risunCode
diff --git a/‎.kiro/specs/simplify-over-engineering/design.md‎
Lines changed: 272 additions & 0 deletions b/‎.kiro/specs/simplify-over-engineering/design.md‎
Lines changed: 272 additions & 0 deletions
diff --git a/‎.kiro/specs/simplify-over-engineering/requirements.md‎
Lines changed: 73 additions & 0 deletions b/‎.kiro/specs/simplify-over-engineering/requirements.md‎
Lines changed: 73 additions & 0 deletions
@@ -0,0 +1,272 @@
+# Design Document
+
+## Overview
+
+Refactoring akan menghapus layer abstraksi yang tidak perlu sambil mempertahankan fungsionalitas dan keamanan. Pendekatan utama adalah konsolidasi validasi ke satu layer, simplifikasi Shizuku service dengan mengandalkan built-in security, dan menghapus fitur yang tidak terpakai.
+
+## Architecture Changes
+
+### Before
+```
+ShellManager → ShellCommandPolicy (validation)
+            → ShellService → ShellCommandPolicy (validation again)
+            → SafetyValidator (package + injection check)
+
+ShellService: Session management (UUID, ConcurrentHashMap, TTL)
+            : Manual thread management (AtomicReference, thread spawning)
+
+AppManager → SafetyValidator (package validation)
+          → ActionHistoryStore (with rollback metadata)
+```
+
+### After
+```
+ShellManager → CommandValidator (single validation layer)
+            → ShellService (simple UID check only)
+
+ShellService: Direct UID validation via Shizuku
+            : Simple ProcessBuilder.exec()
+
+AppManager → SafetyValidator (package safety only)
+          → ActionHistoryStore (simple logging)
+```
+
+## Components and Interfaces
+
+### 1. ShellService Simplification
+
+**Remove:**
+- `openSession()` / `closeSession()` methods
+- Session token parameter from `exec()` and `execReturnCode()`
+- ConcurrentHashMap, UUID, TTL cleanup logic
+- Manual thread spawning for stdout/stderr
+- AtomicReference wrappers
+- Complex stream truncation logic
+
+**Keep:**
+- Direct UID validation via `Binder.getCallingUid()`
+- Timeout handling (15s)
+- Error handling
+
+**New AIDL Interface:**
+```java
+interface IShellService {
+    String exec(String command);
+    int execReturnCode(String command);
+}
+```
+
+**Simplified Execution:**
+```kotlin
+private fun executeCommand(command: String): String {
+    val process = ProcessBuilder("sh", "-c", command)
+        .redirectErrorStream(true)
+        .start()
+
+    val completed = process.waitFor(15, TimeUnit.SECONDS)
+    if (!completed) {
+        process.destroyForcibly()
+        throw TimeoutException("Command timeout")
+    }
+
+    val output = process.inputStream.bufferedReader().readText()
+    if (process.exitValue() != 0) {
+        throw Exception(output.ifEmpty { "Exit code: ${process.exitValue()}" })
+    }
+    return output.trim()
+}
+```
+
+### 2. Command Validation Consolidation
+
+**Create New:** `CommandValidator` in `core/` package
+
+**Responsibilities:**
+- Validate command syntax (forbidden chars, length, shell patterns)
+- Validate command whitelist (pm, am, appops, cmd, dumpsys)
+- Single source of truth for command validation
+
+**Remove:**
+- `ShellCommandPolicy` class entirely
+- Command validation from `ShellService`
+- Injection detection from `SafetyValidator`
+
+**Integration Point:**
+- Called only in `ShellManager.execute()` before sending to service
+
+### 3. SafetyValidator Simplification
+
+**Keep Only:**
+- Package name format validation
+- Safety level determination (CRITICAL, FORCE_STOP_ONLY, WARNING, SAFE)
+- Allowed actions per safety level
+
+**Remove:**
+- Injection character detection (handled by CommandValidator)
+- Excessive hardcoded package lists
+
+**Reduced Critical Packages (25 items):**
+```kotlin
+private val CRITICAL_PACKAGES = setOf(
+    // Self
+    "com.appcontrolx",
+
+    // Core Android
+    "android",
+    "com.android.systemui",
+    "com.android.settings",
+    "com.android.phone",
+    "com.android.shell",
+    "com.android.bluetooth",
+    "com.android.wifi",
+    "com.android.networkstack",
+    "com.android.permissioncontroller",
