1 /*
2 * Copyright (C) 2015 The Android Open Source Project
3 *
4 * Licensed under the Apache License, Version 2.0 (the "License");
5 * you may not use this file except in compliance with the License.
6 * You may obtain a copy of the License at
7 *
8 * http://www.apache.org/licenses/LICENSE-2.0
9 *
10 * Unless required by applicable law or agreed to in writing, software
11 * distributed under the License is distributed on an "AS IS" BASIS,
12 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13 * See the License for the specific language governing permissions and
14 * limitations under the License.
15 */
16
17 #include "FsCrypt.h"
18
19 #include "KeyStorage.h"
20 #include "KeyUtil.h"
21 #include "Utils.h"
22 #include "VoldUtil.h"
23
24 #include <algorithm>
25 #include <map>
26 #include <optional>
27 #include <set>
28 #include <sstream>
29 #include <string>
30 #include <vector>
31
32 #include <dirent.h>
33 #include <errno.h>
34 #include <fcntl.h>
35 #include <limits.h>
36 #include <selinux/android.h>
37 #include <sys/mount.h>
38 #include <sys/stat.h>
39 #include <sys/types.h>
40 #include <unistd.h>
41
42 #include <private/android_filesystem_config.h>
43
44 #include "android/os/IVold.h"
45
46 #define EMULATED_USES_SELINUX 0
47 #define MANAGE_MISC_DIRS 0
48
49 #include <cutils/fs.h>
50 #include <cutils/properties.h>
51
52 #include <fscrypt/fscrypt.h>
53 #include <keyutils.h>
54 #include <libdm/dm.h>
55
56 #include <android-base/file.h>
57 #include <android-base/logging.h>
58 #include <android-base/properties.h>
59 #include <android-base/stringprintf.h>
60 #include <android-base/strings.h>
61 #include <android-base/unique_fd.h>
62
63 using android::base::Basename;
64 using android::base::Realpath;
65 using android::base::StartsWith;
66 using android::base::StringPrintf;
67 using android::fs_mgr::GetEntryForMountPoint;
68 using android::vold::BuildDataPath;
69 using android::vold::kEmptyAuthentication;
70 using android::vold::KeyBuffer;
71 using android::vold::KeyGeneration;
72 using android::vold::retrieveKey;
73 using android::vold::retrieveOrGenerateKey;
74 using android::vold::writeStringToFile;
75 using namespace android::fscrypt;
76 using namespace android::dm;
77
78 namespace {
79
80 const std::string device_key_dir = std::string() + DATA_MNT_POINT + fscrypt_unencrypted_folder;
81 const std::string device_key_path = device_key_dir + "/key";
82 const std::string device_key_temp = device_key_dir + "/temp";
83
84 const std::string user_key_dir = std::string() + DATA_MNT_POINT + "/misc/vold/user_keys";
85 const std::string user_key_temp = user_key_dir + "/temp";
86 const std::string prepare_subdirs_path = "/system/bin/vold_prepare_subdirs";
87
88 const std::string systemwide_volume_key_dir =
89 std::string() + DATA_MNT_POINT + "/misc/vold/volume_keys";
90
91 // Some users are ephemeral, don't try to wipe their keys from disk
92 std::set<userid_t> s_ephemeral_users;
93
94 // Map user ids to encryption policies
95 std::map<userid_t, EncryptionPolicy> s_de_policies;
96 std::map<userid_t, EncryptionPolicy> s_ce_policies;
97
98 } // namespace
99
100 // Returns KeyGeneration suitable for key as described in EncryptionOptions
makeGen(const EncryptionOptions & options)101 static KeyGeneration makeGen(const EncryptionOptions& options) {
102 return KeyGeneration{FSCRYPT_MAX_KEY_SIZE, true, options.use_hw_wrapped_key};
103 }
104
fscrypt_is_emulated()105 static bool fscrypt_is_emulated() {
106 return property_get_bool("persist.sys.emulate_fbe", false);
107 }
108
escape_empty(const std::string & value)109 static const char* escape_empty(const std::string& value) {
110 return value.empty() ? "null" : value.c_str();
111 }
112
get_de_key_path(userid_t user_id)113 static std::string get_de_key_path(userid_t user_id) {
114 return StringPrintf("%s/de/%d", user_key_dir.c_str(), user_id);
115 }
116
get_ce_key_directory_path(userid_t user_id)117 static std::string get_ce_key_directory_path(userid_t user_id) {
118 return StringPrintf("%s/ce/%d", user_key_dir.c_str(), user_id);
119 }
120
121 // Returns the keys newest first
get_ce_key_paths(const std::string & directory_path)122 static std::vector<std::string> get_ce_key_paths(const std::string& directory_path) {
123 auto dirp = std::unique_ptr<DIR, int (*)(DIR*)>(opendir(directory_path.c_str()), closedir);
124 if (!dirp) {
125 PLOG(ERROR) << "Unable to open ce key directory: " + directory_path;
126 return std::vector<std::string>();
127 }
128 std::vector<std::string> result;
129 for (;;) {
130 errno = 0;
131 auto const entry = readdir(dirp.get());
132 if (!entry) {
133 if (errno) {
134 PLOG(ERROR) << "Unable to read ce key directory: " + directory_path;
135 return std::vector<std::string>();
136 }
137 break;
138 }
139 if (entry->d_type != DT_DIR || entry->d_name[0] != 'c') {
140 LOG(DEBUG) << "Skipping non-key " << entry->d_name;
141 continue;
142 }
143 result.emplace_back(directory_path + "/" + entry->d_name);
144 }
145 std::sort(result.begin(), result.end());
146 std::reverse(result.begin(), result.end());
147 return result;
148 }
149
get_ce_key_current_path(const std::string & directory_path)150 static std::string get_ce_key_current_path(const std::string& directory_path) {
151 return directory_path + "/current";
152 }
153
get_ce_key_new_path(const std::string & directory_path,const std::vector<std::string> & paths,std::string * ce_key_path)154 static bool get_ce_key_new_path(const std::string& directory_path,
155 const std::vector<std::string>& paths, std::string* ce_key_path) {
156 if (paths.empty()) {
157 *ce_key_path = get_ce_key_current_path(directory_path);
158 return true;
159 }
160 for (unsigned int i = 0; i < UINT_MAX; i++) {
161 auto const candidate = StringPrintf("%s/cx%010u", directory_path.c_str(), i);
162 if (paths[0] < candidate) {
163 *ce_key_path = candidate;
164 return true;
165 }
166 }
167 return false;
168 }
169
170 // Discard all keys but the named one; rename it to canonical name.
