Adding the FileObserverProtocol and the Messages it transmits.

PiperOrigin-RevId: 533572400

Author: copybara-androidxtest

services/shellexecutor/java/androidx/test/services/shellexecutor/BUILD

@@ -1,12 +1,12 @@
-load("@build_bazel_rules_android//android:rules.bzl", "android_library")
+load("//build_extensions:kt_android_library.bzl", "kt_android_library")
 
 # A shell command execution server to allow shell commands to be run at elevated permissions
 
 package(default_applicable_licenses = ["//services:license"])
 
 licenses(["notice"])
 
-android_library(
+kt_android_library(
     name = "coroutine_file_observer",
     srcs = [
         "CoroutineFileObserver.kt",
@@ -17,7 +17,18 @@ android_library(
     ],
 )
 
-android_library(
+kt_android_library(
+    name = "file_observer_protocol",
+    srcs = [
+        "FileObserverProtocol.kt",
+        "Messages.kt",
+    ],
+    visibility = [
+        "//services/shellexecutor/javatests/androidx/test/services/shellexecutor:__pkg__",
+    ],
+)
+
+kt_android_library(
     name = "exec_server",
     srcs = [
         "BlockingPublish.java",
@@ -37,7 +48,7 @@ android_library(
     ],
 )
 
-android_library(
+kt_android_library(
     name = "exec_client",
     srcs = [
         "BlockingFind.java",

services/shellexecutor/java/androidx/test/services/shellexecutor/FileObserverProtocol.kt

@@ -0,0 +1,123 @@
+/*
+ * Copyright (C) 2023 The Android Open Source Project
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *     http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+
+package androidx.test.services.shellexecutor
+
+import java.io.ByteArrayOutputStream
+import java.io.File
+import java.io.IOException
+import java.io.OutputStreamWriter
+import java.io.PrintWriter
+import java.util.UUID
+
+/**
+ * The protocol for communicating by FileObserver is:
+ * 1. The server creates the server directory in /data/local/tmp.
+ * 2. The client creates [UUID].request in the server directory.
+ * 3. The server reads and deletes [UUID].request, then writes [UUID].response.
+ * 4. The client reads and deletes [UUID].response.
+ *
+ * The underlying communication is handled by inotify, which only generates events for the
+ * directories it is explicitly watching. (The FileObserver documentation makes it sound like it can
+ * pick things up in subdirectories; this is erroneous.)
+ *
+ * The underlying directory and file are set world-readable and -writable so the client can write
+ * the request and read the response. Because this only works when someone is already running
+ * FileObserverShellMain, there is very little threat here; if someone is able to put a program onto
+ * your test device that can watch /data/local/tmp for the appearance of the exchange directory, you
+ * have bigger problems than whatever it's going to do with root privileges.
+ */
+@Suppress("SetWorldReadable", "SetWorldWritable")
+object FileObserverProtocol {
+  const val REQUEST = "request"
+  const val RESPONSE = "response"
+
+  /** Creates the exchange directory with appropriate permissions. */
+  fun createExchangeDir(commonDir: File): File {
+    val exchangeDir = File.createTempFile("androidx", ".tmp", commonDir)
+    exchangeDir.delete()
+    exchangeDir.mkdir()
+    exchangeDir.setReadable(/* readable= */ true, /* ownerOnly= */ false)
+    exchangeDir.setWritable(/* writable= */ true, /* ownerOnly= */ false)
+    exchangeDir.setExecutable(/* executable= */ true, /* ownerOnly= */ false)
+    return exchangeDir
+  }
+
+  /**
+   * Writes a request file to the exchange directory.
+   *
+   * @return the location for the response file
+   */
+  fun writeRequestFile(exchangeDir: File, message: Messages.Command): File {
+    val stem = UUID.randomUUID().toString()
+    val request = File(exchangeDir, "${stem}.$REQUEST")
+    request.outputStream().use {
+      request.setReadable(/* readable= */ true, /* ownerOnly= */ false)
+      request.setWritable(/* writable= */ true, /* ownerOnly= */ false)
+      message.writeTo(it)
+    }
+    return File(exchangeDir, "${stem}.response")
+  }
+
+  fun isRequestFile(file: File) = file.name.endsWith(".$REQUEST")
+
+  fun calculateResponseFile(requestFile: File) =
+    File(requestFile.parentFile, "${requestFile.name.split(".").first()}.$RESPONSE")
+
+  /** Reads and deletes the request file */
+  fun readRequestFile(request: File): Messages.Command {
+    val command: Messages.Command
+    request.inputStream().use { command = Messages.Command.readFrom(it) }
+    request.delete()
+    return command
+  }
+
+  /** Writes the response file */
+  fun writeResponseFile(path: File, result: Messages.CommandResult) {
+    path.outputStream().use {
+      path.setReadable(/* readable= */ true, /* ownerOnly= */ false)
+      path.setWritable(/* writable= */ true, /* ownerOnly= */ false)
+      result.writeTo(it)
+    }
+  }
+
+  /** Reads and deletes the response file. */
+  fun readResponseFile(response: File): Messages.CommandResult {
+    try {
+      val result: Messages.CommandResult
+      response.inputStream().use { result = Messages.CommandResult.readFrom(it) }
+      response.delete()
+      return result
+    } catch (x: IOException) {
+      return Messages.CommandResult(
+        resultType = Messages.ResultType.CLIENT_ERROR,
+        stderr = x.toByteArray()
+      )
+    }
+  }
+}
+
+/**
+ * Writes an exception stack trace to a ByteArray as UTF-8, to make them easy to pass through
+ * Messages.CommandResult.
+ */
+internal fun Exception.toByteArray(): ByteArray {
+  val bos = ByteArrayOutputStream()
+  val pw = PrintWriter(OutputStreamWriter(bos, Charsets.UTF_8))
+  printStackTrace(pw)
+  pw.close()
+  return bos.toByteArray()
+}

