Gitiles
Code Review Sign In
gerrit.twrp.me / android_bootable_recovery / bc7ffeda98a861e346c30c771d3258030f7fcf21 / . / uncrypt / uncrypt.c
blob: 77bfdc20736e68678802d2e35adac7e9a2c3264b [file] [log] [blame]
Doug Zongker76adfc52014-01-13 10:04:25 -0800[diff] [blame]1/*
2 * Copyright (C) 2014 The Android Open Source Project
3 *
4 * Licensed under the Apache License, Version 2.0 (the "License");
5 * you may not use this file except in compliance with the License.
6 * You may obtain a copy of the License at
7 *
8 * http://www.apache.org/licenses/LICENSE-2.0
9 *
10 * Unless required by applicable law or agreed to in writing, software
11 * distributed under the License is distributed on an "AS IS" BASIS,
12 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13 * See the License for the specific language governing permissions and
14 * limitations under the License.
15 */
16
17// This program takes a file on an ext4 filesystem and produces a list
18// of the blocks that file occupies, which enables the file contents
19// to be read directly from the block device without mounting the
20// filesystem.
21//
22// If the filesystem is using an encrypted block device, it will also
23// read the file and rewrite it to the same blocks of the underlying
24// (unencrypted) block device, so the file contents can be read
25// without the need for the decryption key.
26//
27// The output of this program is a "block map" which looks like this:
28//
29// /dev/block/platform/msm_sdcc.1/by-name/userdata # block device
30// 49652 4096 # file size in bytes, block size
31// 3 # count of block ranges
32// 1000 1008 # block range 0
33// 2100 2102 # ... block range 1
34// 30 33 # ... block range 2
35//
36// Each block range represents a half-open interval; the line "30 33"
37// reprents the blocks [30, 31, 32].
38//
39// Recovery can take this block map file and retrieve the underlying
40// file data to use as an update package.
41
42#include <stdio.h>
43#include <stdlib.h>
44#include <stdarg.h>
45#include <sys/types.h>
46#include <sys/stat.h>
47#include <fcntl.h>
48#include <linux/fs.h>
49#include <sys/mman.h>
50
51#include <cutils/properties.h>
52#include <fs_mgr.h>
53
54#define WINDOW_SIZE 5
55#define RECOVERY_COMMAND_FILE "/cache/recovery/command"
56#define RECOVERY_COMMAND_FILE_TMP "/cache/recovery/command.tmp"
57#define CACHE_BLOCK_MAP "/cache/recovery/block.map"
58
Doug Zongker2efc9d92014-08-18 15:55:28 -0700[diff] [blame]59static struct fstab* fstab = NULL;
60
Doug Zongker76adfc52014-01-13 10:04:25 -0800[diff] [blame]61static int write_at_offset(unsigned char* buffer, size_t size,
62 int wfd, off64_t offset)
63{
64 lseek64(wfd, offset, SEEK_SET);
65 size_t written = 0;
66 while (written < size) {
67 ssize_t wrote = write(wfd, buffer + written, size - written);
68 if (wrote < 0) {
69 fprintf(stderr, "error writing offset %lld: %s\n", offset, strerror(errno));
70 return -1;
71 }
72 written += wrote;
73 }
74 return 0;
75}
76
77void add_block_to_ranges(int** ranges, int* range_alloc, int* range_used, int new_block)
78{
79 // If the current block start is < 0, set the start to the new
80 // block. (This only happens for the very first block of the very
81 // first range.)
82 if ((*ranges)[*range_used*2-2] < 0) {
83 (*ranges)[*range_used*2-2] = new_block;
84 (*ranges)[*range_used*2-1] = new_block;
85 }
86
87 if (new_block == (*ranges)[*range_used*2-1]) {
88 // If the new block comes immediately after the current range,
89 // all we have to do is extend the current range.
90 ++(*ranges)[*range_used*2-1];
91 } else {
92 // We need to start a new range.
93
94 // If there isn't enough room in the array, we need to expand it.
