blob: 5697712aab4bf0366b1d3a69874d7192223bbc22 [file] [log] [blame]
Doug Zongker76adfc52014-01-13 10:04:25 -08001/*
2 * Copyright (C) 2014 The Android Open Source Project
3 *
4 * Licensed under the Apache License, Version 2.0 (the "License");
5 * you may not use this file except in compliance with the License.
6 * You may obtain a copy of the License at
7 *
8 * http://www.apache.org/licenses/LICENSE-2.0
9 *
10 * Unless required by applicable law or agreed to in writing, software
11 * distributed under the License is distributed on an "AS IS" BASIS,
12 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13 * See the License for the specific language governing permissions and
14 * limitations under the License.
15 */
16
17// This program takes a file on an ext4 filesystem and produces a list
18// of the blocks that file occupies, which enables the file contents
19// to be read directly from the block device without mounting the
20// filesystem.
21//
22// If the filesystem is using an encrypted block device, it will also
23// read the file and rewrite it to the same blocks of the underlying
24// (unencrypted) block device, so the file contents can be read
25// without the need for the decryption key.
26//
27// The output of this program is a "block map" which looks like this:
28//
29// /dev/block/platform/msm_sdcc.1/by-name/userdata # block device
30// 49652 4096 # file size in bytes, block size
31// 3 # count of block ranges
32// 1000 1008 # block range 0
33// 2100 2102 # ... block range 1
34// 30 33 # ... block range 2
35//
36// Each block range represents a half-open interval; the line "30 33"
37// reprents the blocks [30, 31, 32].
38//
39// Recovery can take this block map file and retrieve the underlying
40// file data to use as an update package.
41
Tao Bao3a2bb592016-02-25 12:38:53 -080042/**
43 * In addition to the uncrypt work, uncrypt also takes care of setting and
44 * clearing the bootloader control block (BCB) at /misc partition.
45 *
46 * uncrypt is triggered as init services on demand. It uses socket to
47 * communicate with its caller (i.e. system_server). The socket is managed by
48 * init (i.e. created prior to the service starts, and destroyed when uncrypt
49 * exits).
50 *
51 * Below is the uncrypt protocol.
52 *
53 * a. caller b. init c. uncrypt
54 * --------------- ------------ --------------
55 * a1. ctl.start:
56 * setup-bcb /
57 * clear-bcb /
58 * uncrypt
59 *
60 * b2. create socket at
61 * /dev/socket/uncrypt
62 *
63 * c3. listen and accept
64 *
65 * a4. send a 4-byte int
66 * (message length)
67 * c5. receive message length
68 * a6. send message
69 * c7. receive message
70 * c8. <do the work; may send
71 * the progress>
72 * a9. <may handle progress>
73 * c10. <upon finishing>
74 * send "100" or "-1"
75 *
76 * a11. receive status code
77 * a12. send a 4-byte int to
78 * ack the receive of the
79 * final status code
80 * c13. receive and exit
81 *
82 * b14. destroy the socket
83 *
84 * Note that a12 and c13 are necessary to ensure a11 happens before the socket
85 * gets destroyed in b14.
86 */
87
88#include <arpa/inet.h>
Elliott Hughesd4d4c242014-12-29 12:46:43 -080089#include <errno.h>
Tao Bao75238632015-05-27 14:46:17 -070090#include <fcntl.h>
Tao Baob8df5fb2015-12-08 22:47:25 -080091#include <inttypes.h>
Yabin Cui25dd0382016-02-01 11:40:37 -080092#include <libgen.h>
Tao Bao75238632015-05-27 14:46:17 -070093#include <linux/fs.h>
94#include <stdarg.h>
Doug Zongker76adfc52014-01-13 10:04:25 -080095#include <stdio.h>
96#include <stdlib.h>
Elliott Hughescd3c55a2015-01-29 20:50:08 -080097#include <string.h>
Doug Zongker76adfc52014-01-13 10:04:25 -080098#include <sys/mman.h>
Tao Bao3a2bb592016-02-25 12:38:53 -080099#include <sys/socket.h>
Tao Bao383b00d2015-05-21 16:44:44 -0700100#include <sys/stat.h>
101#include <sys/types.h>
Tao Bao75238632015-05-27 14:46:17 -0700102#include <unistd.h>
Doug Zongker76adfc52014-01-13 10:04:25 -0800103
Yabin Cui25dd0382016-02-01 11:40:37 -0800104#include <algorithm>
Tao Baoc7547922015-08-06 18:35:05 -0700105#include <memory>
Yabin Cui25dd0382016-02-01 11:40:37 -0800106#include <vector>
Tao Baoc7547922015-08-06 18:35:05 -0700107
Elliott Hughes4b166f02015-12-04 15:30:20 -0800108#include <android-base/file.h>
Yabin Cui2d46da52016-01-26 16:50:15 -0800109#include <android-base/logging.h>
Yabin Cui25dd0382016-02-01 11:40:37 -0800110#include <android-base/stringprintf.h>
Elliott Hughes4b166f02015-12-04 15:30:20 -0800111#include <android-base/strings.h>
Elliott Hughesbcabd092016-03-22 20:19:22 -0700112#include <android-base/unique_fd.h>
Yabin Cuia58a6db2016-04-06 15:52:18 -0700113#include <bootloader_message_writer.h>
Tao Bao75238632015-05-27 14:46:17 -0700114#include <cutils/android_reboot.h>
Doug Zongker76adfc52014-01-13 10:04:25 -0800115#include <cutils/properties.h>
Tao Bao3a2bb592016-02-25 12:38:53 -0800116#include <cutils/sockets.h>
Doug Zongker76adfc52014-01-13 10:04:25 -0800117#include <fs_mgr.h>
118
Tao Bao383b00d2015-05-21 16:44:44 -0700119#define LOG_TAG "uncrypt"
120#include <log/log.h>
121
Doug Zongker76adfc52014-01-13 10:04:25 -0800122#define WINDOW_SIZE 5
Tao Bao383b00d2015-05-21 16:44:44 -0700123
Tao Bao3a2bb592016-02-25 12:38:53 -0800124// uncrypt provides three services: SETUP_BCB, CLEAR_BCB and UNCRYPT.
