Google Git
Sign in
android / platform / system / firewalld / refs/heads/nougat-mr2.1-release / . / firewall_service.cc
blob: 4cf3260fc2f2e6e073677ba70f6274ad299a4b1f [file] [log] [blame]
Gilad Arnold7db56bd2015-08-05 15:26:02 -0700[diff] [blame]1// Copyright 2014 The Android Open Source Project
2//
3// Licensed under the Apache License, Version 2.0 (the "License");
4// you may not use this file except in compliance with the License.
5// You may obtain a copy of the License at
6//
7// http://www.apache.org/licenses/LICENSE-2.0
8//
9// Unless required by applicable law or agreed to in writing, software
10// distributed under the License is distributed on an "AS IS" BASIS,
11// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
12// See the License for the specific language governing permissions and
13// limitations under the License.
Jorge Lucangeli Obesac44ba52014-12-01 16:26:05 -0800[diff] [blame]14
Gilad Arnold7db56bd2015-08-05 15:26:02 -0700[diff] [blame]15#include "firewall_service.h"
Jorge Lucangeli Obesac44ba52014-12-01 16:26:05 -0800[diff] [blame]16
Gilad Arnold7db56bd2015-08-05 15:26:02 -0700[diff] [blame]17#include "dbus_interface.h"
18#include "iptables.h"
Jorge Lucangeli Obesac44ba52014-12-01 16:26:05 -0800[diff] [blame]19
20namespace firewalld {
21
Alex Vakulenkofa9de932015-07-13 10:43:14 -0700[diff] [blame]22FirewallService::FirewallService(
Alex Vakulenkoe478a112015-10-13 09:58:47 -0700[diff] [blame]23 brillo::dbus_utils::ExportedObjectManager* object_manager)
Jorge Lucangeli Obes86208682014-12-05 15:28:04 -0800[diff] [blame]24 : org::chromium::FirewalldAdaptor(&iptables_),
Alex Vakulenkofa9de932015-07-13 10:43:14 -0700[diff] [blame]25 dbus_object_{object_manager, object_manager->GetBus(),
26 org::chromium::FirewalldAdaptor::GetObjectPath()} {}
Jorge Lucangeli Obesac44ba52014-12-01 16:26:05 -0800[diff] [blame]27
28void FirewallService::RegisterAsync(const CompletionAction& callback) {
29 RegisterWithDBusObject(&dbus_object_);
Jorge Lucangeli Obes650d2292015-02-25 14:14:29 -0800[diff] [blame]30
Daniel Eratdf78e332015-08-19 16:26:00 -0600[diff] [blame]31#if !defined(__ANDROID__)
Jorge Lucangeli Obes650d2292015-02-25 14:14:29 -0800[diff] [blame]32 // Track permission_broker's lifetime so that we can close firewall holes
33 // if/when permission_broker exits.
34 permission_broker_.reset(
35 new org::chromium::PermissionBroker::ObjectManagerProxy(
36 dbus_object_.GetBus()));
37 permission_broker_->SetPermissionBrokerRemovedCallback(
38 base::Bind(&FirewallService::OnPermissionBrokerRemoved,
39 weak_ptr_factory_.GetWeakPtr()));
Daniel Eratdf78e332015-08-19 16:26:00 -0600[diff] [blame]40#endif // __ANDROID__
Jorge Lucangeli Obes650d2292015-02-25 14:14:29 -0800[diff] [blame]41
Jorge Lucangeli Obesac44ba52014-12-01 16:26:05 -0800[diff] [blame]42 dbus_object_.RegisterAsync(callback);
43}
44
Daniel Eratdf78e332015-08-19 16:26:00 -0600[diff] [blame]45#if !defined(__ANDROID__)
Jorge Lucangeli Obes650d2292015-02-25 14:14:29 -0800[diff] [blame]46void FirewallService::OnPermissionBrokerRemoved(const dbus::ObjectPath& path) {
47 LOG(INFO) << "permission_broker died, plugging all firewall holes";
48 iptables_.PlugAllHoles();
49}
Daniel Eratdf78e332015-08-19 16:26:00 -0600[diff] [blame]50#endif // __ANDROID__
Jorge Lucangeli Obes650d2292015-02-25 14:14:29 -0800[diff] [blame]51
Jorge Lucangeli Obesac44ba52014-12-01 16:26:05 -0800[diff] [blame]52} // namespace firewalld