公司在开发android O版本，分配了一个应用锁功能给我，现在在这里跟大家一起分享

需求：应用锁功能（主要功能是在打开某个app的锁的时候，弹出密码锁）

心路历程：看到这个功能*时间想的是在哪个位置拦截可以挡住所有的app，左思右想决定在Activity.java里面来写，因为所有的Activity肯定会继承这个类。想通了这一点其他的也就一步步迎刃而解。

主要逻辑：Activity onResume 的时候去get当前的包名，然后跟存在数据库里面加锁的包名遍历对比，如果有包含在数据库里，即弹出密码界面，如果没有，正常打开Activity。

主要代码：frameworks\base\core\java\android\app\Activity.java

//add by illa for applock
KeyguardManager mKeyguardManager = (KeyguardManager) getSystemService(Context.KEYGUARD_SERVICE);
Intent intentKeyguard = mKeyguardManager.createConfirmDeviceCredentialIntent(null, null);

String lastPackageName = Settings.System.getString(getContentResolver(), “lastName”);
android.util.Log.d(“illa”,”onResume!”+”\ngetPackageName() = “+getPackageName()+”\tlastPackageName = “+lastPackageName);
android.util.Log.d(“illa”,”onResume!”+”\ngetClassName = “+getComponentName().getClassName());

List<String> lockPackageName = new ArrayList<String>();
lockPackageName = getLockedPkgs();

/*android.util.Log.d(“illa”,”List<String> size = “+lockPackageName.size());
android.util.Log.i(“illa”, “lockPackageName.size() > 0 = ” + (lockPackageName.size() > 0));
android.util.Log.i(“illa”, “getComponentName().getClassName() = ” + (getComponentName().getClassName().equals(“com.android.settings.applock.SetLockApp”)));
android.util.Log.i(“illa”, “(intentKeyguard != null) = ” + (intentKeyguard != null));
android.util.Log.i(“illa”, “(lastPackageName == null) = ” + (lastPackageName == null));
android.util.Log.i(“illa”, “mKeyguardManager.inKeyguardRestrictedInputMode = ” + !mKeyguardManager.inKeyguardRestrictedInputMode());*/
if((lockPackageName.size() > 0) && (getComponentName().getClassName().equals(“com.android.settings.applock.SetLockApp”))
&& (intentKeyguard != null) &&(lastPackageName == null)&& !mKeyguardManager.inKeyguardRestrictedInputMode()){ //

intentKeyguard.putExtra(“packagename”, getPackageName());
intentKeyguard.addFlags(Intent.FLAG_ACTIVITY_NEW_TASK);
intentKeyguard.addFlags(Intent.FLAG_ACTIVITY_NO_ANIMATION);
startActivityForResult(intentKeyguard, 11111);

android.util.Log.i(“illa”, “sendBroadcast(intent)”);
}
/*android.util.Log.i(“illa”, “lockPackageName.contains(getPackageName()) = ” + lockPackageName.contains(getPackageName()));
android.util.Log.i(“illa”, “intentKeyguard != null = ” + (intentKeyguard != null));
android.util.Log.i(“illa”, “lastPackageName == null = ” + (lastPackageName == null));
android.util.Log.i(“illa”, “equals InCallActivity = ” + !getComponentName().getClassName().equals(“com.android.incallui.InCallActivity”));
android.util.Log.i(“illa”, “!mKeyguardManager.inKeyguardRestrictedInputMode()) = ” + !mKeyguardManager.inKeyguardRestrictedInputMode());*/
if (lockPackageName.contains(getPackageName()) && intentKeyguard != null &&
lastPackageName == null && !getComponentName().getClassName().equals(“com.android.incallui.InCallActivity”)
&& !mKeyguardManager.inKeyguardRestrictedInputMode()) {

