blob: 5e804bcca108da99098789970943f9f04ba728c5 [file] [log] [blame]
Doug Zongker76adfc52014-01-13 10:04:25 -08001/*
2 * Copyright (C) 2014 The Android Open Source Project
3 *
4 * Licensed under the Apache License, Version 2.0 (the "License");
5 * you may not use this file except in compliance with the License.
6 * You may obtain a copy of the License at
7 *
8 * http://www.apache.org/licenses/LICENSE-2.0
9 *
10 * Unless required by applicable law or agreed to in writing, software
11 * distributed under the License is distributed on an "AS IS" BASIS,
12 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13 * See the License for the specific language governing permissions and
14 * limitations under the License.
15 */
16
17// This program takes a file on an ext4 filesystem and produces a list
18// of the blocks that file occupies, which enables the file contents
19// to be read directly from the block device without mounting the
20// filesystem.
21//
22// If the filesystem is using an encrypted block device, it will also
23// read the file and rewrite it to the same blocks of the underlying
24// (unencrypted) block device, so the file contents can be read
25// without the need for the decryption key.
26//
27// The output of this program is a "block map" which looks like this:
28//
29// /dev/block/platform/msm_sdcc.1/by-name/userdata # block device
30// 49652 4096 # file size in bytes, block size
31// 3 # count of block ranges
32// 1000 1008 # block range 0
33// 2100 2102 # ... block range 1
34// 30 33 # ... block range 2
35//
36// Each block range represents a half-open interval; the line "30 33"
37// reprents the blocks [30, 31, 32].
38//
39// Recovery can take this block map file and retrieve the underlying
40// file data to use as an update package.
41
Tao Bao3a2bb592016-02-25 12:38:53 -080042/**
43 * In addition to the uncrypt work, uncrypt also takes care of setting and
44 * clearing the bootloader control block (BCB) at /misc partition.
45 *
46 * uncrypt is triggered as init services on demand. It uses socket to
47 * communicate with its caller (i.e. system_server). The socket is managed by
48 * init (i.e. created prior to the service starts, and destroyed when uncrypt
49 * exits).
50 *
51 * Below is the uncrypt protocol.
52 *
53 * a. caller b. init c. uncrypt
54 * --------------- ------------ --------------
55 * a1. ctl.start:
56 * setup-bcb /
57 * clear-bcb /
58 * uncrypt
59 *
60 * b2. create socket at
61 * /dev/socket/uncrypt
62 *
63 * c3. listen and accept
64 *
65 * a4. send a 4-byte int
66 * (message length)
67 * c5. receive message length
68 * a6. send message
69 * c7. receive message
70 * c8. <do the work; may send
71 * the progress>
72 * a9. <may handle progress>
73 * c10. <upon finishing>
74 * send "100" or "-1"
75 *
76 * a11. receive status code
77 * a12. send a 4-byte int to
78 * ack the receive of the
79 * final status code
80 * c13. receive and exit
81 *
82 * b14. destroy the socket
83 *
84 * Note that a12 and c13 are necessary to ensure a11 happens before the socket
85 * gets destroyed in b14.
86 */
87
88#include <arpa/inet.h>
Elliott Hughesd4d4c242014-12-29 12:46:43 -080089#include <errno.h>
Tao Bao75238632015-05-27 14:46:17 -070090#include <fcntl.h>
Tao Baob8df5fb2015-12-08 22:47:25 -080091#include <inttypes.h>
Yabin Cui25dd0382016-02-01 11:40:37 -080092#include <libgen.h>
Tao Bao75238632015-05-27 14:46:17 -070093#include <linux/fs.h>
94#include <stdarg.h>
Doug Zongker76adfc52014-01-13 10:04:25 -080095#include <stdio.h>
96#include <stdlib.h>
Elliott Hughescd3c55a2015-01-29 20:50:08 -080097#include <string.h>
Doug Zongker76adfc52014-01-13 10:04:25 -080098#include <sys/mman.h>
Tao Bao3a2bb592016-02-25 12:38:53 -080099#include <sys/socket.h>
Tao Bao383b00d2015-05-21 16:44:44 -0700100#include <sys/stat.h>
101#include <sys/types.h>
Tao Bao75238632015-05-27 14:46:17 -0700102#include <unistd.h>
Doug Zongker76adfc52014-01-13 10:04:25 -0800103
Yabin Cui25dd0382016-02-01 11:40:37 -0800104#include <algorithm>
Tao Baoc7547922015-08-06 18:35:05 -0700105#include <memory>
Yabin Cui25dd0382016-02-01 11:40:37 -0800106#include <vector>
Tao Baoc7547922015-08-06 18:35:05 -0700107
Elliott Hughes4b166f02015-12-04 15:30:20 -0800108#include <android-base/file.h>
Yabin Cui2d46da52016-01-26 16:50:15 -0800109#include <android-base/logging.h>
Yabin Cui25dd0382016-02-01 11:40:37 -0800110#include <android-base/stringprintf.h>
Elliott Hughes4b166f02015-12-04 15:30:20 -0800111#include <android-base/strings.h>
Yabin Cui2f272c02016-06-24 18:22:02 -0700112#include <bootloader_message/bootloader_message.h>
Tao Bao75238632015-05-27 14:46:17 -0700113#include <cutils/android_reboot.h>
Doug Zongker76adfc52014-01-13 10:04:25 -0800114#include <cutils/properties.h>
Tao Bao3a2bb592016-02-25 12:38:53 -0800115#include <cutils/sockets.h>
Doug Zongker76adfc52014-01-13 10:04:25 -0800116#include <fs_mgr.h>
117
Tao Bao383b00d2015-05-21 16:44:44 -0700118#define LOG_TAG "uncrypt"
119#include <log/log.h>
120
Tao Baoc7547922015-08-06 18:35:05 -0700121#include "unique_fd.h"
122
Doug Zongker76adfc52014-01-13 10:04:25 -0800123#define WINDOW_SIZE 5
Tao Bao383b00d2015-05-21 16:44:44 -0700124
Tao Bao3a2bb592016-02-25 12:38:53 -0800125// uncrypt provides three services: SETUP_BCB, CLEAR_BCB and UNCRYPT.
