Android 11.0 PackageManagerService(二)APK扫描过程

最新推荐文章于 2024-07-02 19:05:48 发布
最新推荐文章于 2024-07-02 19:05:48 发布
阅读量3.3k 收藏 11
点赞数 7
分类专栏: Android Framework原理 文章标签: android framework
版权声明:本文为博主原创文章,遵循 CC 4.0 BY-SA 版权协议,转载请附上原文出处链接和本声明。
本文链接:https://blog.csdn.net/zhourui_1021/article/details/117306320
版权

PackageManagerService的构造函数中调用了scanDirTracedLI方法来扫描某个目录的apk文件。

1. 扫描路径

在Android 10.0中,PKMS主要扫描以下路径的APK信息:

/vendor/overlay
/product/overlay
/product_services/overlay
/odm/overlay
/oem/overlay
/system/framework
/system/priv-app
/system/app
/vendor/priv-app
/vendor/app
/odm/priv-app
/odm/app
/oem/app
/oem/priv-app
/product/priv-app
/product/app
/product_services/priv-app
/product_services/app
/product_services/priv-app

然而在Android 11.0中,PKMS扫描的路径虽然和Android 10.0中的不完全相同但是也是扫描的所有的路径。从以下注释中也可以看出

// Android 10.0中执行scanDirTracedLI方法前的注释


// Collect vendor/product/product_services overlay packages. (Do this before scanning
            // any apps.)


// Android 11.0中执行scanDirTracedLI方法前的注释

// Collect vendor/product/system_ext overlay packages. (Do this before scanning
            // any apps.)

现在我们从源码中去找一下扫描的是所有路径的依据:

for (int i = mDirsToScanAsSystem.size() - 1; i >= 0; i--) {
                final ScanPartition partition = mDirsToScanAsSystem.get(i);
                if (partition.getOverlayFolder() == null) {
                    continue;
                }
                scanDirTracedLI(partition.getOverlayFolder(), systemParseFlags,
                        systemScanFlags | partition.scanFlag, 0,
                        packageParser, executorService);
}

我们发现,此处遍历了一个mDirToScanAsSystem集合。

在执行scanTracedLI方法前有这样一段代码:

for (int i = 0; i < activeApexInfos.size(); i++) {
            final ScanPartition scanPartition =         
     resolveApexToScanPartition(activeApexInfos.get(i));
     if (scanPartition != null) {
            scanPartitions.add(scanPartition);
     }
}

mDirsToScanAsSystem = new ArrayList<>();
mDirsToScanAsSystem.addAll(SYSTEM_PARTITIONS);
mDirsToScanAsSystem.addAll(scanPartitions);

看一下resolveApexToScanPartition方法的源码:

private static @Nullable ScanPartition resolveApexToScanPartition(
            ApexManager.ActiveApexInfo apexInfo) {
        for (int i = 0, size = SYSTEM_PARTITIONS.size(); i < size; i++) {
            ScanPartition sp = SYSTEM_PARTITIONS.get(i);
            if (apexInfo.preInstalledApexPath.getAbsolutePath().startsWith(
                    sp.getFolder().getAbsolutePath())) {
                return new ScanPartition(apexInfo.apexDirectory, sp, SCAN_AS_APK_IN_APEX);
            }
        }
        return null;
    }

我们看到新建了一个ScanPartition对象,

public ScanPartition(@NonNull SystemPartition partition) {
            super(partition);
            scanFlag = scanFlagForPartition(partition);
        }

在构造方法中调用了scanFlagForPartition方法,代码如下:

private static int scanFlagForPartition(PackagePartitions.SystemPartition partition) {
            switch (partition.type) {
                case PackagePartitions.PARTITION_SYSTEM:
                    return 0;
                case PackagePartitions.PARTITION_VENDOR:
                    return SCAN_AS_VENDOR;
                case PackagePartitions.PARTITION_ODM:
                    return SCAN_AS_ODM;
                case PackagePartitions.PARTITION_OEM:
                    return SCAN_AS_OEM;
                case PackagePartitions.PARTITION_PRODUCT:
                    return SCAN_AS_PRODUCT;
                case PackagePartitions.PARTITION_SYSTEM_EXT:
                    return SCAN_AS_SYSTEM_EXT;
                default:
                    throw new IllegalStateException("Unable to determine scan flag for "
                            + partition.getFolder());
            }
        }

而上面的代码:

mDirsToScanAsSystem.addAll(SYSTEM_PARTITIONS);

中SYSTEM_PARTITIONS的初始化代码如下:

/**
     * The list of all system partitions that may contain packages in ascending order of
     * specificity (the more generic, the earlier in the list a partition appears).
     */
    @VisibleForTesting(visibility = Visibility.PRIVATE)
    public static final List<ScanPartition> SYSTEM_PARTITIONS = Collections.unmodifiableList(
            PackagePartitions.getOrderedPartitions(ScanPartition::new));