125//
126// SETUP_BCB and CLEAR_BCB services use socket communication and do not rely
127// on /cache partitions. They will handle requests to reboot into recovery
128// (for applying updates for non-A/B devices, or factory resets for all
129// devices).
130//
131// UNCRYPT service still needs files on /cache partition (UNCRYPT_PATH_FILE
132// and CACHE_BLOCK_MAP). It will be working (and needed) only for non-A/B
133// devices, on which /cache partitions always exist.
Yabin Cui2d46da52016-01-26 16:50:15 -0800134static const std::string CACHE_BLOCK_MAP = "/cache/recovery/block.map";
Yabin Cui2d46da52016-01-26 16:50:15 -0800135static const std::string UNCRYPT_PATH_FILE = "/cache/recovery/uncrypt_file";
Tao Bao3a2bb592016-02-25 12:38:53 -0800136static const std::string UNCRYPT_SOCKET = "uncrypt";
Doug Zongker76adfc52014-01-13 10:04:25 -0800137
Tao Bao3a2bb592016-02-25 12:38:53 -0800138static struct fstab* fstab = nullptr;
Doug Zongker2efc9d92014-08-18 15:55:28 -0700139
Tao Bao381f4552015-05-05 18:36:45 -0700140static int write_at_offset(unsigned char* buffer, size_t size, int wfd, off64_t offset) {
Elliott Hughes7bad7c42015-04-28 17:24:24 -0700141 if (TEMP_FAILURE_RETRY(lseek64(wfd, offset, SEEK_SET)) == -1) {
Yabin Cui2d46da52016-01-26 16:50:15 -0800142 ALOGE("error seeking to offset %" PRId64 ": %s", offset, strerror(errno));
Elliott Hughes7bad7c42015-04-28 17:24:24 -0700143 return -1;
144 }
Yabin Cui25dd0382016-02-01 11:40:37 -0800145 if (!android::base::WriteFully(wfd, buffer, size)) {
Yabin Cui2d46da52016-01-26 16:50:15 -0800146 ALOGE("error writing offset %" PRId64 ": %s", offset, strerror(errno));
Yabin Cui25dd0382016-02-01 11:40:37 -0800147 return -1;
Doug Zongker76adfc52014-01-13 10:04:25 -0800148 }
149 return 0;
150}
151
Yabin Cui25dd0382016-02-01 11:40:37 -0800152static void add_block_to_ranges(std::vector<int>& ranges, int new_block) {
153 if (!ranges.empty() && new_block == ranges.back()) {
Doug Zongker76adfc52014-01-13 10:04:25 -0800154 // If the new block comes immediately after the current range,
155 // all we have to do is extend the current range.
Yabin Cui25dd0382016-02-01 11:40:37 -0800156 ++ranges.back();
Doug Zongker76adfc52014-01-13 10:04:25 -0800157 } else {
158 // We need to start a new range.
Yabin Cui25dd0382016-02-01 11:40:37 -0800159 ranges.push_back(new_block);
160 ranges.push_back(new_block + 1);
Doug Zongker76adfc52014-01-13 10:04:25 -0800161 }
162}
163
Tao Bao381f4552015-05-05 18:36:45 -0700164static struct fstab* read_fstab() {
Doug Zongker2efc9d92014-08-18 15:55:28 -0700165 fstab = NULL;
166
Doug Zongker76adfc52014-01-13 10:04:25 -0800167 // The fstab path is always "/fstab.${ro.hardware}".