171 // No point in acting on errors in this; ignore them.
fixate_user_ce_key(const std::string & directory_path,const std::string & to_fix,const std::vector<std::string> & paths)172 static void fixate_user_ce_key(const std::string& directory_path, const std::string& to_fix,
173 const std::vector<std::string>& paths) {
174 for (auto const other_path : paths) {
175 if (other_path != to_fix) {
176 android::vold::destroyKey(other_path);
177 }
178 }
179 auto const current_path = get_ce_key_current_path(directory_path);
180 if (to_fix != current_path) {
181 LOG(DEBUG) << "Renaming " << to_fix << " to " << current_path;
182 if (rename(to_fix.c_str(), current_path.c_str()) != 0) {
183 PLOG(WARNING) << "Unable to rename " << to_fix << " to " << current_path;
184 return;
185 }
186 }
187 android::vold::FsyncDirectory(directory_path);
188 }
189
read_and_fixate_user_ce_key(userid_t user_id,const android::vold::KeyAuthentication & auth,KeyBuffer * ce_key)190 static bool read_and_fixate_user_ce_key(userid_t user_id,
191 const android::vold::KeyAuthentication& auth,
192 KeyBuffer* ce_key) {
193 auto const directory_path = get_ce_key_directory_path(user_id);
194 auto const paths = get_ce_key_paths(directory_path);
195 for (auto const ce_key_path : paths) {
196 LOG(DEBUG) << "Trying user CE key " << ce_key_path;
197 if (retrieveKey(ce_key_path, auth, ce_key)) {
198 LOG(DEBUG) << "Successfully retrieved key";
199 fixate_user_ce_key(directory_path, ce_key_path, paths);
200 return true;
201 }
202 }
203 LOG(ERROR) << "Failed to find working ce key for user " << user_id;
204 return false;
205 }
206
IsEmmcStorage(const std::string & blk_device)207 static bool IsEmmcStorage(const std::string& blk_device) {
208 // Handle symlinks.
209 std::string real_path;
210 if (!Realpath(blk_device, &real_path)) {
211 real_path = blk_device;
212 }
213
214 // Handle logical volumes.
215 auto& dm = DeviceMapper::Instance();
216 for (;;) {
217 auto parent = dm.GetParentBlockDeviceByPath(real_path);
218 if (!parent.has_value()) break;
219 real_path = *parent;
220 }
221
222 // Now we should have the "real" block device.
223 LOG(DEBUG) << "IsEmmcStorage(): blk_device = " << blk_device << ", real_path=" << real_path;
224 return StartsWith(Basename(real_path), "mmcblk");
225 }
226
227 // Retrieve the options to use for encryption policies on the /data filesystem.
get_data_file_encryption_options(EncryptionOptions * options)228 static bool get_data_file_encryption_options(EncryptionOptions* options) {
229 auto entry = GetEntryForMountPoint(&fstab_default, DATA_MNT_POINT);
230 if (entry == nullptr) {
231 LOG(ERROR) << "No mount point entry for " << DATA_MNT_POINT;
232 return false;
233 }
234 if (!ParseOptions(entry->encryption_options, options)) {
235 LOG(ERROR) << "Unable to parse encryption options for " << DATA_MNT_POINT ": "
236 << entry->encryption_options;
237 return false;
238 }
239 if ((options->flags & FSCRYPT_POLICY_FLAG_IV_INO_LBLK_32) &&
240 !IsEmmcStorage(entry->blk_device)) {
241 LOG(ERROR) << "The emmc_optimized encryption flag is only allowed on eMMC storage. Remove "
242 "this flag from the device's fstab";
243 return false;
244 }
245 return true;
246 }
247
install_storage_key(const std::string & mountpoint,const EncryptionOptions & options,const KeyBuffer & key,EncryptionPolicy * policy)248 static bool install_storage_key(const std::string& mountpoint, const EncryptionOptions& options,
249 const KeyBuffer& key, EncryptionPolicy* policy) {
250 KeyBuffer ephemeral_wrapped_key;
251 if (options.use_hw_wrapped_key) {
252 if (!exportWrappedStorageKey(key, &ephemeral_wrapped_key)) {
253 LOG(ERROR) << "Failed to get ephemeral wrapped key";
254 return false;
255 }
256 }
257 return installKey(mountpoint, options, options.use_hw_wrapped_key ? ephemeral_wrapped_key : key,
258 policy);
259 }
260
261 // Retrieve the options to use for encryption policies on adoptable storage.
get_volume_file_encryption_options(EncryptionOptions * options)262 static bool get_volume_file_encryption_options(EncryptionOptions* options) {
263 // If we give the empty string, libfscrypt will use the default (currently XTS)
264 auto contents_mode = android::base::GetProperty("ro.crypto.volume.contents_mode", "");
265 // HEH as default was always a mistake. Use the libfscrypt default (CTS)
266 // for devices launching on versions above Android 10.