注释表示返回的就是系统的所有分区。接着看一下PackagePartitions类中的getOrderdPartitions方法的代码:

/**
     * Returns a list in which the elements are products of the specified function applied to the
     * list of {@link #SYSTEM_PARTITIONS} in increasing specificity order.
     */
    public static <T> ArrayList<T> getOrderedPartitions(
            @NonNull Function<SystemPartition, T> producer) {
        final ArrayList<T> out = new ArrayList<>();
        for (int i = 0, n = SYSTEM_PARTITIONS.size(); i < n; i++) {
            final T v = producer.apply(SYSTEM_PARTITIONS.get(i));
            if (v != null)  {
                out.add(v);
            }
        }
        return out;
    }

SYSTEM_PARTITIONS的初始化代码:

 /**
     * The list of all system partitions that may contain packages in ascending order of
     * specificity (the more generic, the earlier in the list a partition appears).
     */
    private static final ArrayList<SystemPartition> SYSTEM_PARTITIONS =
            new ArrayList<>(Arrays.asList(
                    new SystemPartition(Environment.getRootDirectory(), PARTITION_SYSTEM,
                            true /* containsPrivApp */, false /* containsOverlay */),
                    new SystemPartition(Environment.getVendorDirectory(), PARTITION_VENDOR,
                            true /* containsPrivApp */, true /* containsOverlay */),
                    new SystemPartition(Environment.getOdmDirectory(), PARTITION_ODM,
                            true /* containsPrivApp */, true /* containsOverlay */),
                    new SystemPartition(Environment.getOemDirectory(), PARTITION_OEM,
                            false /* containsPrivApp */, true /* containsOverlay */),
                    new SystemPartition(Environment.getProductDirectory(), PARTITION_PRODUCT,
                            true /* containsPrivApp */, true /* containsOverlay */),
                    new SystemPartition(Environment.getSystemExtDirectory(), PARTITION_SYSTEM_EXT,
                            true /* containsPrivApp */, true /* containsOverlay */)));

此处的注释又明确的指出是系统的所有分区。因此,在scanDirTracedLI方法中扫描的就是系统中所有路径的apk文件。

2. APK的扫描过程

2.1 PackageManagerService.java scanDirTracedLI()

从下面的函数可知,scanDirTracedLI的入口很简单,首先加入了一下systtrace的日志追踪,然后调用scanDirLI()进行分析

private void scanDirTracedLI(File scanDir, final int parseFlags, int scanFlags, long 
    currentTime, PackageParser2 packageParser, ExecutorService executorService) {
    Trace.traceBegin(TRACE_TAG_PACKAGE_MANAGER, "scanDir [" + scanDir.getAbsolutePath() + 
    "]");
    try {
        scanDirLI(scanDir, parseFlags, scanFlags, currentTime, packageParser, executorService);
    } finally {
        Trace.traceEnd(TRACE_TAG_PACKAGE_MANAGER);
    }
}

2.2 PackageManagerService.java scanDirLI()

scanDirLI()中使用了ParallelPackageParser的对象,ParallelPackageParser是一个队列,我们这里手机所有系统的apk,然后从这些队列里面取出apk,再调用PackageParser解析器进行解析。

private void scanDirLI(File scanDir, int parseFlags, int scanFlags, long currentTime,
            PackageParser2 packageParser, ExecutorService executorService) {
        final File[] files = scanDir.listFiles();
        if (ArrayUtils.isEmpty(files)) {
            Log.d(TAG, "No files in app dir " + scanDir);
            return;
        }

        if (DEBUG_PACKAGE_SCANNING) {
            Log.d(TAG, "Scanning app dir " + scanDir + " scanFlags=" + scanFlags
                    + " flags=0x" + Integer.toHexString(parseFlags));
        }
        // ParallelPackageParser是一个队列,收集系统 apk 文件,
        // 然后从这个队列里面一个个取出apk,调用PackageParser解析
        ParallelPackageParser parallelPackageParser =
                new ParallelPackageParser(packageParser, executorService);

        // Submit files for parsing in parallel
        int fileCount = 0;
        for (File file : files) {
            // 是 apk文件,或者是目录
            final boolean isPackage = (isApkFile(file) || file.isDirectory())
                    && !PackageInstallerService.isStageName(file.getName());
            // 过滤掉非 apk 文件,如果不是则跳过继续扫描
            if (!isPackage) {
                // Ignore entries which are not packages
                continue;
            }
            // 把 apk 信息存入ParallelPackageParser中的对象mQueue,
            // parsePackage()函数赋予给了队列中的parsedPackage成员
            parallelPackageParser.submit(file, parseFlags);
            fileCount++;
        }

