk); }
Unsupported()204   static ApiList Unsupported() { return ApiList(Value::kUnsupported); }
Blocked()205   static ApiList Blocked() { return ApiList(Value::kBlocked); }
MaxTargetO()206   static ApiList MaxTargetO() { return ApiList(Value::kMaxTargetO); }
MaxTargetP()207   static ApiList MaxTargetP() { return ApiList(Value::kMaxTargetP); }
MaxTargetQ()208   static ApiList MaxTargetQ() { return ApiList(Value::kMaxTargetQ); }
MaxTargetR()209   static ApiList MaxTargetR() { return ApiList(Value::kMaxTargetR); }
MaxTargetS()210   static ApiList MaxTargetS() { return ApiList(Value::kMaxTargetS); }
CorePlatformApi()211   static ApiList CorePlatformApi() { return ApiList(DomainApi::kCorePlatformApi); }
TestApi()212   static ApiList TestApi() { return ApiList(DomainApi::kTestApi); }
213 
GetDexFlags()214   uint32_t GetDexFlags() const { return dex_flags_; }
GetIntValue()215   uint32_t GetIntValue() const { return helper::ToUint(GetValue()) - helper::ToUint(Value::kMin); }
216 
217   // Returns the ApiList with a flag of a given name, or an empty ApiList if not matched.
FromName(const std::string & str)218   static ApiList FromName(const std::string& str) {
219     for (uint32_t i = 0; i < kValueCount; ++i) {
220       if (str == kValueNames[i]) {
221         return ApiList(helper::GetEnumAt<Value>(i));
222       }
223     }
224     for (uint32_t i = 0; i < kDomainApiCount; ++i) {
225       if (str == kDomainApiNames[i]) {
226         return ApiList(helper::GetEnumAt<DomainApi>(i));
227       }
228     }
229     if (str == kFutureValueName) {
230       static_assert(helper::ToUint(Value::kMax) + 1 < helper::ToUint(Value::kInvalid));
231       return ApiList(helper::ToUint(Value::kMax) + 1);
232     }
233     return ApiList();
234   }
235 
236   // Parses a vector of flag names into a single ApiList value. If successful,
237   // returns true and assigns the new ApiList to `out_api_list`.
FromNames(std::vector<std::string>::iterator begin,std::vector<std::string>::iterator end,ApiList * out_api_list)238   static bool FromNames(std::vector<std::string>::iterator begin,
239                         std::vector<std::string>::iterator end,
240                         /* out */ ApiList* out_api_list) {
241     ApiList api_list;
242     for (std::vector<std::string>::iterator it = begin; it != end; it++) {
243       ApiList current = FromName(*it);
244       if (current.IsEmpty() || !api_list.CanCombineWith(current)) {
245         if (ApiStubs::IsStubsFlag(*it)) {
246         // Ignore flags which correspond to the stubs from where the api
247         // originates (i.e. system-api, test-api, public-api), as they are not
248         // relevant at runtime
249           continue;
250         }
251         return false;
252       }
253       api_list |= current;
254     }
255     if (out_api_list != nullptr) {
256       *out_api_list = api_list;
257     }
258     return true;
259   }
260 
261   bool operator==(const ApiList& other) const { return dex_flags_ == other.dex_flags_; }
262   bool operator!=(const ApiList& other) const { return !(*this == other); }
263   bool operator<(const ApiList& other) const { return dex_flags_ < other.dex_flags_; }
264   bool operator>(const ApiList& other) const { return dex_flags_ > other.dex_flags_; }
265 
266   // Returns true if combining this ApiList with `other` will succeed.
CanCombineWith(const ApiList & other)267   bool CanCombineWith(const ApiList& other) const {
268     const Value val1 = GetValue();
269     const Value val2 = other.GetValue();
270     return (val1 == val2) || (val1 == Value::kInvalid) || (val2 == Value::kInvalid);
271   }
272 
273   // Combine two ApiList instances.
274   ApiList operator|(const ApiList& other) {
275     // DomainApis are not mutually exclusive. Simply OR them.
276     const uint32_t domain_apis = GetDomainApis() | other.GetDomainApis();
277 
278     // Values are mutually exclusive. Check if `this` and `other` have the same Value
279     // or if at most one is set.