267 auto first_api_level = GetFirstApiLevel();
268 constexpr uint64_t pre_gki_level = 29;
269 auto filenames_mode =
270 android::base::GetProperty("ro.crypto.volume.filenames_mode",
271 first_api_level > pre_gki_level ? "" : "aes-256-heh");
272 auto options_string = android::base::GetProperty("ro.crypto.volume.options",
273 contents_mode + ":" + filenames_mode);
274 if (!ParseOptionsForApiLevel(first_api_level, options_string, options)) {
275 LOG(ERROR) << "Unable to parse volume encryption options: " << options_string;
276 return false;
277 }
278 if (options->flags & FSCRYPT_POLICY_FLAG_IV_INO_LBLK_32) {
279 LOG(ERROR) << "The emmc_optimized encryption flag is only allowed on eMMC storage. Remove "
280 "this flag from ro.crypto.volume.options";
281 return false;
282 }
283 return true;
284 }
285
read_and_install_user_ce_key(userid_t user_id,const android::vold::KeyAuthentication & auth)286 static bool read_and_install_user_ce_key(userid_t user_id,
287 const android::vold::KeyAuthentication& auth) {
288 if (s_ce_policies.count(user_id) != 0) return true;
289 EncryptionOptions options;
290 if (!get_data_file_encryption_options(&options)) return false;
291 KeyBuffer ce_key;
292 if (!read_and_fixate_user_ce_key(user_id, auth, &ce_key)) return false;
293 EncryptionPolicy ce_policy;
294 if (!install_storage_key(DATA_MNT_POINT, options, ce_key, &ce_policy)) return false;
295 s_ce_policies[user_id] = ce_policy;
296 LOG(DEBUG) << "Installed ce key for user " << user_id;
297 return true;
298 }
299
prepare_dir(const std::string & dir,mode_t mode,uid_t uid,gid_t gid)300 static bool prepare_dir(const std::string& dir, mode_t mode, uid_t uid, gid_t gid) {
301 LOG(DEBUG) << "Preparing: " << dir;
302 if (fs_prepare_dir(dir.c_str(), mode, uid, gid) != 0) {
303 PLOG(ERROR) << "Failed to prepare " << dir;
304 return false;
305 }
306 return true;
307 }
308
destroy_dir(const std::string & dir)309 static bool destroy_dir(const std::string& dir) {
310 LOG(DEBUG) << "Destroying: " << dir;
311 if (rmdir(dir.c_str()) != 0 && errno != ENOENT) {
312 PLOG(ERROR) << "Failed to destroy " << dir;
313 return false;
314 }
315 return true;
316 }
317
318 // NB this assumes that there is only one thread listening for crypt commands, because
319 // it creates keys in a fixed location.
create_and_install_user_keys(userid_t user_id,bool create_ephemeral)320 static bool create_and_install_user_keys(userid_t user_id, bool create_ephemeral) {
321 EncryptionOptions options;
322 if (!get_data_file_encryption_options(&options)) return false;
323 KeyBuffer de_key, ce_key;
324 if (!generateStorageKey(makeGen(options), &de_key)) return false;
325 if (!generateStorageKey(makeGen(options), &ce_key)) return false;
326 if (create_ephemeral) {
327 // If the key should be created as ephemeral, don't store it.
328 s_ephemeral_users.insert(user_id);
329 } else {
330 auto const directory_path = get_ce_key_directory_path(user_id);
331 if (!prepare_dir(directory_path, 0700, AID_ROOT, AID_ROOT)) return false;
332 auto const paths = get_ce_key_paths(directory_path);
333 std::string ce_key_path;
334 if (!get_ce_key_new_path(directory_path, paths, &ce_key_path)) return false;
335 if (!android::vold::storeKeyAtomically(ce_key_path, user_key_temp, kEmptyAuthentication,
336 ce_key))
337 return false;
338 fixate_user_ce_key(directory_path, ce_key_path, paths);
339 // Write DE key second; once this is written, all is good.
340 if (!android::vold::storeKeyAtomically(get_de_key_path(user_id), user_key_temp,
341 kEmptyAuthentication, de_key))
342 return false;
343 }
344 EncryptionPolicy de_policy;
345 if (!install_storage_key(DATA_MNT_POINT, options, de_key, &de_policy)) return false;
346 s_de_policies[user_id] = de_policy;
347 EncryptionPolicy ce_policy;
348 if (!install_storage_key(DATA_MNT_POINT, options, ce_key, &ce_policy)) return false;
349 s_ce_policies[user_id] = ce_policy;
350 LOG(DEBUG) << "Created keys for user " << user_id;
351 return true;
352 }
353
lookup_policy(const std::map<userid_t,EncryptionPolicy> & key_map,userid_t user_id,EncryptionPolicy * policy)354 static bool lookup_policy(const std::map<userid_t, EncryptionPolicy>& key_map, userid_t user_id,
355 EncryptionPolicy* policy) {
356 auto refi = key_map.find(user_id);
357 if (refi == key_map.end()) {
358 LOG(DEBUG) << "Cannot find key for " << user_id;
359 return false;
360 }
361 *policy = refi->second;
362 return true;
363 }
364
is_numeric(const char * name)365 static bool is_numeric(const char* name) {
366 for (const char* p = name; *p != '\0'; p++) {
367 if (!isdigit(*p)) return false;
368 }
369 return true;
370 }
371
load_all_de_keys()372 static bool load_all_de_keys() {
373 EncryptionOptions options;
374 if (!get_data_file_encryption_options(&options)) return false;
375 auto de_dir = user_key_dir + "/de";
376 auto dirp = std::unique_ptr<DIR, int (*)(DIR*)>(opendir(de_dir.c_str()), closedir);
377 if (!dirp) {
378 PLOG(ERROR) << "Unable to read de key directory";
379 return false;
380 }
381 for (;;) {
382 errno = 0;
383 auto entry = readdir(dirp.get());
384 if (!entry) {
385 if (errno) {
386 PLOG(ERROR) << "Unable to read de key directory";
387 return false;
388 }
389 break;
390 }
391 if (entry->d_type != DT_DIR || !is_numeric(entry->d_name)) {
392 LOG(DEBUG) << "Skipping non-de-key " << entry->d_name;
393 continue;
394 }
395 userid_t user_id = std::stoi(entry->d_name);
396 auto key_path = de_dir + "/" + entry->d_name;
397 KeyBuffer de_key;
398 if (!retrieveKey(key_path, kEmptyAuthentication, &de_key)) return false;
399 EncryptionPolicy de_policy;
400 if (!install_storage_key(DATA_MNT_POINT, options, de_key, &de_policy)) return false;
401 auto ret = s_de_policies.insert({user_id, de_policy});
402 if (!ret.second && ret.first->second != de_policy) {
403 LOG(ERROR) << "DE policy for user" << user_id << " changed";
404 return false;
405 }
406 LOG(DEBUG) << "Installed de key for user " << user_id;
407 }
408 // fscrypt:TODO: go through all DE directories, ensure that all user dirs have the
409 // correct policy set on them, and that no rogue ones exist.