        // Process results one by one
        for (; fileCount > 0; fileCount--) {
            ParallelPackageParser.ParseResult parseResult = parallelPackageParser.take();
            Throwable throwable = parseResult.throwable;
            int errorCode = PackageManager.INSTALL_SUCCEEDED;

            if (throwable == null) {
                // TODO(toddke): move lower in the scan chain
                // Static shared libraries have synthetic package names
                if (parseResult.parsedPackage.isStaticSharedLibrary()) {
                    renameStaticSharedLibraryPackage(parseResult.parsedPackage);
                }
                try {
                    
                    addForInitLI(parseResult.parsedPackage, parseFlags, scanFlags,
                            currentTime, null);
                } catch (PackageManagerException e) {
                    errorCode = e.error;
                    Slog.w(TAG, "Failed to scan " + parseResult.scanFile + ": " + e.getMessage());
                }
            } else if (throwable instanceof PackageParserException) {
                PackageParserException e = (PackageParserException)
                        throwable;
                errorCode = e.error;
                Slog.w(TAG, "Failed to parse " + parseResult.scanFile + ": " + e.getMessage());
            } else {
                throw new IllegalStateException("Unexpected exception occurred while parsing "
                        + parseResult.scanFile, throwable);
            }

            if ((scanFlags & SCAN_AS_APK_IN_APEX) != 0 && errorCode != INSTALL_SUCCEEDED) {
                mApexManager.reportErrorWithApkInApex(scanDir.getAbsolutePath());
            }

            // Delete invalid userdata apps
            // 如果是非系统 apk 并且解析失败
            if ((scanFlags & SCAN_AS_SYSTEM) == 0
                    && errorCode != PackageManager.INSTALL_SUCCEEDED) {
                logCriticalInfo(Log.WARN,
                        "Deleting invalid package at " + parseResult.scanFile);
                // 非系统 Package 扫描失败,删除文件
                removeCodePathLI(parseResult.scanFile);
            }
        }
    }

2.3 ParallelPackageParser.java submit()

把扫描路径中的APK等内容,放入队列mQueue,并把parsePackage()赋值给ParseResult,用于后面的调用

public void submit(File scanFile, int parseFlags) {
        mExecutorService.submit(() -> {
            ParseResult pr = new ParseResult();
            Trace.traceBegin(TRACE_TAG_PACKAGE_MANAGER, "parallel parsePackage [" + scanFile + "]");
            try {
                pr.scanFile = scanFile;
                pr.parsedPackage = parsePackage(scanFile, parseFlags);
            } catch (Throwable e) {
                pr.throwable = e;
            } finally {
                Trace.traceEnd(TRACE_TAG_PACKAGE_MANAGER);
            }
            try {
                mQueue.put(pr);
            } catch (InterruptedException e) {
                Thread.currentThread().interrupt();
                // Propagate result to callers of take().
                // This is helpful to prevent main thread from getting stuck waiting on
                // ParallelPackageParser to finish in case of interruption
                mInterruptedInThread = Thread.currentThread().getName();
            }
        });
    }

通过parsePackage()调用到了PackageParser2.java中的parsePackage()进行apk的解析:

public ParsedPackage parsePackage(File packageFile, int flags, boolean useCaches)
            throws PackageParserException {
        if (useCaches && mCacher != null) {
            ParsedPackage parsed = mCacher.getCachedResult(packageFile, flags);
            if (parsed != null) {
                return parsed;
            }
        }

        long parseTime = LOG_PARSE_TIMINGS ? SystemClock.uptimeMillis() : 0;
        ParseInput input = mSharedResult.get().reset();
        // 调用了ParsingPackageUtils的parsePackage方法,
        ParseResult<ParsingPackage> result = parsingUtils.parsePackage(input, packageFile, flags);
        if (result.isError()) {
            throw new PackageParserException(result.getErrorCode(), result.getErrorMessage(),
                    result.getException());
        }

        ParsedPackage parsed = (ParsedPackage) result.getResult().hideAsParsed();

        long cacheTime = LOG_PARSE_TIMINGS ? SystemClock.uptimeMillis() : 0;
        if (mCacher != null) {
            mCacher.cacheResult(packageFile, flags, parsed);
        }
        if (LOG_PARSE_TIMINGS) {
            parseTime = cacheTime - parseTime;
            cacheTime = SystemClock.uptimeMillis() - cacheTime;
            if (parseTime + cacheTime > LOG_PARSE_TIMINGS_THRESHOLD_MS) {
                Slog.i(TAG, "Parse times for '" + packageFile + "': parse=" + parseTime
                        + "ms, update_cache=" + cacheTime + " ms");
            }
        }

        return parsed;
    }

在parsePackage方法中调用到了ParsingPackageUtils.java的parsePackage方法:

public ParseResult<ParsingPackage> parsePackage(ParseInput input, File packageFile,
        int flags)
        throws PackageParserException {
    if (packageFile.isDirectory()) {
        // 如果传入的packageFile是目录,调用parseClustrPackage()解析
        return parseClusterPackage(input, packageFile, flags);
    } else {
        // 如果是APK文件,就调用parseMonolithicPackage()解析
        return parseMonolithicPackage(input, packageFile, flags);
    }
}

