src/com/android/providers/media/util/UserCache.java - platform/packages/providers/MediaProvider - Git at Google

 /*
  * Copyright (C) 2021 The Android Open Source Project
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
  * you may not use this file except in compliance with the License.
  * You may obtain a copy of the License at
  *
  *      http://www.apache.org/licenses/LICENSE-2.0
  *
  * Unless required by applicable law or agreed to in writing, software
  * distributed under the License is distributed on an "AS IS" BASIS,
  * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
  * See the License for the specific language governing permissions and
  * limitations under the License.
  */

 package com.android.providers.media.util;

 import static android.content.pm.PackageManager.MATCH_DIRECT_BOOT_AWARE;
 import static android.content.pm.PackageManager.MATCH_DIRECT_BOOT_UNAWARE;

 import static com.android.providers.media.util.Logging.TAG;

 import android.annotation.SuppressLint;
 import android.app.admin.DevicePolicyManager;
 import android.content.Context;
 import android.content.pm.ApplicationInfo;
 import android.content.pm.PackageManager;
 import android.os.Process;
 import android.os.UserHandle;
 import android.os.UserManager;
 import android.util.Log;
 import android.util.LongSparseArray;
 import android.util.SparseArray;

 import androidx.annotation.GuardedBy;
 import androidx.annotation.NonNull;

 import com.android.modules.utils.build.SdkLevel;

 import java.io.PrintWriter;
 import java.util.ArrayList;
 import java.util.List;

 /**
  * UserCache is a class that keeps track of all users that the current MediaProvider
  * instance is responsible for. By default, it handles storage for the user it is running as,
  * but as of Android API 31, it will also handle storage for profiles that share media
  * with their parent - profiles for which @link{UserManager#isMediaSharedWithParent} is set.
  *
  * It also keeps a cache of user contexts, for improving these lookups.
  *
  * Note that we don't use the USER_ broadcasts for keeping this state up to date, because they
  * aren't guaranteed to be received before the volume events for a user.
  */
 public class UserCache {
     // This is being used for non work profile users. It is introduced to remove the necessity of
     // second cache i.e. mUserIsWorkProfile
     private static final String NO_WORK_PROFILE_OWNER_APP = "No Work Profile Owner App";

     final Object mLock = new Object();
     final Context mContext;
     final UserManager mUserManager;

     @GuardedBy("mLock")
     final LongSparseArray<Context> mUserContexts = new LongSparseArray<>();

     // This contains a mapping from userId to packageName of the Profile Owner App
     // or NO_WORK_PROFILE_OWNER_APP
     @GuardedBy("mLock")
     final SparseArray<String> mWorkProfileOwnerApps = new SparseArray<>();

     @GuardedBy("mLock")
     final ArrayList<UserHandle> mUsers = new ArrayList<>();

     public UserCache(Context context) {
         mContext = context;
         mUserManager = context.getSystemService(UserManager.class);

         update();
     }

     @SuppressLint("NewApi")
     private void update() {
         List<UserHandle> profiles = mUserManager.getEnabledProfiles();
         synchronized (mLock) {
             mUsers.clear();
             // Add the user we're running as by default
             mUsers.add(Process.myUserHandle());
             if (!SdkLevel.isAtLeastS()) {
                 // Before S, we only handle the owner user
                 return;
             }

             // App cloning is not supported for profile users like AFW.
             if (mUserManager.isProfile()) {
                 return;
             }

             // And find all profiles that share media with us
             for (UserHandle profile : profiles) {
                 if (!profile.equals(mContext.getUser())) {
                     // Check if it's unlocked, and it's a profile that shares media with us
                     if (isUnlockedAndMediaSharedWithParent(profile)) {
                         mUsers.add(profile);
                     }
                 }
             }
         }
     }

     private boolean isUnlockedAndMediaSharedWithParent(@NonNull UserHandle profile) {
         Context userContext = getContextForUser(profile);
         UserManager userManager = userContext.getSystemService(UserManager.class);
         return userManager.isUserUnlockingOrUnlocked(profile)
                 && userManager.isMediaSharedWithParent();
     }

     public @NonNull List<UserHandle> updateAndGetUsers() {
         update();
         synchronized (mLock) {
             return (List<UserHandle>) mUsers.clone();
         }
     }

     public @NonNull List<UserHandle> getUsersCached() {
         synchronized (mLock) {
             return (List<UserHandle>) mUsers.clone();
         }
     }

     public boolean isWorkProfile(int userId) {
         if (userId == 0) {
             // Owner user can not have a work profile
             return false;
         }

         synchronized (mLock) {
             int index = mWorkProfileOwnerApps.indexOfKey(userId);
             if (index >= 0) {
                 return !NO_WORK_PROFILE_OWNER_APP.equals(mWorkProfileOwnerApps.valueAt(index));
             }
         }

