1 /*
2  * Copyright (c) 2023 Huawei Device Co., Ltd.
3  * Licensed under the Apache License, Version 2.0 (the "License");
4  * you may not use this file except in compliance with the License.
5  * You may obtain a copy of the License at
6  *
7  *     http://www.apache.org/licenses/LICENSE-2.0
8  *
9  * Unless required by applicable law or agreed to in writing, software
10  * distributed under the License is distributed on an "AS IS" BASIS,
11  * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
12  * See the License for the specific language governing permissions and
13  * limitations under the License.
14  */
15 
16 #include "firewall_rule_plugin.h"
17 
18 #include "edm_ipc_interface_code.h"
19 #include "edm_log.h"
20 #include "func_code_utils.h"
21 #include "firewall_rule_serializer.h"
22 #include "iptables_manager.h"
23 #include "plugin_manager.h"
24 
25 using namespace OHOS::EDM::IPTABLES;
26 
27 namespace OHOS {
28 namespace EDM {
29 const bool REGISTER_RESULT = PluginManager::GetInstance()->AddPlugin(FirewallRulePlugin::GetPlugin());
30 
InitPlugin(std::shared_ptr<IPluginTemplate<FirewallRulePlugin,IPTABLES::FirewallRuleParcel>> ptr)31 void FirewallRulePlugin::InitPlugin(
32     std::shared_ptr<IPluginTemplate<FirewallRulePlugin, IPTABLES::FirewallRuleParcel>> ptr)
33 {
34     EDMLOGI("FirewallRulePlugin InitPlugin...");
35     ptr->InitAttribute(EdmInterfaceCode::FIREWALL_RULE, "firewall_rule", "ohos.permission.ENTERPRISE_MANAGE_NETWORK",
36         IPlugin::PermissionType::SUPER_DEVICE_ADMIN, false);
37     ptr->SetSerializer(FirewallRuleSerializer::GetInstance());
38     ptr->SetOnHandlePolicyListener(&FirewallRulePlugin::OnSetPolicy, FuncOperateType::SET);
39     ptr->SetOnHandlePolicyListener(&FirewallRulePlugin::OnRemovePolicy, FuncOperateType::REMOVE);
40 }
41 
OnSetPolicy(IPTABLES::FirewallRuleParcel & ruleParcel)42 ErrCode FirewallRulePlugin::OnSetPolicy(IPTABLES::FirewallRuleParcel &ruleParcel)
43 {
44     auto rule = ruleParcel.GetRule();
45     if (!IPTABLES::IptablesManager::GetInstance()->HasInit()) {
46         IPTABLES::IptablesManager::GetInstance()->Init();
47     }
48     return IPTABLES::IptablesManager::GetInstance()->AddFirewallRule(ruleParcel);
49 }
50 
OnRemovePolicy(IPTABLES::FirewallRuleParcel & ruleParcel)51 ErrCode FirewallRulePlugin::OnRemovePolicy(IPTABLES::FirewallRuleParcel &ruleParcel)
52 {
53     auto rule = ruleParcel.GetRule();
54     if (!IPTABLES::IptablesManager::GetInstance()->HasInit()) {
55         IPTABLES::IptablesManager::GetInstance()->Init();
56     }
57     return IptablesManager::GetInstance()->RemoveFirewallRule(ruleParcel);
58 }
59 
OnGetPolicy(std::string & policyData,MessageParcel & data,MessageParcel & reply,int32_t userId)60 ErrCode FirewallRulePlugin::OnGetPolicy(std::string &policyData, MessageParcel &data, MessageParcel &reply,
61     int32_t userId)
62 {
63     reply.WriteInt32(ERR_OK);
64     if (!IptablesManager::GetInstance()->HasInit()) {
65         IptablesManager::GetInstance()->Init();
66         reply.WriteInt32(0);
67     } else {
68         std::vector<FirewallRuleParcel> list;
69         ErrCode ret = IptablesManager::GetInstance()->GetFirewallRules(list);
70         if (ret != ERR_OK) {
71             EDMLOGE("FirewallRulePlugin OnGetPolicy fail");
72             return ret;
73         }
74         reply.WriteInt32(list.size());
75         for (auto const &item : list) {
76             item.Marshalling(reply);
77         }
78     }
79     return ERR_OK;
80 }
81 } // namespace EDM
82 } // namespace OHOS
83