先来看一下对目录的解析:

private ParseResult<ParsingPackage> parseClusterPackage(ParseInput input, File packageDir,
            int flags) {
        // 获取应用目录的PackageLite对象,这个对象分开保存了目录下的核心应用和非核心应用的名称
        ParseResult<PackageParser.PackageLite> liteResult =
                ApkLiteParseUtils.parseClusterPackageLite(input, packageDir, 0);
        if (liteResult.isError()) {
            return input.error(liteResult);
        }

        final PackageParser.PackageLite lite = liteResult.getResult();
        // 如果lite中没有核心应用,退出
        if (mOnlyCoreApps && !lite.coreApp) {
            return input.error(INSTALL_PARSE_FAILED_ONLY_COREAPP_ALLOWED,
                    "Not a coreApp: " + packageDir);
        }

        // Build the split dependency tree.
        // 构建分割的依赖项树
        SparseArray<int[]> splitDependencies = null;
        final SplitAssetLoader assetLoader;
        if (lite.isolatedSplits && !ArrayUtils.isEmpty(lite.splitNames)) {
            try {
                splitDependencies = SplitAssetDependencyLoader.createDependenciesFromPackage(lite);
                assetLoader = new SplitAssetDependencyLoader(lite, splitDependencies, flags);
            } catch (SplitAssetDependencyLoader.IllegalDependencyException e) {
                return input.error(INSTALL_PARSE_FAILED_BAD_MANIFEST, e.getMessage());
            }
        } else {
            assetLoader = new DefaultSplitAssetLoader(lite, flags);
        }

        try {
            final AssetManager assets = assetLoader.getBaseAssetManager();
            final File baseApk = new File(lite.baseCodePath);
            // 对核心应用进行解析
            ParseResult<ParsingPackage> result = parseBaseApk(input, baseApk,
                    lite.codePath, assets, flags);
            if (result.isError()) {
                return input.error(result);
            }

            ParsingPackage pkg = result.getResult();
            if (!ArrayUtils.isEmpty(lite.splitNames)) {
                pkg.asSplit(
                        lite.splitNames,
                        lite.splitCodePaths,
                        lite.splitRevisionCodes,
                        splitDependencies
                );
                final int num = lite.splitNames.length;

                for (int i = 0; i < num; i++) {
                    final AssetManager splitAssets = assetLoader.getSplitAssetManager(i);
                    // 对非核心应用的处理
                    parseSplitApk(input, pkg, i, splitAssets, flags);
                }
            }

            pkg.setUse32BitAbi(lite.use32bitAbi);
            return input.success(pkg);
        } catch (PackageParserException e) {
            return input.error(INSTALL_PARSE_FAILED_UNEXPECTED_EXCEPTION,
                    "Failed to load assets: " + lite.baseCodePath, e);
        } finally {
            IoUtils.closeQuietly(assetLoader);
        }
    }

再看parseMonolithicPackage(),它的作用是解析给定的APK文件,将其作为单个单块包处理。

最终也是调用parseBaseApk()进行解析,我们接下来看下parseBaseApk()

private ParseResult<ParsingPackage> parseMonolithicPackage(ParseInput input, File apkFile,
            int flags) throws PackageParserException {
        ParseResult<PackageParser.PackageLite> liteResult =
                ApkLiteParseUtils.parseMonolithicPackageLite(input, apkFile, flags);
        if (liteResult.isError()) {
            return input.error(liteResult);
        }

        final PackageParser.PackageLite lite = liteResult.getResult();
        if (mOnlyCoreApps && !lite.coreApp) {
            return input.error(INSTALL_PARSE_FAILED_ONLY_COREAPP_ALLOWED,
                    "Not a coreApp: " + apkFile);
        }

        final SplitAssetLoader assetLoader = new DefaultSplitAssetLoader(lite, flags);
        try {
            // 对核心应用解析
            ParseResult<ParsingPackage> result = parseBaseApk(input,
                    apkFile,
                    apkFile.getCanonicalPath(),
                    assetLoader.getBaseAssetManager(), flags);
            if (result.isError()) {
                return input.error(result);
            }

            return input.success(result.getResult()
                    .setUse32BitAbi(lite.use32bitAbi));
        } catch (IOException e) {
            return input.error(INSTALL_PARSE_FAILED_UNEXPECTED_EXCEPTION,
                    "Failed to get path: " + apkFile, e);
        } finally {
            IoUtils.closeQuietly(assetLoader);
        }
    }

parseBaseApk()主要是对AndroidManifest.xml进行解析,解析所有的信息放在Package对象中。

private ParseResult<ParsingPackage> parseBaseApk(ParseInput input, File apkFile,
            String codePath, AssetManager assets, int flags) {
        final String apkPath = apkFile.getAbsolutePath();