intentKeyguard.putExtra(“packagename”, getPackageName());
intentKeyguard.addFlags(Intent.FLAG_ACTIVITY_NEW_TASK);
intentKeyguard.addFlags(Intent.FLAG_ACTIVITY_NO_ANIMATION);
startActivityForResult(intentKeyguard, 11111);

android.util.Log.i(“illa”, “sendBroadcast(intent)”);
}

String launcherPackagename = getLauncherPackageName(this);
if(launcherPackagename != null) {
if(getPackageName().equals(launcherPackagename)) {
//Settings.System.putString(getContentResolver(), “lastName”, null);
Intent intent = new Intent(“fprint.receiver.update.last_package_name”);
intent.addFlags(Intent.FLAG_RECEIVER_INCLUDE_BACKGROUND);
intent.setPackage(“com.android.settings”);
sendBroadcastAsUser(intent, UserHandle.SYSTEM);
android.util.Log.i(“illa”, “last name = null”);
}

数据库那块的代码 就不贴了， 后续补充如何写数据库，

这里用到了一个内容提供者读取数据库代码如下

private Uri uri = Uri.parse(“content://com.android.settings.lockapp_provider/lockapp”);
private String COLUMN_PKGNAME = “pkgname”;
private String COLUMN_ISLOCKED = “islocked”;

private ArrayList<String> getLockedPkgs(){
ContentResolver resolver = getContentResolver();
Cursor cursor = resolver.query(uri, null, null, null, null);
ArrayList<String>lockPkgs = new ArrayList<String>();

if(cursor != null){
// cursor.moveToFirst();
int pkg_index = cursor.getColumnIndex(COLUMN_PKGNAME);
int lock_index = cursor.getColumnIndex(COLUMN_ISLOCKED);
while (cursor.moveToNext()) {
String pkgName = cursor.getString(pkg_index);
String isLocked = cursor.getString(lock_index);
Log.e(“illa”, “pkgName->”+pkgName + ” || isLocked:” + isLocked);
if(“1”.equals(isLocked)){
lockPkgs.add(pkgName);
}
}
cursor.close();
}
return lockPkgs;
}

今天就到这里，希望以上代码可以对阅读者有所启发。我们来日方长！

先上效果图：
主要实现的是通过自定义密码或者指纹，给应用锁进行解锁，然后进入APP。

主要代码：LoginActivity.java
package com.fyang21117.rdiot1.second;

import android.content.Intent;
import android.os.Handler;
import android.os.Looper;
import android.support.v7.app.AppCompatActivity;
import android.os.Bundle;
import android.view.View;
import android.widget.Button;
import android.widget.EditText;
import android.widget.Toast;
import com.fyang21117.rdiot1.FingerprintUtil;
import com.fyang21117.rdiot1.KeyguardLockScreenManager;
import com.fyang21117.rdiot1.MainActivity;
import com.fyang21117.rdiot1.R;
import com.fyang21117.rdiot1.core.FingerprintCore;

public class LoginActivity extends AppCompatActivity implements View.OnClickListener {

private FingerprintCore mFingerprintCore;
private KeyguardLockScreenManager mKeyguardLockScreenManager;//指纹管理
private Toast mToast;
private Handler mHandler = new Handler(Looper.getMainLooper());//主线程
private EditText editText;
private String string;

@Override
protected void onCreate(Bundle savedInstanceState) {
super.onCreate(savedInstanceState);
setContentView(R.layout.activity_login);
setTitle(“应用锁”);

initFingerprintCore();

Button psw_login = findViewById(R.id.psw_login);
Button use_fingerprint = findViewById(R.id.use_fingerprint);
editText = findViewById(R.id.unlock_num);
psw_login.setOnClickListener(this);
use_fingerprint.setOnClickListener(this);
}