126//
127// SETUP_BCB and CLEAR_BCB services use socket communication and do not rely
128// on /cache partitions. They will handle requests to reboot into recovery
129// (for applying updates for non-A/B devices, or factory resets for all
130// devices).
131//
132// UNCRYPT service still needs files on /cache partition (UNCRYPT_PATH_FILE
133// and CACHE_BLOCK_MAP). It will be working (and needed) only for non-A/B
134// devices, on which /cache partitions always exist.
Yabin Cui2d46da52016-01-26 16:50:15 -0800135static const std::string CACHE_BLOCK_MAP = "/cache/recovery/block.map";
Yabin Cui2d46da52016-01-26 16:50:15 -0800136static const std::string UNCRYPT_PATH_FILE = "/cache/recovery/uncrypt_file";
Tao Bao3a2bb592016-02-25 12:38:53 -0800137static const std::string UNCRYPT_SOCKET = "uncrypt";
Doug Zongker76adfc52014-01-13 10:04:25 -0800138
Tao Bao3a2bb592016-02-25 12:38:53 -0800139static struct fstab* fstab = nullptr;
Doug Zongker2efc9d92014-08-18 15:55:28 -0700140
Tao Bao381f4552015-05-05 18:36:45 -0700141static int write_at_offset(unsigned char* buffer, size_t size, int wfd, off64_t offset) {
Elliott Hughes7bad7c42015-04-28 17:24:24 -0700142 if (TEMP_FAILURE_RETRY(lseek64(wfd, offset, SEEK_SET)) == -1) {
Yabin Cui2d46da52016-01-26 16:50:15 -0800143 ALOGE("error seeking to offset %" PRId64 ": %s", offset, strerror(errno));
Elliott Hughes7bad7c42015-04-28 17:24:24 -0700144 return -1;
145 }
Yabin Cui25dd0382016-02-01 11:40:37 -0800146 if (!android::base::WriteFully(wfd, buffer, size)) {
Yabin Cui2d46da52016-01-26 16:50:15 -0800147 ALOGE("error writing offset %" PRId64 ": %s", offset, strerror(errno));
Yabin Cui25dd0382016-02-01 11:40:37 -0800148 return -1;
Doug Zongker76adfc52014-01-13 10:04:25 -0800149 }
150 return 0;
151}
152
Yabin Cui25dd0382016-02-01 11:40:37 -0800153static void add_block_to_ranges(std::vector<int>& ranges, int new_block) {
154 if (!ranges.empty() && new_block == ranges.back()) {
Doug Zongker76adfc52014-01-13 10:04:25 -0800155 // If the new block comes immediately after the current range,
156 // all we have to do is extend the current range.
Yabin Cui25dd0382016-02-01 11:40:37 -0800157 ++ranges.back();
Doug Zongker76adfc52014-01-13 10:04:25 -0800158 } else {
159 // We need to start a new range.
Yabin Cui25dd0382016-02-01 11:40:37 -0800160 ranges.push_back(new_block);
161 ranges.push_back(new_block + 1);
Doug Zongker76adfc52014-01-13 10:04:25 -0800162 }
163}
164
Tao Bao381f4552015-05-05 18:36:45 -0700165static struct fstab* read_fstab() {
Doug Zongker2efc9d92014-08-18 15:55:28 -0700166 fstab = NULL;
167
Doug Zongker76adfc52014-01-13 10:04:25 -0800168 // The fstab path is always "/fstab.${ro.hardware}".