410 return true;
411 }
412
413 // Attempt to reinstall CE keys for users that we think are unlocked.
try_reload_ce_keys()414 static bool try_reload_ce_keys() {
415 for (const auto& it : s_ce_policies) {
416 if (!android::vold::reloadKeyFromSessionKeyring(DATA_MNT_POINT, it.second)) {
417 LOG(ERROR) << "Failed to load CE key from session keyring for user " << it.first;
418 return false;
419 }
420 }
421 return true;
422 }
423
fscrypt_initialize_systemwide_keys()424 bool fscrypt_initialize_systemwide_keys() {
425 LOG(INFO) << "fscrypt_initialize_systemwide_keys";
426
427 EncryptionOptions options;
428 if (!get_data_file_encryption_options(&options)) return false;
429
430 KeyBuffer device_key;
431 if (!retrieveOrGenerateKey(device_key_path, device_key_temp, kEmptyAuthentication,
432 makeGen(options), &device_key))
433 return false;
434
435 EncryptionPolicy device_policy;
436 if (!install_storage_key(DATA_MNT_POINT, options, device_key, &device_policy)) return false;
437
438 std::string options_string;
439 if (!OptionsToString(device_policy.options, &options_string)) {
440 LOG(ERROR) << "Unable to serialize options";
441 return false;
442 }
443 std::string options_filename = std::string(DATA_MNT_POINT) + fscrypt_key_mode;
444 if (!android::vold::writeStringToFile(options_string, options_filename)) return false;
445
446 std::string ref_filename = std::string(DATA_MNT_POINT) + fscrypt_key_ref;
447 if (!android::vold::writeStringToFile(device_policy.key_raw_ref, ref_filename)) return false;
448 LOG(INFO) << "Wrote system DE key reference to:" << ref_filename;
449
450 KeyBuffer per_boot_key;
451 if (!generateStorageKey(makeGen(options), &per_boot_key)) return false;
452 EncryptionPolicy per_boot_policy;
453 if (!install_storage_key(DATA_MNT_POINT, options, per_boot_key, &per_boot_policy)) return false;
454 std::string per_boot_ref_filename = std::string("/data") + fscrypt_key_per_boot_ref;
455 if (!android::vold::writeStringToFile(per_boot_policy.key_raw_ref, per_boot_ref_filename))
456 return false;
457 LOG(INFO) << "Wrote per boot key reference to:" << per_boot_ref_filename;
458
459 if (!android::vold::FsyncDirectory(device_key_dir)) return false;
460 return true;
461 }
462
fscrypt_init_user0()463 bool fscrypt_init_user0() {
464 LOG(DEBUG) << "fscrypt_init_user0";
465 if (fscrypt_is_native()) {
466 if (!prepare_dir(user_key_dir, 0700, AID_ROOT, AID_ROOT)) return false;
467 if (!prepare_dir(user_key_dir + "/ce", 0700, AID_ROOT, AID_ROOT)) return false;
468 if (!prepare_dir(user_key_dir + "/de", 0700, AID_ROOT, AID_ROOT)) return false;
469 if (!android::vold::pathExists(get_de_key_path(0))) {
470 if (!create_and_install_user_keys(0, false)) return false;
471 }
472 // TODO: switch to loading only DE_0 here once framework makes
473 // explicit calls to install DE keys for secondary users
474 if (!load_all_de_keys()) return false;
475 }
476 // We can only safely prepare DE storage here, since CE keys are probably
477 // entangled with user credentials. The framework will always prepare CE
478 // storage once CE keys are installed.
479 if (!fscrypt_prepare_user_storage("", 0, 0, android::os::IVold::STORAGE_FLAG_DE)) {
480 LOG(ERROR) << "Failed to prepare user 0 storage";
481 return false;
482 }
483
484 // If this is a non-FBE device that recently left an emulated mode,
485 // restore user data directories to known-good state.
486 if (!fscrypt_is_native() && !fscrypt_is_emulated()) {
487 fscrypt_unlock_user_key(0, 0, "!", "!");
488 }
489
490 // In some scenarios (e.g. userspace reboot) we might unmount userdata
491 // without doing a hard reboot. If CE keys were stored in fs keyring then
492 // they will be lost after unmount. Attempt to re-install them.
493 if (fscrypt_is_native() && android::vold::isFsKeyringSupported()) {
494 if (!try_reload_ce_keys()) return false;
495 }
496
497 return true;
498 }
499
fscrypt_vold_create_user_key(userid_t user_id,int serial,bool ephemeral)500 bool fscrypt_vold_create_user_key(userid_t user_id, int serial, bool ephemeral) {
501 LOG(DEBUG) << "fscrypt_vold_create_user_key for " << user_id << " serial " << serial;
502 if (!fscrypt_is_native()) {
503 return true;
504 }
505 // FIXME test for existence of key that is not loaded yet
506 if (s_ce_policies.count(user_id) != 0) {
507 LOG(ERROR) << "Already exists, can't fscrypt_vold_create_user_key for " << user_id
508 << " serial " << serial;
509 // FIXME should we fail the command?
510 return true;
511 }
512 if (!create_and_install_user_keys(user_id, ephemeral)) {
513 return false;
514 }
515 return true;
516 }
517
518 // "Lock" all encrypted directories whose key has been removed. This is needed
519 // in the case where the keys are being put in the session keyring (rather in
520 // the newer filesystem-level keyrings), because removing a key from the session
521 // keyring doesn't affect inodes in the kernel's inode cache whose per-file key
522 // was already set up. So to remove the per-file keys and make the files
523 // "appear encrypted", these inodes must be evicted.