@Override
public void onClick(View v) {
final int viewId = v.getId();
switch (viewId) {
case R.id.use_fingerprint:
//调用非活动布局的控件
View view= getLayoutInflater().inflate(R.layout.fingerprint_dialog, null);
final MyDialog mMyDialog= new MyDialog(this, 0, 0, view, R.style.DialogTheme);
Button cancel_fingerprint = view.findViewById(R.id.cancel_unlock);
mMyDialog.setCancelable(true);
mMyDialog.show();
startFingerprintRecognition();
cancel_fingerprint.setOnClickListener(new View.OnClickListener() {
@Override
public void onClick(View v) {
mMyDialog.dismiss();
}
});
break;
case R.id.psw_login:
string =editText.getText().toString();
if(string.equals(“1028″))
MainActivity.actionStart(this);
else
Toast.makeText(this,”Unlocking failed!Please input again!”,Toast.LENGTH_SHORT).show();
break;
}
}
/*** 指纹识别初始化*/
private void initFingerprintCore() {
mFingerprintCore = new FingerprintCore(this);
mFingerprintCore.setFingerprintManager(mResultListener);
mKeyguardLockScreenManager = new KeyguardLockScreenManager(this);
}

/*** 进入系统设置指纹界面*/
private void enterSysFingerprintSettingPage() {
FingerprintUtil.openFingerPrintSettingPage(this);
}
private void startFingerprintRecognitionUnlockScreen() {
if (mKeyguardLockScreenManager == null) {
return;
}
if (!mKeyguardLockScreenManager.isOpenLockScreenPwd()) {
FingerprintUtil.openFingerPrintSettingPage(this);
return;
}
mKeyguardLockScreenManager.showAuthenticationScreen(this);
}

/*** 开始指纹识别*/
private void startFingerprintRecognition() {
if (mFingerprintCore.isSupport()) {
if (!mFingerprintCore.isHasEnrolledFingerprints()) {
toastTipMsg(R.string.fingerprint_recognition_not_enrolled);
FingerprintUtil.openFingerPrintSettingPage(this);
return;
}

toastTipMsg(R.string.fingerprint_recognition_tip);
if (mFingerprintCore.isAuthenticating()) {
toastTipMsg(R.string.fingerprint_recognition_authenticating);
} else {
mFingerprintCore.startAuthenticate();
}
} else {
toastTipMsg(R.string.fingerprint_recognition_not_support);
}
}

private void IntoActivity() {
MainActivity.actionStart(this);//识别成功
}

private FingerprintCore.IFingerprintResultListener mResultListener
= new FingerprintCore.IFingerprintResultListener() {
@Override
public void onAuthenticateSuccess() {
toastTipMsg(R.string.fingerprint_recognition_success);
IntoActivity();
}
@Override
public void onAuthenticateFailed(int helpId) {
toastTipMsg(R.string.fingerprint_recognition_failed);
}
@Override
public void onAuthenticateError(int errMsgId) {
toastTipMsg(R.string.fingerprint_recognition_error);
}
@Override
public void onStartAuthenticateResult(boolean isSuccess) {
}
};

@Override
protected void onActivityResult(int requestCode, int resultCode, Intent data) {
if (requestCode == KeyguardLockScreenManager.REQUEST_CODE_CONFIRM_DEVICE_CREDENTIALS) {
// Challenge completed, proceed with using cipher
if (resultCode == RESULT_OK) {
toastTipMsg(R.string.sys_pwd_recognition_success);
} else {
toastTipMsg(R.string.sys_pwd_recognition_failed);
}
}
}

private void toastTipMsg(int messageId) {
if (mToast == null) {
mToast = Toast.makeText(this, messageId, Toast.LENGTH_SHORT);
}
mToast.setText(messageId);
mToast.cancel();
mHandler.removeCallbacks(mShowToastRunnable);
mHandler.postDelayed(mShowToastRunnable, 0);
}

private void toastTipMsg(String message) {
if (mToast == null) {
mToast = Toast.makeText(this, message, Toast.LENGTH_LONG);
}
mToast.setText(message);
mToast.cancel();
mHandler.removeCallbacks(mShowToastRunnable);
mHandler.postDelayed(mShowToastRunnable, 200);
}

private Runnable mShowToastRunnable = new Runnable() {
@Override
public void run() {
mToast.show();
}
};