169 char fstab_path[PATH_MAX+1] = "/fstab.";
170 if (!property_get("ro.hardware", fstab_path+strlen(fstab_path), "")) {
Yabin Cui2d46da52016-01-26 16:50:15 -0800171 ALOGE("failed to get ro.hardware");
Doug Zongker76adfc52014-01-13 10:04:25 -0800172 return NULL;
173 }
174
Doug Zongker2efc9d92014-08-18 15:55:28 -0700175 fstab = fs_mgr_read_fstab(fstab_path);
Doug Zongker76adfc52014-01-13 10:04:25 -0800176 if (!fstab) {
Yabin Cui2d46da52016-01-26 16:50:15 -0800177 ALOGE("failed to read %s", fstab_path);
Doug Zongker76adfc52014-01-13 10:04:25 -0800178 return NULL;
179 }
180
Doug Zongker2efc9d92014-08-18 15:55:28 -0700181 return fstab;
182}
183
Tao Bao381f4552015-05-05 18:36:45 -0700184static const char* find_block_device(const char* path, bool* encryptable, bool* encrypted) {
Doug Zongker76adfc52014-01-13 10:04:25 -0800185 // Look for a volume whose mount point is the prefix of path and
186 // return its block device. Set encrypted if it's currently
187 // encrypted.
Tao Bao381f4552015-05-05 18:36:45 -0700188 for (int i = 0; i < fstab->num_entries; ++i) {
Doug Zongker76adfc52014-01-13 10:04:25 -0800189 struct fstab_rec* v = &fstab->recs[i];
Tao Bao381f4552015-05-05 18:36:45 -0700190 if (!v->mount_point) {
191 continue;
192 }
Doug Zongker76adfc52014-01-13 10:04:25 -0800193 int len = strlen(v->mount_point);
194 if (strncmp(path, v->mount_point, len) == 0 &&
195 (path[len] == '/' || path[len] == 0)) {
Tao Bao381f4552015-05-05 18:36:45 -0700196 *encrypted = false;
197 *encryptable = false;
Tao Bao7cf50c62015-07-16 20:04:13 -0700198 if (fs_mgr_is_encryptable(v) || fs_mgr_is_file_encrypted(v)) {
Tao Bao381f4552015-05-05 18:36:45 -0700199 *encryptable = true;
Doug Zongker76adfc52014-01-13 10:04:25 -0800200 char buffer[PROPERTY_VALUE_MAX+1];
201 if (property_get("ro.crypto.state", buffer, "") &&
202 strcmp(buffer, "encrypted") == 0) {
Tao Bao381f4552015-05-05 18:36:45 -0700203 *encrypted = true;
Doug Zongker76adfc52014-01-13 10:04:25 -0800204 }
205 }
206 return v->blk_device;
207 }
208 }
209
210 return NULL;
211}
212
Tao Bao3a2bb592016-02-25 12:38:53 -0800213static bool write_status_to_socket(int status, int socket) {
214 int status_out = htonl(status);
215 return android::base::WriteFully(socket, &status_out, sizeof(int));
216}
217
Tao Bao383b00d2015-05-21 16:44:44 -0700218// Parse uncrypt_file to find the update package name.
Yabin Cui2d46da52016-01-26 16:50:15 -0800219static bool find_uncrypt_package(const std::string& uncrypt_path_file, std::string* package_name) {
220 CHECK(package_name != nullptr);
221 std::string uncrypt_path;
222 if (!android::base::ReadFileToString(uncrypt_path_file, &uncrypt_path)) {
223 ALOGE("failed to open \"%s\": %s", uncrypt_path_file.c_str(), strerror(errno));
Tao Bao383b00d2015-05-21 16:44:44 -0700224 return false;
Maxim Siniavinee7b28882014-02-13 15:48:53 -0800225 }
Doug Zongker76adfc52014-01-13 10:04:25 -0800226
Tao Bao383b00d2015-05-21 16:44:44 -0700227 // Remove the trailing '\n' if present.
Yabin Cui2d46da52016-01-26 16:50:15 -0800228 *package_name = android::base::Trim(uncrypt_path);
Tao Bao383b00d2015-05-21 16:44:44 -0700229 return true;
Doug Zongker76adfc52014-01-13 10:04:25 -0800230}
231
Tao Bao381f4552015-05-05 18:36:45 -0700232static int produce_block_map(const char* path, const char* map_file, const char* blk_dev,
Tao Bao3a2bb592016-02-25 12:38:53 -0800233 bool encrypted, int socket) {
Yabin Cui25dd0382016-02-01 11:40:37 -0800234 std::string err;
235 if (!android::base::RemoveFileIfExists(map_file, &err)) {
Yabin Cui2d46da52016-01-26 16:50:15 -0800236 ALOGE("failed to remove the existing map file %s: %s", map_file, err.c_str());
Sungmin Choia72512c2014-12-10 21:57:09 +0900237 return -1;
238 }
Yabin Cui25dd0382016-02-01 11:40:37 -0800239 std::string tmp_map_file = std::string(map_file) + ".tmp";
240 unique_fd mapfd(open(tmp_map_file.c_str(), O_WRONLY | O_CREAT, S_IRUSR | S_IWUSR));
241 if (!mapfd) {
242 ALOGE("failed to open %s: %s\n", tmp_map_file.c_str(), strerror(errno));
243 return -1;
244 }
Doug Zongker76adfc52014-01-13 10:04:25 -0800245
Tao Bao3a2bb592016-02-25 12:38:53 -0800246 // Make sure we can write to the socket.