95 if (*range_used >= *range_alloc) {
96 *range_alloc *= 2;
97 *ranges = realloc(*ranges, *range_alloc * 2 * sizeof(int));
98 }
99
100 ++*range_used;
101 (*ranges)[*range_used*2-2] = new_block;
102 (*ranges)[*range_used*2-1] = new_block+1;
103 }
104}
105
Doug Zongker2efc9d92014-08-18 15:55:28 -0700[diff] [blame]106static struct fstab* read_fstab()
Doug Zongker76adfc52014-01-13 10:04:25 -0800[diff] [blame]107{
Doug Zongker2efc9d92014-08-18 15:55:28 -0700[diff] [blame]108 fstab = NULL;
109
Doug Zongker76adfc52014-01-13 10:04:25 -0800[diff] [blame]110 // The fstab path is always "/fstab.${ro.hardware}".
111 char fstab_path[PATH_MAX+1] = "/fstab.";
112 if (!property_get("ro.hardware", fstab_path+strlen(fstab_path), "")) {
113 fprintf(stderr, "failed to get ro.hardware\n");
114 return NULL;
115 }
116
Doug Zongker2efc9d92014-08-18 15:55:28 -0700[diff] [blame]117 fstab = fs_mgr_read_fstab(fstab_path);
Doug Zongker76adfc52014-01-13 10:04:25 -0800[diff] [blame]118 if (!fstab) {
119 fprintf(stderr, "failed to read %s\n", fstab_path);
120 return NULL;
121 }
122
Doug Zongker2efc9d92014-08-18 15:55:28 -0700[diff] [blame]123 return fstab;
124}
125
126const char* find_block_device(const char* path, int* encryptable, int* encrypted)
127{
Doug Zongker76adfc52014-01-13 10:04:25 -0800[diff] [blame]128 // Look for a volume whose mount point is the prefix of path and
129 // return its block device. Set encrypted if it's currently
130 // encrypted.
131 int i;
132 for (i = 0; i < fstab->num_entries; ++i) {
133 struct fstab_rec* v = &fstab->recs[i];
134 if (!v->mount_point) continue;
135 int len = strlen(v->mount_point);
136 if (strncmp(path, v->mount_point, len) == 0 &&
137 (path[len] == '/' || path[len] == 0)) {
138 *encrypted = 0;
139 *encryptable = 0;
140 if (fs_mgr_is_encryptable(v)) {
141 *encryptable = 1;
142 char buffer[PROPERTY_VALUE_MAX+1];
143 if (property_get("ro.crypto.state", buffer, "") &&
144 strcmp(buffer, "encrypted") == 0) {
145 *encrypted = 1;
146 }
147 }
148 return v->blk_device;
149 }
150 }
151
152 return NULL;
153}
154
155char* parse_recovery_command_file()
156{
157 char* fn = NULL;
158 int count = 0;
159 char temp[1024];
160
Maxim Siniavinee7b28882014-02-13 15:48:53 -0800[diff] [blame]161
Doug Zongker76adfc52014-01-13 10:04:25 -0800[diff] [blame]162
163 FILE* f = fopen(RECOVERY_COMMAND_FILE, "r");
Maxim Siniavinee7b28882014-02-13 15:48:53 -0800[diff] [blame]164 if (f == NULL) {
165 return NULL;
166 }
167 FILE* fo = fopen(RECOVERY_COMMAND_FILE_TMP, "w");
168
Doug Zongker76adfc52014-01-13 10:04:25 -0800[diff] [blame]169 while (fgets(temp, sizeof(temp), f)) {
170 printf("read: %s", temp);
Doug Zongkereaf33652014-07-31 14:59:01 -0700[diff] [blame]171 if (strncmp(temp, "--update_package=/data/", strlen("--update_package=/data/")) == 0) {
Doug Zongker76adfc52014-01-13 10:04:25 -0800[diff] [blame]172 fn = strdup(temp + strlen("--update_package="));
173 strcpy(temp, "--update_package=@" CACHE_BLOCK_MAP "\n");
174 }
175 fputs(temp, fo);