@Override
protected void onDestroy() {
if (mFingerprintCore != null) {
mFingerprintCore.onDestroy();
mFingerprintCore = null;
}
if (mKeyguardLockScreenManager != null) {
mKeyguardLockScreenManager.onDestroy();
mKeyguardLockScreenManager = null;
}
mResultListener = null;
mShowToastRunnable = null;
mToast = null;
super.onDestroy();
}
}
activity_login.xml
<?xml version=”1.0″ encoding=”utf-8″?>
<LinearLayout
xmlns:android=”http://schemas.android.com/apk/res/android”
android:layout_width=”match_parent”
android:layout_height=”match_parent”
android:orientation=”vertical”>

<LinearLayout
android:id=”@+id/digital_layout”
android:layout_width=”match_parent”
android:layout_height=”match_parent”
android:orientation=”vertical”
android:layout_gravity=”center_vertical”
android:gravity=”center_vertical”>

<EditText
android:id=”@+id/unlock_num”
android:layout_width=”270dp”
android:layout_height=”wrap_content”
android:layout_gravity=”center_horizontal”
android:gravity=”center_horizontal”
android:inputType=”number”
android:hint=”input your unlocking nums:”
android:textAllCaps=”false”/>
<Button
android:id=”@+id/psw_login”
android:layout_width=”270dp”
android:layout_height=”wrap_content”
android:layout_gravity=”center_horizontal”
android:gravity=”center_horizontal”
android:text=”@string/login2″
android:textAllCaps=”false”
android:textSize=”20sp”/>
<Button
android:id=”@+id/use_fingerprint”
android:layout_width=”270dp”
android:layout_height=”wrap_content”
android:layout_gravity=”center_horizontal”
android:gravity=”center_horizontal”
android:text=”@string/use_fingerprint”
android:textAllCaps=”false”
android:textSize=”20sp”/>
</LinearLayout>

</LinearLayout>
解锁只是 个人工程的一部分，具体可参考下面链接：
完整代码见：https://github.com/fyang21117/RDIOT1

为了不让别人查看隐私，我们经常会对各种应用进行加锁。目前应用市场上应用锁有很多，各种安全类软件都有这个功能。

对于第三方软件，其实现应用锁的基本原理就是不断的轮询栈顶的应用包名，如果是在加锁名单里的应用，则会弹出解锁界面。这种方式的缺点比较明显，应用实际上已经启动起来了，只是强行在上面又盖了一层界面，同时也避免不了会先看到应用的界面然后才弹出解锁界面的问题。具体实现可查看http://blog.csdn.net/turkeycock/article/details/50521103

如果有root权限，就可以避免该这些问题。下面看下具有系统权限的app的应用锁实现方案。

应用锁从用户的角度看是对应用进行加锁，但是从系统的角度看，其实是对activity的拦截。

其实现原理比较简单，在startActivity的过程中，我们注意到

frameworks/base/services/core/java/com/android/server/am/ActivityStarter.java
final int startActivityLocked(IApplicationThread caller, Intent intent, Intent ephemeralIntent,
String resolvedType, ActivityInfo aInfo, ResolveInfo rInfo,
IVoiceInteractionSession voiceSession, IVoiceInteractor voiceInteractor,
IBinder resultTo, String resultWho, int requestCode, int callingPid, int callingUid,
String callingPackage, int realCallingPid, int realCallingUid, int startFlags,
ActivityOptions options, boolean ignoreTargetSecurity, boolean componentSpecified,
ActivityRecord[] outActivity, ActivityStackSupervisor.ActivityContainer container,
TaskRecord inTask) {
…
boolean abort = !mSupervisor.checkStartAnyActivityPermission(intent, aInfo, resultWho,
requestCode, callingPid, callingUid, callingPackage, ignoreTargetSecurity, callerApp,
resultRecord, resultStack, options);
abort |= !mService.mIntentFirewall.checkStartActivity(intent, callingUid,
callingPid, resolvedType, aInfo.applicationInfo);

if (mService.mController != null) {
try {
// The Intent we give to the watcher has the extra data
// stripped off, since it can contain private information.
Intent watchIntent = intent.cloneFilter();
abort |= !mService.mController.activityStarting(watchIntent,
aInfo.applicationInfo.packageName);
} catch (RemoteException e) {
mService.mController = null;
}
}