247 if (!write_status_to_socket(0, socket)) {
248 ALOGE("failed to write to socket %d\n", socket);
Tao Bao383b00d2015-05-21 16:44:44 -0700249 return -1;
250 }
251
Tao Bao381f4552015-05-05 18:36:45 -0700252 struct stat sb;
Tao Baoc7547922015-08-06 18:35:05 -0700253 if (stat(path, &sb) != 0) {
Yabin Cui2d46da52016-01-26 16:50:15 -0800254 ALOGE("failed to stat %s", path);
Doug Zongker76adfc52014-01-13 10:04:25 -0800255 return -1;
256 }
257
Yabin Cui2d46da52016-01-26 16:50:15 -0800258 ALOGI(" block size: %ld bytes", static_cast<long>(sb.st_blksize));
Doug Zongker76adfc52014-01-13 10:04:25 -0800259
260 int blocks = ((sb.st_size-1) / sb.st_blksize) + 1;
Yabin Cui2d46da52016-01-26 16:50:15 -0800261 ALOGI(" file size: %" PRId64 " bytes, %d blocks", sb.st_size, blocks);
Doug Zongker76adfc52014-01-13 10:04:25 -0800262
Yabin Cui25dd0382016-02-01 11:40:37 -0800263 std::vector<int> ranges;
Doug Zongker76adfc52014-01-13 10:04:25 -0800264
Yabin Cui25dd0382016-02-01 11:40:37 -0800265 std::string s = android::base::StringPrintf("%s\n%" PRId64 " %ld\n",
266 blk_dev, sb.st_size, static_cast<long>(sb.st_blksize));
267 if (!android::base::WriteStringToFd(s, mapfd.get())) {
Yabin Cui2d46da52016-01-26 16:50:15 -0800268 ALOGE("failed to write %s: %s", tmp_map_file.c_str(), strerror(errno));
Yabin Cui25dd0382016-02-01 11:40:37 -0800269 return -1;
270 }
Doug Zongker76adfc52014-01-13 10:04:25 -0800271
Yabin Cui25dd0382016-02-01 11:40:37 -0800272 std::vector<std::vector<unsigned char>> buffers;
Doug Zongker76adfc52014-01-13 10:04:25 -0800273 if (encrypted) {
Yabin Cui25dd0382016-02-01 11:40:37 -0800274 buffers.resize(WINDOW_SIZE, std::vector<unsigned char>(sb.st_blksize));
Doug Zongker76adfc52014-01-13 10:04:25 -0800275 }
276 int head_block = 0;
277 int head = 0, tail = 0;
Doug Zongker76adfc52014-01-13 10:04:25 -0800278
Yabin Cui25dd0382016-02-01 11:40:37 -0800279 unique_fd fd(open(path, O_RDONLY));
280 if (!fd) {
Yabin Cui2d46da52016-01-26 16:50:15 -0800281 ALOGE("failed to open %s for reading: %s", path, strerror(errno));
Doug Zongker76adfc52014-01-13 10:04:25 -0800282 return -1;
283 }
Doug Zongker76adfc52014-01-13 10:04:25 -0800284
Yabin Cui25dd0382016-02-01 11:40:37 -0800285 unique_fd wfd(-1);
Doug Zongker76adfc52014-01-13 10:04:25 -0800286 if (encrypted) {
Jaegeuk Kimcc4e3c62015-11-04 11:43:58 -0800287 wfd = open(blk_dev, O_WRONLY);
Yabin Cui25dd0382016-02-01 11:40:37 -0800288 if (!wfd) {
Yabin Cui2d46da52016-01-26 16:50:15 -0800289 ALOGE("failed to open fd for writing: %s", strerror(errno));
Doug Zongker76adfc52014-01-13 10:04:25 -0800290 return -1;
291 }
292 }
293
Tao Baob8df5fb2015-12-08 22:47:25 -0800294 off64_t pos = 0;
Tao Bao383b00d2015-05-21 16:44:44 -0700295 int last_progress = 0;
Doug Zongker76adfc52014-01-13 10:04:25 -0800296 while (pos < sb.st_size) {
Tao Bao383b00d2015-05-21 16:44:44 -0700297 // Update the status file, progress must be between [0, 99].
