Download name - Yale "Zoo"

Survey
yes no Was this document useful for you?
   Thank you for your participation!

* Your assessment is very important for improving the workof artificial intelligence, which forms the content of this project

page
1
page
2
page
3
page
4
page
5
page
6
page
7
page
8
page
9
page
10
page
11
page
12
page
13
page
14
page
15
page
16
page
17
page
18
page
19
page
20
page
21
page
22
page
23
page
24
page
25
page
26
page
27
page
28
page
29
page
30
page
31
page
32
page
33
page
34
page
35
page
36
page
37
page
38
page
39
page
40
page
41
page
42
page
43
page
44
page
45
page
46
page
47
page
48
page
49
page
50
page
51
page
52
page
53
Document related concepts
no text concepts found
Transcript 
CS434/534: Topics in Networked
(Networking) Systems
Mobile Networking System:
Network Service Discovery and Composition
Yang (Richard) Yang
Computer Science Department
Yale University
208A Watson
Email: [email protected]
http://zoo.cs.yale.edu/classes/cs434/
Admin.
r Project planning
m
Start: Apr. 5
• A meeting w/ instructor; Due: team, potential topics
m
Checkpoint I: Apr. 13 (updated; Thursday)
• Initial ideas; survey of related work; feedback from
instructor/TF
m
Checkpoint II: Apr. 20 (updated)
• Initial design; feedback from instructor/TF
m
Checkpoint III: Apr. 27 (updated)
• Design refined; key components details
m
Final report: May 4
• No more than 6 page write up
2
Recap: Most Basic Android UI App
Software Concepts
r Activity
r UI (View/Layout)
m External definition of views in XML
m findViewById() to reduce coupling
r Link view events to event handlers
m set…Listener()
r Other concepts such fragments which we
skip
3
Recap: Android Execution Model
r One Linux process for
each application with a
single thread of
execution
m
The very important
thread is also called the
"main" thread or the UI
thread
r UI thread and other
UI
events
message
system
events
Looper
UI
(main)
thread
message
message
thread coordination
m
post, handler, AsyncTask
to send tasks to UI
thread
4
Recap: App/Component Composition
r A system is more extensible/flexible if the
apps/components can be composed
r Android composition glue: intent
m
An intent is an abstract description of an operation to be
performed
• An intent is defined by action, data, attributes such as category,
type (MIME type), component (class name), and extras (key-value
store)
m
Intent discovery: Manifest file announces related info
<application
<activity
android:name=".IntentController” android:label="IntentController" >
<intent-filter>
<action android:name="android.intent.action.MAIN" />
<category android:name="android.intent.category.LAUNCHER" />
</intent-filter>
</activity> …
m
Try: adb shell am start –a android.intent.action.VIEW –d URL
5
Recap: App/Component Composition
Intent is used not only to find service, but also pass param, return results
private void startGame() {
Intent launchGame = new Intent(this, CoolGameA.class);
// passing information to launched activity
launchGame.putExtra("userName", userName);
launchGame.putExtra("userScore", userScore);
startActivityForResult(launchGame, PLAY_GAME);
}
@Override
protected void onActivityResult(int requestCode,
int resultCode, Intent data) {
if (requestCode == PLAY_GAME && resultCode == RESULT_OK) {
userName = data.getExtras().getString(”returnName");
userScore = data.getExtras().getInt(“returnScore");
// show it has changed
tv.setText(userName + ":" + userScore);
}
super.onActivityResult(requestCode, resultCode, data);
}
// CoolGameA
//return information to calling activity
Intent i = getIntent();
i.putExtra("returnScore", score); i.putExtra("returnName", user);
setResult(RESULT_OK, i); finish();
…
6
Recap: App/Component
Composition: Content Provider
r Each content provider exposes a public URI
that uniquely identifies its data set:
m
android.provider.Contacts.Phones.CONTENT_URI
android.provider.Contacts.Photos.CONTENT_URI
android.provider.CallLog.Calls.CONTENT_URI
android.provider.Calendar.CONTENT_URI
r A content consumer declares access
requirement
m
<uses-permission android:name="android.permission.READ_CONTACTS"/>
private void pickContact() {
// Create an intent to "pick" a contact, as defined by the content provider URI
Intent intent = new Intent(Intent.ACTION_PICK, Contacts.CONTENT_URI);
startActivityForResult(intent, PICK_CONTACT_REQUEST);
}
7
Summary: Android Gang of Four
8
Outline
r Admin
r Android
m Platform overview
m Basic concepts
• Activity, View, External Resources, Listener
m
Execution model with multiple threads
• Post to UI thread, Handler, ASyncTask
m
Component composition
• Intent, Explicit intent, Implicit intent, Content provider