         Context userContext = getContextForUser(UserHandle.of(userId));
         PackageManager packageManager = userContext.getPackageManager();
         DevicePolicyManager policyManager = userContext.getSystemService(
                 DevicePolicyManager.class);
         boolean isWorkProfile = false;
         for (ApplicationInfo ai : packageManager.getInstalledApplications(
                 MATCH_DIRECT_BOOT_AWARE | MATCH_DIRECT_BOOT_UNAWARE)) {
             if (policyManager.isProfileOwnerApp(ai.packageName)) {
                 synchronized (mLock) {
                     mWorkProfileOwnerApps.put(userId, ai.packageName);
                 }
                 isWorkProfile = true;
                 break;
             }
         }

         if(!isWorkProfile) {
             synchronized (mLock) {
                 // NO_WORK_PROFILE_OWNER_APP is being used for all the non work profile users
                 mWorkProfileOwnerApps.put(userId, NO_WORK_PROFILE_OWNER_APP);
             }
         }

         return isWorkProfile;
     }

     public @NonNull Context getContextForUser(@NonNull UserHandle user) {
         Context userContext;
         synchronized (mLock) {
             userContext = mUserContexts.get(user.getIdentifier());
             if (userContext != null) {
                 return userContext;
             }
         }
         try {
             userContext = mContext.createPackageContextAsUser("system", 0, user);
             synchronized (mLock) {
                 mUserContexts.put(user.getIdentifier(), userContext);
             }
             return userContext;
         } catch (PackageManager.NameNotFoundException e) {
             throw new RuntimeException("Failed to create context for user " + user, e);
         }
     }

     /**
      *  Returns whether the passed in user shares media with its parent (or peer).
      *
      * @param user user to check
      * @return whether the user shares media with its parent
      */
     public boolean userSharesMediaWithParent(@NonNull UserHandle user) {
         if (Process.myUserHandle().equals(user)) {
             // Early return path - the owner user doesn't have a parent
             return false;
         }
         boolean found = userSharesMediaWithParentCached(user);
         if (!found) {
             // Update the cache and try again
             update();
             found = userSharesMediaWithParentCached(user);
         }
         return found;
     }

     /**
      *  Returns whether the passed in user shares media with its parent (or peer).
      *  Note that the value returned here is based on cached data; it relies on
      *  other callers to keep the user cache up-to-date.
      *
      * @param user user to check
      * @return whether the user shares media with its parent
      */
     public boolean userSharesMediaWithParentCached(@NonNull UserHandle user) {
         synchronized (mLock) {
             // It must be a user that we manage, and not equal to the main user that we run as
             return !Process.myUserHandle().equals(user) && mUsers.contains(user);
         }
     }

     public void dump(PrintWriter writer) {
         writer.println("User cache state:");
         synchronized (mLock) {
             for (UserHandle user : mUsers) {
                 writer.println("  user: " + user);
             }
         }
     }

     public void invalidateWorkProfileOwnerApps(@NonNull String packageName) {
         synchronized (mLock) {
             if (mWorkProfileOwnerApps.size() == 0) {
                 Log.w(TAG, "WorkProfileOwnerApps cache is empty");
                 return;
             }

             boolean cacheMissForGivenPackage = true;
             for (int i = 0; i < mWorkProfileOwnerApps.size(); i++) {
                 final int userId = mWorkProfileOwnerApps.keyAt(i);
                 if (packageName.equals(mWorkProfileOwnerApps.get(userId))) {
                     Log.i(TAG, "Invalidating WorkProfileOwnerApps cache for package " + packageName
                             + ". UserId: " + userId);
                     mWorkProfileOwnerApps.remove(userId);
                     cacheMissForGivenPackage = false;
                 }
             }