services/shellexecutor/java/androidx/test/services/shellexecutor/Messages.kt

@@ -0,0 +1,163 @@
+/*
+ * Copyright (C) 2023 The Android Open Source Project
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *     http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+
+package androidx.test.services.shellexecutor
+
+import java.io.InputStream
+import java.io.ObjectInputStream
+import java.io.ObjectOutputStream
+import java.io.OutputStream
+
+/**
+ * Messages used for communication between the ShellCommandFileObserverClient and the
+ * ShellCommandFileObserverExecutorServer.
+ *
+ * These are not protobufs because on APIs 15-19, desugaring causes the FileObserverShellMain to
+ * crash with ClassNotFound: j$.util.concurrent.ConcurrentHashMap, and GeneratedMessageLite needs
+ * that class. The fix for this (starting multidex earlier) is not possible in a class with no
+ * Context.
+ *
+ * They aren't PersistableBundles because those get introduced in API 21. So we resort to the
+ * ObjectInputStream/ObjectOutputStream, working around the BanSerializableRead.
+ */
+object Messages {
+  data class Command(
+    val command: String,
+    val parameters: List<String> = emptyList(),
+    val shellEnv: Map<String, String> = emptyMap(),
+    val executeThroughShell: Boolean = false,
+    val redirectErrorStream: Boolean = false,
+    val timeoutMs: Long,
+  ) {
+    fun writeTo(outputStream: OutputStream) {
+      ObjectOutputStream(outputStream).use {
+        it.apply {
+          writeUTF(command)
+          write(parameters)
+          write(shellEnv)
+          writeBoolean(executeThroughShell)
+          writeBoolean(redirectErrorStream)
+          writeLong(timeoutMs)
+        }
+      }
+    }
+
+    override fun toString(): String {
+      val env = shellEnv.asSequence().map { "${it.key}=${it.value}" }.joinToString(", ")
+      val ets = if (executeThroughShell) " executeThroughShell" else ""
+      val res = if (redirectErrorStream) " redirectErrorStream" else ""
+      return "[$command] [${parameters.joinToString("] [")}] ($env)$ets$res ${timeoutMs}ms"
+    }
+
+    companion object {
+      fun readFrom(inputStream: InputStream): Command {
+        ObjectInputStream(inputStream).use {
+          it.apply {
+            return Command(
+              command = readUTF(),
+              parameters = readStringList(),
+              shellEnv = readStringMap(),
+              executeThroughShell = readBoolean(),
+              redirectErrorStream = readBoolean(),
+              timeoutMs = readLong()
+            )
+          }
+        }
+      }
+    }
+  }
+
+  enum class ResultType {
+    EXITED,
+    TIMED_OUT,
+    SERVER_ERROR,
+    CLIENT_ERROR
+  }
+
+  data class CommandResult(
+    val resultType: ResultType,
+    val exitCode: Int = -1,
+    val stdout: ByteArray = ByteArray(0),
+    val stderr: ByteArray = ByteArray(0),
+  ) {
+    fun writeTo(outputStream: OutputStream) {
+      ObjectOutputStream(outputStream).use {
+        it.apply {
+          write(resultType)
+          writeInt(exitCode)
+          writeInt(stdout.size)
+          write(stdout)
+          writeInt(stderr.size)
+          write(stderr)
+        }
+      }
+    }
+
+    override fun toString(): String {
+      val out = stdout.toString(Charsets.UTF_8)
+      val err = stderr.toString(Charsets.UTF_8)
+      return "${resultType.name} $exitCode stdout=[$out] stderr=[$err]"
+    }
+
+    companion object {
+      fun readFrom(inputStream: InputStream): CommandResult {
+        ObjectInputStream(inputStream).use {
+          it.apply {
+            return CommandResult(
+              resultType = readResultType(),
+              exitCode = readInt(),
+              stdout = ByteArray(readInt()).also { readFully(it) },
+              stderr = ByteArray(readInt()).also { readFully(it) }
+            )
+          }
+        }
+      }
+    }
+  }
+
+  private fun ObjectOutputStream.write(resultType: ResultType) {
+    writeUTF(resultType.name)
+  }
+
+  private fun ObjectInputStream.readResultType() = ResultType.valueOf(readUTF())
+
+  private fun ObjectOutputStream.write(list: List<String>) {
+    writeInt(list.size)
+    for (s in list) writeUTF(s)
+  }
+
+  private fun ObjectInputStream.readStringList(): List<String> {
+    val count = readInt()
+    val result = mutableListOf<String>()
+    for (i in 1..count) result.add(readUTF())
+    return result
+  }
+
+  private fun ObjectOutputStream.write(map: Map<String, String>) {
+    writeInt(map.size)
+    for (entry in map) {
+      writeUTF(entry.key)
+      writeUTF(entry.value)
+    }
+  }
+
+  private fun ObjectInputStream.readStringMap(): Map<String, String> {
+    val count = readInt()
+    val result = mutableMapOf<String, String>()
+    for (i in 1..count) result.put(readUTF(), readUTF())
+    return result
+  }
+}