298 int progress = static_cast<int>(100 * (double(pos) / double(sb.st_size)));
299 if (progress > last_progress) {
Tao Bao3a2bb592016-02-25 12:38:53 -0800300 last_progress = progress;
301 write_status_to_socket(progress, socket);
Tao Bao383b00d2015-05-21 16:44:44 -0700302 }
303
Doug Zongker76adfc52014-01-13 10:04:25 -0800304 if ((tail+1) % WINDOW_SIZE == head) {
305 // write out head buffer
306 int block = head_block;
Yabin Cui25dd0382016-02-01 11:40:37 -0800307 if (ioctl(fd.get(), FIBMAP, &block) != 0) {
Yabin Cui2d46da52016-01-26 16:50:15 -0800308 ALOGE("failed to find block %d", head_block);
Doug Zongker76adfc52014-01-13 10:04:25 -0800309 return -1;
310 }
Yabin Cui25dd0382016-02-01 11:40:37 -0800311 add_block_to_ranges(ranges, block);
Doug Zongker76adfc52014-01-13 10:04:25 -0800312 if (encrypted) {
Yabin Cui25dd0382016-02-01 11:40:37 -0800313 if (write_at_offset(buffers[head].data(), sb.st_blksize, wfd.get(),
Tao Baob8df5fb2015-12-08 22:47:25 -0800314 static_cast<off64_t>(sb.st_blksize) * block) != 0) {
Doug Zongker76adfc52014-01-13 10:04:25 -0800315 return -1;
316 }
317 }
318 head = (head + 1) % WINDOW_SIZE;
319 ++head_block;
320 }
321
322 // read next block to tail
323 if (encrypted) {
Yabin Cui25dd0382016-02-01 11:40:37 -0800324 size_t to_read = static_cast<size_t>(
325 std::min(static_cast<off64_t>(sb.st_blksize), sb.st_size - pos));
326 if (!android::base::ReadFully(fd.get(), buffers[tail].data(), to_read)) {
Yabin Cui2d46da52016-01-26 16:50:15 -0800327 ALOGE("failed to read: %s", strerror(errno));
Yabin Cui25dd0382016-02-01 11:40:37 -0800328 return -1;
Doug Zongker76adfc52014-01-13 10:04:25 -0800329 }
Yabin Cui25dd0382016-02-01 11:40:37 -0800330 pos += to_read;
Doug Zongker76adfc52014-01-13 10:04:25 -0800331 } else {
332 // If we're not encrypting; we don't need to actually read
333 // anything, just skip pos forward as if we'd read a
334 // block.
335 pos += sb.st_blksize;
336 }
337 tail = (tail+1) % WINDOW_SIZE;
338 }
339
340 while (head != tail) {
341 // write out head buffer
342 int block = head_block;
Yabin Cui25dd0382016-02-01 11:40:37 -0800343 if (ioctl(fd.get(), FIBMAP, &block) != 0) {
Yabin Cui2d46da52016-01-26 16:50:15 -0800344 ALOGE("failed to find block %d", head_block);
Doug Zongker76adfc52014-01-13 10:04:25 -0800345 return -1;
346 }
Yabin Cui25dd0382016-02-01 11:40:37 -0800347 add_block_to_ranges(ranges, block);
Doug Zongker76adfc52014-01-13 10:04:25 -0800348 if (encrypted) {
Yabin Cui25dd0382016-02-01 11:40:37 -0800349 if (write_at_offset(buffers[head].data(), sb.st_blksize, wfd.get(),
Tao Baob8df5fb2015-12-08 22:47:25 -0800350 static_cast<off64_t>(sb.st_blksize) * block) != 0) {
Doug Zongker76adfc52014-01-13 10:04:25 -0800351 return -1;
352 }
353 }
354 head = (head + 1) % WINDOW_SIZE;
355 ++head_block;
356 }
357
Yabin Cui25dd0382016-02-01 11:40:37 -0800358 if (!android::base::WriteStringToFd(
359 android::base::StringPrintf("%zu\n", ranges.size() / 2), mapfd.get())) {
Yabin Cui2d46da52016-01-26 16:50:15 -0800360 ALOGE("failed to write %s: %s", tmp_map_file.c_str(), strerror(errno));
Tao Baofb4ccef2015-05-04 10:10:13 -0700361 return -1;
362 }
Yabin Cui25dd0382016-02-01 11:40:37 -0800363 for (size_t i = 0; i < ranges.size(); i += 2) {
364 if (!android::base::WriteStringToFd(
365 android::base::StringPrintf("%d %d\n", ranges[i], ranges[i+1]), mapfd.get())) {
Yabin Cui2d46da52016-01-26 16:50:15 -0800366 ALOGE("failed to write %s: %s", tmp_map_file.c_str(), strerror(errno));
Tao Baofb4ccef2015-05-04 10:10:13 -0700367 return -1;