             if(cacheMissForGivenPackage) {
                 Log.w(TAG, "WorkProfileOwnerApps cache miss for package " + packageName);
             }
         }
     }
 }
	/*
	* Copyright (C) 2021 The Android Open Source Project
	*
	* Licensed under the Apache License, Version 2.0 (the "License");
	* you may not use this file except in compliance with the License.
	* You may obtain a copy of the License at
	*
	* http://www.apache.org/licenses/LICENSE-2.0
	*
	* Unless required by applicable law or agreed to in writing, software
	* distributed under the License is distributed on an "AS IS" BASIS,
	* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
	* See the License for the specific language governing permissions and
	* limitations under the License.
	*/

	package com.android.providers.media.util;

	import static android.content.pm.PackageManager.MATCH_DIRECT_BOOT_AWARE;
	import static android.content.pm.PackageManager.MATCH_DIRECT_BOOT_UNAWARE;

	import static com.android.providers.media.util.Logging.TAG;

	import android.annotation.SuppressLint;
	import android.app.admin.DevicePolicyManager;
	import android.content.Context;
	import android.content.pm.ApplicationInfo;
	import android.content.pm.PackageManager;
	import android.os.Process;
	import android.os.UserHandle;
	import android.os.UserManager;
	import android.util.Log;
	import android.util.LongSparseArray;
	import android.util.SparseArray;

	import androidx.annotation.GuardedBy;
	import androidx.annotation.NonNull;

	import com.android.modules.utils.build.SdkLevel;

	import java.io.PrintWriter;
	import java.util.ArrayList;
	import java.util.List;

	/**
	* UserCache is a class that keeps track of all users that the current MediaProvider
	* instance is responsible for. By default, it handles storage for the user it is running as,
	* but as of Android API 31, it will also handle storage for profiles that share media
	* with their parent - profiles for which @link{UserManager#isMediaSharedWithParent} is set.
	*
	* It also keeps a cache of user contexts, for improving these lookups.
	*
	* Note that we don't use the USER_ broadcasts for keeping this state up to date, because they
	* aren't guaranteed to be received before the volume events for a user.
	*/
	public class UserCache {
	// This is being used for non work profile users. It is introduced to remove the necessity of
	// second cache i.e. mUserIsWorkProfile
	private static final String NO_WORK_PROFILE_OWNER_APP = "No Work Profile Owner App";

	final Object mLock = new Object();
	final Context mContext;
	final UserManager mUserManager;

	@GuardedBy("mLock")
	final LongSparseArray<Context> mUserContexts = new LongSparseArray<>();

	// This contains a mapping from userId to packageName of the Profile Owner App
	// or NO_WORK_PROFILE_OWNER_APP
	@GuardedBy("mLock")
	final SparseArray<String> mWorkProfileOwnerApps = new SparseArray<>();

	@GuardedBy("mLock")
	final ArrayList<UserHandle> mUsers = new ArrayList<>();

	public UserCache(Context context) {
	mContext = context;
	mUserManager = context.getSystemService(UserManager.class);

	update();
	}

	@SuppressLint("NewApi")
	private void update() {
	List<UserHandle> profiles = mUserManager.getEnabledProfiles();
	synchronized (mLock) {
	mUsers.clear();
	// Add the user we're running as by default
	mUsers.add(Process.myUserHandle());
	if (!SdkLevel.isAtLeastS()) {
	// Before S, we only handle the owner user
	return;
	}

	// App cloning is not supported for profile users like AFW.
	if (mUserManager.isProfile()) {
	return;
	}

	// And find all profiles that share media with us
	for (UserHandle profile : profiles) {
	if (!profile.equals(mContext.getUser())) {
	// Check if it's unlocked, and it's a profile that shares media with us
	if (isUnlockedAndMediaSharedWithParent(profile)) {
	mUsers.add(profile);
	}
	}
	}
	}
	}

	private boolean isUnlockedAndMediaSharedWithParent(@NonNull UserHandle profile) {
	Context userContext = getContextForUser(profile);
	UserManager userManager = userContext.getSystemService(UserManager.class);
	return userManager.isUserUnlockingOrUnlocked(profile)
	&& userManager.isMediaSharedWithParent();
	}

	public @NonNull List<UserHandle> updateAndGetUsers() {
	update();
	synchronized (mLock) {
	return (List<UserHandle>) mUsers.clone();
	}
	}

	public @NonNull List<UserHandle> getUsersCached() {
	synchronized (mLock) {
	return (List<UserHandle>) mUsers.clone();
	}
	}

	public boolean isWorkProfile(int userId) {
	if (userId == 0) {
	// Owner user can not have a work profile
	return false;
	}

	synchronized (mLock) {
	int index = mWorkProfileOwnerApps.indexOfKey(userId);
	if (index >= 0) {
	return !NO_WORK_PROFILE_OWNER_APP.equals(mWorkProfileOwnerApps.valueAt(index));
	}
	}