176 }
177 fclose(f);
178 fclose(fo);
179
180 if (fn) {
181 char* newline = strchr(fn, '\n');
182 if (newline) *newline = 0;
183 }
184 return fn;
185}
186
187int produce_block_map(const char* path, const char* map_file, const char* blk_dev,
188 int encrypted)
189{
190 struct stat sb;
191 int ret;
192
193 FILE* mapf = fopen(map_file, "w");
194
195 ret = stat(path, &sb);
196 if (ret != 0) {
197 fprintf(stderr, "failed to stat %s\n", path);
198 return -1;
199 }
200
Mark Salyzyn2605dec2014-03-19 15:30:25 -0700[diff] [blame]201 printf(" block size: %ld bytes\n", (long)sb.st_blksize);
Doug Zongker76adfc52014-01-13 10:04:25 -0800[diff] [blame]202
203 int blocks = ((sb.st_size-1) / sb.st_blksize) + 1;
Mark Salyzyn2605dec2014-03-19 15:30:25 -0700[diff] [blame]204 printf(" file size: %lld bytes, %d blocks\n", (long long)sb.st_size, blocks);
Doug Zongker76adfc52014-01-13 10:04:25 -0800[diff] [blame]205
206 int* ranges;
207 int range_alloc = 1;
208 int range_used = 1;
209 ranges = malloc(range_alloc * 2 * sizeof(int));
210 ranges[0] = -1;
211 ranges[1] = -1;
212
Mark Salyzyn2605dec2014-03-19 15:30:25 -0700[diff] [blame]213 fprintf(mapf, "%s\n%lld %lu\n", blk_dev, (long long)sb.st_size, (unsigned long)sb.st_blksize);
Doug Zongker76adfc52014-01-13 10:04:25 -0800[diff] [blame]214
215 unsigned char* buffers[WINDOW_SIZE];
216 int i;
217 if (encrypted) {
218 for (i = 0; i < WINDOW_SIZE; ++i) {
219 buffers[i] = malloc(sb.st_blksize);
220 }
221 }
222 int head_block = 0;
223 int head = 0, tail = 0;
224 size_t pos = 0;
225
226 int fd = open(path, O_RDONLY);
227 if (fd < 0) {
228 fprintf(stderr, "failed to open fd for reading: %s\n", strerror(errno));
229 return -1;
230 }
231 fsync(fd);
232
233 int wfd = -1;
234 if (encrypted) {
235 wfd = open(blk_dev, O_WRONLY);
236 if (wfd < 0) {
237 fprintf(stderr, "failed to open fd for writing: %s\n", strerror(errno));
238 return -1;
239 }
240 }
241
242 while (pos < sb.st_size) {
243 if ((tail+1) % WINDOW_SIZE == head) {
244 // write out head buffer
245 int block = head_block;
246 ret = ioctl(fd, FIBMAP, &block);
247 if (ret != 0) {
248 fprintf(stderr, "failed to find block %d\n", head_block);
249 return -1;
250 }
251 add_block_to_ranges(&ranges, &range_alloc, &range_used, block);
252 if (encrypted) {
253 if (write_at_offset(buffers[head], sb.st_blksize, wfd, (off64_t)sb.st_blksize * block) != 0) {
254 return -1;
255 }
256 }
257 head = (head + 1) % WINDOW_SIZE;
258 ++head_block;
259 }
260
261 // read next block to tail
262 if (encrypted) {
263 size_t so_far = 0;
264 while (so_far < sb.st_blksize && pos < sb.st_size) {
265 ssize_t this_read = read(fd, buffers[tail] + so_far, sb.st_blksize - so_far);
266 if (this_read < 0) {
267 fprintf(stderr, "failed to read: %s\n", strerror(errno));
268 return -1;
269 }
270 so_far += this_read;
271 pos += this_read;
272 }
273 } else {
274 // If we're not encrypting; we don't need to actually read
275 // anything, just skip pos forward as if we'd read a
276 // block.
