From 9ac31b063e43a7281165477b4059a3c54c8bdaee Mon Sep 17 00:00:00 2001
From: Gil Cukierman <cukie@google.com>
Date: Thu, 15 Feb 2024 16:14:40 -0500
Subject: Emit stats for cellular identifier disclosures

Test: atest CellularSecurityTransparencyStats
Bug: 308985842
Change-Id: I079145fd5cde354c5bea2f073749c03680384aee
---
 .../metrics/CellularSecurityTransparencyStats.java | 86 ++++++++++++++++++++++
 .../CellularIdentifierDisclosureNotifier.java      | 46 ++++++++++--
 2 files changed, 126 insertions(+), 6 deletions(-)
 create mode 100644 src/java/com/android/internal/telephony/metrics/CellularSecurityTransparencyStats.java

(limited to 'src/java/com')

diff --git a/src/java/com/android/internal/telephony/metrics/CellularSecurityTransparencyStats.java b/src/java/com/android/internal/telephony/metrics/CellularSecurityTransparencyStats.java
new file mode 100644
index 0000000000..f77474f5c6
--- /dev/null
+++ b/src/java/com/android/internal/telephony/metrics/CellularSecurityTransparencyStats.java
@@ -0,0 +1,86 @@
+/*
+ * Copyright (C) 2024 The Android Open Source Project
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *      http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+
+package com.android.internal.telephony.metrics;
+
+import android.telephony.CellularIdentifierDisclosure;
+
+import com.android.internal.annotations.VisibleForTesting;
+import com.android.internal.telephony.TelephonyStatsLog;
+import com.android.telephony.Rlog;
+
+/**
+ * Facilitates writing stats relating to cellular transparency features. Delegates the actual
+ * writing of stats out to {@link TelephonyStatsLog}.
+ */
+public class CellularSecurityTransparencyStats {
+
+    private static final String LOG_TAG = "CellularSecurityTransparencyStats";
+    private static final String LOG_DESCRIPTOR_SIM_MCC = "SIM MCC";
+    private static final String LOG_DESCRIPTOR_SIM_MNC = "SIM MNC";
+    private static final String LOG_DESCRIPTOR_DISCLOSURE_MCC = "disclosure MCC";
+    private static final String LOG_DESCRIPTOR_DISCLOSURE_MNC = "disclosure MNC";
+    private static final int DEFAULT_PLMN_PART = -1;
+
+    /**
+     * Log an identifier disclosure to be written out to {@link TelephonyStatsLog}
+     */
+    public void logIdentifierDisclosure(CellularIdentifierDisclosure disclosure, String simMcc,
+            String simMnc, boolean notificationsEnabled) {
+
+        int mcc = parsePlmnPartOrDefault(simMcc, LOG_DESCRIPTOR_SIM_MCC);
+        int mnc = parsePlmnPartOrDefault(simMnc, LOG_DESCRIPTOR_SIM_MNC);
+
+        int disclosureMcc = DEFAULT_PLMN_PART;
+        int disclosureMnc = DEFAULT_PLMN_PART;
+        String plmn = disclosure.getPlmn();
+        if (plmn != null) {
+            String[] plmnParts = plmn.split("-");
+            if (plmnParts.length == 2) {
+                disclosureMcc = parsePlmnPartOrDefault(plmnParts[0], LOG_DESCRIPTOR_DISCLOSURE_MCC);
+                disclosureMnc = parsePlmnPartOrDefault(plmnParts[1], LOG_DESCRIPTOR_DISCLOSURE_MNC);
+            }
+        }
+
+        writeIdentifierDisclosure(mcc, mnc, disclosureMcc, disclosureMnc,
+                disclosure.getCellularIdentifier(), disclosure.getNasProtocolMessage(),
+                disclosure.isEmergency(), notificationsEnabled);
+
+    }
+
+    private int parsePlmnPartOrDefault(String input, String logDescriptor) {
+        try {
+            return Integer.parseInt(input);
+        } catch (NumberFormatException e) {
+            Rlog.d(LOG_TAG, "Failed to parse " + logDescriptor + ": " + input);
+        }
+
+        return DEFAULT_PLMN_PART;
+    }
+
+    /**
+     * Write identifier disclosure data out to {@link TelephonyStatsLog}. This method is split
+     * out to enable testing, since {@link TelephonyStatsLog} is a final static class.
+     */
+    @VisibleForTesting
+    public void writeIdentifierDisclosure(int mcc, int mnc, int disclosureMcc, int disclosureMnc,
+            int identifier, int protocolMessage, boolean isEmergency,
+            boolean areNotificationsEnabled) {
+        TelephonyStatsLog.write(TelephonyStatsLog.CELLULAR_IDENTIFIER_DISCLOSED, mcc, mnc,
+                disclosureMcc, disclosureMnc, identifier, protocolMessage, isEmergency,
+                areNotificationsEnabled);
+    }
+}
diff --git a/src/java/com/android/internal/telephony/security/CellularIdentifierDisclosureNotifier.java b/src/java/com/android/internal/telephony/security/CellularIdentifierDisclosureNotifier.java
index 4540b8a93e..8591e867e8 100644
--- a/src/java/com/android/internal/telephony/security/CellularIdentifierDisclosureNotifier.java
+++ b/src/java/com/android/internal/telephony/security/CellularIdentifierDisclosureNotifier.java
@@ -21,6 +21,9 @@ import android.telephony.CellularIdentifierDisclosure;
 
