Blame - keystore/keystore.cpp - android_system_security

2012-02-15 15:00:46 -0800

[diff] [blame]

/*

*

* Licensed under the Apache License, Version 2.0 (the "License");

5

* you may not use this file except in compliance with the License.

6

* You may obtain a copy of the License at

7

*

8

* http://www.apache.org/licenses/LICENSE-2.0

9

*

10

* Unless required by applicable law or agreed to in writing, software

11

* distributed under the License is distributed on an "AS IS" BASIS,

12

* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.

13

* See the License for the specific language governing permissions and

14

* limitations under the License.

15

*/

16

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

17

//#define LOG_NDEBUG 0

18

#define LOG_TAG "keystore"

19

Kenny Root

2012-02-15 15:00:46 -0800

[diff] [blame]

#include <stdio.h>

#include <stdint.h>

#include <string.h>

#include <unistd.h>

#include <signal.h>

#include <errno.h>

#include <dirent.h>

Kenny Root

2013-04-04 08:37:42 -0700

[diff] [blame]

27

#include <errno.h>

Kenny Root

2012-02-15 15:00:46 -0800

[diff] [blame]

28

#include <fcntl.h>

29

#include <limits.h>

Kenny Root

2012-03-23 16:34:39 -0700

[diff] [blame]

30

#include <assert.h>

Kenny Root

2012-02-15 15:00:46 -0800

[diff] [blame]

31

#include <sys/types.h>

32

#include <sys/socket.h>

33

#include <sys/stat.h>

34

#include <sys/time.h>

35

#include <arpa/inet.h>

36

37

#include <openssl/aes.h>

Kenny Root

2012-03-23 16:34:39 -0700

[diff] [blame]

38

#include <openssl/bio.h>

Kenny Root

2012-02-15 15:00:46 -0800

[diff] [blame]

39

#include <openssl/evp.h>

40

#include <openssl/md5.h>

Kenny Root

2012-03-23 16:34:39 -0700

[diff] [blame]

41

#include <openssl/pem.h>

Kenny Root

2012-02-15 15:00:46 -0800

[diff] [blame]

42

Kenny Root

2012-02-15 17:20:23 -0800

[diff] [blame]

43

#include <hardware/keymaster.h>

44

Kenny Root

2013-09-04 13:56:03 -0700

[diff] [blame]

45

#include <keymaster/softkeymaster.h>

46

Kenny Root

2013-04-04 08:37:42 -0700

[diff] [blame]

47

#include <utils/String8.h>

Kenny Root

2012-03-23 16:34:39 -0700

[diff] [blame]

48

#include <utils/UniquePtr.h>

Kenny Root

2013-04-04 08:37:42 -0700

[diff] [blame]

49

#include <utils/Vector.h>

Kenny Root

2012-02-15 17:20:23 -0800

[diff] [blame]

50

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

51

#include <keystore/IKeystoreService.h>

52

#include <binder/IPCThreadState.h>

53

#include <binder/IServiceManager.h>

54

Kenny Root

2012-02-15 15:00:46 -0800

[diff] [blame]

55

#include <cutils/log.h>

56

#include <cutils/sockets.h>

57

#include <private/android_filesystem_config.h>

58

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

59

#include <keystore/keystore.h>

Kenny Root

2012-02-15 15:00:46 -0800

[diff] [blame]

60

Kenny Root

2013-08-16 14:02:41 -0700

[diff] [blame]

61

#include "defaults.h"

62

Kenny Root

2012-02-15 15:00:46 -0800

[diff] [blame]

63

/* KeyStore is a secured storage for key-value pairs. In this implementation,

64

* each file stores one key-value pair. Keys are encoded in file names, and

65

* values are encrypted with checksums. The encryption key is protected by a

66

* user-defined password. To keep things simple, buffers are always larger than

67

* the maximum space we needed, so boundary checks on buffers are omitted. */

68

69

#define KEY_SIZE ((NAME_MAX - 15) / 2)

70

#define VALUE_SIZE 32768

71

#define PASSWORD_SIZE VALUE_SIZE

72

Kenny Root

2012-03-23 16:34:39 -0700

[diff] [blame]

73

Kenny Root

2013-08-16 14:02:41 -0700

[diff] [blame]

74

struct BIGNUM_Delete {

75

void operator()(BIGNUM* p) const {

BN_free(p);

}

};

typedef UniquePtr<BIGNUM, BIGNUM_Delete> Unique_BIGNUM;

80

Kenny Root

2012-03-23 16:34:39 -0700

[diff] [blame]

81

struct BIO_Delete {

82

void operator()(BIO* p) const {

BIO_free(p);

}

};

typedef UniquePtr<BIO, BIO_Delete> Unique_BIO;

87

88

struct EVP_PKEY_Delete {

89

void operator()(EVP_PKEY* p) const {

EVP_PKEY_free(p);

}

};

typedef UniquePtr<EVP_PKEY, EVP_PKEY_Delete> Unique_EVP_PKEY;

94

95

struct PKCS8_PRIV_KEY_INFO_Delete {

96

void operator()(PKCS8_PRIV_KEY_INFO* p) const {

97

PKCS8_PRIV_KEY_INFO_free(p);

98

}

99

};

100

typedef UniquePtr<PKCS8_PRIV_KEY_INFO, PKCS8_PRIV_KEY_INFO_Delete> Unique_PKCS8_PRIV_KEY_INFO;

101

102

Kenny Root

2012-02-15 17:20:23 -0800

[diff] [blame]

103

static int keymaster_device_initialize(keymaster_device_t** dev) {

104

int rc;

105

106

const hw_module_t* mod;

107

rc = hw_get_module_by_class(KEYSTORE_HARDWARE_MODULE_ID, NULL, &mod);

108

if (rc) {

109

ALOGE("could not find any keystore module");

goto out;

}

rc = keymaster_open(mod, dev);

114

if (rc) {

115

ALOGE("could not open keymaster device in %s (%s)",

116

KEYSTORE_HARDWARE_MODULE_ID, strerror(-rc));

goto out;

}

return 0;

out:

*dev = NULL;

return rc;

}

static void keymaster_device_release(keymaster_device_t* dev) {

128

keymaster_close(dev);

129

}

130

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

/***************

* PERMISSIONS *

***************/

/* Here are the permissions, actions, users, and the main function. */

136

typedef enum {

Kenny Root

2013-03-21 14:10:15 -0700

[diff] [blame]

P_TEST = 1 << 0,

P_GET = 1 << 1,

P_INSERT = 1 << 2,

P_DELETE = 1 << 3,

P_EXIST = 1 << 4,

P_SAW = 1 << 5,

P_RESET = 1 << 6,

P_PASSWORD = 1 << 7,

P_LOCK = 1 << 8,

P_UNLOCK = 1 << 9,

P_ZERO = 1 << 10,

P_SIGN = 1 << 11,

P_VERIFY = 1 << 12,

P_GRANT = 1 << 13,

P_DUPLICATE = 1 << 14,

Kenny Root

2013-04-01 16:29:11 -0700

[diff] [blame]

152

P_CLEAR_UID = 1 << 15,

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

153

} perm_t;

154

155

static struct user_euid {

uid_t uid;

uid_t euid;

} user_euids[] = {

{AID_VPN, AID_SYSTEM},

160

{AID_WIFI, AID_SYSTEM},

161

{AID_ROOT, AID_SYSTEM},

162

};

163

164

static struct user_perm {

uid_t uid;

perm_t perms;

} user_perms[] = {

{AID_SYSTEM, static_cast<perm_t>((uint32_t)(~0)) },

169

{AID_VPN, static_cast<perm_t>(P_GET | P_SIGN | P_VERIFY) },

170

{AID_WIFI, static_cast<perm_t>(P_GET | P_SIGN | P_VERIFY) },

171

{AID_ROOT, static_cast<perm_t>(P_GET) },

};

| P_VERIFY);

Kenny Root

2013-04-04 08:37:42 -0700

[diff] [blame]

177

/**

178

* Returns the app ID (in the Android multi-user sense) for the current

179

* UNIX UID.

180

*/

181

static uid_t get_app_id(uid_t uid) {

182

return uid % AID_USER;

}

/**

* Returns the user ID (in the Android multi-user sense) for the current

187

* UNIX UID.

188

*/

189

static uid_t get_user_id(uid_t uid) {

190

return uid / AID_USER;

}

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

194

static bool has_permission(uid_t uid, perm_t perm) {

Kenny Root

2013-04-04 08:37:42 -0700

[diff] [blame]

195

// All system users are equivalent for multi-user support.

196

if (get_app_id(uid) == AID_SYSTEM) {

uid = AID_SYSTEM;

}

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

200

for (size_t i = 0; i < sizeof(user_perms)/sizeof(user_perms[0]); i++) {

201

struct user_perm user = user_perms[i];

202

if (user.uid == uid) {

203

return user.perms & perm;

}

}

return DEFAULT_PERMS & perm;

208

}

209

Kenny Root

2013-03-19 13:41:33 -0700

[diff] [blame]

210

/**

211

* Returns the UID that the callingUid should act as. This is here for

212

* legacy support of the WiFi and VPN systems and should be removed

213

* when WiFi can operate in its own namespace.

214

*/

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

215

static uid_t get_keystore_euid(uid_t uid) {

216

for (size_t i = 0; i < sizeof(user_euids)/sizeof(user_euids[0]); i++) {

217

struct user_euid user = user_euids[i];

218

if (user.uid == uid) {

return user.euid;

}

}

return uid;

}

Kenny Root

2013-03-19 13:41:33 -0700

[diff] [blame]

226

/**

227

* Returns true if the callingUid is allowed to interact in the targetUid's

228

* namespace.

229

*/

230

static bool is_granted_to(uid_t callingUid, uid_t targetUid) {

231

for (size_t i = 0; i < sizeof(user_euids)/sizeof(user_euids[0]); i++) {

232

struct user_euid user = user_euids[i];

233

if (user.euid == callingUid && user.uid == targetUid) {

return true;

}

}

return false;

}

Kenny Root

2012-02-15 15:00:46 -0800

[diff] [blame]

241

/* Here is the encoding of keys. This is necessary in order to allow arbitrary

242

* characters in keys. Characters in [0-~] are not encoded. Others are encoded

243

* into two bytes. The first byte is one of [+-.] which represents the first

244

* two bits of the character. The second byte encodes the rest of the bits into

245

* [0-o]. Therefore in the worst case the length of a key gets doubled. Note

246

* that Base64 cannot be used here due to the need of prefix match on keys. */

247

Kenny Root

2013-04-04 08:37:42 -0700

[diff] [blame]

248

static size_t encode_key_length(const android::String8& keyName) {

249

const uint8_t* in = reinterpret_cast<const uint8_t*>(keyName.string());

250

size_t length = keyName.length();

251

for (int i = length; i > 0; --i, ++in) {

252

if (*in < '0' || *in > '~') {

++length;

}

}

return length;

}

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

259

static int encode_key(char* out, const android::String8& keyName) {

260

const uint8_t* in = reinterpret_cast<const uint8_t*>(keyName.string());

261

size_t length = keyName.length();

Kenny Root

2012-02-15 15:00:46 -0800

[diff] [blame]

262

for (int i = length; i > 0; --i, ++in, ++out) {

Kenny Root

2013-04-04 08:37:42 -0700

[diff] [blame]

263

if (*in < '0' || *in > '~') {

Kenny Root

2012-02-15 15:00:46 -0800

[diff] [blame]

264

*out = '+' + (*in >> 6);

265

*++out = '0' + (*in & 0x3F);

266

++length;

Kenny Root

2013-04-04 08:37:42 -0700

[diff] [blame]

267

} else {

268

*out = *in;

Kenny Root

2012-02-15 15:00:46 -0800

[diff] [blame]

269

}

270

}

271

*out = '\0';

Kenny Root

2012-02-15 17:20:23 -0800

[diff] [blame]

return length;

}

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

275

/*

276

* Converts from the "escaped" format on disk to actual name.