524 //
525 // To do this, sync() to clean all dirty inodes, then drop all reclaimable slab
526 // objects systemwide. This is overkill, but it's the best available method
527 // currently. Don't use drop_caches mode "3" because that also evicts pagecache
528 // for in-use files; all files relevant here are already closed and sync'ed.
drop_caches_if_needed()529 static void drop_caches_if_needed() {
530 if (android::vold::isFsKeyringSupported()) {
531 return;
532 }
533 sync();
534 if (!writeStringToFile("2", "/proc/sys/vm/drop_caches")) {
535 PLOG(ERROR) << "Failed to drop caches during key eviction";
536 }
537 }
538
evict_ce_key(userid_t user_id)539 static bool evict_ce_key(userid_t user_id) {
540 bool success = true;
541 EncryptionPolicy policy;
542 // If we haven't loaded the CE key, no need to evict it.
543 if (lookup_policy(s_ce_policies, user_id, &policy)) {
544 success &= android::vold::evictKey(DATA_MNT_POINT, policy);
545 drop_caches_if_needed();
546 }
547 s_ce_policies.erase(user_id);
548 return success;
549 }
550
fscrypt_destroy_user_key(userid_t user_id)551 bool fscrypt_destroy_user_key(userid_t user_id) {
552 LOG(DEBUG) << "fscrypt_destroy_user_key(" << user_id << ")";
553 if (!fscrypt_is_native()) {
554 return true;
555 }
556 bool success = true;
557 success &= evict_ce_key(user_id);
558 EncryptionPolicy de_policy;
559 success &= lookup_policy(s_de_policies, user_id, &de_policy) &&
560 android::vold::evictKey(DATA_MNT_POINT, de_policy);
561 s_de_policies.erase(user_id);
562 auto it = s_ephemeral_users.find(user_id);
563 if (it != s_ephemeral_users.end()) {
564 s_ephemeral_users.erase(it);
565 } else {
566 for (auto const path : get_ce_key_paths(get_ce_key_directory_path(user_id))) {
567 success &= android::vold::destroyKey(path);
568 }
569 auto de_key_path = get_de_key_path(user_id);
570 if (android::vold::pathExists(de_key_path)) {
571 success &= android::vold::destroyKey(de_key_path);
572 } else {
573 LOG(INFO) << "Not present so not erasing: " << de_key_path;
574 }
575 }
576 return success;
577 }
578
emulated_lock(const std::string & path)579 static bool emulated_lock(const std::string& path) {
580 if (chmod(path.c_str(), 0000) != 0) {
581 PLOG(ERROR) << "Failed to chmod " << path;
582 return false;
583 }
584 #if EMULATED_USES_SELINUX
585 if (setfilecon(path.c_str(), "u:object_r:storage_stub_file:s0") != 0) {
586 PLOG(WARNING) << "Failed to setfilecon " << path;
587 return false;
588 }
589 #endif
590 return true;
591 }
592
emulated_unlock(const std::string & path,mode_t mode)593 static bool emulated_unlock(const std::string& path, mode_t mode) {
594 if (chmod(path.c_str(), mode) != 0) {
595 PLOG(ERROR) << "Failed to chmod " << path;
596 // FIXME temporary workaround for b/26713622
597 if (fscrypt_is_emulated()) return false;
598 }
599 #if EMULATED_USES_SELINUX
600 if (selinux_android_restorecon(path.c_str(), SELINUX_ANDROID_RESTORECON_FORCE) != 0) {
601 PLOG(WARNING) << "Failed to restorecon " << path;
602 // FIXME temporary workaround for b/26713622
603 if (fscrypt_is_emulated()) return false;
604 }
605 #endif
606 return true;
607 }
608
parse_hex(const std::string & hex,std::string * result)609 static bool parse_hex(const std::string& hex, std::string* result) {
610 if (hex == "!") {
611 *result = "";
612 return true;
613 }
614 if (android::vold::HexToStr(hex, *result) != 0) {
615 LOG(ERROR) << "Invalid FBE hex string"; // Don't log the string for security reasons
616 return false;
617 }
618 return true;
619 }
620
authentication_from_hex(const std::string & token_hex,const std::string & secret_hex)621 static std::optional<android::vold::KeyAuthentication> authentication_from_hex(
622 const std::string& token_hex, const std::string& secret_hex) {
623 std::string token, secret;
624 if (!parse_hex(token_hex, &token)) return std::optional<android::vold::KeyAuthentication>();
625 if (!parse_hex(secret_hex, &secret)) return std::optional<android::vold::KeyAuthentication>();
626 if (secret.empty()) {
627 return kEmptyAuthentication;
628 } else {
629 return android::vold::KeyAuthentication(token, secret);
630 }
631 }
632
volkey_path(const std::string & misc_path,const std::string & volume_uuid)633 static std::string volkey_path(const std::string& misc_path, const std::string& volume_uuid) {
634 return misc_path + "/vold/volume_keys/" + volume_uuid + "/default";
635 }
636
volume_secdiscardable_path(const std::string & volume_uuid)637 static std::string volume_secdiscardable_path(const std::string& volume_uuid) {
638 return systemwide_volume_key_dir + "/" + volume_uuid + "/secdiscardable";
639 }
640
read_or_create_volkey(const std::string & misc_path,const std::string & volume_uuid,EncryptionPolicy * policy)641 static bool read_or_create_volkey(const std::string& misc_path, const std::string& volume_uuid,
642 EncryptionPolicy* policy) {
643 auto secdiscardable_path = volume_secdiscardable_path(volume_uuid);
644 std::string secdiscardable_hash;
645 if (android::vold::pathExists(secdiscardable_path)) {
646 if (!android::vold::readSecdiscardable(secdiscardable_path, &secdiscardable_hash))
647 return false;
648 } else {
649 if (fs_mkdirs(secdiscardable_path.c_str(), 0700) != 0) {
650 PLOG(ERROR) << "Creating directories for: " << secdiscardable_path;
651 return false;
652 }
653 if (!android::vold::createSecdiscardable(secdiscardable_path, &secdiscardable_hash))
654 return false;