+    "com.android.packageinstaller",
+    "com.android.webview",
+
+    // Google Core
+    "com.google.android.gms",
+    "com.google.android.gsf",
+    "com.android.vending",
+
+    // Vendor Launchers (critical only)
+    "com.android.launcher3",
+    "com.miui.home",
+    "com.sec.android.app.launcher",
+    "com.oppo.launcher",
+    "com.huawei.android.launcher",
+
+    // Root/Shizuku
+    "com.topjohnwu.magisk",
+    "rikka.shizuku",
+    "moe.shizuku.privileged.api",
+    "me.weishu.kernelsu"
+)
+```
+
+**Force-Stop Only (5 items):**
+```kotlin
+private val FORCE_STOP_ONLY_PACKAGES = setOf(
+    "com.miui.powerkeeper",
+    "com.samsung.android.lool",
+    "com.coloros.safecenter",
+    "com.huawei.systemmanager",
+    "com.google.android.apps.adm"
+)
+```
+
+### 4. ShellManager Updates
+
+**Changes:**
+- Remove session token management
+- Add CommandValidator call before execution
+- Simplify Shizuku service binding (no session open/close)
+- Update `executeViaShizuku()` to call new AIDL interface
+
+**Flow:**
+```kotlin
+suspend fun execute(command: String): Result<String> {
+    // Single validation point
+    CommandValidator.validate(command).getOrElse {
+        return Result.failure(it)
+    }
+
+    when (currentMode) {
+        ExecutionMode.ROOT -> executeViaRoot(command)
+        ExecutionMode.SHIZUKU -> executeViaShizuku(command)
+        ExecutionMode.NONE -> Result.failure(...)
+    }
+}
+
+private fun executeViaShizuku(command: String): Result<String> {
+    val service = getShizukuService() ?: return Result.failure(...)
+    return try {
+        val output = service.exec(command) // No token needed
+        Result.success(output)
+    } catch (e: Exception) {
+        Result.failure(e)
+    }
+}
+```
+
+### 5. ActionHistory Simplification
+
+**Remove from ActionHistoryItem:**
+- `canRollback: Boolean` field
+
+**Remove from AppManager:**
+- `isRollbackSupported()` method
+- Rollback logic in `executeAction()`
+
+**Simplified History Storage:**
+```kotlin
+actionHistoryStore.addAction(
+    ActionHistoryItem(
+        packageName = packageName,
+        appName = resolveAppName(packageName),
+        action = action,
+        timestamp = System.currentTimeMillis()
+    )
+)
+```
+
+## Data Models
+
+### Modified Models
+
+**ActionHistoryItem:**
+```kotlin
+@Serializable
+data class ActionHistoryItem(
+    val packageName: String,
+    val appName: String,
+    val action: AppAction,
+    val timestamp: Long
+)
+```
+
+**IShellService.aidl:**
+```java
+interface IShellService {
+    String exec(String command);
+    int execReturnCode(String command);
+}
+```
+
+## Error Handling
+
+**Maintained:**
+- Timeout handling (15s for commands)
+- Exit code validation
+- Exception propagation
+- Security exceptions for unauthorized operations
+
+**Simplified:**
+- No session expiry errors
+- No token mismatch errors
+- Direct error messages from command execution
+
+## Testing Strategy
+
+**Validation:**
+- Build project without errors
+- Verify lint passes
+- Test all app actions (freeze, unfreeze, force-stop, etc.)
+- Verify security validation still blocks dangerous operations
+
+**Manual Testing:**
+- Test with ROOT mode
+- Test with SHIZUKU mode
+- Verify action history still logs correctly
+- Confirm UI remains unchanged
+
+## Migration Notes
+
+**Breaking Changes:**
+- AIDL interface changed (Shizuku service needs rebuild)
+- ActionHistoryItem serialization format changed (old history incompatible)
+
+**Non-Breaking:**
+- All app functionality remains identical
+- UI unchanged
+- User experience unchanged
@@ -0,0 +1,73 @@
+# Requirements Document
+
+## Introduction
+
+AppControlX memiliki beberapa layer yang over-engineered yang menambah kompleksitas tanpa memberikan value signifikan. Refactoring ini bertujuan untuk menyederhanakan codebase dengan menghapus abstraksi berlebihan, menggabungkan validasi ganda, dan menghilangkan fitur yang tidak terpakai, sambil tetap mempertahankan fungsionalitas inti dan keamanan aplikasi.