277

* This will be smaller than the input string.

278

*

279

* Characters that should combine with the next at the end will be truncated.

280

*/

281

static size_t decode_key_length(const char* in, size_t length) {

282

size_t outLength = 0;

283

284

for (const char* end = in + length; in < end; in++) {

285

/* This combines with the next character. */

286

if (*in < '0' || *in > '~') {

continue;

}

outLength++;

}

return outLength;

}

static void decode_key(char* out, const char* in, size_t length) {

296

for (const char* end = in + length; in < end; in++) {

297

if (*in < '0' || *in > '~') {

298

/* Truncate combining characters at the end. */

if (in + 1 >= end) {

break;

}

*out = (*in++ - '+') << 6;

304

*out++ |= (*in - '0') & 0x3F;

Kenny Root

2012-02-15 15:00:46 -0800

[diff] [blame]

305

} else {

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

306

*out++ = *in;

Kenny Root

2012-02-15 15:00:46 -0800

[diff] [blame]

307

}

308

}

309

*out = '\0';

Kenny Root

2012-02-15 15:00:46 -0800

[diff] [blame]

310

}

311

312

static size_t readFully(int fd, uint8_t* data, size_t size) {

313

size_t remaining = size;

314

while (remaining > 0) {

Kenny Root

2012-11-14 14:29:02 -0800

[diff] [blame]

315

ssize_t n = TEMP_FAILURE_RETRY(read(fd, data, remaining));

Kenny Root

5281edb

2012-11-21 15:14:04 -0800

[diff] [blame]

316

if (n <= 0) {

Kenny Root

2012-11-14 14:29:02 -0800

[diff] [blame]

317

return size - remaining;

Kenny Root

2012-02-15 15:00:46 -0800

[diff] [blame]

}

data += n;

remaining -= n;

}

return size;

}

static size_t writeFully(int fd, uint8_t* data, size_t size) {

326

size_t remaining = size;

327

while (remaining > 0) {

Kenny Root

2012-11-14 14:29:02 -0800

[diff] [blame]

328

ssize_t n = TEMP_FAILURE_RETRY(write(fd, data, remaining));

329

if (n < 0) {

330

ALOGW("write failed: %s", strerror(errno));

331

return size - remaining;

Kenny Root

2012-02-15 15:00:46 -0800

[diff] [blame]

}

data += n;

remaining -= n;

}

return size;

}

class Entropy {

public:

Entropy() : mRandom(-1) {}

342

~Entropy() {

Kenny Root

2012-11-14 14:29:02 -0800

[diff] [blame]

343

if (mRandom >= 0) {

Kenny Root

2012-02-15 15:00:46 -0800

[diff] [blame]

close(mRandom);

}

}

bool open() {

const char* randomDevice = "/dev/urandom";

Kenny Root

2012-11-14 14:29:02 -0800

[diff] [blame]

350

mRandom = TEMP_FAILURE_RETRY(::open(randomDevice, O_RDONLY));

351

if (mRandom < 0) {

Kenny Root

2012-02-15 15:00:46 -0800

[diff] [blame]

352

ALOGE("open: %s: %s", randomDevice, strerror(errno));

return false;

}

return true;

}

Kenny Root

2012-03-13 12:53:19 -0700

[diff] [blame]

358

bool generate_random_data(uint8_t* data, size_t size) const {

Kenny Root

2012-02-15 15:00:46 -0800

[diff] [blame]

359

return (readFully(mRandom, data, size) == size);

}

private:

int mRandom;

};

/* Here is the file format. There are two parts in blob.value, the secret and

367

* the description. The secret is stored in ciphertext, and its original size

368

* can be found in blob.length. The description is stored after the secret in

369

* plaintext, and its size is specified in blob.info. The total size of the two

Kenny Root

2012-03-23 16:34:39 -0700

[diff] [blame]

370

* parts must be no more than VALUE_SIZE bytes. The first field is the version,

Kenny Root

2013-04-03 09:22:15 -0700

[diff] [blame]

371

* the second is the blob's type, and the third byte is flags. Fields other

Kenny Root

2012-02-15 15:00:46 -0800

[diff] [blame]

372

* than blob.info, blob.length, and blob.value are modified by encryptBlob()

373

* and decryptBlob(). Thus they should not be accessed from outside. */

374

Kenny Root

2012-03-23 16:34:39 -0700

[diff] [blame]

375

/* ** Note to future implementors of encryption: **

376

* Currently this is the construction:

377

* metadata || Enc(MD5(data) || data)

378

*

379

* This should be the construction used for encrypting if re-implementing:

380

*

381

* Derive independent keys for encryption and MAC:

382

* Kenc = AES_encrypt(masterKey, "Encrypt")

383

* Kmac = AES_encrypt(masterKey, "MAC")

384

*

385

* Store this:

386

* metadata || AES_CTR_encrypt(Kenc, rand_IV, data) ||

387

* HMAC(Kmac, metadata || Enc(data))

388

*/

Kenny Root

2012-02-15 15:00:46 -0800

[diff] [blame]

389

struct __attribute__((packed)) blob {

Kenny Root

2012-03-23 16:34:39 -0700

[diff] [blame]

390

uint8_t version;

391

uint8_t type;

Kenny Root

2013-04-03 09:22:15 -0700

[diff] [blame]

392

uint8_t flags;

Kenny Root

2012-02-15 15:00:46 -0800

[diff] [blame]

393

uint8_t info;

394

uint8_t vector[AES_BLOCK_SIZE];

Kenny Root

2012-03-23 16:34:39 -0700

[diff] [blame]

395

uint8_t encrypted[0]; // Marks offset to encrypted data.

Kenny Root

2012-02-15 15:00:46 -0800

[diff] [blame]

396

uint8_t digest[MD5_DIGEST_LENGTH];

Kenny Root

2012-03-23 16:34:39 -0700

[diff] [blame]

397

uint8_t digested[0]; // Marks offset to digested data.

Kenny Root

2012-02-15 15:00:46 -0800

[diff] [blame]

398

int32_t length; // in network byte order when encrypted

399

uint8_t value[VALUE_SIZE + AES_BLOCK_SIZE];

400

};

401

Kenny Root

2012-03-23 16:34:39 -0700

[diff] [blame]

402

typedef enum {

Kenny Root

2013-03-21 14:10:15 -0700

[diff] [blame]

403

TYPE_ANY = 0, // meta type that matches anything

Kenny Root

2012-03-23 16:34:39 -0700

[diff] [blame]

TYPE_GENERIC = 1,

TYPE_MASTER_KEY = 2,

TYPE_KEY_PAIR = 3,

} BlobType;

Kenny Root

2013-04-03 09:22:15 -0700

[diff] [blame]

409

static const uint8_t CURRENT_BLOB_VERSION = 2;

Kenny Root

2012-03-23 16:34:39 -0700

[diff] [blame]

410

Kenny Root

2012-02-15 15:00:46 -0800

[diff] [blame]

411

class Blob {

412

public:

Chad Brubaker

b124c9e

2015-07-29 13:53:36 -0700

[diff] [blame^]

413

Blob(const uint8_t* value, size_t valueLength, const uint8_t* info, uint8_t infoLength,

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

414

BlobType type) {

Chad Brubaker

b124c9e

2015-07-29 13:53:36 -0700

[diff] [blame^]

415

if (valueLength > sizeof(mBlob.value)) {

416

valueLength = sizeof(mBlob.value);

417

ALOGW("Provided blob length too large");

418

}

419

if (infoLength + valueLength > sizeof(mBlob.value)) {

420

infoLength = sizeof(mBlob.value) - valueLength;

421

ALOGW("Provided info length too large");

422

}

Kenny Root

2012-02-15 15:00:46 -0800

[diff] [blame]

423

mBlob.length = valueLength;

424

memcpy(mBlob.value, value, valueLength);

425

426

mBlob.info = infoLength;

427

memcpy(mBlob.value + valueLength, info, infoLength);

Kenny Root

2012-03-23 16:34:39 -0700

[diff] [blame]

428

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

429

mBlob.version = CURRENT_BLOB_VERSION;

Kenny Root

2012-03-23 16:34:39 -0700

[diff] [blame]

430

mBlob.type = uint8_t(type);

Kenny Root

2013-04-03 09:22:15 -0700

[diff] [blame]

431

Kenny Root

ee8068b

2013-10-07 09:49:15 -0700

[diff] [blame]

432

if (type == TYPE_MASTER_KEY) {

433

mBlob.flags = KEYSTORE_FLAG_ENCRYPTED;

434

} else {

435

mBlob.flags = KEYSTORE_FLAG_NONE;

436

}

Kenny Root

2012-02-15 15:00:46 -0800

[diff] [blame]

}

Blob(blob b) {

mBlob = b;

}

Blob() {}

Kenny Root

2012-03-13 12:53:19 -0700

[diff] [blame]

445

const uint8_t* getValue() const {

Kenny Root

2012-02-15 15:00:46 -0800

[diff] [blame]

return mBlob.value;

}

Kenny Root

2012-03-13 12:53:19 -0700

[diff] [blame]

449

int32_t getLength() const {

Kenny Root

2012-02-15 15:00:46 -0800

[diff] [blame]

return mBlob.length;

}

Kenny Root

2012-03-13 12:53:19 -0700

[diff] [blame]

453

const uint8_t* getInfo() const {

454

return mBlob.value + mBlob.length;

455

}

456

457

uint8_t getInfoLength() const {

Kenny Root

2012-02-15 15:00:46 -0800

[diff] [blame]

return mBlob.info;

}

Kenny Root

2012-03-23 16:34:39 -0700

[diff] [blame]

461

uint8_t getVersion() const {

462

return mBlob.version;

463

}

464

Kenny Root

2013-04-03 09:22:15 -0700

[diff] [blame]

465

bool isEncrypted() const {

466

if (mBlob.version < 2) {

return true;

}

return mBlob.flags & KEYSTORE_FLAG_ENCRYPTED;