655 }
656 auto key_path = volkey_path(misc_path, volume_uuid);
657 if (fs_mkdirs(key_path.c_str(), 0700) != 0) {
658 PLOG(ERROR) << "Creating directories for: " << key_path;
659 return false;
660 }
661 android::vold::KeyAuthentication auth("", secdiscardable_hash);
662
663 EncryptionOptions options;
664 if (!get_volume_file_encryption_options(&options)) return false;
665 KeyBuffer key;
666 if (!retrieveOrGenerateKey(key_path, key_path + "_tmp", auth, makeGen(options), &key))
667 return false;
668 if (!install_storage_key(BuildDataPath(volume_uuid), options, key, policy)) return false;
669 return true;
670 }
671
destroy_volkey(const std::string & misc_path,const std::string & volume_uuid)672 static bool destroy_volkey(const std::string& misc_path, const std::string& volume_uuid) {
673 auto path = volkey_path(misc_path, volume_uuid);
674 if (!android::vold::pathExists(path)) return true;
675 return android::vold::destroyKey(path);
676 }
677
fscrypt_rewrap_user_key(userid_t user_id,int serial,const android::vold::KeyAuthentication & retrieve_auth,const android::vold::KeyAuthentication & store_auth)678 static bool fscrypt_rewrap_user_key(userid_t user_id, int serial,
679 const android::vold::KeyAuthentication& retrieve_auth,
680 const android::vold::KeyAuthentication& store_auth) {
681 if (s_ephemeral_users.count(user_id) != 0) return true;
682 auto const directory_path = get_ce_key_directory_path(user_id);
683 KeyBuffer ce_key;
684 std::string ce_key_current_path = get_ce_key_current_path(directory_path);
685 if (retrieveKey(ce_key_current_path, retrieve_auth, &ce_key)) {
686 LOG(DEBUG) << "Successfully retrieved key";
687 // TODO(147732812): Remove this once Locksettingservice is fixed.
688 // Currently it calls fscrypt_clear_user_key_auth with a secret when lockscreen is
689 // changed from swipe to none or vice-versa
690 } else if (retrieveKey(ce_key_current_path, kEmptyAuthentication, &ce_key)) {
691 LOG(DEBUG) << "Successfully retrieved key with empty auth";
692 } else {
693 LOG(ERROR) << "Failed to retrieve key for user " << user_id;
694 return false;
695 }
696 auto const paths = get_ce_key_paths(directory_path);
697 std::string ce_key_path;
698 if (!get_ce_key_new_path(directory_path, paths, &ce_key_path)) return false;
699 if (!android::vold::storeKeyAtomically(ce_key_path, user_key_temp, store_auth, ce_key))
700 return false;
701 if (!android::vold::FsyncDirectory(directory_path)) return false;
702 return true;
703 }
704
fscrypt_add_user_key_auth(userid_t user_id,int serial,const std::string & token_hex,const std::string & secret_hex)705 bool fscrypt_add_user_key_auth(userid_t user_id, int serial, const std::string& token_hex,
706 const std::string& secret_hex) {
707 LOG(DEBUG) << "fscrypt_add_user_key_auth " << user_id << " serial=" << serial
708 << " token_present=" << (token_hex != "!");
709 if (!fscrypt_is_native()) return true;
710 auto auth = authentication_from_hex(token_hex, secret_hex);
711 if (!auth) return false;
712 return fscrypt_rewrap_user_key(user_id, serial, kEmptyAuthentication, *auth);
713 }
714
fscrypt_clear_user_key_auth(userid_t user_id,int serial,const std::string & token_hex,const std::string & secret_hex)715 bool fscrypt_clear_user_key_auth(userid_t user_id, int serial, const std::string& token_hex,
716 const std::string& secret_hex) {
717 LOG(DEBUG) << "fscrypt_clear_user_key_auth " << user_id << " serial=" << serial
718 << " token_present=" << (token_hex != "!");
719 if (!fscrypt_is_native()) return true;
720 auto auth = authentication_from_hex(token_hex, secret_hex);
721 if (!auth) return false;
722 return fscrypt_rewrap_user_key(user_id, serial, *auth, kEmptyAuthentication);
723 }
724
fscrypt_fixate_newest_user_key_auth(userid_t user_id)725 bool fscrypt_fixate_newest_user_key_auth(userid_t user_id) {
726 LOG(DEBUG) << "fscrypt_fixate_newest_user_key_auth " << user_id;
727 if (!fscrypt_is_native()) return true;
728 if (s_ephemeral_users.count(user_id) != 0) return true;
729 auto const directory_path = get_ce_key_directory_path(user_id);
730 auto const paths = get_ce_key_paths(directory_path);
731 if (paths.empty()) {
732 LOG(ERROR) << "No ce keys present, cannot fixate for user " << user_id;
733 return false;
734 }
735 fixate_user_ce_key(directory_path, paths[0], paths);
736 return true;
737 }
738
739 // TODO: rename to 'install' for consistency, and take flags to know which keys to install
fscrypt_unlock_user_key(userid_t user_id,int serial,const std::string & token_hex,const std::string & secret_hex)740 bool fscrypt_unlock_user_key(userid_t user_id, int serial, const std::string& token_hex,
741 const std::string& secret_hex) {
742 LOG(DEBUG) << "fscrypt_unlock_user_key " << user_id << " serial=" << serial
743 << " token_present=" << (token_hex != "!");
744 if (fscrypt_is_native()) {
745 if (s_ce_policies.count(user_id) != 0) {
746 LOG(WARNING) << "Tried to unlock already-unlocked key for user " << user_id;
747 return true;
748 }
749 auto auth = authentication_from_hex(token_hex, secret_hex);
750 if (!auth) return false;
751 if (!read_and_install_user_ce_key(user_id, *auth)) {
752 LOG(ERROR) << "Couldn't read key for " << user_id;
753 return false;
754 }
755 } else {
756 // When in emulation mode, we just use chmod. However, we also
757 // unlock directories when not in emulation mode, to bring devices
758 // back into a known-good state.