277 pos += sb.st_blksize;
278 }
279 tail = (tail+1) % WINDOW_SIZE;
280 }
281
282 while (head != tail) {
283 // write out head buffer
284 int block = head_block;
285 ret = ioctl(fd, FIBMAP, &block);
286 if (ret != 0) {
287 fprintf(stderr, "failed to find block %d\n", head_block);
288 return -1;
289 }
290 add_block_to_ranges(&ranges, &range_alloc, &range_used, block);
291 if (encrypted) {
292 if (write_at_offset(buffers[head], sb.st_blksize, wfd, (off64_t)sb.st_blksize * block) != 0) {
293 return -1;
294 }
295 }
296 head = (head + 1) % WINDOW_SIZE;
297 ++head_block;
298 }
299
300 fprintf(mapf, "%d\n", range_used);
301 for (i = 0; i < range_used; ++i) {
302 fprintf(mapf, "%d %d\n", ranges[i*2], ranges[i*2+1]);
303 }
304
305 fclose(mapf);
306 close(fd);
307 if (encrypted) {
308 close(wfd);
309 }
310
311 return 0;
312}
313
Doug Zongker2efc9d92014-08-18 15:55:28 -0700[diff] [blame]314void wipe_misc() {
315 int i;
316 for (i = 0; i < fstab->num_entries; ++i) {
317 struct fstab_rec* v = &fstab->recs[i];
318 if (!v->mount_point) continue;
319 if (strcmp(v->mount_point, "/misc") == 0) {
320 int fd = open(v->blk_device, O_RDWR);
321 uint8_t zeroes[1088]; // sizeof(bootloader_message) from recovery
322 memset(zeroes, 0, sizeof(zeroes));
323
324 size_t written = 0;
325 size_t size = sizeof(zeroes);
326 while (written < size) {
327 ssize_t w = write(fd, zeroes, size-written);
328 if (w < 0 && errno != EINTR) {
329 fprintf(stderr, "zero write failed: %s\n", strerror(errno));
330 return;
331 } else {
332 written += w;
333 }
334 }
335
336 close(fd);
337 }
338 }
339}
340
Doug Zongker76adfc52014-01-13 10:04:25 -0800[diff] [blame]341void reboot_to_recovery() {
342 property_set("sys.powerctl", "reboot,recovery");
343 sleep(10);
344}
345
346int main(int argc, char** argv)
347{
348 const char* input_path;
349 const char* map_file;
350 int do_reboot = 1;
351
352 if (argc != 1 && argc != 3) {
353 fprintf(stderr, "usage: %s [<transform_path> <map_file>]\n", argv[0]);
354 return 2;
355 }
356
357 if (argc == 3) {
358 // when command-line args are given this binary is being used
359 // for debugging; don't reboot to recovery at the end.
360 input_path = argv[1];
361 map_file = argv[2];
362 do_reboot = 0;
363 } else {
364 input_path = parse_recovery_command_file();
365 if (input_path == NULL) {
366 // if we're rebooting to recovery without a package (say,
367 // to wipe data), then we don't need to do anything before
368 // going to recovery.
369 fprintf(stderr, "no recovery command file or no update package arg");
370 reboot_to_recovery();
371 return 1;
372 }
373 map_file = CACHE_BLOCK_MAP;
374 }
375
376 // Turn the name of the file we're supposed to convert into an
377 // absolute path, so we can find what filesystem it's on.
378 char path[PATH_MAX+1];
379 if (realpath(input_path, path) == NULL) {
380 fprintf(stderr, "failed to convert %s to absolute path: %s\n", input_path, strerror(errno));
381 return 1;
382 }
383
384 int encryptable;
385 int encrypted;
Doug Zongker2efc9d92014-08-18 15:55:28 -0700[diff] [blame]386 if (read_fstab() == NULL) {
387 return 1;
388 }
Doug Zongker76adfc52014-01-13 10:04:25 -0800[diff] [blame]389 const char* blk_dev = find_block_device(path, &encryptable, &encrypted);
390 if (blk_dev == NULL) {
391 fprintf(stderr, "failed to find block device for %s\n", path);
392 return 1;
393 }
394
395 // If the filesystem it's on isn't encrypted, we only produce the
396 // block map, we don't rewrite the file contents (it would be
397 // pointless to do so).
398 printf("encryptable: %s\n", encryptable ? "yes" : "no");
399 printf(" encrypted: %s\n", encrypted ? "yes" : "no");
400
401 if (!encryptable) {
402 // If the file is on a filesystem that doesn't support
403 // encryption (eg, /cache), then leave it alone.
404 //
405 // TODO: change this to be !encrypted -- if the file is on
406 // /data but /data isn't encrypted, we don't need to use the
407 // block map mechanism. We do for now so as to get more
408 // testing of it (since most dogfood devices aren't
409 // encrypted).
410
411 unlink(RECOVERY_COMMAND_FILE_TMP);
412 } else {
413 if (produce_block_map(path, map_file, blk_dev, encrypted) != 0) {
414 return 1;
415 }
416 }
417
Doug Zongker2efc9d92014-08-18 15:55:28 -0700[diff] [blame]418 wipe_misc();
Doug Zongker76adfc52014-01-13 10:04:25 -0800[diff] [blame]419 rename(RECOVERY_COMMAND_FILE_TMP, RECOVERY_COMMAND_FILE);
Doug Zongker2efc9d92014-08-18 15:55:28 -0700[diff] [blame]420 if (do_reboot) reboot_to_recovery();
Doug Zongker76adfc52014-01-13 10:04:25 -0800[diff] [blame]421 return 0;
422}