368 }
Doug Zongker76adfc52014-01-13 10:04:25 -0800369 }
370
Yabin Cui25dd0382016-02-01 11:40:37 -0800371 if (fsync(mapfd.get()) == -1) {
Yabin Cui2d46da52016-01-26 16:50:15 -0800372 ALOGE("failed to fsync \"%s\": %s", tmp_map_file.c_str(), strerror(errno));
Yabin Cui25dd0382016-02-01 11:40:37 -0800373 return -1;
374 }
Yabin Cuiffa3a1c2016-03-29 15:35:58 -0700375 if (close(mapfd.get()) == -1) {
Yabin Cui2d46da52016-01-26 16:50:15 -0800376 ALOGE("failed to close %s: %s", tmp_map_file.c_str(), strerror(errno));
Yabin Cui25dd0382016-02-01 11:40:37 -0800377 return -1;
378 }
379 mapfd = -1;
380
381 if (encrypted) {
382 if (fsync(wfd.get()) == -1) {
Yabin Cui2d46da52016-01-26 16:50:15 -0800383 ALOGE("failed to fsync \"%s\": %s", blk_dev, strerror(errno));
Yabin Cui25dd0382016-02-01 11:40:37 -0800384 return -1;
385 }
386 if (close(wfd.get()) == -1) {
Yabin Cui2d46da52016-01-26 16:50:15 -0800387 ALOGE("failed to close %s: %s", blk_dev, strerror(errno));
Yabin Cui25dd0382016-02-01 11:40:37 -0800388 return -1;
389 }
390 wfd = -1;
391 }
392
393 if (rename(tmp_map_file.c_str(), map_file) == -1) {
Yabin Cui2d46da52016-01-26 16:50:15 -0800394 ALOGE("failed to rename %s to %s: %s", tmp_map_file.c_str(), map_file, strerror(errno));
Yabin Cui25dd0382016-02-01 11:40:37 -0800395 return -1;
396 }
397 // Sync dir to make rename() result written to disk.
398 std::string file_name = map_file;
399 std::string dir_name = dirname(&file_name[0]);
400 unique_fd dfd(open(dir_name.c_str(), O_RDONLY | O_DIRECTORY));
401 if (!dfd) {
Yabin Cui2d46da52016-01-26 16:50:15 -0800402 ALOGE("failed to open dir %s: %s", dir_name.c_str(), strerror(errno));
Yabin Cui25dd0382016-02-01 11:40:37 -0800403 return -1;
404 }
405 if (fsync(dfd.get()) == -1) {
Yabin Cui2d46da52016-01-26 16:50:15 -0800406 ALOGE("failed to fsync %s: %s", dir_name.c_str(), strerror(errno));
Yabin Cui25dd0382016-02-01 11:40:37 -0800407 return -1;
408 }
Yabin Cuiffa3a1c2016-03-29 15:35:58 -0700409 if (close(dfd.get()) == -1) {
Yabin Cui2d46da52016-01-26 16:50:15 -0800410 ALOGE("failed to close %s: %s", dir_name.c_str(), strerror(errno));
Yabin Cui25dd0382016-02-01 11:40:37 -0800411 return -1;
412 }
413 dfd = -1;
Doug Zongker76adfc52014-01-13 10:04:25 -0800414 return 0;
415}
416
Tao Bao3a2bb592016-02-25 12:38:53 -0800417static int uncrypt(const char* input_path, const char* map_file, const int socket) {
Tao Bao383b00d2015-05-21 16:44:44 -0700418 ALOGI("update package is \"%s\"", input_path);
Doug Zongkerf449db22014-08-26 09:15:08 -0700419
Doug Zongker76adfc52014-01-13 10:04:25 -0800420 // Turn the name of the file we're supposed to convert into an
421 // absolute path, so we can find what filesystem it's on.
422 char path[PATH_MAX+1];
423 if (realpath(input_path, path) == NULL) {
Tao Bao383b00d2015-05-21 16:44:44 -0700424 ALOGE("failed to convert \"%s\" to absolute path: %s", input_path, strerror(errno));
Doug Zongker76adfc52014-01-13 10:04:25 -0800425 return 1;
426 }
427
Tao Bao381f4552015-05-05 18:36:45 -0700428 bool encryptable;
429 bool encrypted;
Doug Zongker76adfc52014-01-13 10:04:25 -0800430 const char* blk_dev = find_block_device(path, &encryptable, &encrypted);
431 if (blk_dev == NULL) {
Doug Zongkerf449db22014-08-26 09:15:08 -0700432 ALOGE("failed to find block device for %s", path);
Doug Zongker76adfc52014-01-13 10:04:25 -0800433 return 1;
434 }
435
436 // If the filesystem it's on isn't encrypted, we only produce the
437 // block map, we don't rewrite the file contents (it would be
438 // pointless to do so).