168 char fstab_path[PATH_MAX+1] = "/fstab.";
169 if (!property_get("ro.hardware", fstab_path+strlen(fstab_path), "")) {
Yabin Cui2d46da52016-01-26 16:50:15 -0800170 ALOGE("failed to get ro.hardware");
Doug Zongker76adfc52014-01-13 10:04:25 -0800171 return NULL;
172 }
173
Doug Zongker2efc9d92014-08-18 15:55:28 -0700174 fstab = fs_mgr_read_fstab(fstab_path);
Doug Zongker76adfc52014-01-13 10:04:25 -0800175 if (!fstab) {
Yabin Cui2d46da52016-01-26 16:50:15 -0800176 ALOGE("failed to read %s", fstab_path);
Doug Zongker76adfc52014-01-13 10:04:25 -0800177 return NULL;
178 }
179
Doug Zongker2efc9d92014-08-18 15:55:28 -0700180 return fstab;
181}
182
Tao Bao381f4552015-05-05 18:36:45 -0700183static const char* find_block_device(const char* path, bool* encryptable, bool* encrypted) {
Doug Zongker76adfc52014-01-13 10:04:25 -0800184 // Look for a volume whose mount point is the prefix of path and
185 // return its block device. Set encrypted if it's currently
186 // encrypted.
Tao Bao381f4552015-05-05 18:36:45 -0700187 for (int i = 0; i < fstab->num_entries; ++i) {
Doug Zongker76adfc52014-01-13 10:04:25 -0800188 struct fstab_rec* v = &fstab->recs[i];
Tao Bao381f4552015-05-05 18:36:45 -0700189 if (!v->mount_point) {
190 continue;
191 }
Doug Zongker76adfc52014-01-13 10:04:25 -0800192 int len = strlen(v->mount_point);
193 if (strncmp(path, v->mount_point, len) == 0 &&
194 (path[len] == '/' || path[len] == 0)) {
Tao Bao381f4552015-05-05 18:36:45 -0700195 *encrypted = false;
196 *encryptable = false;
Tao Bao7cf50c62015-07-16 20:04:13 -0700197 if (fs_mgr_is_encryptable(v) || fs_mgr_is_file_encrypted(v)) {
Tao Bao381f4552015-05-05 18:36:45 -0700198 *encryptable = true;
Doug Zongker76adfc52014-01-13 10:04:25 -0800199 char buffer[PROPERTY_VALUE_MAX+1];
200 if (property_get("ro.crypto.state", buffer, "") &&
201 strcmp(buffer, "encrypted") == 0) {
Tao Bao381f4552015-05-05 18:36:45 -0700202 *encrypted = true;
Doug Zongker76adfc52014-01-13 10:04:25 -0800203 }
204 }
205 return v->blk_device;
206 }
207 }
208
209 return NULL;
210}
211
Tao Bao3a2bb592016-02-25 12:38:53 -0800212static bool write_status_to_socket(int status, int socket) {
213 int status_out = htonl(status);
214 return android::base::WriteFully(socket, &status_out, sizeof(int));
215}
216
Tao Bao383b00d2015-05-21 16:44:44 -0700217// Parse uncrypt_file to find the update package name.
Yabin Cui2d46da52016-01-26 16:50:15 -0800218static bool find_uncrypt_package(const std::string& uncrypt_path_file, std::string* package_name) {
219 CHECK(package_name != nullptr);
220 std::string uncrypt_path;
221 if (!android::base::ReadFileToString(uncrypt_path_file, &uncrypt_path)) {
222 ALOGE("failed to open \"%s\": %s", uncrypt_path_file.c_str(), strerror(errno));
Tao Bao383b00d2015-05-21 16:44:44 -0700223 return false;
Maxim Siniavinee7b28882014-02-13 15:48:53 -0800224 }
Doug Zongker76adfc52014-01-13 10:04:25 -0800225
Tao Bao383b00d2015-05-21 16:44:44 -0700226 // Remove the trailing '\n' if present.
Yabin Cui2d46da52016-01-26 16:50:15 -0800227 *package_name = android::base::Trim(uncrypt_path);
Tao Bao383b00d2015-05-21 16:44:44 -0700228 return true;
Doug Zongker76adfc52014-01-13 10:04:25 -0800229}
230
Tao Bao381f4552015-05-05 18:36:45 -0700231static int produce_block_map(const char* path, const char* map_file, const char* blk_dev,
Tao Bao3a2bb592016-02-25 12:38:53 -0800232 bool encrypted, int socket) {
Yabin Cui25dd0382016-02-01 11:40:37 -0800233 std::string err;
234 if (!android::base::RemoveFileIfExists(map_file, &err)) {
Yabin Cui2d46da52016-01-26 16:50:15 -0800235 ALOGE("failed to remove the existing map file %s: %s", map_file, err.c_str());
Sungmin Choia72512c2014-12-10 21:57:09 +0900236 return -1;
237 }
Yabin Cui25dd0382016-02-01 11:40:37 -0800238 std::string tmp_map_file = std::string(map_file) + ".tmp";
Elliott Hughesbcabd092016-03-22 20:19:22 -0700239 android::base::unique_fd mapfd(open(tmp_map_file.c_str(),
240 O_WRONLY | O_CREAT, S_IRUSR | S_IWUSR));
241 if (mapfd == -1) {
Yabin Cui25dd0382016-02-01 11:40:37 -0800242 ALOGE("failed to open %s: %s\n", tmp_map_file.c_str(), strerror(errno));
243 return -1;
244 }
Doug Zongker76adfc52014-01-13 10:04:25 -0800245
Tao Bao3a2bb592016-02-25 12:38:53 -0800246 // Make sure we can write to the socket.