	Context userContext = getContextForUser(UserHandle.of(userId));
	PackageManager packageManager = userContext.getPackageManager();
	DevicePolicyManager policyManager = userContext.getSystemService(
	DevicePolicyManager.class);
	boolean isWorkProfile = false;
	for (ApplicationInfo ai : packageManager.getInstalledApplications(
	MATCH_DIRECT_BOOT_AWARE \| MATCH_DIRECT_BOOT_UNAWARE)) {
	if (policyManager.isProfileOwnerApp(ai.packageName)) {
	synchronized (mLock) {
	mWorkProfileOwnerApps.put(userId, ai.packageName);
	}
	isWorkProfile = true;
	break;
	}
	}

	if(!isWorkProfile) {
	synchronized (mLock) {
	// NO_WORK_PROFILE_OWNER_APP is being used for all the non work profile users
	mWorkProfileOwnerApps.put(userId, NO_WORK_PROFILE_OWNER_APP);
	}
	}

	return isWorkProfile;
	}

	public @NonNull Context getContextForUser(@NonNull UserHandle user) {
	Context userContext;
	synchronized (mLock) {
	userContext = mUserContexts.get(user.getIdentifier());
	if (userContext != null) {
	return userContext;
	}
	}
	try {
	userContext = mContext.createPackageContextAsUser("system", 0, user);
	synchronized (mLock) {
	mUserContexts.put(user.getIdentifier(), userContext);
	}
	return userContext;
	} catch (PackageManager.NameNotFoundException e) {
	throw new RuntimeException("Failed to create context for user " + user, e);
	}
	}

	/**
	* Returns whether the passed in user shares media with its parent (or peer).
	*
	* @param user user to check
	* @return whether the user shares media with its parent
	*/
	public boolean userSharesMediaWithParent(@NonNull UserHandle user) {
	if (Process.myUserHandle().equals(user)) {
	// Early return path - the owner user doesn't have a parent
	return false;
	}
	boolean found = userSharesMediaWithParentCached(user);
	if (!found) {
	// Update the cache and try again
	update();
	found = userSharesMediaWithParentCached(user);
	}
	return found;
	}

	/**
	* Returns whether the passed in user shares media with its parent (or peer).
	* Note that the value returned here is based on cached data; it relies on
	* other callers to keep the user cache up-to-date.
	*
	* @param user user to check
	* @return whether the user shares media with its parent
	*/
	public boolean userSharesMediaWithParentCached(@NonNull UserHandle user) {
	synchronized (mLock) {
	// It must be a user that we manage, and not equal to the main user that we run as
	return !Process.myUserHandle().equals(user) && mUsers.contains(user);
	}
	}

	public void dump(PrintWriter writer) {
	writer.println("User cache state:");
	synchronized (mLock) {
	for (UserHandle user : mUsers) {
	writer.println(" user: " + user);
	}
	}
	}

	public void invalidateWorkProfileOwnerApps(@NonNull String packageName) {
	synchronized (mLock) {
	if (mWorkProfileOwnerApps.size() == 0) {
	Log.w(TAG, "WorkProfileOwnerApps cache is empty");
	return;
	}

	boolean cacheMissForGivenPackage = true;
	for (int i = 0; i < mWorkProfileOwnerApps.size(); i++) {
	final int userId = mWorkProfileOwnerApps.keyAt(i);
	if (packageName.equals(mWorkProfileOwnerApps.get(userId))) {
	Log.i(TAG, "Invalidating WorkProfileOwnerApps cache for package " + packageName
	+ ". UserId: " + userId);
	mWorkProfileOwnerApps.remove(userId);
	cacheMissForGivenPackage = false;
	}
	}

	if(cacheMissForGivenPackage) {
	Log.w(TAG, "WorkProfileOwnerApps cache miss for package " + packageName);
	}
	}
	}
	}