471

}

472

473

void setEncrypted(bool encrypted) {

474

if (encrypted) {

475

mBlob.flags |= KEYSTORE_FLAG_ENCRYPTED;

476

} else {

477

mBlob.flags &= ~KEYSTORE_FLAG_ENCRYPTED;

}

}

Kenny Root

2013-09-04 13:56:03 -0700

[diff] [blame]

481

bool isFallback() const {

482

return mBlob.flags & KEYSTORE_FLAG_FALLBACK;

483

}

484

485

void setFallback(bool fallback) {

486

if (fallback) {

487

mBlob.flags |= KEYSTORE_FLAG_FALLBACK;

488

} else {

489

mBlob.flags &= ~KEYSTORE_FLAG_FALLBACK;

}

}

Kenny Root

2012-03-23 16:34:39 -0700

[diff] [blame]

493

void setVersion(uint8_t version) {

494

mBlob.version = version;

495

}

496

497

BlobType getType() const {

498

return BlobType(mBlob.type);

499

}

500

501

void setType(BlobType type) {

502

mBlob.type = uint8_t(type);

503

}

504

Kenny Root

2013-04-03 09:22:15 -0700

[diff] [blame]

505

ResponseCode writeBlob(const char* filename, AES_KEY *aes_key, State state, Entropy* entropy) {

506

ALOGV("writing blob %s", filename);

507

if (isEncrypted()) {

508

if (state != STATE_NO_ERROR) {

509

ALOGD("couldn't insert encrypted blob while not unlocked");

return LOCKED;

}

if (!entropy->generate_random_data(mBlob.vector, AES_BLOCK_SIZE)) {

514

ALOGW("Could not read random data for: %s", filename);

515

return SYSTEM_ERROR;

516

}

Kenny Root

2012-02-15 15:00:46 -0800

[diff] [blame]

517

}

518

519

// data includes the value and the value's length

520

size_t dataLength = mBlob.length + sizeof(mBlob.length);

521

// pad data to the AES_BLOCK_SIZE

522

size_t digestedLength = ((dataLength + AES_BLOCK_SIZE - 1)

523

/ AES_BLOCK_SIZE * AES_BLOCK_SIZE);

524

// encrypted data includes the digest value

525

size_t encryptedLength = digestedLength + MD5_DIGEST_LENGTH;

526

// move info after space for padding

527

memmove(&mBlob.encrypted[encryptedLength], &mBlob.value[mBlob.length], mBlob.info);

528

// zero padding area

529

memset(mBlob.value + mBlob.length, 0, digestedLength - dataLength);

530

531

mBlob.length = htonl(mBlob.length);

Kenny Root

2012-02-15 15:00:46 -0800

[diff] [blame]

532

Kenny Root

2013-04-03 09:22:15 -0700

[diff] [blame]

533

if (isEncrypted()) {

534

MD5(mBlob.digested, digestedLength, mBlob.digest);

Kenny Root

2012-02-15 15:00:46 -0800

[diff] [blame]

535

Kenny Root

2013-04-03 09:22:15 -0700

[diff] [blame]

536

uint8_t vector[AES_BLOCK_SIZE];

537

memcpy(vector, mBlob.vector, AES_BLOCK_SIZE);

538

AES_cbc_encrypt(mBlob.encrypted, mBlob.encrypted, encryptedLength,

539

aes_key, vector, AES_ENCRYPT);

540

}

541

Kenny Root

2012-02-15 15:00:46 -0800

[diff] [blame]

542

size_t headerLength = (mBlob.encrypted - (uint8_t*) &mBlob);

543

size_t fileLength = encryptedLength + headerLength + mBlob.info;

544

545

const char* tmpFileName = ".tmp";

Kenny Root

2012-11-14 14:29:02 -0800

[diff] [blame]

546

int out = TEMP_FAILURE_RETRY(open(tmpFileName,

547

O_WRONLY | O_TRUNC | O_CREAT, S_IRUSR | S_IWUSR));

548

if (out < 0) {

549

ALOGW("could not open file: %s: %s", tmpFileName, strerror(errno));

Kenny Root

2012-02-15 15:00:46 -0800

[diff] [blame]

550

return SYSTEM_ERROR;

551

}

552

size_t writtenBytes = writeFully(out, (uint8_t*) &mBlob, fileLength);

553

if (close(out) != 0) {

554

return SYSTEM_ERROR;

555

}

556

if (writtenBytes != fileLength) {

Kenny Root

2012-11-14 14:29:02 -0800

[diff] [blame]

557

ALOGW("blob not fully written %zu != %zu", writtenBytes, fileLength);

Kenny Root

2012-02-15 15:00:46 -0800

[diff] [blame]

558

unlink(tmpFileName);

559

return SYSTEM_ERROR;

560

}

Kenny Root

2012-11-14 14:29:02 -0800

[diff] [blame]

561

if (rename(tmpFileName, filename) == -1) {

562

ALOGW("could not rename blob to %s: %s", filename, strerror(errno));

563

return SYSTEM_ERROR;

564

}

565

return NO_ERROR;

Kenny Root

2012-02-15 15:00:46 -0800

[diff] [blame]

566

}

567

Kenny Root

2013-04-03 09:22:15 -0700

[diff] [blame]

568

ResponseCode readBlob(const char* filename, AES_KEY *aes_key, State state) {

569

ALOGV("reading blob %s", filename);

Kenny Root

2012-11-14 14:29:02 -0800

[diff] [blame]

570

int in = TEMP_FAILURE_RETRY(open(filename, O_RDONLY));

571

if (in < 0) {

Kenny Root

2012-02-15 15:00:46 -0800

[diff] [blame]

572

return (errno == ENOENT) ? KEY_NOT_FOUND : SYSTEM_ERROR;

573

}

574

// fileLength may be less than sizeof(mBlob) since the in

575

// memory version has extra padding to tolerate rounding up to

576

// the AES_BLOCK_SIZE

577

size_t fileLength = readFully(in, (uint8_t*) &mBlob, sizeof(mBlob));

578

if (close(in) != 0) {

579

return SYSTEM_ERROR;

580

}

Kenny Root

2013-04-03 09:22:15 -0700

[diff] [blame]

581

582

if (isEncrypted() && (state != STATE_NO_ERROR)) {

return LOCKED;

}

Kenny Root

2012-02-15 15:00:46 -0800

[diff] [blame]

586

size_t headerLength = (mBlob.encrypted - (uint8_t*) &mBlob);

587

if (fileLength < headerLength) {

588

return VALUE_CORRUPTED;

589

}

590

591

ssize_t encryptedLength = fileLength - (headerLength + mBlob.info);

Kenny Root

2013-04-03 09:22:15 -0700

[diff] [blame]

592

if (encryptedLength < 0) {

Kenny Root

2012-02-15 15:00:46 -0800

[diff] [blame]

593

return VALUE_CORRUPTED;

594

}

Kenny Root

2013-04-03 09:22:15 -0700

[diff] [blame]

595

596

ssize_t digestedLength;

597

if (isEncrypted()) {

598

if (encryptedLength % AES_BLOCK_SIZE != 0) {

599

return VALUE_CORRUPTED;

600

}

601

602

AES_cbc_encrypt(mBlob.encrypted, mBlob.encrypted, encryptedLength, aes_key,

603

mBlob.vector, AES_DECRYPT);

604

digestedLength = encryptedLength - MD5_DIGEST_LENGTH;

605

uint8_t computedDigest[MD5_DIGEST_LENGTH];

606

MD5(mBlob.digested, digestedLength, computedDigest);

607

if (memcmp(mBlob.digest, computedDigest, MD5_DIGEST_LENGTH) != 0) {

608

return VALUE_CORRUPTED;

609

}

610

} else {

611

digestedLength = encryptedLength;

Kenny Root

2012-02-15 15:00:46 -0800

[diff] [blame]

612

}

613

614

ssize_t maxValueLength = digestedLength - sizeof(mBlob.length);

615

mBlob.length = ntohl(mBlob.length);

616

if (mBlob.length < 0 || mBlob.length > maxValueLength) {

617

return VALUE_CORRUPTED;

618

}

619

if (mBlob.info != 0) {

620

// move info from after padding to after data

621

memmove(&mBlob.value[mBlob.length], &mBlob.value[maxValueLength], mBlob.info);

622

}

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

623

return ::NO_ERROR;

Kenny Root

2012-02-15 15:00:46 -0800

[diff] [blame]

}

private:

struct blob mBlob;

};

Kenny Root

2013-04-04 08:37:42 -0700

[diff] [blame]

630

class UserState {

Kenny Root

2012-02-15 15:00:46 -0800

[diff] [blame]

631

public:

Kenny Root

2013-04-04 08:37:42 -0700

[diff] [blame]

632

UserState(uid_t userId) : mUserId(userId), mRetry(MAX_RETRY) {

633

asprintf(&mUserDir, "user_%u", mUserId);

634

asprintf(&mMasterKeyFile, "%s/.masterkey", mUserDir);

}

~UserState() {

free(mUserDir);

free(mMasterKeyFile);

}

bool initialize() {

if ((mkdir(mUserDir, S_IRUSR | S_IWUSR | S_IXUSR) < 0) && (errno != EEXIST)) {

644

ALOGE("Could not create directory '%s'", mUserDir);

return false;

}

if (access(mMasterKeyFile, R_OK) == 0) {

Kenny Root

2012-02-15 15:00:46 -0800

[diff] [blame]

649

setState(STATE_LOCKED);

650

} else {

651

setState(STATE_UNINITIALIZED);

652

}

Kenny Root

2012-02-15 17:20:23 -0800

[diff] [blame]

653

Kenny Root

2013-04-04 08:37:42 -0700

[diff] [blame]

return true;

}

uid_t getUserId() const {

return mUserId;

}

const char* getUserDirName() const {

return mUserDir;

}

const char* getMasterKeyFileName() const {

666

return mMasterKeyFile;

667

}

668

669

void setState(State state) {

670

mState = state;

671

if (mState == STATE_NO_ERROR || mState == STATE_UNINITIALIZED) {

672

mRetry = MAX_RETRY;

673

}

Kenny Root

2012-02-15 15:00:46 -0800

[diff] [blame]

674

}

675

Kenny Root

5187818

2012-03-13 12:53:19 -0700

[diff] [blame]

676

State getState() const {

Kenny Root

2012-02-15 15:00:46 -0800

[diff] [blame]

return mState;

}

Kenny Root

2012-03-13 12:53:19 -0700

[diff] [blame]

680

int8_t getRetry() const {

Kenny Root

2012-02-15 15:00:46 -0800

[diff] [blame]

return mRetry;

}

Kenny Root

2013-04-04 08:37:42 -0700

[diff] [blame]

684

void zeroizeMasterKeysInMemory() {

685

memset(mMasterKey, 0, sizeof(mMasterKey));

686

memset(mSalt, 0, sizeof(mSalt));

687

memset(&mMasterKeyEncryption, 0, sizeof(mMasterKeyEncryption));

688

memset(&mMasterKeyDecryption, 0, sizeof(mMasterKeyDecryption));