 import com.android.internal.annotations.GuardedBy;
 import com.android.internal.annotations.VisibleForTesting;
+import com.android.internal.telephony.metrics.CellularSecurityTransparencyStats;
+import com.android.internal.telephony.subscription.SubscriptionInfoInternal;
+import com.android.internal.telephony.subscription.SubscriptionManagerService;
 import com.android.telephony.Rlog;
 
 import java.time.Instant;
@@ -62,13 +65,13 @@ public class CellularIdentifierDisclosureNotifier {
     // This object should only be accessed from within the thread of mSerializedWorkQueue. Access
     // outside of that thread would require additional synchronization.
     private Map<Integer, DisclosureWindow> mWindows;
+    private SubscriptionManagerService mSubscriptionManagerService;
+    private CellularSecurityTransparencyStats mCellularSecurityTransparencyStats;
 
     public CellularIdentifierDisclosureNotifier(CellularNetworkSecuritySafetySource safetySource) {
-        this(
-                Executors.newSingleThreadScheduledExecutor(),
-                DEFAULT_WINDOW_CLOSE_DURATION_IN_MINUTES,
-                TimeUnit.MINUTES,
-                safetySource);
+        this(Executors.newSingleThreadScheduledExecutor(), DEFAULT_WINDOW_CLOSE_DURATION_IN_MINUTES,
+                TimeUnit.MINUTES, safetySource, SubscriptionManagerService.getInstance(),
+                new CellularSecurityTransparencyStats());
     }
 
     /**
@@ -83,12 +86,16 @@ public class CellularIdentifierDisclosureNotifier {
             ScheduledExecutorService notificationQueue,
             long windowCloseDuration,
             TimeUnit windowCloseUnit,
-            CellularNetworkSecuritySafetySource safetySource) {
+            CellularNetworkSecuritySafetySource safetySource,
+            SubscriptionManagerService subscriptionManagerService,
+            CellularSecurityTransparencyStats cellularSecurityTransparencyStats) {
         mSerializedWorkQueue = notificationQueue;
         mWindowCloseDuration = windowCloseDuration;
         mWindowCloseUnit = windowCloseUnit;
         mWindows = new HashMap<>();
         mSafetySource = safetySource;
+        mSubscriptionManagerService = subscriptionManagerService;
+        mCellularSecurityTransparencyStats = cellularSecurityTransparencyStats;
     }
 
     /**
@@ -98,6 +105,8 @@ public class CellularIdentifierDisclosureNotifier {
     public void addDisclosure(Context context, int subId, CellularIdentifierDisclosure disclosure) {
         Rlog.d(TAG, "Identifier disclosure reported: " + disclosure);
 
+        logDisclosure(subId, disclosure);
+
         synchronized (mEnabledLock) {
             if (!mEnabled) {
                 Rlog.d(TAG, "Skipping disclosure because notifier was disabled.");
@@ -123,6 +132,31 @@ public class CellularIdentifierDisclosureNotifier {
         } // end mEnabledLock
     }
 
+    private void logDisclosure(int subId, CellularIdentifierDisclosure disclosure) {
+        try {
+            mSerializedWorkQueue.execute(runLogDisclosure(subId, disclosure));
+        } catch (RejectedExecutionException e) {
+            Rlog.e(TAG, "Failed to schedule runLogDisclosure: " + e.getMessage());
+        }
+    }
+
+    private Runnable runLogDisclosure(int subId,
+            CellularIdentifierDisclosure disclosure) {
+        return () -> {
+            SubscriptionInfoInternal subInfo =
+                    mSubscriptionManagerService.getSubscriptionInfoInternal(subId);
+            String mcc = null;
+            String mnc = null;
+            if (subInfo != null) {
+                mcc = subInfo.getMcc();
+                mnc = subInfo.getMnc();
+            }
+
+            mCellularSecurityTransparencyStats.logIdentifierDisclosure(disclosure, mcc, mnc,
+                    isEnabled());
+        };
+    }
+
     /**
      * Re-enable if previously disabled. This means that {@code addDisclsoure} will start tracking
      * disclosures again and potentially emitting notifications.
-- 
cgit v1.2.3