247 if (!write_status_to_socket(0, socket)) {
248 ALOGE("failed to write to socket %d\n", socket);
Tao Bao383b00d2015-05-21 16:44:44 -0700249 return -1;
250 }
251
Tao Bao381f4552015-05-05 18:36:45 -0700252 struct stat sb;
Tao Baoc7547922015-08-06 18:35:05 -0700253 if (stat(path, &sb) != 0) {
Yabin Cui2d46da52016-01-26 16:50:15 -0800254 ALOGE("failed to stat %s", path);
Doug Zongker76adfc52014-01-13 10:04:25 -0800255 return -1;
256 }
257
Yabin Cui2d46da52016-01-26 16:50:15 -0800258 ALOGI(" block size: %ld bytes", static_cast<long>(sb.st_blksize));
Doug Zongker76adfc52014-01-13 10:04:25 -0800259
260 int blocks = ((sb.st_size-1) / sb.st_blksize) + 1;
Yabin Cui2d46da52016-01-26 16:50:15 -0800261 ALOGI(" file size: %" PRId64 " bytes, %d blocks", sb.st_size, blocks);
Doug Zongker76adfc52014-01-13 10:04:25 -0800262
Yabin Cui25dd0382016-02-01 11:40:37 -0800263 std::vector<int> ranges;
Doug Zongker76adfc52014-01-13 10:04:25 -0800264
Chih-Hung Hsieh54a27472016-04-18 11:30:55 -0700265 std::string s = android::base::StringPrintf("%s\n%" PRId64 " %" PRId64 "\n",
266 blk_dev, static_cast<int64_t>(sb.st_size),
267 static_cast<int64_t>(sb.st_blksize));
Elliott Hughesbcabd092016-03-22 20:19:22 -0700268 if (!android::base::WriteStringToFd(s, mapfd)) {
Yabin Cui2d46da52016-01-26 16:50:15 -0800269 ALOGE("failed to write %s: %s", tmp_map_file.c_str(), strerror(errno));
Yabin Cui25dd0382016-02-01 11:40:37 -0800270 return -1;
271 }
Doug Zongker76adfc52014-01-13 10:04:25 -0800272
Yabin Cui25dd0382016-02-01 11:40:37 -0800273 std::vector<std::vector<unsigned char>> buffers;
Doug Zongker76adfc52014-01-13 10:04:25 -0800274 if (encrypted) {
Yabin Cui25dd0382016-02-01 11:40:37 -0800275 buffers.resize(WINDOW_SIZE, std::vector<unsigned char>(sb.st_blksize));
Doug Zongker76adfc52014-01-13 10:04:25 -0800276 }
277 int head_block = 0;
278 int head = 0, tail = 0;
Doug Zongker76adfc52014-01-13 10:04:25 -0800279
Elliott Hughesbcabd092016-03-22 20:19:22 -0700280 android::base::unique_fd fd(open(path, O_RDONLY));
281 if (fd == -1) {
Yabin Cui2d46da52016-01-26 16:50:15 -0800282 ALOGE("failed to open %s for reading: %s", path, strerror(errno));
Doug Zongker76adfc52014-01-13 10:04:25 -0800283 return -1;
284 }
Doug Zongker76adfc52014-01-13 10:04:25 -0800285
Elliott Hughesbcabd092016-03-22 20:19:22 -0700286 android::base::unique_fd wfd;
Doug Zongker76adfc52014-01-13 10:04:25 -0800287 if (encrypted) {
Elliott Hughesbcabd092016-03-22 20:19:22 -0700288 wfd.reset(open(blk_dev, O_WRONLY));
289 if (wfd == -1) {
Yabin Cui2d46da52016-01-26 16:50:15 -0800290 ALOGE("failed to open fd for writing: %s", strerror(errno));
Doug Zongker76adfc52014-01-13 10:04:25 -0800291 return -1;
292 }
293 }
294
Tao Baob8df5fb2015-12-08 22:47:25 -0800295 off64_t pos = 0;
Tao Bao383b00d2015-05-21 16:44:44 -0700296 int last_progress = 0;
Doug Zongker76adfc52014-01-13 10:04:25 -0800297 while (pos < sb.st_size) {
Tao Bao383b00d2015-05-21 16:44:44 -0700298 // Update the status file, progress must be between [0, 99].