Kenny Root

2012-02-15 17:20:23 -0800

[diff] [blame]

689

}

690

Kenny Root

2013-04-04 08:37:42 -0700

[diff] [blame]

691

ResponseCode initialize(const android::String8& pw, Entropy* entropy) {

692

if (!generateMasterKey(entropy)) {

Kenny Root

2012-02-15 15:00:46 -0800

[diff] [blame]

693

return SYSTEM_ERROR;

694

}

Kenny Root

2013-04-04 08:37:42 -0700

[diff] [blame]

695

ResponseCode response = writeMasterKey(pw, entropy);

Kenny Root

2012-02-15 15:00:46 -0800

[diff] [blame]

696

if (response != NO_ERROR) {

697

return response;

698

}

699

setupMasterKeys();

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

700

return ::NO_ERROR;

Kenny Root

2012-02-15 15:00:46 -0800

[diff] [blame]

701

}

702

Kenny Root

2013-04-04 08:37:42 -0700

[diff] [blame]

703

ResponseCode writeMasterKey(const android::String8& pw, Entropy* entropy) {

Kenny Root

2012-02-15 15:00:46 -0800

[diff] [blame]

704

uint8_t passwordKey[MASTER_KEY_SIZE_BYTES];

705

generateKeyFromPassword(passwordKey, MASTER_KEY_SIZE_BYTES, pw, mSalt);

706

AES_KEY passwordAesKey;

707

AES_set_encrypt_key(passwordKey, MASTER_KEY_SIZE_BITS, &passwordAesKey);

Kenny Root

2012-03-23 16:34:39 -0700

[diff] [blame]

708

Blob masterKeyBlob(mMasterKey, sizeof(mMasterKey), mSalt, sizeof(mSalt), TYPE_MASTER_KEY);

Kenny Root

2013-04-03 09:22:15 -0700

[diff] [blame]

709

return masterKeyBlob.writeBlob(mMasterKeyFile, &passwordAesKey, STATE_NO_ERROR, entropy);

Kenny Root

2012-02-15 15:00:46 -0800

[diff] [blame]

710

}

711

Kenny Root

2013-04-04 08:37:42 -0700

[diff] [blame]

712

ResponseCode readMasterKey(const android::String8& pw, Entropy* entropy) {

713

int in = TEMP_FAILURE_RETRY(open(mMasterKeyFile, O_RDONLY));

Kenny Root

2012-11-14 14:29:02 -0800

[diff] [blame]

714

if (in < 0) {

Kenny Root

2012-02-15 15:00:46 -0800

[diff] [blame]

return SYSTEM_ERROR;

}

// we read the raw blob to just to get the salt to generate

719

// the AES key, then we create the Blob to use with decryptBlob

720

blob rawBlob;

721

size_t length = readFully(in, (uint8_t*) &rawBlob, sizeof(rawBlob));

722

if (close(in) != 0) {

723

return SYSTEM_ERROR;

724

}

725

// find salt at EOF if present, otherwise we have an old file

726

uint8_t* salt;

727

if (length > SALT_SIZE && rawBlob.info == SALT_SIZE) {

728

salt = (uint8_t*) &rawBlob + length - SALT_SIZE;

} else {

salt = NULL;

}

uint8_t passwordKey[MASTER_KEY_SIZE_BYTES];

733

generateKeyFromPassword(passwordKey, MASTER_KEY_SIZE_BYTES, pw, salt);

734

AES_KEY passwordAesKey;

735

AES_set_decrypt_key(passwordKey, MASTER_KEY_SIZE_BITS, &passwordAesKey);

736

Blob masterKeyBlob(rawBlob);

Kenny Root

2013-04-03 09:22:15 -0700

[diff] [blame]

737

ResponseCode response = masterKeyBlob.readBlob(mMasterKeyFile, &passwordAesKey,

738

STATE_NO_ERROR);

Kenny Root

2012-02-15 15:00:46 -0800

[diff] [blame]

739

if (response == SYSTEM_ERROR) {

Kenny Root

2013-04-03 09:22:15 -0700

[diff] [blame]

740

return response;

Kenny Root

2012-02-15 15:00:46 -0800

[diff] [blame]

741

}

742

if (response == NO_ERROR && masterKeyBlob.getLength() == MASTER_KEY_SIZE_BYTES) {

743

// if salt was missing, generate one and write a new master key file with the salt.

744

if (salt == NULL) {

Kenny Root

2013-04-04 08:37:42 -0700

[diff] [blame]

745

if (!generateSalt(entropy)) {

Kenny Root

2012-02-15 15:00:46 -0800

[diff] [blame]

746

return SYSTEM_ERROR;

747

}

Kenny Root

2013-04-04 08:37:42 -0700

[diff] [blame]

748

response = writeMasterKey(pw, entropy);

Kenny Root

2012-02-15 15:00:46 -0800

[diff] [blame]

749

}

750

if (response == NO_ERROR) {

751

memcpy(mMasterKey, masterKeyBlob.getValue(), MASTER_KEY_SIZE_BYTES);

setupMasterKeys();

}

return response;

}

if (mRetry <= 0) {

reset();

return UNINITIALIZED;

}

--mRetry;

switch (mRetry) {

case 0: return WRONG_PASSWORD_0;

763

case 1: return WRONG_PASSWORD_1;

764

case 2: return WRONG_PASSWORD_2;

765

case 3: return WRONG_PASSWORD_3;

766

default: return WRONG_PASSWORD_3;

}

}

Kenny Root

2013-04-04 08:37:42 -0700

[diff] [blame]

770

AES_KEY* getEncryptionKey() {

771

return &mMasterKeyEncryption;

772

}

773

774

AES_KEY* getDecryptionKey() {

775

return &mMasterKeyDecryption;

776

}

777

Kenny Root

2012-02-15 15:00:46 -0800

[diff] [blame]

778

bool reset() {

Kenny Root

2013-04-04 08:37:42 -0700

[diff] [blame]

779

DIR* dir = opendir(getUserDirName());

Kenny Root

2012-02-15 15:00:46 -0800

[diff] [blame]

780

if (!dir) {

Kenny Root

2013-04-04 08:37:42 -0700

[diff] [blame]

781

ALOGW("couldn't open user directory: %s", strerror(errno));

Kenny Root

2012-02-15 15:00:46 -0800

[diff] [blame]

782

return false;

783

}

Kenny Root

2013-04-04 08:37:42 -0700

[diff] [blame]

784

785

struct dirent* file;

Kenny Root

2012-02-15 15:00:46 -0800

[diff] [blame]

786

while ((file = readdir(dir)) != NULL) {

Kenny Root

2013-04-04 08:37:42 -0700

[diff] [blame]

787

// We only care about files.

788

if (file->d_type != DT_REG) {

continue;

}

// Skip anything that starts with a "."

793

if (file->d_name[0] == '.') {

continue;

}

// Find the current file's UID.

798

char* end;

799

unsigned long thisUid = strtoul(file->d_name, &end, 10);

800

if (end[0] != '_' || end[1] == 0) {

continue;

}

// Skip if this is not our user.

805

if (get_user_id(thisUid) != mUserId) {

continue;

}

unlinkat(dirfd(dir), file->d_name, 0);

Kenny Root

2012-02-15 15:00:46 -0800

[diff] [blame]

}

closedir(dir);

return true;

}

Kenny Root

2013-04-04 08:37:42 -0700

[diff] [blame]

815

private:

816

static const int MASTER_KEY_SIZE_BYTES = 16;

817

static const int MASTER_KEY_SIZE_BITS = MASTER_KEY_SIZE_BYTES * 8;

818

819

static const int MAX_RETRY = 4;

820

static const size_t SALT_SIZE = 16;

821

822

void generateKeyFromPassword(uint8_t* key, ssize_t keySize, const android::String8& pw,

uint8_t* salt) {

size_t saltSize;

if (salt != NULL) {

saltSize = SALT_SIZE;

827

} else {

828

// pre-gingerbread used this hardwired salt, readMasterKey will rewrite these when found

829

salt = (uint8_t*) "keystore";

830

// sizeof = 9, not strlen = 8

831

saltSize = sizeof("keystore");

832

}

833

834

PKCS5_PBKDF2_HMAC_SHA1(reinterpret_cast<const char*>(pw.string()), pw.length(), salt,

835

saltSize, 8192, keySize, key);

836

}

837

838

bool generateSalt(Entropy* entropy) {

839

return entropy->generate_random_data(mSalt, sizeof(mSalt));

840

}

841

842

bool generateMasterKey(Entropy* entropy) {

843

if (!entropy->generate_random_data(mMasterKey, sizeof(mMasterKey))) {

844

return false;

845

}

846

if (!generateSalt(entropy)) {

return false;

}

return true;

}

void setupMasterKeys() {

853

AES_set_encrypt_key(mMasterKey, MASTER_KEY_SIZE_BITS, &mMasterKeyEncryption);

854

AES_set_decrypt_key(mMasterKey, MASTER_KEY_SIZE_BITS, &mMasterKeyDecryption);

855

setState(STATE_NO_ERROR);

}

uid_t mUserId;

char* mUserDir;

char* mMasterKeyFile;

State mState;

int8_t mRetry;

uint8_t mMasterKey[MASTER_KEY_SIZE_BYTES];

867

uint8_t mSalt[SALT_SIZE];

868

869

AES_KEY mMasterKeyEncryption;

870

AES_KEY mMasterKeyDecryption;

};

typedef struct {

uint32_t uid;

const uint8_t* filename;

} grant_t;

class KeyStore {

public:

KeyStore(Entropy* entropy, keymaster_device_t* device)

: mEntropy(entropy)

, mDevice(device)

{

memset(&mMetaData, '\0', sizeof(mMetaData));

}

~KeyStore() {

for (android::Vector<grant_t*>::iterator it(mGrants.begin());

889

it != mGrants.end(); it++) {

delete *it;

mGrants.erase(it);

}

for (android::Vector<UserState*>::iterator it(mMasterKeys.begin());

895

it != mMasterKeys.end(); it++) {

896

delete *it;

897

mMasterKeys.erase(it);

}

}

keymaster_device_t* getDevice() const {

return mDevice;

}

ResponseCode initialize() {

906

readMetaData();

907

if (upgradeKeystore()) {

writeMetaData();

}

return ::NO_ERROR;

}

State getState(uid_t uid) {

915

return getUserState(uid)->getState();

916

}

917

918

ResponseCode initializeUser(const android::String8& pw, uid_t uid) {

919

UserState* userState = getUserState(uid);

920

return userState->initialize(pw, mEntropy);

921

}

922

923

ResponseCode writeMasterKey(const android::String8& pw, uid_t uid) {

924

uid_t user_id = get_user_id(uid);

925

UserState* userState = getUserState(user_id);

926

return userState->writeMasterKey(pw, mEntropy);

927

}

928

929

ResponseCode readMasterKey(const android::String8& pw, uid_t uid) {

930

uid_t user_id = get_user_id(uid);

931

UserState* userState = getUserState(user_id);