280     const Value val1 = GetValue();
281     const Value val2 = other.GetValue();
282     if (val1 == val2) {
283       return ApiList(val1, domain_apis);
284     } else if (val1 == Value::kInvalid) {
285       return ApiList(val2, domain_apis);
286     } else if (val2 == Value::kInvalid) {
287       return ApiList(val1, domain_apis);
288     } else {
289       LOG(FATAL) << "Invalid combination of values " << Dumpable(ApiList(val1))
290           << " and " << Dumpable(ApiList(val2));
291       UNREACHABLE();
292     }
293   }
294 
295   const ApiList& operator|=(const ApiList& other) {
296     (*this) = (*this) | other;
297     return *this;
298   }
299 
300   // Returns true if all flags set in `other` are also set in `this`.
Contains(const ApiList & other)301   bool Contains(const ApiList& other) const {
302     return ((other.GetValue() == Value::kInvalid) || (GetValue() == other.GetValue())) &&
303            helper::MatchesBitMask(other.GetDomainApis(), GetDomainApis());
304   }
305 
306   // Returns true whether the configuration is valid for runtime use.
IsValid()307   bool IsValid() const { return GetValue() != Value::kInvalid; }
308 
309   // Returns true when no ApiList is specified and no domain_api flags either.
IsEmpty()310   bool IsEmpty() const { return (GetValue() == Value::kInvalid) && (GetDomainApis() == 0); }
311 
312   // Returns true if the ApiList is on blocklist.
IsBlocked()313   bool IsBlocked() const {
314     return GetValue() == Value::kBlocked;
315   }
316 
IsSdkApi()317   bool IsSdkApi() const {
318     return GetValue() == Value::kSdk;
319   }
320 
321   // Returns true if the ApiList is a test API.
IsTestApi()322   bool IsTestApi() const {
323     return helper::MatchesBitMask(helper::ToBit(DomainApi::kTestApi), dex_flags_);
324   }
325 
326   // Returns the maximum target SDK version allowed to access this ApiList.
GetMaxAllowedSdkVersion()327   SdkVersion GetMaxAllowedSdkVersion() const { return kMaxSdkVersions[GetIntValue()]; }
328 
Dump(std::ostream & os)329   void Dump(std::ostream& os) const {
330     bool is_first = true;
331 
332     if (IsEmpty()) {
333       os << "invalid";
334       return;
335     }
336 
337     if (GetValue() != Value::kInvalid) {
338       os << kValueNames[GetIntValue()];
339       is_first = false;
340     }
341 
342     const uint32_t domain_apis = GetDomainApis();
343     for (uint32_t i = 0; i < kDomainApiCount; i++) {
344       if (helper::MatchesBitMask(helper::ToBit(helper::GetEnumAt<DomainApi>(i)), domain_apis)) {
345         if (is_first) {
346           is_first = false;
347         } else {
348           os << ",";
349         }
350         os << kDomainApiNames[i];
351       }
352     }
353 
354     DCHECK_EQ(IsEmpty(), is_first);
355   }
356 
357   // Number of valid enum values in Value.
358   static constexpr uint32_t kValueCount = helper::NumValues<Value>();
359   // Number of valid enum values in DomainApi.
360   static constexpr uint32_t kDomainApiCount = helper::NumValues<DomainApi>();
361   // Total number of possible enum values, including invalid, in Value.
362   static constexpr uint32_t kValueSize = (1u << kValueBitSize) + 1;
363 
364   // Check min and max values are calculated correctly.
365   static_assert(Value::kMin == helper::GetEnumAt<Value>(0));
366   static_assert(Value::kMax == helper::GetEnumAt<Value>(kValueCount - 1));
367 
368   static_assert(DomainApi::kMin == helper::GetEnumAt<DomainApi>(0));
369   static_assert(DomainApi::kMax == helper::GetEnumAt<DomainApi>(kDomainApiCount - 1));
370 };
371 
372 inline std::ostream& operator<<(std::ostream& os, ApiList value) {
373   value.Dump(os);
374   return os;
375 }
376 
377 }  // namespace hiddenapi
378 }  // namespace art
379 
380 
381 #endif  // ART_LIBARTBASE_BASE_HIDDENAPI_FLAGS_H_
382