299 int progress = static_cast<int>(100 * (double(pos) / double(sb.st_size)));
300 if (progress > last_progress) {
Tao Bao3a2bb592016-02-25 12:38:53 -0800301 last_progress = progress;
302 write_status_to_socket(progress, socket);
Tao Bao383b00d2015-05-21 16:44:44 -0700303 }
304
Doug Zongker76adfc52014-01-13 10:04:25 -0800305 if ((tail+1) % WINDOW_SIZE == head) {
306 // write out head buffer
307 int block = head_block;
Elliott Hughesbcabd092016-03-22 20:19:22 -0700308 if (ioctl(fd, FIBMAP, &block) != 0) {
Yabin Cui2d46da52016-01-26 16:50:15 -0800309 ALOGE("failed to find block %d", head_block);
Doug Zongker76adfc52014-01-13 10:04:25 -0800310 return -1;
311 }
Yabin Cui25dd0382016-02-01 11:40:37 -0800312 add_block_to_ranges(ranges, block);
Doug Zongker76adfc52014-01-13 10:04:25 -0800313 if (encrypted) {
Elliott Hughesbcabd092016-03-22 20:19:22 -0700314 if (write_at_offset(buffers[head].data(), sb.st_blksize, wfd,
315 static_cast<off64_t>(sb.st_blksize) * block) != 0) {
Doug Zongker76adfc52014-01-13 10:04:25 -0800316 return -1;
317 }
318 }
319 head = (head + 1) % WINDOW_SIZE;
320 ++head_block;
321 }
322
323 // read next block to tail
324 if (encrypted) {
Yabin Cui25dd0382016-02-01 11:40:37 -0800325 size_t to_read = static_cast<size_t>(
326 std::min(static_cast<off64_t>(sb.st_blksize), sb.st_size - pos));
Elliott Hughesbcabd092016-03-22 20:19:22 -0700327 if (!android::base::ReadFully(fd, buffers[tail].data(), to_read)) {
Yabin Cui2d46da52016-01-26 16:50:15 -0800328 ALOGE("failed to read: %s", strerror(errno));
Yabin Cui25dd0382016-02-01 11:40:37 -0800329 return -1;
Doug Zongker76adfc52014-01-13 10:04:25 -0800330 }
Yabin Cui25dd0382016-02-01 11:40:37 -0800331 pos += to_read;
Doug Zongker76adfc52014-01-13 10:04:25 -0800332 } else {
333 // If we're not encrypting; we don't need to actually read
334 // anything, just skip pos forward as if we'd read a
335 // block.
336 pos += sb.st_blksize;
337 }
338 tail = (tail+1) % WINDOW_SIZE;
339 }
340
341 while (head != tail) {
342 // write out head buffer
343 int block = head_block;
Elliott Hughesbcabd092016-03-22 20:19:22 -0700344 if (ioctl(fd, FIBMAP, &block) != 0) {
Yabin Cui2d46da52016-01-26 16:50:15 -0800345 ALOGE("failed to find block %d", head_block);
Doug Zongker76adfc52014-01-13 10:04:25 -0800346 return -1;
347 }
Yabin Cui25dd0382016-02-01 11:40:37 -0800348 add_block_to_ranges(ranges, block);
Doug Zongker76adfc52014-01-13 10:04:25 -0800349 if (encrypted) {
Elliott Hughesbcabd092016-03-22 20:19:22 -0700350 if (write_at_offset(buffers[head].data(), sb.st_blksize, wfd,
351 static_cast<off64_t>(sb.st_blksize) * block) != 0) {
Doug Zongker76adfc52014-01-13 10:04:25 -0800352 return -1;
353 }
354 }
355 head = (head + 1) % WINDOW_SIZE;
356 ++head_block;
357 }
358
Yabin Cui25dd0382016-02-01 11:40:37 -0800359 if (!android::base::WriteStringToFd(
Elliott Hughesbcabd092016-03-22 20:19:22 -0700360 android::base::StringPrintf("%zu\n", ranges.size() / 2), mapfd)) {
Yabin Cui2d46da52016-01-26 16:50:15 -0800361 ALOGE("failed to write %s: %s", tmp_map_file.c_str(), strerror(errno));
Tao Baofb4ccef2015-05-04 10:10:13 -0700362 return -1;
363 }
Yabin Cui25dd0382016-02-01 11:40:37 -0800364 for (size_t i = 0; i < ranges.size(); i += 2) {
365 if (!android::base::WriteStringToFd(
Elliott Hughesbcabd092016-03-22 20:19:22 -0700366 android::base::StringPrintf("%d %d\n", ranges[i], ranges[i+1]), mapfd)) {
Yabin Cui2d46da52016-01-26 16:50:15 -0800367 ALOGE("failed to write %s: %s", tmp_map_file.c_str(), strerror(errno));
Tao Baofb4ccef2015-05-04 10:10:13 -0700368 return -1;
369 }
Doug Zongker76adfc52014-01-13 10:04:25 -0800370 }
371
Elliott Hughesbcabd092016-03-22 20:19:22 -0700372 if (fsync(mapfd) == -1) {