932

return userState->readMasterKey(pw, mEntropy);

933

}

934

935

android::String8 getKeyName(const android::String8& keyName) {

Douglas Leung

a77e809

2013-06-13 16:34:43 -0700

[diff] [blame]

936

char encoded[encode_key_length(keyName) + 1]; // add 1 for null char

Kenny Root

2013-04-04 08:37:42 -0700

[diff] [blame]

937

encode_key(encoded, keyName);

938

return android::String8(encoded);

939

}

940

941

android::String8 getKeyNameForUid(const android::String8& keyName, uid_t uid) {

Douglas Leung

a77e809

2013-06-13 16:34:43 -0700

[diff] [blame]

942

char encoded[encode_key_length(keyName) + 1]; // add 1 for null char

Kenny Root

2013-04-04 08:37:42 -0700

[diff] [blame]

943

encode_key(encoded, keyName);

944

return android::String8::format("%u_%s", uid, encoded);

945

}

946

947

android::String8 getKeyNameForUidWithDir(const android::String8& keyName, uid_t uid) {

Douglas Leung

a77e809

2013-06-13 16:34:43 -0700

[diff] [blame]

948

char encoded[encode_key_length(keyName) + 1]; // add 1 for null char

Kenny Root

2013-04-04 08:37:42 -0700

[diff] [blame]

949

encode_key(encoded, keyName);

950

return android::String8::format("%s/%u_%s", getUserState(uid)->getUserDirName(), uid,

encoded);

}

bool reset(uid_t uid) {

955

UserState* userState = getUserState(uid);

956

userState->zeroizeMasterKeysInMemory();

957

userState->setState(STATE_UNINITIALIZED);

958

return userState->reset();

959

}

960

961

bool isEmpty(uid_t uid) const {

962

const UserState* userState = getUserState(uid);

963

if (userState == NULL) {

return true;

}

DIR* dir = opendir(userState->getUserDirName());

Kenny Root

2012-02-15 15:00:46 -0800

[diff] [blame]

struct dirent* file;

if (!dir) {

return true;

}

bool result = true;

Kenny Root

2013-04-04 08:37:42 -0700

[diff] [blame]

973

974

char filename[NAME_MAX];

975

int n = snprintf(filename, sizeof(filename), "%u_", uid);

976

Kenny Root

2012-02-15 15:00:46 -0800

[diff] [blame]

977

while ((file = readdir(dir)) != NULL) {

Kenny Root

2013-04-04 08:37:42 -0700

[diff] [blame]

978

// We only care about files.

979

if (file->d_type != DT_REG) {

continue;

}

// Skip anything that starts with a "."

984

if (file->d_name[0] == '.') {

continue;

}

if (!strncmp(file->d_name, filename, n)) {

Kenny Root

2012-02-15 15:00:46 -0800

[diff] [blame]

result = false;

break;

}

}

closedir(dir);

return result;

}

Kenny Root

2013-04-04 08:37:42 -0700

[diff] [blame]

997

void lock(uid_t uid) {

998

UserState* userState = getUserState(uid);

999

userState->zeroizeMasterKeysInMemory();

1000

userState->setState(STATE_LOCKED);

Kenny Root

2012-02-15 15:00:46 -0800

[diff] [blame]

1001

}

1002

Kenny Root

2013-04-04 08:37:42 -0700

[diff] [blame]

1003

ResponseCode get(const char* filename, Blob* keyBlob, const BlobType type, uid_t uid) {

1004

UserState* userState = getUserState(uid);

Kenny Root

2013-04-03 09:22:15 -0700

[diff] [blame]

1005

ResponseCode rc = keyBlob->readBlob(filename, userState->getDecryptionKey(),

1006

userState->getState());

Kenny Root

2012-03-23 16:34:39 -0700

[diff] [blame]

1007

if (rc != NO_ERROR) {

return rc;

}

const uint8_t version = keyBlob->getVersion();

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

1012

if (version < CURRENT_BLOB_VERSION) {

Kenny Root

2013-04-04 08:39:57 -0700

[diff] [blame]

1013

/* If we upgrade the key, we need to write it to disk again. Then

1014

* it must be read it again since the blob is encrypted each time

1015

* it's written.

1016

*/

Kenny Root

2013-04-04 08:37:42 -0700

[diff] [blame]

1017

if (upgradeBlob(filename, keyBlob, version, type, uid)) {

1018

if ((rc = this->put(filename, keyBlob, uid)) != NO_ERROR

Kenny Root

2013-04-03 09:22:15 -0700

[diff] [blame]

1019

|| (rc = keyBlob->readBlob(filename, userState->getDecryptionKey(),

1020

userState->getState())) != NO_ERROR) {

Kenny Root

2013-04-04 08:39:57 -0700

[diff] [blame]

1021

return rc;

1022

}

1023

}

Kenny Root

2012-03-23 16:34:39 -0700

[diff] [blame]

1024

}

1025

Kenny Root

2013-09-04 13:56:03 -0700

[diff] [blame]

1026

/*

1027

* This will upgrade software-backed keys to hardware-backed keys when

1028

* the HAL for the device supports the newer key types.

1029

*/

1030

if (rc == NO_ERROR && type == TYPE_KEY_PAIR

1031

&& mDevice->common.module->module_api_version >= KEYMASTER_MODULE_API_VERSION_0_2

1032

&& keyBlob->isFallback()) {

1033

ResponseCode imported = importKey(keyBlob->getValue(), keyBlob->getLength(), filename,

1034

uid, keyBlob->isEncrypted() ? KEYSTORE_FLAG_ENCRYPTED : KEYSTORE_FLAG_NONE);

1035

1036

// The HAL allowed the import, reget the key to have the "fresh"

1037

// version.

1038

if (imported == NO_ERROR) {

1039

rc = get(filename, keyBlob, TYPE_KEY_PAIR, uid);

}

}

Kenny Root

2013-03-21 14:10:15 -0700

[diff] [blame]

1043

if (type != TYPE_ANY && keyBlob->getType() != type) {

Kenny Root

2012-03-23 16:34:39 -0700

[diff] [blame]

1044

ALOGW("key found but type doesn't match: %d vs %d", keyBlob->getType(), type);

1045

return KEY_NOT_FOUND;

1046

}

1047

1048

return rc;

Kenny Root

2012-02-15 15:00:46 -0800

[diff] [blame]

1049

}

1050

Kenny Root

2013-04-04 08:37:42 -0700

[diff] [blame]

1051

ResponseCode put(const char* filename, Blob* keyBlob, uid_t uid) {

1052

UserState* userState = getUserState(uid);

Kenny Root

2013-04-03 09:22:15 -0700

[diff] [blame]

1053

return keyBlob->writeBlob(filename, userState->getEncryptionKey(), userState->getState(),

1054

mEntropy);

Kenny Root

2012-02-15 15:00:46 -0800

[diff] [blame]

1055

}

1056

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

1057

void addGrant(const char* filename, uid_t granteeUid) {

Kenny Root

2013-04-04 08:37:42 -0700

[diff] [blame]

1058

const grant_t* existing = getGrant(filename, granteeUid);

1059

if (existing == NULL) {

1060

grant_t* grant = new grant_t;

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

1061

grant->uid = granteeUid;

Brian Carlstrom

a8c703d

2012-07-17 14:43:46 -0700

[diff] [blame]

1062

grant->filename = reinterpret_cast<const uint8_t*>(strdup(filename));

Kenny Root

2013-04-04 08:37:42 -0700

[diff] [blame]

1063

mGrants.add(grant);

Kenny Root

2012-02-15 17:20:23 -0800

[diff] [blame]

}

}

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

1067

bool removeGrant(const char* filename, uid_t granteeUid) {

Kenny Root

2013-04-04 08:37:42 -0700

[diff] [blame]

1068

for (android::Vector<grant_t*>::iterator it(mGrants.begin());

1069

it != mGrants.end(); it++) {

1070

grant_t* grant = *it;

1071

if (grant->uid == granteeUid

1072

&& !strcmp(reinterpret_cast<const char*>(grant->filename), filename)) {

1073

mGrants.erase(it);

1074

return true;

1075

}

Kenny Root

2012-02-15 17:20:23 -0800

[diff] [blame]

1076

}

Kenny Root

2012-02-15 17:20:23 -0800

[diff] [blame]

return false;

}

Brian Carlstrom

2012-07-17 14:43:46 -0700

[diff] [blame]

1080

bool hasGrant(const char* filename, const uid_t uid) const {

1081

return getGrant(filename, uid) != NULL;

Kenny Root

2012-02-15 17:20:23 -0800

[diff] [blame]

1082

}

1083

Kenny Root

2013-04-03 09:22:15 -0700

[diff] [blame]

1084

ResponseCode importKey(const uint8_t* key, size_t keyLen, const char* filename, uid_t uid,

1085

int32_t flags) {

Kenny Root

2012-03-23 16:34:39 -0700

[diff] [blame]

uint8_t* data;

size_t dataLength;

int rc;

if (mDevice->import_keypair == NULL) {

1091

ALOGE("Keymaster doesn't support import!");

return SYSTEM_ERROR;

}

Kenny Root

2013-09-04 13:56:03 -0700

[diff] [blame]

1095

bool isFallback = false;

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

1096

rc = mDevice->import_keypair(mDevice, key, keyLen, &data, &dataLength);

Kenny Root

2012-03-23 16:34:39 -0700

[diff] [blame]

1097

if (rc) {

Kenny Root

2013-09-04 13:56:03 -0700

[diff] [blame]

1098

// If this is an old device HAL, try to fall back to an old version

1099

if (mDevice->common.module->module_api_version < KEYMASTER_MODULE_API_VERSION_0_2) {

1100

rc = openssl_import_keypair(mDevice, key, keyLen, &data, &dataLength);

isFallback = true;

}

if (rc) {

ALOGE("Error while importing keypair: %d", rc);

1106

return SYSTEM_ERROR;

1107

}

Kenny Root

2012-03-23 16:34:39 -0700

[diff] [blame]

1108

}

1109

1110

Blob keyBlob(data, dataLength, NULL, 0, TYPE_KEY_PAIR);

1111

free(data);

1112

Kenny Root

2013-04-03 09:22:15 -0700

[diff] [blame]

1113

keyBlob.setEncrypted(flags & KEYSTORE_FLAG_ENCRYPTED);

Kenny Root

2013-09-04 13:56:03 -0700

[diff] [blame]

1114

keyBlob.setFallback(isFallback);

Kenny Root

2013-04-03 09:22:15 -0700

[diff] [blame]

1115

Kenny Root

2013-04-04 08:37:42 -0700

[diff] [blame]

1116

return put(filename, &keyBlob, uid);

Kenny Root

2012-03-23 16:34:39 -0700

[diff] [blame]

1117

}

1118

Kenny Root

2013-09-05 13:06:32 -0700

[diff] [blame]

1119

bool isHardwareBacked(const android::String16& keyType) const {

1120

if (mDevice == NULL) {

1121

ALOGW("can't get keymaster device");

return false;

}

if (sRSAKeyType == keyType) {

1126

return (mDevice->flags & KEYMASTER_SOFTWARE_ONLY) == 0;

1127

} else {

1128

return (mDevice->flags & KEYMASTER_SOFTWARE_ONLY) == 0

1129

&& (mDevice->common.module->module_api_version

1130

>= KEYMASTER_MODULE_API_VERSION_0_2);

1131

}

Kenny Root

8ddf35a

2013-03-29 11:15:50 -0700

[diff] [blame]

1132

}

1133

Kenny Root

2013-04-04 08:37:42 -0700

[diff] [blame]

1134

ResponseCode getKeyForName(Blob* keyBlob, const android::String8& keyName, const uid_t uid,

1135

const BlobType type) {

Kenny Root

2013-09-09 11:15:54 -0700

[diff] [blame]

1136

android::String8 filepath8(getKeyNameForUidWithDir(keyName, uid));

Kenny Root

2013-04-04 08:37:42 -0700

[diff] [blame]

1137

1138

ResponseCode responseCode = get(filepath8.string(), keyBlob, type, uid);

1139

if (responseCode == NO_ERROR) {

return responseCode;

}

// If this is one of the legacy UID->UID mappings, use it.