as target of intent, Broadcast intent
• Intent security
9
Discussion: Downside of Implicit Intent
10
Real Example App: iMDb
11
Example App
IMDb App
Handles Actions:
willUpdateShowtimes,
showtimesNoLocationError
Showtime
Search
Results UI
Implicit Intent
Action:
willUpdateShowtimes
12
Vulnerability: Eavedropping
IMDb App
Showtime
Search
Eavesdropping App
Handles Action:
willUpdateShowtimes,
showtimesNoLocationError
Malicious
Receiver
Implicit Intent
Action:
willUpdateShowtimes
Sending Implicit Intents makes communication public
13
Vulnerability: Spoofing
Malicious
Injection
App
Malicious
Component
IMDb App
Handles Action:
willUpdateShowtimes,
showtimesNoLocationError
Results UI
Action:
showtimesNoLocationError
Receiving Implicit Intents makes the component public
14
Vulnerability: Man-in-the-Middle
IMDb App
Man-in-the-Middle
AppAction:
Handles Action:
Handles
willUpdateShowtimes,
willUpdateShowtimes,
showtimesNoLocation Error showtimesNoLocationError
Showtime
Search
Results UI
Action:
willUpdateShowtimes
Malicious
Receiver
Action:
showtimesNoLocation
Error
15
Vulnerability: Spoofing
16
More Examples of Attack
r DeskClock:
m Start an internal service
m Tell it to infinitely vibrate with a WAKE_LOCK on
r Phone:
m Trigger the “phone call answered” message
receiver
m Phone call will be silenced, vibrate cancelled
r A good topic as a project
m Composition security mechanisms
17
Outline
r Admin
r Android
m Platform overview
m Basic concepts
• Activity, View, External Resources, Listener
m
Execution model with multiple threads
• Post to UI thread, Handler, ASyncTask
m
Component composition
• Intent, Explicit intent, Implicit intent, Content provider
as target of intent, Broadcast intent
• Intent security
• Composition (IPC) internal
18
Binder History
r Developed under the name OpenBinder by Palm Inc.
under the leadership of Dianne Hackborn
r Android Binder is the customized re-implementation
of OpenBinder, which provides bindings to functions
and data from one execution environment to another
19
Binder and IPC in Android
Activity
Manager
Activity
Window Alarm
Manager Manager
Binder in Kernel
“In the Android platform, the binder is used for
nearly everything that happens across processes
in the core platform. " – Dianne Hackborn
https://lkml.org/lkml/2009/6/25/3
Android IPC Architecture
caller
interface
Proxy
caller
interface
callee
Binder in kernel
Binder Thread
Stub
Binder framework provides a mechanism such
that methods on remote objects can be
called as if they where local object methods.
Q: What the binder framework needs to do?
interface
callee
21
Binder Transaction and Parcel
r The most basic function of Binder is data transfer
m Each invocation is called a transaction, and data is called
parcel.
m The procedure of building a parcel is called marshalling an
object.
m The procedure of rebuilding a object from a parcel is called
unmarshalling an object.
Delivering arguments of method
”flatten”
”unflatten”
transmit
22
IBinder Interface and Binder Objects
r IBinder
m https://developer.android.com/reference/android
/os/IBinder.html
r Binder
m https://developer.android.com/reference/android
/os/Binder.html
r Key method
m transact(int code, Parcel data, Parcel reply, int
flags)
23
%adb shell ls /sys/kernel/debug/binder
see transactions
The Binder Protocol
If one process sends data to another process, it is called transaction.
The data is called transaction data.
$ adb shell service list
Binder + Service Manager
Client
Service Manager
service list
IXXX
Server
1
Name:Handle
onTransact(…)
Name:Handle
2
thread pool
Name:Handle
Handle=0
transact(…)
3
4
User Spa
5
Kernel Spa
Binder Driver: /dev/binder
memory mapping
25
Generating Call Directly
$ adb shell service call phone 1 s16 "123"
Result: Parcel(00000000 '....')
interface ITelephony {
/* Dial a number. This doesn't place the call. It displays
* the Dialer screen. */
Source: frameworks/base/
void dial(String number);
telephony/java/com/android/internal/telephony/ITelephony.aidl
Phone
$ adb shell service
listApplication appears in foreground.
Found 71 services: parameter “1” → dial()
s16 "123" → String("123")
...
9
phone:
[com.android.internal.telephony.ITelephony]
ttps://github.com/android/platform_frameworks_base/blob/master/telephony/java/com/android/internal/telephony/ITelephony.aidl
Summary: Binder IPC
r Binders are used to to communicate over
process boundaries since different
processes don't share a common VM context
m
no more direct access to each others Objects
(memory).
r Binders are not ideal for transferring large
data streams (like audio/video) since every
object has to be converted to (and back
from) a Parcel.