Yabin Cui2d46da52016-01-26 16:50:15 -0800373 ALOGE("failed to fsync \"%s\": %s", tmp_map_file.c_str(), strerror(errno));
Yabin Cui25dd0382016-02-01 11:40:37 -0800374 return -1;
375 }
Elliott Hughesbcabd092016-03-22 20:19:22 -0700376 if (close(mapfd.release()) == -1) {
Yabin Cui2d46da52016-01-26 16:50:15 -0800377 ALOGE("failed to close %s: %s", tmp_map_file.c_str(), strerror(errno));
Yabin Cui25dd0382016-02-01 11:40:37 -0800378 return -1;
379 }
Yabin Cui25dd0382016-02-01 11:40:37 -0800380
381 if (encrypted) {
Elliott Hughesbcabd092016-03-22 20:19:22 -0700382 if (fsync(wfd) == -1) {
Yabin Cui2d46da52016-01-26 16:50:15 -0800383 ALOGE("failed to fsync \"%s\": %s", blk_dev, strerror(errno));
Yabin Cui25dd0382016-02-01 11:40:37 -0800384 return -1;
385 }
Elliott Hughesbcabd092016-03-22 20:19:22 -0700386 if (close(wfd.release()) == -1) {
Yabin Cui2d46da52016-01-26 16:50:15 -0800387 ALOGE("failed to close %s: %s", blk_dev, strerror(errno));
Yabin Cui25dd0382016-02-01 11:40:37 -0800388 return -1;
389 }
Yabin Cui25dd0382016-02-01 11:40:37 -0800390 }
391
392 if (rename(tmp_map_file.c_str(), map_file) == -1) {
Yabin Cui2d46da52016-01-26 16:50:15 -0800393 ALOGE("failed to rename %s to %s: %s", tmp_map_file.c_str(), map_file, strerror(errno));
Yabin Cui25dd0382016-02-01 11:40:37 -0800394 return -1;
395 }
396 // Sync dir to make rename() result written to disk.
397 std::string file_name = map_file;
398 std::string dir_name = dirname(&file_name[0]);
Elliott Hughesbcabd092016-03-22 20:19:22 -0700399 android::base::unique_fd dfd(open(dir_name.c_str(), O_RDONLY | O_DIRECTORY));
400 if (dfd == -1) {
Yabin Cui2d46da52016-01-26 16:50:15 -0800401 ALOGE("failed to open dir %s: %s", dir_name.c_str(), strerror(errno));
Yabin Cui25dd0382016-02-01 11:40:37 -0800402 return -1;
403 }
Elliott Hughesbcabd092016-03-22 20:19:22 -0700404 if (fsync(dfd) == -1) {
Yabin Cui2d46da52016-01-26 16:50:15 -0800405 ALOGE("failed to fsync %s: %s", dir_name.c_str(), strerror(errno));
Yabin Cui25dd0382016-02-01 11:40:37 -0800406 return -1;
407 }
Elliott Hughesbcabd092016-03-22 20:19:22 -0700408 if (close(dfd.release()) == -1) {
Yabin Cui2d46da52016-01-26 16:50:15 -0800409 ALOGE("failed to close %s: %s", dir_name.c_str(), strerror(errno));
Yabin Cui25dd0382016-02-01 11:40:37 -0800410 return -1;
411 }
Doug Zongker76adfc52014-01-13 10:04:25 -0800412 return 0;
413}
414
Tao Bao3a2bb592016-02-25 12:38:53 -0800415static int uncrypt(const char* input_path, const char* map_file, const int socket) {
Tao Bao383b00d2015-05-21 16:44:44 -0700416 ALOGI("update package is \"%s\"", input_path);
Doug Zongkerf449db22014-08-26 09:15:08 -0700417
Doug Zongker76adfc52014-01-13 10:04:25 -0800418 // Turn the name of the file we're supposed to convert into an
419 // absolute path, so we can find what filesystem it's on.
420 char path[PATH_MAX+1];
421 if (realpath(input_path, path) == NULL) {
Tao Bao383b00d2015-05-21 16:44:44 -0700422 ALOGE("failed to convert \"%s\" to absolute path: %s", input_path, strerror(errno));
Doug Zongker76adfc52014-01-13 10:04:25 -0800423 return 1;
424 }
425
Tao Bao381f4552015-05-05 18:36:45 -0700426 bool encryptable;
427 bool encrypted;
Doug Zongker76adfc52014-01-13 10:04:25 -0800428 const char* blk_dev = find_block_device(path, &encryptable, &encrypted);
429 if (blk_dev == NULL) {
Doug Zongkerf449db22014-08-26 09:15:08 -0700430 ALOGE("failed to find block device for %s", path);
Doug Zongker76adfc52014-01-13 10:04:25 -0800431 return 1;
432 }
433
434 // If the filesystem it's on isn't encrypted, we only produce the
435 // block map, we don't rewrite the file contents (it would be
436 // pointless to do so).