        .......

        final int cookie = assets.findCookieForPath(apkPath);
        if (cookie == 0) {
            return input.error(INSTALL_PARSE_FAILED_BAD_MANIFEST,
                    "Failed adding asset path: " + apkPath);
        }
        // assets.openXmlResourceParser(...)。获得一个 XML 资源解析对象,
        // 其中PackageParser.ANDROID_MANIFEST_FILENAME就是指的AndroidManifest.xml文件
        try (XmlResourceParser parser = assets.openXmlResourceParser(cookie,
                PackageParser.ANDROID_MANIFEST_FILENAME)) {
            final Resources res = new Resources(assets, mDisplayMetrics, null);
            // 再调用重载函数parseBaseApk
            ParseResult<ParsingPackage> result = parseBaseApk(input, apkPath, codePath, res,
                    parser, flags);
            
            final ParsingPackage pkg = result.getResult();
            

            .......

            pkg.setVolumeUuid(volumeUuid);

            if ((flags & PackageParser.PARSE_COLLECT_CERTIFICATES) != 0) {
                pkg.setSigningDetails(getSigningDetails(pkg, false));
            } else {
                pkg.setSigningDetails(SigningDetails.UNKNOWN);
            }

            return input.success(pkg);
        } catch (Exception e) {
            return input.error(INSTALL_PARSE_FAILED_UNEXPECTED_EXCEPTION,
                    "Failed to read manifest from " + apkPath, e);
        }
    }

重载函数parseBaseApk()

private ParseResult<ParsingPackage> parseBaseApk(ParseInput input, String apkPath,
            String codePath, Resources res, XmlResourceParser parser, int flags)
            throws XmlPullParserException, IOException, PackageParserException {
        
        ......

        final TypedArray manifestArray = res.obtainAttributes(parser, R.styleable.AndroidManifest);
        try {
            final boolean isCoreApp =
                    parser.getAttributeBooleanValue(null, "coreApp", false);
            final ParsingPackage pkg = mCallback.startParsingPackage(
                    pkgName, apkPath, codePath, manifestArray, isCoreApp);
            // 调用parseBaseApkTags()
            final ParseResult<ParsingPackage> result =
                    parseBaseApkTags(input, pkg, manifestArray, res, parser, flags);
            if (result.isError()) {
                return result;
            }

            return input.success(pkg);
        } finally {
            manifestArray.recycle();
        }
    }

在重载的parseBaseApk()中调用了,parseBaseApkTags()方法

private ParseResult<ParsingPackage> parseBaseApkTags(ParseInput input, ParsingPackage pkg,
            TypedArray sa, Resources res, XmlResourceParser parser, int flags)
            throws XmlPullParserException, IOException {
       

            ......
            
            // 判断是是否是Application标签
            if (PackageParser.TAG_APPLICATION.equals(tagName)) {
                if (foundApp) {
                    if (PackageParser.RIGID_PARSER) {
                        result = input.error("<manifest> has more than one <application>");
                    } else {
                        Slog.w(TAG, "<manifest> has more than one <application>");
                        result = input.success(null);
                    }
                } else {
                    foundApp = true;
                    // 是application标签,调用parseBaseApplication方法,解析application
                    result = parseBaseApplication(input, pkg, res, parser, flags);
                }
            } else {
                // 如果不是application标签,调用parseBaseApkTag方法,解析核心应用的所有tag
                result = parseBaseApkTag(tagName, input, pkg, res, parser, flags);
            }

            
        }

        ......

        return input.success(pkg);
    }

解析application标签,进入parseBaseApplication()方法:

private ParseResult<ParsingPackage> parseBaseApplication(ParseInput input,
            ParsingPackage pkg, Resources res, XmlResourceParser parser, int flags)
            throws XmlPullParserException, IOException {

        // .......        