27
Summary
r Mechanisms of Android to discover and
invoke services (activities) from other apps
in the device
m
Discovery
• Manifest file
• ServiceManager
m
Execution
• The Binder framework
28
Outline
r Admin
r Android
m Platform overview
m Basic concepts
• Activity, View, External Resources, Listener
m
Inter-thread: execution model with multiple threads
• Post to UI thread, Handler, ASyncTask
m
Inter-process: component composition
• Intent, Explicit intent, Implicit intent, Content provider as
target of intent, Broadcast intent
• Intent security
• Composition (IPC) internal using binder
m
Inter-machine: network-wise composition
29
Discussion
r Issues to address when designing a network-
wide composition framework
30
Network Service Discovery and Execution
request
src
dst
result
location
service
SD
31
Outline
r Admin
r Android
m Platform overview
m Basic concepts
• Activity, View, External Resources, Listener
m
Inter-thread: execution model with multiple threads
• Post to UI thread, Handler, ASyncTask
m
Inter-process: component composition
• Intent, Explicit intent, Implicit intent, Content provider as
target of intent, Broadcast intent, Binder
m
Inter-machine: network-wise composition
• service discovery
32
General Service/Naming
Discovery Paradigm: Linda
r “Distributed workspace” by David Gelernter
in the 80’s at Yale
r Very influential in naming and resource
discovery
r Key issues
o How to name services/resources
o How to resolve names
33
The Linda Paradigm
r Naming scheme:
o arbitrary tuples (heterogeneous-type
vectors)
r Name resolution:
o Nodes write into shared memory
o Nodes read matching tuples from shared
memory

exact matching is required for extraction
34
Linda: Core API
r
out(): writes tuples to shared space
m
m
r
read(): retrieves tuple copy matching arg list (blocking)
m
m
r
example: read(“abc”, ? A, ? B)
result: finds (“abc”, 1.5, 12) and sets local variables
A = 1.5, B = 12. Tuple (“abc”, 1.5, 12) is still resident in space.
in(): retrieves and deletes matching tuple from space (blocking)
m
r
example: out("abc", 1.5, 12).
result: insert (“abc”, 1.5, 12) into space
example: same as above except (“abc”, 1.5, 12) is deleted
eval(expression): similar to out except that the tuple argument to
eval is evaluated
o example: eval("ab",-6,abs(-6)) creates tuple (“ab”, -6, 6)
35
Linda Extension: JavaSpaces
r Industry took Linda principles and made
modifications
m
m
m
add transactions, leases, events
store Java objects instead of tuples
a very comprehensive service discovery
system
r Definitive book, “JavaSpaces Principles,
Patterns, and Practice”
m
2 of 3 authors got Ph.D.’s from Yale
36
JavaSpaces – Visual Overview
37
Outline
r Admin
r Android
m Platform overview
m Basic concepts
• Activity, View, External Resources, Listener
m
Inter-thread: execution model with multiple threads
• Post to UI thread, Handler, ASyncTask
m
Inter-process: component composition
• Intent, Explicit intent, Implicit intent, Content provider as
target of intent, Broadcast intent, Binder
m
Inter-machine: network-wise composition
• service discovery
– Linda, DNS
38
Today’s Internet: DNS
clients
DNS
<name, service>
routers
IP address
servers
39
DNS: Domain Name System
Function
map domain name (e.g. cs.yale.edu) and service type (e.g.,
email) to IP address (e.g. 128.36.232.5)
Domain name: a hierarchical name space implemented
by a distributed database to allow distributed,
autonomous administration
called a zone
40
DNS: Naming Scheme
Each DNS server stores resource records (RR)
RR format: (name,
Type=A
name is hostname
value is IP address
Type=NS
name is domain (e.g.
yale.edu)
value is the name of the
authoritative name
server for this domain
value, type, ttl)
Type=CNAME
name is an alias name
for some “canonical”
(the real) name
value is canonical name
Type=MX
value is hostname of mail
server associated with name
41
DNS Name Resolution
A host is configured w/ a local DNS server,
and queries the server, who may forward the
query to the corresponding DNS server
42
Problems of Traditional DNS for Service
Discovery in Mobile Networks
Depends on infrastructure: availability of
DNS server
Service announced through DNS server
Limited, fixed service types
43
DNS-Service Discovery
Leverage DNS message format, but each
node can announce its own services
169.254.1.219
Network
Printer
169.254.10.29
169.254.4.51
44
Example
Use the dns-sd command on Mac as example
o Advertise (register) an LPR printer on port 515
dns-sd -R "My Test" _printer._tcp . 515 pdl=application/postscript
port
Name of
instance
providing
the service
<type_service>.