Yabin Cui2d46da52016-01-26 16:50:15 -0800437 ALOGI("encryptable: %s", encryptable ? "yes" : "no");
438 ALOGI(" encrypted: %s", encrypted ? "yes" : "no");
Doug Zongker76adfc52014-01-13 10:04:25 -0800439
Doug Zongker574443d2014-09-05 08:22:12 -0700440 // Recovery supports installing packages from 3 paths: /cache,
441 // /data, and /sdcard. (On a particular device, other locations
442 // may work, but those are three we actually expect.)
443 //
444 // On /data we want to convert the file to a block map so that we
445 // can read the package without mounting the partition. On /cache
446 // and /sdcard we leave the file alone.
Tao Bao383b00d2015-05-21 16:44:44 -0700447 if (strncmp(path, "/data/", 6) == 0) {
Doug Zongkerf449db22014-08-26 09:15:08 -0700448 ALOGI("writing block map %s", map_file);
Tao Bao3a2bb592016-02-25 12:38:53 -0800449 if (produce_block_map(path, map_file, blk_dev, encrypted, socket) != 0) {
Tao Bao383b00d2015-05-21 16:44:44 -0700450 return 1;
451 }
452 }
453
454 return 0;
455}
456
Tao Bao3a2bb592016-02-25 12:38:53 -0800457static bool uncrypt_wrapper(const char* input_path, const char* map_file, const int socket) {
Yabin Cui2d46da52016-01-26 16:50:15 -0800458 std::string package;
459 if (input_path == nullptr) {
460 if (!find_uncrypt_package(UNCRYPT_PATH_FILE, &package)) {
Tao Bao3a2bb592016-02-25 12:38:53 -0800461 write_status_to_socket(-1, socket);
462 return false;
Yabin Cui2d46da52016-01-26 16:50:15 -0800463 }
464 input_path = package.c_str();
465 }
466 CHECK(map_file != nullptr);
Tao Bao3a2bb592016-02-25 12:38:53 -0800467 int status = uncrypt(input_path, map_file, socket);
Yabin Cui2d46da52016-01-26 16:50:15 -0800468 if (status != 0) {
Tao Bao3a2bb592016-02-25 12:38:53 -0800469 write_status_to_socket(-1, socket);
470 return false;
Yabin Cui2d46da52016-01-26 16:50:15 -0800471 }
Tao Bao3a2bb592016-02-25 12:38:53 -0800472 write_status_to_socket(100, socket);
473 return true;
Yabin Cui2d46da52016-01-26 16:50:15 -0800474}
475
Tao Bao3a2bb592016-02-25 12:38:53 -0800476static bool clear_bcb(const int socket) {
Yabin Cuia58a6db2016-04-06 15:52:18 -0700477 std::string err;
478 if (!clear_bootloader_message(&err)) {
479 ALOGE("failed to clear bootloader message: %s", err.c_str());
Tao Bao3a2bb592016-02-25 12:38:53 -0800480 write_status_to_socket(-1, socket);
481 return false;
Yabin Cui2d46da52016-01-26 16:50:15 -0800482 }
Tao Bao3a2bb592016-02-25 12:38:53 -0800483 write_status_to_socket(100, socket);
484 return true;
Yabin Cui2d46da52016-01-26 16:50:15 -0800485}
486
Tao Bao3a2bb592016-02-25 12:38:53 -0800487static bool setup_bcb(const int socket) {
488 // c5. receive message length
489 int length;
490 if (!android::base::ReadFully(socket, &length, 4)) {
491 ALOGE("failed to read the length: %s", strerror(errno));
492 return false;
Yabin Cui2d46da52016-01-26 16:50:15 -0800493 }
Tao Bao3a2bb592016-02-25 12:38:53 -0800494 length = ntohl(length);
495
496 // c7. receive message
Yabin Cui2d46da52016-01-26 16:50:15 -0800497 std::string content;
Tao Bao3a2bb592016-02-25 12:38:53 -0800498 content.resize(length);
499 if (!android::base::ReadFully(socket, &content[0], length)) {
500 ALOGE("failed to read the length: %s", strerror(errno));
501 return false;
Yabin Cui2d46da52016-01-26 16:50:15 -0800502 }
Tao Bao3a2bb592016-02-25 12:38:53 -0800503 ALOGI(" received command: [%s] (%zu)", content.c_str(), content.size());
504
505 // c8. setup the bcb command
Yabin Cuia58a6db2016-04-06 15:52:18 -0700506 std::string err;
507 if (!write_bootloader_message({content}, &err)) {
508 ALOGE("failed to set bootloader message: %s", err.c_str());
Tao Bao3a2bb592016-02-25 12:38:53 -0800509 write_status_to_socket(-1, socket);
510 return false;
Yabin Cui2d46da52016-01-26 16:50:15 -0800511 }