Yabin Cui2d46da52016-01-26 16:50:15 -0800439 ALOGI("encryptable: %s", encryptable ? "yes" : "no");
440 ALOGI(" encrypted: %s", encrypted ? "yes" : "no");
Doug Zongker76adfc52014-01-13 10:04:25 -0800441
Doug Zongker574443d2014-09-05 08:22:12 -0700442 // Recovery supports installing packages from 3 paths: /cache,
443 // /data, and /sdcard. (On a particular device, other locations
444 // may work, but those are three we actually expect.)
445 //
446 // On /data we want to convert the file to a block map so that we
447 // can read the package without mounting the partition. On /cache
448 // and /sdcard we leave the file alone.
Tao Bao383b00d2015-05-21 16:44:44 -0700449 if (strncmp(path, "/data/", 6) == 0) {
Doug Zongkerf449db22014-08-26 09:15:08 -0700450 ALOGI("writing block map %s", map_file);
Tao Bao3a2bb592016-02-25 12:38:53 -0800451 if (produce_block_map(path, map_file, blk_dev, encrypted, socket) != 0) {
Tao Bao383b00d2015-05-21 16:44:44 -0700452 return 1;
453 }
454 }
455
456 return 0;
457}
458
Tao Bao3a2bb592016-02-25 12:38:53 -0800459static bool uncrypt_wrapper(const char* input_path, const char* map_file, const int socket) {
Yabin Cui2d46da52016-01-26 16:50:15 -0800460 std::string package;
461 if (input_path == nullptr) {
462 if (!find_uncrypt_package(UNCRYPT_PATH_FILE, &package)) {
Tao Bao3a2bb592016-02-25 12:38:53 -0800463 write_status_to_socket(-1, socket);
464 return false;
Yabin Cui2d46da52016-01-26 16:50:15 -0800465 }
466 input_path = package.c_str();
467 }
468 CHECK(map_file != nullptr);
Tao Bao3a2bb592016-02-25 12:38:53 -0800469 int status = uncrypt(input_path, map_file, socket);
Yabin Cui2d46da52016-01-26 16:50:15 -0800470 if (status != 0) {
Tao Bao3a2bb592016-02-25 12:38:53 -0800471 write_status_to_socket(-1, socket);
472 return false;
Yabin Cui2d46da52016-01-26 16:50:15 -0800473 }
Tao Bao3a2bb592016-02-25 12:38:53 -0800474 write_status_to_socket(100, socket);
475 return true;
Yabin Cui2d46da52016-01-26 16:50:15 -0800476}
477
Tao Bao3a2bb592016-02-25 12:38:53 -0800478static bool clear_bcb(const int socket) {
Yabin Cuia58a6db2016-04-06 15:52:18 -0700479 std::string err;
480 if (!clear_bootloader_message(&err)) {
481 ALOGE("failed to clear bootloader message: %s", err.c_str());
Tao Bao3a2bb592016-02-25 12:38:53 -0800482 write_status_to_socket(-1, socket);
483 return false;
Yabin Cui2d46da52016-01-26 16:50:15 -0800484 }
Tao Bao3a2bb592016-02-25 12:38:53 -0800485 write_status_to_socket(100, socket);
486 return true;
Yabin Cui2d46da52016-01-26 16:50:15 -0800487}
488
Tao Bao3a2bb592016-02-25 12:38:53 -0800489static bool setup_bcb(const int socket) {
490 // c5. receive message length
491 int length;
492 if (!android::base::ReadFully(socket, &length, 4)) {
493 ALOGE("failed to read the length: %s", strerror(errno));
494 return false;
Yabin Cui2d46da52016-01-26 16:50:15 -0800495 }
Tao Bao3a2bb592016-02-25 12:38:53 -0800496 length = ntohl(length);
497
498 // c7. receive message
Yabin Cui2d46da52016-01-26 16:50:15 -0800499 std::string content;
Tao Bao3a2bb592016-02-25 12:38:53 -0800500 content.resize(length);
501 if (!android::base::ReadFully(socket, &content[0], length)) {
502 ALOGE("failed to read the length: %s", strerror(errno));
503 return false;
Yabin Cui2d46da52016-01-26 16:50:15 -0800504 }
Tao Bao3a2bb592016-02-25 12:38:53 -0800505 ALOGI(" received command: [%s] (%zu)", content.c_str(), content.size());
Yabin Cui6faf0262016-06-09 14:09:39 -0700506 std::vector<std::string> options = android::base::Split(content, "\n");
507 std::string wipe_package;
508 for (auto& option : options) {
509 if (android::base::StartsWith(option, "--wipe_package=")) {
510 std::string path = option.substr(strlen("--wipe_package="));
511 if (!android::base::ReadFileToString(path, &wipe_package)) {
512 ALOGE("failed to read %s: %s", path.c_str(), strerror(errno));
513 return false;
514 }