1144

uid_t euid = get_keystore_euid(uid);

1145

if (euid != uid) {

Kenny Root

2013-09-09 11:15:54 -0700

[diff] [blame]

1146

filepath8 = getKeyNameForUidWithDir(keyName, euid);

Kenny Root

2013-04-04 08:37:42 -0700

[diff] [blame]

1147

responseCode = get(filepath8.string(), keyBlob, type, uid);

1148

if (responseCode == NO_ERROR) {

return responseCode;

}

}

// They might be using a granted key.

Kenny Root

2013-09-09 11:15:54 -0700

[diff] [blame]

1154

android::String8 filename8 = getKeyName(keyName);

Kenny Root

2013-04-04 08:37:42 -0700

[diff] [blame]

1155

char* end;

Kenny Root

2013-09-09 11:15:54 -0700

[diff] [blame]

1156

strtoul(filename8.string(), &end, 10);

Kenny Root

2013-04-04 08:37:42 -0700

[diff] [blame]

1157

if (end[0] != '_' || end[1] == 0) {

1158

return KEY_NOT_FOUND;

1159

}

Kenny Root

2013-09-09 11:15:54 -0700

[diff] [blame]

1160

filepath8 = android::String8::format("%s/%s", getUserState(uid)->getUserDirName(),

1161

filename8.string());

Kenny Root

2013-04-04 08:37:42 -0700

[diff] [blame]

1162

if (!hasGrant(filepath8.string(), uid)) {

return responseCode;

}

// It is a granted key. Try to load it.

1167

return get(filepath8.string(), keyBlob, type, uid);

}

/**

* Returns any existing UserState or creates it if it doesn't exist.

1172

*/

1173

UserState* getUserState(uid_t uid) {

1174

uid_t userId = get_user_id(uid);

1175

1176

for (android::Vector<UserState*>::iterator it(mMasterKeys.begin());

1177

it != mMasterKeys.end(); it++) {

1178

UserState* state = *it;

1179

if (state->getUserId() == userId) {

return state;

}

}

UserState* userState = new UserState(userId);

1185

if (!userState->initialize()) {

1186

/* There's not much we can do if initialization fails. Trying to

1187

* unlock the keystore for that user will fail as well, so any

1188

* subsequent request for this user will just return SYSTEM_ERROR.

1189

*/

1190

ALOGE("User initialization failed for %u; subsuquent operations will fail", userId);

1191

}

1192

mMasterKeys.add(userState);

return userState;

}

/**

* Returns NULL if the UserState doesn't already exist.

1198

*/

1199

const UserState* getUserState(uid_t uid) const {

1200

uid_t userId = get_user_id(uid);

1201

1202

for (android::Vector<UserState*>::const_iterator it(mMasterKeys.begin());

1203

it != mMasterKeys.end(); it++) {

1204

UserState* state = *it;

1205

if (state->getUserId() == userId) {

return state;

}

}

return NULL;

}

Kenny Root

2012-02-15 15:00:46 -0800

[diff] [blame]

1213

private:

Kenny Root

2013-04-04 08:37:42 -0700

[diff] [blame]

1214

static const char* sOldMasterKey;

1215

static const char* sMetaDataFile;

Kenny Root

2013-09-05 13:06:32 -0700

[diff] [blame]

1216

static const android::String16 sRSAKeyType;

Kenny Root

2012-02-15 15:00:46 -0800

[diff] [blame]

1217

Entropy* mEntropy;

1218

Kenny Root

2012-02-15 17:20:23 -0800

[diff] [blame]

1219

keymaster_device_t* mDevice;

1220

Kenny Root

2013-04-04 08:37:42 -0700

[diff] [blame]

1221

android::Vector<UserState*> mMasterKeys;

Kenny Root

2012-02-15 15:00:46 -0800

[diff] [blame]

1222

Kenny Root

2013-04-04 08:37:42 -0700

[diff] [blame]

1223

android::Vector<grant_t*> mGrants;

Kenny Root

2012-02-15 15:00:46 -0800

[diff] [blame]

1224

Kenny Root

2013-04-04 08:37:42 -0700

[diff] [blame]

1225

typedef struct {

1226

uint32_t version;

1227

} keystore_metadata_t;

Kenny Root

2012-02-15 15:00:46 -0800

[diff] [blame]

1228

Kenny Root

2013-04-04 08:37:42 -0700

[diff] [blame]

1229

keystore_metadata_t mMetaData;

Kenny Root

2012-02-15 17:20:23 -0800

[diff] [blame]

1230

Kenny Root

2013-04-04 08:37:42 -0700

[diff] [blame]

1231

const grant_t* getGrant(const char* filename, uid_t uid) const {

1232

for (android::Vector<grant_t*>::const_iterator it(mGrants.begin());

1233

it != mGrants.end(); it++) {

1234

grant_t* grant = *it;

Kenny Root

2012-02-15 17:20:23 -0800

[diff] [blame]

1235

if (grant->uid == uid

Kenny Root

2013-04-04 08:37:42 -0700

[diff] [blame]

1236

&& !strcmp(reinterpret_cast<const char*>(grant->filename), filename)) {

Kenny Root

2012-02-15 17:20:23 -0800

[diff] [blame]

1237

return grant;

1238

}

1239

}

Kenny Root

2012-02-15 17:20:23 -0800

[diff] [blame]

return NULL;

}

Kenny Root

2012-03-23 16:34:39 -0700

[diff] [blame]

1243

/**

1244

* Upgrade code. This will upgrade the key from the current version

1245

* to whatever is newest.

1246

*/

Kenny Root

2013-04-04 08:37:42 -0700

[diff] [blame]

1247

bool upgradeBlob(const char* filename, Blob* blob, const uint8_t oldVersion,

1248

const BlobType type, uid_t uid) {

Kenny Root

2012-03-23 16:34:39 -0700

[diff] [blame]

1249

bool updated = false;

1250

uint8_t version = oldVersion;

1251

1252

/* From V0 -> V1: All old types were unknown */

1253

if (version == 0) {

1254

ALOGV("upgrading to version 1 and setting type %d", type);

1255

1256

blob->setType(type);

1257

if (type == TYPE_KEY_PAIR) {

Kenny Root

2013-04-04 08:37:42 -0700

[diff] [blame]

1258

importBlobAsKey(blob, filename, uid);

Kenny Root

2012-03-23 16:34:39 -0700

[diff] [blame]

}

version = 1;

updated = true;

}

Kenny Root

2013-04-03 09:22:15 -0700

[diff] [blame]

1264

/* From V1 -> V2: All old keys were encrypted */

1265

if (version == 1) {

1266

ALOGV("upgrading to version 2");

1267

1268

blob->setEncrypted(true);

version = 2;

updated = true;

}

Kenny Root

2012-03-23 16:34:39 -0700

[diff] [blame]

1273

/*

1274

* If we've updated, set the key blob to the right version

1275

* and write it.

Kenny Root

2013-04-04 08:39:57 -0700

[diff] [blame]

1276

*/

Kenny Root

2012-03-23 16:34:39 -0700

[diff] [blame]

1277

if (updated) {

1278

ALOGV("updated and writing file %s", filename);

1279

blob->setVersion(version);

Kenny Root

2012-03-23 16:34:39 -0700

[diff] [blame]

1280

}

Kenny Root

2013-04-04 08:39:57 -0700

[diff] [blame]

1281

1282

return updated;

Kenny Root

2012-03-23 16:34:39 -0700

[diff] [blame]

}

/**

* Takes a blob that is an PEM-encoded RSA key as a byte array and

1287

* converts it to a DER-encoded PKCS#8 for import into a keymaster.

1288

* Then it overwrites the original blob with the new blob

1289

* format that is returned from the keymaster.

1290

*/

Kenny Root

2013-04-04 08:37:42 -0700

[diff] [blame]

1291

ResponseCode importBlobAsKey(Blob* blob, const char* filename, uid_t uid) {

Kenny Root

2012-03-23 16:34:39 -0700

[diff] [blame]

1292

// We won't even write to the blob directly with this BIO, so const_cast is okay.

1293

Unique_BIO b(BIO_new_mem_buf(const_cast<uint8_t*>(blob->getValue()), blob->getLength()));

1294

if (b.get() == NULL) {

1295

ALOGE("Problem instantiating BIO");

return SYSTEM_ERROR;

}

Unique_EVP_PKEY pkey(PEM_read_bio_PrivateKey(b.get(), NULL, NULL, NULL));

1300

if (pkey.get() == NULL) {

1301

ALOGE("Couldn't read old PEM file");

return SYSTEM_ERROR;

}

Unique_PKCS8_PRIV_KEY_INFO pkcs8(EVP_PKEY2PKCS8(pkey.get()));

1306

int len = i2d_PKCS8_PRIV_KEY_INFO(pkcs8.get(), NULL);

1307

if (len < 0) {

1308

ALOGE("Couldn't measure PKCS#8 length");

return SYSTEM_ERROR;

}

Kenny Root

2013-02-07 09:10:36 -0800

[diff] [blame]

1312

UniquePtr<unsigned char[]> pkcs8key(new unsigned char[len]);

1313

uint8_t* tmp = pkcs8key.get();

Kenny Root

2012-03-23 16:34:39 -0700

[diff] [blame]

1314

if (i2d_PKCS8_PRIV_KEY_INFO(pkcs8.get(), &tmp) != len) {

1315

ALOGE("Couldn't convert to PKCS#8");

return SYSTEM_ERROR;

}

Kenny Root

2013-04-03 09:22:15 -0700

[diff] [blame]

1319

ResponseCode rc = importKey(pkcs8key.get(), len, filename, uid,

1320

blob->isEncrypted() ? KEYSTORE_FLAG_ENCRYPTED : KEYSTORE_FLAG_NONE);

Kenny Root

2012-03-23 16:34:39 -0700

[diff] [blame]