        while ((type = parser.next()) != XmlPullParser.END_DOCUMENT
                && (type != XmlPullParser.END_TAG
                || parser.getDepth() > depth)) {
            if (type != XmlPullParser.START_TAG) {
                continue;
            }

            final ParseResult result;
            // 获取 "application" 子标签的标签内容
            String tagName = parser.getName();
            boolean isActivity = false;
            switch (tagName) {
                // 如果标签是 "activity"
                case "activity":
                    isActivity = true;
                    // fall-through
                case "receiver":
                // 如果标签是 "receiver",获取receiver信息
                    ParseResult<ParsedActivity> activityResult =
                            ParsedActivityUtils.parseActivityOrReceiver(mSeparateProcesses, pkg,
                                    res, parser, flags, PackageParser.sUseRoundIcon, input);

                    if (activityResult.isSuccess()) {
                        ParsedActivity activity = activityResult.getResult();
                        if (isActivity) {
                            hasActivityOrder |= (activity.getOrder() != 0);
                            pkg.addActivity(activity);
                        } else {
                            hasReceiverOrder |= (activity.getOrder() != 0);
                            pkg.addReceiver(activity);
                        }
                    }

                    result = activityResult;
                    break;
                case "service":
                    // 解析 "service"
                    ParseResult<ParsedService> serviceResult =
                            ParsedServiceUtils.parseService(mSeparateProcesses, pkg, res, parser,
                                    flags, PackageParser.sUseRoundIcon, input);
                    if (serviceResult.isSuccess()) {
                        ParsedService service = serviceResult.getResult();
                        hasServiceOrder |= (service.getOrder() != 0);
                        pkg.addService(service);
                    }

                    result = serviceResult;
                    break;
                case "provider":
                    // 解析 "provider"
                    ParseResult<ParsedProvider> providerResult =
                            ParsedProviderUtils.parseProvider(mSeparateProcesses, pkg, res, parser,
                                    flags, PackageParser.sUseRoundIcon, input);
                    if (providerResult.isSuccess()) {
                        pkg.addProvider(providerResult.getResult());
                    }

                    result = providerResult;
                    break;
                case "activity-alias":
                    // 解析 "activity-alias"
                    activityResult = ParsedActivityUtils.parseActivityAlias(pkg, res,
                            parser, PackageParser.sUseRoundIcon, input);
                    if (activityResult.isSuccess()) {
                        ParsedActivity activity = activityResult.getResult();
                        hasActivityOrder |= (activity.getOrder() != 0);
                        pkg.addActivity(activity);
                    }

                    result = activityResult;
                    break;
                default:
                    result = parseBaseAppChildTag(input, tagName, pkg, res, parser, flags);
                    break;
            }

            
        }

        
        //.......
       

        return input.success(pkg);
    }

2.4 PackageManagerService.java scanDirLI()方法中,调用了addForInitLI()方法,

调用addForInitLI()在platform初始化时,把package内容加入到内部数据结构。在此方法中,进行安装包的校验、签名检查、apk更新等操作,把Package加入到系统中。

private AndroidPackage addForInitLI(ParsedPackage parsedPackage,
            @ParseFlags int parseFlags, @ScanFlags int scanFlags, long currentTime,
            @Nullable UserHandle user)
                    throws PackageManagerException {
        
        // 判断系统应用是否需要更新

        synchronized (mLock) {
           

            if (scanSystemPartition) {
                if (isSystemPkgUpdated) {
                   //......
                }
            }
        }

        if (isSystemPkgBetter) {
            // 更新安装包到 system 分区中
            synchronized (mLock) {
                // just remove the loaded entries from package lists
                mPackages.remove(pkgSetting.name);
            }

            // 创建安装参数 InstallArgs

            final InstallArgs args = createInstallArgsForExisting(
                    pkgSetting.codePathString,
                    pkgSetting.resourcePathString, getAppDexInstructionSets(
                            pkgSetting.primaryCpuAbiString, pkgSetting.secondaryCpuAbiString));
            args.cleanUpResourcesLI();
            synchronized (mLock) {
                mSettings.enableSystemPackageLPw(pkgSetting.name);
            }
        }


        // 安装包校验
        collectCertificatesLI(pkgSetting, parsedPackage, forceCollect, skipVerify);

        
                try (@SuppressWarnings("unused") PackageFreezer freezer = freezePackage(
                        parsedPackage.getPackageName(),
                        "scanPackageInternalLI")) {
                  // 如果两个apk签名不匹配,则调用 deletePackageLIF 方法清除 apk 文件及其数据
                    deletePackageLIF(parsedPackage.getPackageName(), null, true, null, 0, null,
                            false, null);
                }
                pkgSetting = null;
            } else if (newPkgVersionGreater) {
                // 更新系统 apk 程序
                InstallArgs args = createInstallArgsForExisting(
                        pkgSetting.codePathString,
                        pkgSetting.resourcePathString, getAppDexInstructionSets(
                                pkgSetting.primaryCpuAbiString, pkgSetting.secondaryCpuAbiString));
                synchronized (mInstallLock) {
                    args.cleanUpResourcesLI();
                }
            } 
        }