759 if (!emulated_unlock(android::vold::BuildDataSystemCePath(user_id), 0771) ||
760 !emulated_unlock(android::vold::BuildDataMiscCePath(user_id), 01771) ||
761 !emulated_unlock(android::vold::BuildDataMediaCePath("", user_id), 0770) ||
762 !emulated_unlock(android::vold::BuildDataUserCePath("", user_id), 0771)) {
763 LOG(ERROR) << "Failed to unlock user " << user_id;
764 return false;
765 }
766 }
767 return true;
768 }
769
770 // TODO: rename to 'evict' for consistency
fscrypt_lock_user_key(userid_t user_id)771 bool fscrypt_lock_user_key(userid_t user_id) {
772 LOG(DEBUG) << "fscrypt_lock_user_key " << user_id;
773 if (fscrypt_is_native()) {
774 return evict_ce_key(user_id);
775 } else if (fscrypt_is_emulated()) {
776 // When in emulation mode, we just use chmod
777 if (!emulated_lock(android::vold::BuildDataSystemCePath(user_id)) ||
778 !emulated_lock(android::vold::BuildDataMiscCePath(user_id)) ||
779 !emulated_lock(android::vold::BuildDataMediaCePath("", user_id)) ||
780 !emulated_lock(android::vold::BuildDataUserCePath("", user_id))) {
781 LOG(ERROR) << "Failed to lock user " << user_id;
782 return false;
783 }
784 }
785
786 return true;
787 }
788
prepare_subdirs(const std::string & action,const std::string & volume_uuid,userid_t user_id,int flags)789 static bool prepare_subdirs(const std::string& action, const std::string& volume_uuid,
790 userid_t user_id, int flags) {
791 if (0 != android::vold::ForkExecvp(
792 std::vector<std::string>{prepare_subdirs_path, action, volume_uuid,
793 std::to_string(user_id), std::to_string(flags)})) {
794 LOG(ERROR) << "vold_prepare_subdirs failed";
795 return false;
796 }
797 return true;
798 }
799
fscrypt_prepare_user_storage(const std::string & volume_uuid,userid_t user_id,int serial,int flags)800 bool fscrypt_prepare_user_storage(const std::string& volume_uuid, userid_t user_id, int serial,
801 int flags) {
802 LOG(DEBUG) << "fscrypt_prepare_user_storage for volume " << escape_empty(volume_uuid)
803 << ", user " << user_id << ", serial " << serial << ", flags " << flags;
804
805 if (flags & android::os::IVold::STORAGE_FLAG_DE) {
806 // DE_sys key
807 auto system_legacy_path = android::vold::BuildDataSystemLegacyPath(user_id);
808 auto misc_legacy_path = android::vold::BuildDataMiscLegacyPath(user_id);
809 auto profiles_de_path = android::vold::BuildDataProfilesDePath(user_id);
810
811 // DE_n key
812 auto system_de_path = android::vold::BuildDataSystemDePath(user_id);
813 auto misc_de_path = android::vold::BuildDataMiscDePath(user_id);
814 auto vendor_de_path = android::vold::BuildDataVendorDePath(user_id);
815 auto user_de_path = android::vold::BuildDataUserDePath(volume_uuid, user_id);
816
817 if (volume_uuid.empty()) {
818 if (!prepare_dir(system_legacy_path, 0700, AID_SYSTEM, AID_SYSTEM)) return false;
819 #if MANAGE_MISC_DIRS
820 if (!prepare_dir(misc_legacy_path, 0750, multiuser_get_uid(user_id, AID_SYSTEM),
821 multiuser_get_uid(user_id, AID_EVERYBODY)))
822 return false;
823 #endif
824 if (!prepare_dir(profiles_de_path, 0771, AID_SYSTEM, AID_SYSTEM)) return false;
825
826 if (!prepare_dir(system_de_path, 0770, AID_SYSTEM, AID_SYSTEM)) return false;
827 if (!prepare_dir(misc_de_path, 01771, AID_SYSTEM, AID_MISC)) return false;
828 if (!prepare_dir(vendor_de_path, 0771, AID_ROOT, AID_ROOT)) return false;
829 }
830 if (!prepare_dir(user_de_path, 0771, AID_SYSTEM, AID_SYSTEM)) return false;
831
832 if (fscrypt_is_native()) {
833 EncryptionPolicy de_policy;
834 if (volume_uuid.empty()) {
835 if (!lookup_policy(s_de_policies, user_id, &de_policy)) return false;
836 if (!EnsurePolicy(de_policy, system_de_path)) return false;
837 if (!EnsurePolicy(de_policy, misc_de_path)) return false;
838 if (!EnsurePolicy(de_policy, vendor_de_path)) return false;
839 } else {
840 if (!read_or_create_volkey(misc_de_path, volume_uuid, &de_policy)) return false;
841 }
842 if (!EnsurePolicy(de_policy, user_de_path)) return false;
843 }
844 }
845
846 if (flags & android::os::IVold::STORAGE_FLAG_CE) {
847 // CE_n key
848 auto system_ce_path = android::vold::BuildDataSystemCePath(user_id);
849 auto misc_ce_path = android::vold::BuildDataMiscCePath(user_id);
850 auto vendor_ce_path = android::vold::BuildDataVendorCePath(user_id);
851 auto media_ce_path = android::vold::BuildDataMediaCePath(volume_uuid, user_id);
852 auto user_ce_path = android::vold::BuildDataUserCePath(volume_uuid, user_id);
853
854 if (volume_uuid.empty()) {
855 if (!prepare_dir(system_ce_path, 0770, AID_SYSTEM, AID_SYSTEM)) return false;
856 if (!prepare_dir(misc_ce_path, 01771, AID_SYSTEM, AID_MISC)) return false;
857 if (!prepare_dir(vendor_ce_path, 0771, AID_ROOT, AID_ROOT)) return false;
858 }
859 if (!prepare_dir(media_ce_path, 0770, AID_MEDIA_RW, AID_MEDIA_RW)) return false;
860 if (!prepare_dir(user_ce_path, 0771, AID_SYSTEM, AID_SYSTEM)) return false;
861