1321

if (rc != NO_ERROR) {

return rc;

}

Kenny Root

2013-04-04 08:37:42 -0700

[diff] [blame]

1325

return get(filename, blob, TYPE_KEY_PAIR, uid);

1326

}

1327

1328

void readMetaData() {

1329

int in = TEMP_FAILURE_RETRY(open(sMetaDataFile, O_RDONLY));

if (in < 0) {

return;

}

size_t fileLength = readFully(in, (uint8_t*) &mMetaData, sizeof(mMetaData));

1334

if (fileLength != sizeof(mMetaData)) {

1335

ALOGI("Metadata file is %zd bytes (%zd experted); upgrade?", fileLength,

sizeof(mMetaData));

}

close(in);

}

void writeMetaData() {

1342

const char* tmpFileName = ".metadata.tmp";

1343

int out = TEMP_FAILURE_RETRY(open(tmpFileName,

1344

O_WRONLY | O_TRUNC | O_CREAT, S_IRUSR | S_IWUSR));

1345

if (out < 0) {

1346

ALOGE("couldn't write metadata file: %s", strerror(errno));

1347

return;

1348

}

1349

size_t fileLength = writeFully(out, (uint8_t*) &mMetaData, sizeof(mMetaData));

1350

if (fileLength != sizeof(mMetaData)) {

1351

ALOGI("Could only write %zd bytes to metadata file (%zd expected)", fileLength,

sizeof(mMetaData));

}

close(out);

rename(tmpFileName, sMetaDataFile);

1356

}

1357

1358

bool upgradeKeystore() {

1359

bool upgraded = false;

1360

1361

if (mMetaData.version == 0) {

1362

UserState* userState = getUserState(0);

1363

1364

// Initialize first so the directory is made.

1365

userState->initialize();

1366

1367

// Migrate the old .masterkey file to user 0.

1368

if (access(sOldMasterKey, R_OK) == 0) {

1369

if (rename(sOldMasterKey, userState->getMasterKeyFileName()) < 0) {

1370

ALOGE("couldn't migrate old masterkey: %s", strerror(errno));

return false;

}

}

// Initialize again in case we had a key.

1376

userState->initialize();

1377

1378

// Try to migrate existing keys.

1379

DIR* dir = opendir(".");

1380

if (!dir) {

1381

// Give up now; maybe we can upgrade later.

1382

ALOGE("couldn't open keystore's directory; something is wrong");

return false;

}

struct dirent* file;

while ((file = readdir(dir)) != NULL) {

1388

// We only care about files.

1389

if (file->d_type != DT_REG) {

continue;

}

// Skip anything that starts with a "."

1394

if (file->d_name[0] == '.') {

continue;

}

// Find the current file's user.

1399

char* end;

1400

unsigned long thisUid = strtoul(file->d_name, &end, 10);

1401

if (end[0] != '_' || end[1] == 0) {

1402

continue;

1403

}

1404

UserState* otherUser = getUserState(thisUid);

1405

if (otherUser->getUserId() != 0) {

1406

unlinkat(dirfd(dir), file->d_name, 0);

1407

}

1408

1409

// Rename the file into user directory.

1410

DIR* otherdir = opendir(otherUser->getUserDirName());

1411

if (otherdir == NULL) {

1412

ALOGW("couldn't open user directory for rename");

1413

continue;

1414

}

1415

if (renameat(dirfd(dir), file->d_name, dirfd(otherdir), file->d_name) < 0) {

1416

ALOGW("couldn't rename blob: %s: %s", file->d_name, strerror(errno));

}

closedir(otherdir);

}

closedir(dir);

mMetaData.version = 1;

upgraded = true;

}

return upgraded;

Kenny Root

2012-03-23 16:34:39 -0700

[diff] [blame]

1427

}

Kenny Root

2012-02-15 15:00:46 -0800

[diff] [blame]

1428

};

1429

Kenny Root

2013-04-04 08:37:42 -0700

[diff] [blame]

1430

const char* KeyStore::sOldMasterKey = ".masterkey";

1431

const char* KeyStore::sMetaDataFile = ".metadata";

Kenny Root

2012-02-15 17:20:23 -0800

[diff] [blame]

1432

Kenny Root

2013-09-05 13:06:32 -0700

[diff] [blame]

1433

const android::String16 KeyStore::sRSAKeyType("RSA");

1434

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

1435

namespace android {

1436

class KeyStoreProxy : public BnKeystoreService, public IBinder::DeathRecipient {

1437

public:

1438

KeyStoreProxy(KeyStore* keyStore)

1439

: mKeyStore(keyStore)

1440

{

Kenny Root

2012-02-15 15:00:46 -0800

[diff] [blame]

1441

}

Kenny Root

2012-02-15 15:00:46 -0800

[diff] [blame]

1442

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

1443

void binderDied(const wp<IBinder>&) {

1444

ALOGE("binder death detected");

Kenny Root

2012-03-23 16:34:39 -0700

[diff] [blame]

1445

}

Kenny Root

2012-02-15 15:00:46 -0800

[diff] [blame]

1446

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

1447

int32_t test() {

Kenny Root

2013-02-13 12:59:14 -0800

[diff] [blame]

1448

uid_t callingUid = IPCThreadState::self()->getCallingUid();

1449

if (!has_permission(callingUid, P_TEST)) {

1450

ALOGW("permission denied for %d: test", callingUid);

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

1451

return ::PERMISSION_DENIED;

Kenny Root

2012-02-15 15:00:46 -0800

[diff] [blame]

1452

}

Kenny Root

2012-02-15 15:00:46 -0800

[diff] [blame]

1453

Kenny Root

2013-04-04 08:37:42 -0700

[diff] [blame]

1454

return mKeyStore->getState(callingUid);

Kenny Root

298e7b1

2012-03-26 13:54:44 -0700

[diff] [blame]

1455

}

1456

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

1457

int32_t get(const String16& name, uint8_t** item, size_t* itemLength) {

Kenny Root

2013-02-13 12:59:14 -0800

[diff] [blame]

1458

uid_t callingUid = IPCThreadState::self()->getCallingUid();

1459

if (!has_permission(callingUid, P_GET)) {

1460

ALOGW("permission denied for %d: get", callingUid);

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

1461

return ::PERMISSION_DENIED;

Kenny Root

2012-02-15 15:00:46 -0800

[diff] [blame]

1462

}

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

1463

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

1464

String8 name8(name);

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

1465

Blob keyBlob;

Kenny Root

2013-03-19 13:41:33 -0700

[diff] [blame]

1466

Kenny Root

2013-04-04 08:37:42 -0700

[diff] [blame]

1467

ResponseCode responseCode = mKeyStore->getKeyForName(&keyBlob, name8, callingUid,

Kenny Root

2013-03-19 13:41:33 -0700

[diff] [blame]

1468

TYPE_GENERIC);

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

1469

if (responseCode != ::NO_ERROR) {

Kenny Root

2013-04-04 08:37:42 -0700

[diff] [blame]

1470

ALOGW("Could not read %s", name8.string());

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

1471

*item = NULL;

1472

*itemLength = 0;

1473

return responseCode;

Kenny Root

2012-02-15 15:00:46 -0800

[diff] [blame]

1474

}

Kenny Root

2012-02-15 15:00:46 -0800

[diff] [blame]

1475

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

1476

*item = (uint8_t*) malloc(keyBlob.getLength());

1477

memcpy(*item, keyBlob.getValue(), keyBlob.getLength());

1478

*itemLength = keyBlob.getLength();

Kenny Root

2012-02-15 15:00:46 -0800

[diff] [blame]

1479

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

1480

return ::NO_ERROR;

Kenny Root

2012-02-15 17:20:23 -0800

[diff] [blame]

1481

}

1482

Kenny Root

2013-04-03 09:22:15 -0700

[diff] [blame]

1483

int32_t insert(const String16& name, const uint8_t* item, size_t itemLength, int targetUid,

1484

int32_t flags) {

Kenny Root

2013-02-13 12:59:14 -0800

[diff] [blame]

1485

uid_t callingUid = IPCThreadState::self()->getCallingUid();

1486

if (!has_permission(callingUid, P_INSERT)) {

1487

ALOGW("permission denied for %d: insert", callingUid);

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

1488

return ::PERMISSION_DENIED;

1489

}

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

1490

Kenny Root

2013-04-03 09:22:15 -0700

[diff] [blame]

1491

State state = mKeyStore->getState(callingUid);

1492

if ((flags & KEYSTORE_FLAG_ENCRYPTED) && !isKeystoreUnlocked(state)) {

1493

ALOGD("calling get in state: %d", state);

return state;

}

Kenny Root

2013-03-19 13:41:33 -0700

[diff] [blame]

1497

if (targetUid == -1) {

1498

targetUid = callingUid;

1499

} else if (!is_granted_to(callingUid, targetUid)) {

Kenny Root

2013-02-13 14:43:43 -0800

[diff] [blame]

1500

return ::PERMISSION_DENIED;

1501

}

1502

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

1503

String8 name8(name);

Kenny Root

2013-04-04 08:37:42 -0700

[diff] [blame]

1504

String8 filename(mKeyStore->getKeyNameForUidWithDir(name8, targetUid));

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

1505

1506

Blob keyBlob(item, itemLength, NULL, 0, ::TYPE_GENERIC);

Kenny Root

ee8068b

2013-10-07 09:49:15 -0700

[diff] [blame]

1507

keyBlob.setEncrypted(flags & KEYSTORE_FLAG_ENCRYPTED);

1508

Kenny Root

2013-04-04 08:37:42 -0700

[diff] [blame]

1509

return mKeyStore->put(filename.string(), &keyBlob, callingUid);

Kenny Root

2012-02-15 17:20:23 -0800

[diff] [blame]

1510

}

1511

Kenny Root

2013-03-19 13:41:33 -0700

[diff] [blame]

1512

int32_t del(const String16& name, int targetUid) {

Kenny Root

2013-02-13 12:59:14 -0800

[diff] [blame]

1513

uid_t callingUid = IPCThreadState::self()->getCallingUid();

1514

if (!has_permission(callingUid, P_DELETE)) {

1515

ALOGW("permission denied for %d: del", callingUid);

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

1516

return ::PERMISSION_DENIED;

1517

}

Kenny Root

2012-02-15 17:20:23 -0800

[diff] [blame]

1518

Kenny Root

2013-03-19 13:41:33 -0700

[diff] [blame]

1519

if (targetUid == -1) {

1520

targetUid = callingUid;

1521

} else if (!is_granted_to(callingUid, targetUid)) {

Kenny Root

2013-02-13 14:43:43 -0800

[diff] [blame]

1522

return ::PERMISSION_DENIED;

1523

}

1524

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

1525

String8 name8(name);

Kenny Root

2013-04-04 08:37:42 -0700

[diff] [blame]

1526

String8 filename(mKeyStore->getKeyNameForUidWithDir(name8, targetUid));

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

1527

1528

Blob keyBlob;