        // 如果新安装的系统 app 会被旧的 APP 数据覆盖,所以需要隐藏系统应用程序,并重新扫描 /data/app 目录
        if (shouldHideSystemApp) {
            synchronized (mLock) {
                mSettings.disableSystemPackageLPw(parsedPackage.getPackageName(), true);
            }
        }
        return scanResult.pkgSetting.pkg;
    }

APK扫描过程就分析完了,其实Android 10.0 和 Android 11.0的扫描过程大体是一致的,不过就是其中的一些细节还是有些从差别。在这里推荐一篇以Android 10.0为基础的分析文章,讲的不错。

https://blog.csdn.net/yiranfeng/article/details/103961304

 

谢谢大家!

小小幸运儿
关注
  • 7
    点赞
  • 11
    收藏
    觉得还不错? 一键收藏
  • 11
    评论
专栏目录
Android 11.0根据包名授予app所需的权限
安卓兼职framework和app工程师的博客
05-18 1681
11.0定制开发中第三方app第一次进入的时候 会弹出授予权限的权限框 有时候觉得挺麻烦的,所以根据客户要求 默认授予权限,这时我们就需要根据包名PackageName 来给与所需要的权限 首选来看下framework/base/services/core/java/com/android/server/pm/PackageManagerService.java PackageManagerService.java 1 管理系统的jar包和apk,负责系统权限 2 负责程序的安装,卸载,更新,解析 3 对
Android 11.0 开机启动时PMS扫描apk耗时相关功能优化
安卓兼职framework和app工程师的博客
06-20 977
android11.0的系统rom定制化开发中,在系统中开发产品时,会根据客户要求内置第三方app,这时如果内置app过多,或者安装的app过多,在系统开机的过程中 在pms扫描安装app的时候,就会比较耗时,这时候就需要优化下pms扫描安装app这块的功能代码,用多线程来实现pms扫描安装app,来加快开机时间,接下来 来实现这个功能
Android framework修改,禁止指定包名的apk安装到设备上(基于Android10.0.0-r41)
weixin_46039528的博客
05-23 546
pms就是负责apk的安装和卸载,从pms入手自定义两个接口在aidl文件中,pmList主要设置要禁止安装的包名的列表,getPackageInfoList是获取包名列表。
apkPermissionMonitor:apk权限扫描器,获取apk包中所使用到的权限
06-03
apkPermissionMonitor apk权限扫描器,获取apk包中所使用到的权限 admonitor是一个基于springside4的maven项目
APKDeepLens:一款针对Android应用程序的安全扫描工具
最新发布
FreeBuf_的博客
07-02 1134
APKDeepLens是一款针对Android应用程序的安全扫描工具,该工具基于Python开发,旨在扫描和识别Android应用程序(APK文件)中的安全漏洞。4、敏感信息提取:通过从APK文件中提取敏感信息来识别潜在的安全风险,例如不安全的身份验证/授权密钥和不安全的请求协议。5、深入分析:检测不安全的数据存储实践,包括与SD卡相关的数据,并突出显示代码中不安全请求协议的使用。8、报告生成:为每个扫描APK生成详细且易于理解的报告,为开发人员提供可操作的见解。
Android 10.0 PackageManagerService)权限扫描-[Android取经之路]
IngresGe 的专栏
01-13 9150
摘要:PackageManagerService在systemReady()后,进行了/system/etc/permissions中的各种xml进行扫描,进行相应的权限存储,供以后使用 阅读本文大约需要花费15分钟。 文章的内容主要还是从源码进行分析,虽然又臭又长,但是如果想要学习Android系统源码,这是必要走的路,没有捷径。 相对于碎片学习,我更倾向于静下心来花费1个小时认真...
android权限工具,Android权限扫描工具
weixin_39952190的博客
05-26 763
1. 背景该工具是基于Androguard开源项目修改而成的,仅仅提取了其权限检查的功能(Androguard是一款功能丰富的Apk静态分析工具)。最初是为了方便Android M版本的权限更新和升级而开发,以方便我们查找APK中存在的权限使用位置。目前,为了让大家更容易的分析Apk的权限,对原来权限工具进行如下改进:该工具成功移植到windows环境下(以前Androguard只支持linux环...
Android PackageManagerService总结(三) APK扫描流程
u012514113的专栏
03-23 1456
PackageManagerService . 扫描本地文件,主要针对apk,主要是系统应用、本地安装应用
Android PackageManagerService)下载安装详解
FeiPeng_的博客
07-23 1377
下载安装可分为两部分:拷贝应用和安装应用。拷贝过程的函数调用时序图如图2所示 下载安装frameworks层的入口函数为PackageManager.installPackage,由应用市场APP调用,然后调用PMS.installPackageAsUser,然后发送消息INIT_COPY、MCS_BOUND开始复制,调用HandlerParams.startCopy。这个方法主要分两部分,一部分是拷贝应用的执行程序,另一部分是创建应用的数据目录,拷贝部分由handleStartCopy完成。之后调用ha