862 if (fscrypt_is_native()) {
863 EncryptionPolicy ce_policy;
864 if (volume_uuid.empty()) {
865 if (!lookup_policy(s_ce_policies, user_id, &ce_policy)) return false;
866 if (!EnsurePolicy(ce_policy, system_ce_path)) return false;
867 if (!EnsurePolicy(ce_policy, misc_ce_path)) return false;
868 if (!EnsurePolicy(ce_policy, vendor_ce_path)) return false;
869 } else {
870 if (!read_or_create_volkey(misc_ce_path, volume_uuid, &ce_policy)) return false;
871 }
872 if (!EnsurePolicy(ce_policy, media_ce_path)) return false;
873 if (!EnsurePolicy(ce_policy, user_ce_path)) return false;
874 }
875
876 if (volume_uuid.empty()) {
877 // Now that credentials have been installed, we can run restorecon
878 // over these paths
879 // NOTE: these paths need to be kept in sync with libselinux
880 android::vold::RestoreconRecursive(system_ce_path);
881 android::vold::RestoreconRecursive(vendor_ce_path);
882 android::vold::RestoreconRecursive(misc_ce_path);
883 }
884 }
885 if (!prepare_subdirs("prepare", volume_uuid, user_id, flags)) return false;
886
887 return true;
888 }
889
fscrypt_destroy_user_storage(const std::string & volume_uuid,userid_t user_id,int flags)890 bool fscrypt_destroy_user_storage(const std::string& volume_uuid, userid_t user_id, int flags) {
891 LOG(DEBUG) << "fscrypt_destroy_user_storage for volume " << escape_empty(volume_uuid)
892 << ", user " << user_id << ", flags " << flags;
893 bool res = true;
894
895 res &= prepare_subdirs("destroy", volume_uuid, user_id, flags);
896
897 if (flags & android::os::IVold::STORAGE_FLAG_CE) {
898 // CE_n key
899 auto system_ce_path = android::vold::BuildDataSystemCePath(user_id);
900 auto misc_ce_path = android::vold::BuildDataMiscCePath(user_id);
901 auto vendor_ce_path = android::vold::BuildDataVendorCePath(user_id);
902 auto media_ce_path = android::vold::BuildDataMediaCePath(volume_uuid, user_id);
903 auto user_ce_path = android::vold::BuildDataUserCePath(volume_uuid, user_id);
904
905 res &= destroy_dir(media_ce_path);
906 res &= destroy_dir(user_ce_path);
907 if (volume_uuid.empty()) {
908 res &= destroy_dir(system_ce_path);
909 res &= destroy_dir(misc_ce_path);
910 res &= destroy_dir(vendor_ce_path);
911 } else {
912 if (fscrypt_is_native()) {
913 res &= destroy_volkey(misc_ce_path, volume_uuid);
914 }
915 }
916 }
917
918 if (flags & android::os::IVold::STORAGE_FLAG_DE) {
919 // DE_sys key
920 auto system_legacy_path = android::vold::BuildDataSystemLegacyPath(user_id);
921 auto misc_legacy_path = android::vold::BuildDataMiscLegacyPath(user_id);
922 auto profiles_de_path = android::vold::BuildDataProfilesDePath(user_id);
923
924 // DE_n key
925 auto system_de_path = android::vold::BuildDataSystemDePath(user_id);
926 auto misc_de_path = android::vold::BuildDataMiscDePath(user_id);
927 auto vendor_de_path = android::vold::BuildDataVendorDePath(user_id);
928 auto user_de_path = android::vold::BuildDataUserDePath(volume_uuid, user_id);
929
930 res &= destroy_dir(user_de_path);
931 if (volume_uuid.empty()) {
932 res &= destroy_dir(system_legacy_path);
933 #if MANAGE_MISC_DIRS
934 res &= destroy_dir(misc_legacy_path);
935 #endif
936 res &= destroy_dir(profiles_de_path);
937 res &= destroy_dir(system_de_path);
938 res &= destroy_dir(misc_de_path);
939 res &= destroy_dir(vendor_de_path);
940 } else {
941 if (fscrypt_is_native()) {
942 res &= destroy_volkey(misc_de_path, volume_uuid);
943 }
944 }
945 }
946
947 return res;
948 }
949
destroy_volume_keys(const std::string & directory_path,const std::string & volume_uuid)950 static bool destroy_volume_keys(const std::string& directory_path, const std::string& volume_uuid) {
951 auto dirp = std::unique_ptr<DIR, int (*)(DIR*)>(opendir(directory_path.c_str()), closedir);
952 if (!dirp) {
953 PLOG(ERROR) << "Unable to open directory: " + directory_path;
954 return false;
955 }
956 bool res = true;
957 for (;;) {
958 errno = 0;
959 auto const entry = readdir(dirp.get());
960 if (!entry) {
961 if (errno) {
962 PLOG(ERROR) << "Unable to read directory: " + directory_path;
963 return false;
964 }
965 break;
966 }
967 if (entry->d_type != DT_DIR || entry->d_name[0] == '.') {
968 LOG(DEBUG) << "Skipping non-user " << entry->d_name;
969 continue;
970 }
971 res &= destroy_volkey(directory_path + "/" + entry->d_name, volume_uuid);
972 }
973 return res;
974 }
975
fscrypt_destroy_volume_keys(const std::string & volume_uuid)976 bool fscrypt_destroy_volume_keys(const std::string& volume_uuid) {
977 bool res = true;
978 LOG(DEBUG) << "fscrypt_destroy_volume_keys for volume " << escape_empty(volume_uuid);
979 auto secdiscardable_path = volume_secdiscardable_path(volume_uuid);
980 res &= android::vold::runSecdiscardSingle(secdiscardable_path);
981 res &= destroy_volume_keys("/data/misc_ce", volume_uuid);
982 res &= destroy_volume_keys("/data/misc_de", volume_uuid);
983 return res;
984 }
985