Tao Bao3a2bb592016-02-25 12:38:53 -0800512 // c10. send "100" status
513 write_status_to_socket(100, socket);
514 return true;
Yabin Cui2d46da52016-01-26 16:50:15 -0800515}
516
Yabin Cui2d46da52016-01-26 16:50:15 -0800517static void usage(const char* exename) {
518 fprintf(stderr, "Usage of %s:\n", exename);
519 fprintf(stderr, "%s [<package_path> <map_file>] Uncrypt ota package.\n", exename);
Yabin Cui2d46da52016-01-26 16:50:15 -0800520 fprintf(stderr, "%s --clear-bcb Clear BCB data in misc partition.\n", exename);
521 fprintf(stderr, "%s --setup-bcb Setup BCB data by command file.\n", exename);
Yabin Cui2d46da52016-01-26 16:50:15 -0800522}
523
524int main(int argc, char** argv) {
Tao Bao3a2bb592016-02-25 12:38:53 -0800525 enum { UNCRYPT, SETUP_BCB, CLEAR_BCB } action;
526 const char* input_path = nullptr;
527 const char* map_file = CACHE_BLOCK_MAP.c_str();
528
529 if (argc == 2 && strcmp(argv[1], "--clear-bcb") == 0) {
530 action = CLEAR_BCB;
531 } else if (argc == 2 && strcmp(argv[1], "--setup-bcb") == 0) {
532 action = SETUP_BCB;
Tao Bao3a2bb592016-02-25 12:38:53 -0800533 } else if (argc == 1) {
534 action = UNCRYPT;
535 } else if (argc == 3) {
536 input_path = argv[1];
537 map_file = argv[2];
538 action = UNCRYPT;
539 } else {
540 usage(argv[0]);
541 return 2;
Doug Zongker76adfc52014-01-13 10:04:25 -0800542 }
Tao Bao3a2bb592016-02-25 12:38:53 -0800543
544 if ((fstab = read_fstab()) == nullptr) {
545 return 1;
546 }
547
548 // c3. The socket is created by init when starting the service. uncrypt
549 // will use the socket to communicate with its caller.
Elliott Hughesd6ac6862016-03-29 12:44:09 -0700550 android::base::unique_fd service_socket(android_get_control_socket(UNCRYPT_SOCKET.c_str()));
551 if (service_socket == -1) {
Tao Bao3a2bb592016-02-25 12:38:53 -0800552 ALOGE("failed to open socket \"%s\": %s", UNCRYPT_SOCKET.c_str(), strerror(errno));
553 return 1;
554 }
Elliott Hughesd6ac6862016-03-29 12:44:09 -0700555 fcntl(service_socket, F_SETFD, FD_CLOEXEC);
Tao Bao3a2bb592016-02-25 12:38:53 -0800556
Elliott Hughesd6ac6862016-03-29 12:44:09 -0700557 if (listen(service_socket, 1) == -1) {
Tao Bao3a2bb592016-02-25 12:38:53 -0800558 ALOGE("failed to listen on socket %d: %s", service_socket.get(), strerror(errno));
559 return 1;
560 }
561
Elliott Hughesd6ac6862016-03-29 12:44:09 -0700562 android::base::unique_fd socket_fd(accept4(service_socket, nullptr, nullptr, SOCK_CLOEXEC));
563 if (socket_fd == -1) {
Tao Bao3a2bb592016-02-25 12:38:53 -0800564 ALOGE("failed to accept on socket %d: %s", service_socket.get(), strerror(errno));
565 return 1;
566 }
567
568 bool success = false;
569 switch (action) {
570 case UNCRYPT:
Elliott Hughesd6ac6862016-03-29 12:44:09 -0700571 success = uncrypt_wrapper(input_path, map_file, socket_fd);
Tao Bao3a2bb592016-02-25 12:38:53 -0800572 break;
573 case SETUP_BCB:
Elliott Hughesd6ac6862016-03-29 12:44:09 -0700574 success = setup_bcb(socket_fd);
Tao Bao3a2bb592016-02-25 12:38:53 -0800575 break;
576 case CLEAR_BCB:
Elliott Hughesd6ac6862016-03-29 12:44:09 -0700577 success = clear_bcb(socket_fd);
Tao Bao3a2bb592016-02-25 12:38:53 -0800578 break;
579 default: // Should never happen.
580 ALOGE("Invalid uncrypt action code: %d", action);
581 return 1;
582 }
583
584 // c13. Read a 4-byte code from the client before uncrypt exits. This is to
585 // ensure the client to receive the last status code before the socket gets
586 // destroyed.
587 int code;
Elliott Hughesd6ac6862016-03-29 12:44:09 -0700588 if (android::base::ReadFully(socket_fd, &code, 4)) {
Tao Bao3a2bb592016-02-25 12:38:53 -0800589 ALOGI(" received %d, exiting now", code);
590 } else {
591 ALOGE("failed to read the code: %s", strerror(errno));
592 }
593 return success ? 0 : 1;
Doug Zongker76adfc52014-01-13 10:04:25 -0800594}