Android每次开机都要扫描apk,PMS开机扫描APK多线程处理方案
weixin_31136061的博客
05-28 1150
Android开机性能的优化是每个手机项目的必须点.针对开机性能,Apk扫描安装耗时是大头,通常采用多线程方案,针对Dir或者Dir中的package进行多线程扫描.这里介绍我司项目中一种针对package进行优化扫描的方案(来源于高通)相关代码:PackageManagerServiceprivate void scanDirLI(File dir, final int parseFlags,...
Android 开机启动扫描SD卡apk流程源码分析
05-08
通过对Android开机启动时扫描SD卡上的APK流程的源码分析,我们可以了解到整个过程涉及多个核心系统服务之间的交互。MountService负责管理外部存储设备的挂载状态,并在挂载完成后通知PackageManagerService。而...
android 11.0 app应用卸载黑名单
安卓兼职framework和app工程师的博客
05-21 537
11.0 在进行定制化开发中,最近由需求要求对于安装卸载app的功能做限制,对于限制app卸载的功能也是常有的功能,就是常说的app卸载黑名单功能,而app的安装和卸载都是有pms进行管理的。
Android应用程序包扫描过程源码分析
03-04 629
Android服务之PackageManagerService启动源码分析中介绍了PackageManagerService服务的整个启动过程,启动过程相对来说较为简单,就是构造一个PackageManagerService对象,然后注册到ServiceManager进程中,只是PackageManagerService对象的构造过程比较复杂,任务比较繁重,在前面介绍PackageManager
Android6.0 PackageManagerService 安装lib
kc58236582的博客
11-28 2059
之前在PKMS预装三方应用时,放在system/third_app下面扫描出现了很多错,原因就是对安装lib和oat文件不熟悉。这篇博客就分析下这两项。 一、安装lib库 安装lib库代码,主要代码都在scanPackageDirtyLI函数中,先是调用了derivePackageAbi,这个函数中就把lib库的路径创建好了,也把lib库copy到这个目录下,然后后面会调用Instal
深度揭秘,Android应用是如何安装到手机上的
郭霖
02-07 1942
/ 今日科技快讯 /ChatGPT 的横空出世,在业界掀起了惊涛骇浪。专家表示,ChatGPT 和相关人工智能技术可能会威胁到一些工作岗位,尤其是白领工作。自去年11月发布以来,新型聊天机器人模型 ChatGPT 已经被用于各种各样的工作:撰写求职信、编写儿童读物,甚至帮助学生在论文中作弊。谷歌公司发现,从理论上来讲,如果机器人参加谷歌的面试,该公司会雇佣它成为一名入门级程序员。/ 作...
android预装应用找不到so库问题
b178903294的博客
04-04 3184
近日接到需求,产品大佬想要在平板上预装第三方应用 接到这个平平无奇的需求的时候内心毫无波动 我直接给他装到/system/app下吧,毫无难度········紧接着就开始了写Android.mk 然后编译,然后就: 连系统都起不来······· log如下: 10-17 08:52:30.107 2747 2747 V PackageManager: reconcileAppsDatafornull u0 0x3 migrateAppData=true...
PackageManagerService启动详解(八)之扫描data分区应用安装目录阶段流程分析
IT先森
03-26 7750
PKMS启动详解(八)之BOOT_PROGRESS_PMS_DATA_SCAN_START阶段流程分析 Android PackageManagerService系列博客目录: PKMS启动详解系列博客概要 PKMS启动详解(一)之整体流程分析 PKMS启动详解()之怎么通过packages.xml对已安装应用信息进行持久化管理? PKMS启动详解(三)之BOOT_PROGRESS_PMS_START流程分析 PKMS启动详解(四)之Android包信息体和包解析器(上) PKMS启动详解(五)之An
android 9 预装apk可卸载
cau_eric的专栏
01-16 4107
查到需求都是在data/app下方apk,但是o系统之后这个路径就失效了 查看源码码修改可以实现此目的。 路径frameworks\base\services\core\java\com\android\server\pm\PackageManagerService.java File privilegedVendorAppDir = new File(Environment.g...
android p data/system目录下几个重要文件的作用
wangjicong_215的博客
04-24 4376
PMS PMS 就是PackageManagerService,主要是负责应用的安装卸载更新等工作。 scanDirTracedLI(new File(VENDOR_OVERLAY_DIR), mDefParseFlags//0 wjc | PackageParser.PARSE_IS_SYST...
评论 11
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包
实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值