<transport>
domain (. means
default, which is
local
Txt for
additional
data
45
Realizing DNS-SD without Central DNS
Server: mDNS
Multicast in a small world
no central address server
• each node is a responder
link-local addressing
• send to multicast
address: 224.0.0.251
169.254.1.219
Network
Printer
169.254.10.29
169.254.4.51
46
Example
Use the dns-sd command on Mac as example
o Advertise (register) a web page on local machine
dns-sd -R "My Test" _http._tcp . 80 path=/path-topage.html
o Browse web pages on local machines
dns-sd -B _http._tcp
o See the page in Safari Bonjour
47
Network Service Discovery in Android
Based on DNS-SD/mDNS
Foundation for peer-to-peer/Wi-Fi Direct in
Android
See
https://developer.android.com/training/connectdevices-wirelessly/nsd.html
48
Service Registration in Android
public void registerService(int port) {
// Create the NsdServiceInfo object, and populate it.
NsdServiceInfo serviceInfo = new NsdServiceInfo();
// The name is subject to change based on conflicts
// with other services advertised on the same network.
serviceInfo.setServiceName("NsdChat");
serviceInfo.setServiceType("nsdchat._tcp");
serviceInfo.setPort(port);
…
}
http://www.iana.org/assignments/service-names-port-numbers/service-names-port-numbers.xml
49
Service Registration in Android
public void initializeRegistrationListener() {
mRegistrationListener = new NsdManager.RegistrationListener() {
@Override
public void onServiceRegistered(NsdServiceInfo NsdServiceInfo) {
// Save the service name. Android may have changed it in order to
// resolve a conflict, so update the name you initially requested
// with the name Android actually used.
mServiceName = NsdServiceInfo.getServiceName();
}
@Override
public void onRegistrationFailed(NsdServiceInfo serviceInfo, int errorCode) {
// Registration failed! Put debugging code here to determine why.
}
@Override
public void onServiceUnregistered(NsdServiceInfo arg0) {
// Service has been unregistered. This only happens when you call
// NsdManager.unregisterService() and pass in this listener.
}
@Override
public void onUnregistrationFailed(NsdServiceInfo serviceInfo, int errorCode) {
// Unregistration failed. Put debugging code here to determine why.
}
}; }
50
Service Registration in Android
public void registerService(int port) {
// Create the NsdServiceInfo object, and populate it.
NsdServiceInfo serviceInfo = new NsdServiceInfo();
// The name is subject to change based on conflicts
// with other services advertised on the same network.
serviceInfo.setServiceName("NsdChat");
serviceInfo.setServiceType("nsdchat._tcp");
serviceInfo.setPort(port);
mNsdManager = Context.getSystemService(Context.NSD_SERVICE);
mNsdManager.registerService(
serviceInfo, NsdManager.PROTOCOL_DNS_SD, mRegistrationListener);
}
51
Service Connection
call resolveService()
public void initializeResolveListener() {
mResolveListener = new NsdManager.ResolveListener() {
@Override
public void onResolveFailed(NsdServiceInfo serviceInfo, int errorCode) {
// Called when the resolve fails. Use the error code to debug.
Log.e(TAG, "Resolve failed" + errorCode);
}
@Override
public void onServiceResolved(NsdServiceInfo serviceInfo) {
Log.e(TAG, "Resolve Succeeded. " + serviceInfo);
if (serviceInfo.getServiceName().equals(mServiceName)) {
Log.d(TAG, "Same IP.");
return;
}
mService = serviceInfo;
int port = mService.getPort();
InetAddress host = mService.getHost();
52
Discussion
Issues of the preceding code
53
Related documents
CS499 * Mobile Application Development
CS499 * Mobile Application Development
ZomDroid Using Intents to Transfer Data Between Activities
ZomDroid Using Intents to Transfer Data Between Activities
Intro to Android (Powerpoint)
Intro to Android (Powerpoint)
Android Security Enforcement and Refinement
Android Security Enforcement and Refinement
Android Development
Android Development
Android
Android
Slides - NUS Security Research
Slides - NUS Security Research
Android Life Cycle
Android Life Cycle
Dan A CSC 345 Term Paper
Dan A CSC 345 Term Paper
Intents and Intent Filters
Intents and Intent Filters
Intent - Dipartimento di Informatica
Intent - Dipartimento di Informatica
Luca Bedogni Marco Di Felice
Luca Bedogni Marco Di Felice