…
if (abort) {
if (resultRecord != null) {
resultStack.sendActivityResultLocked(-1, resultRecord, resultWho, requestCode,
RESULT_CANCELED, null);
}
// We pretend to the caller that it was really started, but
// they will just get a cancel result.
ActivityOptions.abort(options);
return START_SUCCESS;
}
…
}
这里有个abort变量，如果其为true，那么就直接返回了，不会再去继续startActivity的流程。
看下赋值的地方

abort |= !mService.mController.activityStarting(watchIntent,
aInfo.applicationInfo.packageName);

调用了ams的mController的activityStarting方法，该方法返回是否拦截activity的启动。
mController是IActivityController类型的对象，通过IActivityController实现对activity的拦截。
因此只要mController的activityStarting返回false，abor就会t设置为true，activity将不会启动，这时我们可以启动加锁页面，如果用户输入了正确的密码，再去把要启动的activity启动起来，达到应用锁的目的。

IActivityController.aidl
就是通过这个aidl文件来实现系统层的应用锁功能，看下该文件的具体内容
frameworks/base/core/java/android/app/IActivityController.java
/**
* Testing interface to monitor what is happening in the activity manager
* while tests are running.  Not for normal application development.
* {@hide}
*/
interface IActivityController
{
/**
* The system is trying to start an activity.  Return true to allow
* it to be started as normal, or false to cancel/reject this activity.
*/
boolean activityStarting(in Intent intent, String pkg);

/**
* The system is trying to return to an activity.  Return true to allow
* it to be resumed as normal, or false to cancel/reject this activity.
*/
boolean activityResuming(String pkg);

/**
* An application process has crashed (in Java).  Return true for the
* normal error recovery (app crash dialog) to occur, false to kill
* it immediately.
*/
boolean appCrashed(String processName, int pid,
String shortMsg, String longMsg,
long timeMillis, String stackTrace);

/**
* Early call as soon as an ANR is detected.
*/
int appEarlyNotResponding(String processName, int pid, String annotation);

/**
* An application process is not responding.  Return 0 to show the “app
* not responding” dialog, 1 to continue waiting, or -1 to kill it
* immediately.
*/
int appNotResponding(String processName, int pid, String processStats);

/**
* The system process watchdog has detected that the system seems to be
* hung.  Return 1 to continue waiting, or -1 to let it continue with its
* normal kill.
*/
int systemNotResponding(String msg);
}

这里提供了一系列的方法去监听应用状态，包括activity的启动，resume，无响应等。该文件时hide的，不对第三方应用开放。应用锁主要关注
boolean activityStarting(in Intent intent, String pkg);
pkg是要启动的activity的包名，在这个方法里我们可以去判断这个pkg是否需要加锁，如果需要则返回false拦截该activity的启动，如果不需要加锁则返回true继续startActivity的过程。

ams中也提供了设置该监听器的方法

frameworks/base/services/core/java/com/android/server/am/ActivityManagerService.java
public void setActivityController(IActivityController controller, boolean imAMonkey) {
enforceCallingPermission(android.Manifest.permission.SET_ACTIVITY_WATCHER,
“setActivityController()”);
synchronized (this) {
mController = controller;
mControllerIsAMonkey = imAMonkey;
Watchdog.getInstance().setActivityController(controller);
}
}
通过IActivityController可以实现真正的应用锁。