+
+## Requirements
+
+### Requirement 1: Simplify Shizuku Session Management
+
+**User Story:** As a developer, I want to remove the complex session token system in ShellService, so that the code is simpler and easier to maintain while still secure.
+
+#### Acceptance Criteria
+
+1. WHEN ShellService receives a command request THEN it SHALL validate caller UID directly without session tokens
+2. WHEN a command is executed via Shizuku THEN it SHALL rely on Shizuku's built-in security instead of custom session management
+3. WHEN ShellService is refactored THEN it SHALL remove ConcurrentHashMap, UUID tokens, and TTL cleanup logic
+4. WHEN the simplified service is used THEN it SHALL maintain the same security guarantees as before
+
+### Requirement 2: Merge Duplicate Command Validation
+
+**User Story:** As a developer, I want to consolidate command validation into a single layer, so that there's no redundant validation logic across multiple classes.
+
+#### Acceptance Criteria
+
+1. WHEN a shell command is prepared for execution THEN it SHALL be validated only once
+2. WHEN validation logic is consolidated THEN it SHALL be placed in ShellManager as the single source of truth
+3. WHEN ShellCommandPolicy is removed THEN its validation rules SHALL be integrated into the remaining validator
+4. WHEN SafetyValidator is simplified THEN it SHALL focus only on package-level safety checks, not command syntax
+
+### Requirement 3: Simplify ShellService Stream Handling
+
+**User Story:** As a developer, I want to remove manual thread management for process streams, so that the code is more maintainable and less error-prone.
+
+#### Acceptance Criteria
+
+1. WHEN ShellService executes a command THEN it SHALL use simple ProcessBuilder.exec() without manual thread spawning
+2. WHEN process output is read THEN it SHALL use standard InputStream reading without AtomicReference wrappers
+3. WHEN output truncation is needed THEN it SHALL use simple string length checks instead of complex stream limiting
+4. WHEN the simplified execution completes THEN it SHALL maintain the same timeout and error handling behavior
+
+### Requirement 4: Reduce SafetyValidator Hardcoded Lists
+
+**User Story:** As a developer, I want to minimize the hardcoded package lists in SafetyValidator, so that the code is more maintainable and focused on truly critical packages.
+
+#### Acceptance Criteria
+
+1. WHEN SafetyValidator is refactored THEN it SHALL keep only 20-30 truly critical system packages
+2. WHEN a package is in the critical list THEN it SHALL be essential for system stability (SystemUI, Settings, Phone, Bluetooth, etc.)
+3. WHEN vendor-specific packages are evaluated THEN only the most critical ones SHALL be retained
+4. WHEN injection detection is reviewed THEN redundant checks already covered by command validation SHALL be removed
+
+### Requirement 5: Remove Unused Rollback Feature
+
+**User Story:** As a developer, I want to remove the rollback feature from ActionHistoryStore, so that the codebase doesn't carry unused complexity.
+
+#### Acceptance Criteria
+
+1. WHEN ActionHistoryItem is simplified THEN it SHALL remove the `canRollback` field
+2. WHEN action history is stored THEN it SHALL only log the action without rollback metadata
+3. WHEN AppManager executes actions THEN it SHALL not check or set rollback support
+4. WHEN the refactoring is complete THEN action history SHALL still be viewable but without rollback UI/logic
+
+### Requirement 6: Maintain Existing Functionality
+
+**User Story:** As a user, I want the app to work exactly the same after refactoring, so that I don't experience any regressions or breaking changes.
+
+#### Acceptance Criteria
+
+1. WHEN the refactoring is complete THEN all app actions (freeze, unfreeze, force-stop, etc.) SHALL work identically
+2. WHEN commands are executed THEN security validation SHALL still prevent dangerous operations
+3. WHEN the app is built THEN it SHALL compile without errors and pass existing lint checks
+4. WHEN the app runs THEN UI and navigation SHALL remain unchanged