515 option = android::base::StringPrintf("--wipe_package_size=%zu", wipe_package.size());
516 }
517 }
Tao Bao3a2bb592016-02-25 12:38:53 -0800518
519 // c8. setup the bcb command
Yabin Cuia58a6db2016-04-06 15:52:18 -0700520 std::string err;
Yabin Cui6faf0262016-06-09 14:09:39 -0700521 if (!write_bootloader_message(options, &err)) {
Yabin Cuia58a6db2016-04-06 15:52:18 -0700522 ALOGE("failed to set bootloader message: %s", err.c_str());
Tao Bao3a2bb592016-02-25 12:38:53 -0800523 write_status_to_socket(-1, socket);
524 return false;
Yabin Cui2d46da52016-01-26 16:50:15 -0800525 }
Yabin Cui6faf0262016-06-09 14:09:39 -0700526 if (!wipe_package.empty() && !write_wipe_package(wipe_package, &err)) {
527 ALOGE("failed to set wipe package: %s", err.c_str());
528 write_status_to_socket(-1, socket);
529 return false;
530 }
Tao Bao3a2bb592016-02-25 12:38:53 -0800531 // c10. send "100" status
532 write_status_to_socket(100, socket);
533 return true;
Yabin Cui2d46da52016-01-26 16:50:15 -0800534}
535
Yabin Cui2d46da52016-01-26 16:50:15 -0800536static void usage(const char* exename) {
537 fprintf(stderr, "Usage of %s:\n", exename);
538 fprintf(stderr, "%s [<package_path> <map_file>] Uncrypt ota package.\n", exename);
Yabin Cui2d46da52016-01-26 16:50:15 -0800539 fprintf(stderr, "%s --clear-bcb Clear BCB data in misc partition.\n", exename);
540 fprintf(stderr, "%s --setup-bcb Setup BCB data by command file.\n", exename);
Yabin Cui2d46da52016-01-26 16:50:15 -0800541}
542
543int main(int argc, char** argv) {
Tao Bao3a2bb592016-02-25 12:38:53 -0800544 enum { UNCRYPT, SETUP_BCB, CLEAR_BCB } action;
545 const char* input_path = nullptr;
546 const char* map_file = CACHE_BLOCK_MAP.c_str();
547
548 if (argc == 2 && strcmp(argv[1], "--clear-bcb") == 0) {
549 action = CLEAR_BCB;
550 } else if (argc == 2 && strcmp(argv[1], "--setup-bcb") == 0) {
551 action = SETUP_BCB;
Tao Bao3a2bb592016-02-25 12:38:53 -0800552 } else if (argc == 1) {
553 action = UNCRYPT;
554 } else if (argc == 3) {
555 input_path = argv[1];
556 map_file = argv[2];
557 action = UNCRYPT;
558 } else {
559 usage(argv[0]);
560 return 2;
Doug Zongker76adfc52014-01-13 10:04:25 -0800561 }
Tao Bao3a2bb592016-02-25 12:38:53 -0800562
563 if ((fstab = read_fstab()) == nullptr) {
564 return 1;
565 }
566
567 // c3. The socket is created by init when starting the service. uncrypt
568 // will use the socket to communicate with its caller.
569 unique_fd service_socket(android_get_control_socket(UNCRYPT_SOCKET.c_str()));
570 if (!service_socket) {
571 ALOGE("failed to open socket \"%s\": %s", UNCRYPT_SOCKET.c_str(), strerror(errno));
572 return 1;
573 }
574 fcntl(service_socket.get(), F_SETFD, FD_CLOEXEC);
575
576 if (listen(service_socket.get(), 1) == -1) {
577 ALOGE("failed to listen on socket %d: %s", service_socket.get(), strerror(errno));
578 return 1;
579 }
580
581 unique_fd socket_fd(accept4(service_socket.get(), nullptr, nullptr, SOCK_CLOEXEC));
582 if (!socket_fd) {
583 ALOGE("failed to accept on socket %d: %s", service_socket.get(), strerror(errno));
584 return 1;
585 }
586
587 bool success = false;
588 switch (action) {
589 case UNCRYPT:
590 success = uncrypt_wrapper(input_path, map_file, socket_fd.get());
591 break;
592 case SETUP_BCB:
593 success = setup_bcb(socket_fd.get());
594 break;
595 case CLEAR_BCB:
596 success = clear_bcb(socket_fd.get());
597 break;
598 default: // Should never happen.
599 ALOGE("Invalid uncrypt action code: %d", action);
600 return 1;
601 }
602
603 // c13. Read a 4-byte code from the client before uncrypt exits. This is to
604 // ensure the client to receive the last status code before the socket gets
605 // destroyed.
606 int code;
607 if (android::base::ReadFully(socket_fd.get(), &code, 4)) {
608 ALOGI(" received %d, exiting now", code);
609 } else {
610 ALOGE("failed to read the code: %s", strerror(errno));
611 }
612 return success ? 0 : 1;
Doug Zongker76adfc52014-01-13 10:04:25 -0800613}