Kenny Root

2013-04-04 08:37:42 -0700

[diff] [blame]

1529

ResponseCode responseCode = mKeyStore->get(filename.string(), &keyBlob, TYPE_GENERIC,

1530

callingUid);

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

1531

if (responseCode != ::NO_ERROR) {

1532

return responseCode;

1533

}

1534

return (unlink(filename) && errno != ENOENT) ? ::SYSTEM_ERROR : ::NO_ERROR;

Kenny Root

2012-02-15 17:20:23 -0800

[diff] [blame]

1535

}

1536

Kenny Root

2013-03-19 13:41:33 -0700

[diff] [blame]

1537

int32_t exist(const String16& name, int targetUid) {

Kenny Root

2013-02-13 12:59:14 -0800

[diff] [blame]

1538

uid_t callingUid = IPCThreadState::self()->getCallingUid();

1539

if (!has_permission(callingUid, P_EXIST)) {

1540

ALOGW("permission denied for %d: exist", callingUid);

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

1541

return ::PERMISSION_DENIED;

1542

}

Kenny Root

2012-02-15 17:20:23 -0800

[diff] [blame]

1543

Kenny Root

2013-03-19 13:41:33 -0700

[diff] [blame]

1544

if (targetUid == -1) {

1545

targetUid = callingUid;

1546

} else if (!is_granted_to(callingUid, targetUid)) {

Kenny Root

2013-02-13 14:43:43 -0800

[diff] [blame]

1547

return ::PERMISSION_DENIED;

1548

}

1549

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

1550

String8 name8(name);

Kenny Root

2013-04-04 08:37:42 -0700

[diff] [blame]

1551

String8 filename(mKeyStore->getKeyNameForUidWithDir(name8, targetUid));

Kenny Root

2012-02-15 17:20:23 -0800

[diff] [blame]

1552

Kenny Root

2013-04-04 08:37:42 -0700

[diff] [blame]

1553

if (access(filename.string(), R_OK) == -1) {

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

1554

return (errno != ENOENT) ? ::SYSTEM_ERROR : ::KEY_NOT_FOUND;

1555

}

1556

return ::NO_ERROR;

Kenny Root

2012-02-15 17:20:23 -0800

[diff] [blame]

1557

}

1558

Kenny Root

2013-03-19 13:41:33 -0700

[diff] [blame]

1559

int32_t saw(const String16& prefix, int targetUid, Vector<String16>* matches) {

Kenny Root

2013-02-13 12:59:14 -0800

[diff] [blame]

1560

uid_t callingUid = IPCThreadState::self()->getCallingUid();

1561

if (!has_permission(callingUid, P_SAW)) {

1562

ALOGW("permission denied for %d: saw", callingUid);

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

1563

return ::PERMISSION_DENIED;

1564

}

Kenny Root

2012-02-15 17:20:23 -0800

[diff] [blame]

1565

Kenny Root

2013-03-19 13:41:33 -0700

[diff] [blame]

1566

if (targetUid == -1) {

1567

targetUid = callingUid;

1568

} else if (!is_granted_to(callingUid, targetUid)) {

Kenny Root

2013-02-13 14:43:43 -0800

[diff] [blame]

1569

return ::PERMISSION_DENIED;

1570

}

1571

Kenny Root

2013-04-04 08:37:42 -0700

[diff] [blame]

1572

UserState* userState = mKeyStore->getUserState(targetUid);

1573

DIR* dir = opendir(userState->getUserDirName());

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

1574

if (!dir) {

Kenny Root

2013-04-04 08:37:42 -0700

[diff] [blame]

1575

ALOGW("can't open directory for user: %s", strerror(errno));

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

1576

return ::SYSTEM_ERROR;

1577

}

Kenny Root

2012-02-15 17:20:23 -0800

[diff] [blame]

1578

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

1579

const String8 prefix8(prefix);

Kenny Root

2013-04-04 08:37:42 -0700

[diff] [blame]

1580

String8 filename(mKeyStore->getKeyNameForUid(prefix8, targetUid));

1581

size_t n = filename.length();

Kenny Root

2012-02-15 17:20:23 -0800

[diff] [blame]

1582

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

1583

struct dirent* file;

1584

while ((file = readdir(dir)) != NULL) {

Kenny Root

2013-04-04 08:37:42 -0700

[diff] [blame]

1585

// We only care about files.

1586

if (file->d_type != DT_REG) {

continue;

}

// Skip anything that starts with a "."

1591

if (file->d_name[0] == '.') {

continue;

}

if (!strncmp(filename.string(), file->d_name, n)) {

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

1596

const char* p = &file->d_name[n];

1597

size_t plen = strlen(p);

Kenny Root

2012-02-15 17:20:23 -0800

[diff] [blame]

1598

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

1599

size_t extra = decode_key_length(p, plen);

1600

char *match = (char*) malloc(extra + 1);

1601

if (match != NULL) {

1602

decode_key(match, p, plen);

1603

matches->push(String16(match, extra));

1604

free(match);

1605

} else {

1606

ALOGW("could not allocate match of size %zd", extra);

1607

}

Kenny Root

9a53d3e

2012-08-14 10:47:54 -0700

[diff] [blame]

1608

}

1609

}

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

1610

closedir(dir);

1611

1612

return ::NO_ERROR;

Kenny Root

2012-02-15 17:20:23 -0800

[diff] [blame]

1613

}

1614

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

1615

int32_t reset() {

Kenny Root

2013-02-13 12:59:14 -0800

[diff] [blame]

1616

uid_t callingUid = IPCThreadState::self()->getCallingUid();

1617

if (!has_permission(callingUid, P_RESET)) {

1618

ALOGW("permission denied for %d: reset", callingUid);

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

1619

return ::PERMISSION_DENIED;

1620

}

1621

Kenny Root

2013-04-04 08:37:42 -0700

[diff] [blame]

1622

ResponseCode rc = mKeyStore->reset(callingUid) ? ::NO_ERROR : ::SYSTEM_ERROR;

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

1623

1624

const keymaster_device_t* device = mKeyStore->getDevice();

1625

if (device == NULL) {

1626

ALOGE("No keymaster device!");

1627

return ::SYSTEM_ERROR;

1628

}

1629

1630

if (device->delete_all == NULL) {

1631

ALOGV("keymaster device doesn't implement delete_all");

return rc;

}

if (device->delete_all(device)) {

1636

ALOGE("Problem calling keymaster's delete_all");

1637

return ::SYSTEM_ERROR;

1638

}

1639

Kenny Root

9a53d3e

2012-08-14 10:47:54 -0700

[diff] [blame]

1640

return rc;

Kenny Root

2012-02-15 17:20:23 -0800

[diff] [blame]

1641

}

1642

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

1643

/*

1644

* Here is the history. To improve the security, the parameters to generate the

1645

* master key has been changed. To make a seamless transition, we update the

1646

* file using the same password when the user unlock it for the first time. If

1647

* any thing goes wrong during the transition, the new file will not overwrite

1648

* the old one. This avoids permanent damages of the existing data.

1649

*/

1650

int32_t password(const String16& password) {

Kenny Root

2013-02-13 12:59:14 -0800

[diff] [blame]

1651

uid_t callingUid = IPCThreadState::self()->getCallingUid();

1652

if (!has_permission(callingUid, P_PASSWORD)) {

1653

ALOGW("permission denied for %d: password", callingUid);

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

1654

return ::PERMISSION_DENIED;

1655

}

Kenny Root

2012-02-15 17:20:23 -0800

[diff] [blame]

1656

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

1657

const String8 password8(password);

Kenny Root

2012-02-15 17:20:23 -0800

[diff] [blame]

1658

Kenny Root

2013-04-04 08:37:42 -0700

[diff] [blame]

1659

switch (mKeyStore->getState(callingUid)) {

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

1660

case ::STATE_UNINITIALIZED: {

1661

// generate master key, encrypt with password, write to file, initialize mMasterKey*.

Kenny Root

2013-04-04 08:37:42 -0700

[diff] [blame]

1662

return mKeyStore->initializeUser(password8, callingUid);

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

1663

}

1664

case ::STATE_NO_ERROR: {

1665

// rewrite master key with new password.

Kenny Root

2013-04-04 08:37:42 -0700

[diff] [blame]

1666

return mKeyStore->writeMasterKey(password8, callingUid);

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

1667

}

1668

case ::STATE_LOCKED: {

1669

// read master key, decrypt with password, initialize mMasterKey*.

Kenny Root

2013-04-04 08:37:42 -0700

[diff] [blame]

1670

return mKeyStore->readMasterKey(password8, callingUid);

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

1671

}

1672

}

1673

return ::SYSTEM_ERROR;

Kenny Root

2012-02-15 17:20:23 -0800

[diff] [blame]

1674

}

1675

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

1676

int32_t lock() {

Kenny Root

2013-02-13 12:59:14 -0800

[diff] [blame]

1677

uid_t callingUid = IPCThreadState::self()->getCallingUid();

1678

if (!has_permission(callingUid, P_LOCK)) {

1679

ALOGW("permission denied for %d: lock", callingUid);

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

1680

return ::PERMISSION_DENIED;

1681

}

Kenny Root

2012-02-15 17:20:23 -0800

[diff] [blame]

1682

Kenny Root

2013-04-04 08:37:42 -0700

[diff] [blame]

1683

State state = mKeyStore->getState(callingUid);

Kenny Root

2013-02-14 10:32:30 -0800

[diff] [blame]

1684

if (state != ::STATE_NO_ERROR) {

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

1685

ALOGD("calling lock in state: %d", state);

return state;

}

Kenny Root

2013-04-04 08:37:42 -0700

[diff] [blame]

1689

mKeyStore->lock(callingUid);

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

1690

return ::NO_ERROR;

Kenny Root

2012-02-15 17:20:23 -0800

[diff] [blame]

1691

}

1692

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

1693

int32_t unlock(const String16& pw) {

Kenny Root

2013-02-13 12:59:14 -0800

[diff] [blame]

1694

uid_t callingUid = IPCThreadState::self()->getCallingUid();

1695

if (!has_permission(callingUid, P_UNLOCK)) {

1696

ALOGW("permission denied for %d: unlock", callingUid);

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

1697

return ::PERMISSION_DENIED;

1698

}

1699

Kenny Root

2013-04-04 08:37:42 -0700

[diff] [blame]

1700

State state = mKeyStore->getState(callingUid);

Kenny Root

2013-02-14 10:32:30 -0800

[diff] [blame]

1701

if (state != ::STATE_LOCKED) {

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

1702

ALOGD("calling unlock when not locked");

return state;

}

const String8 password8(pw);

1707

return password(pw);

Kenny Root

2012-02-15 17:20:23 -0800

[diff] [blame]

1708

}

1709

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

1710

int32_t zero() {

Kenny Root

2013-02-13 12:59:14 -0800

[diff] [blame]

1711

uid_t callingUid = IPCThreadState::self()->getCallingUid();

1712

if (!has_permission(callingUid, P_ZERO)) {

1713

ALOGW("permission denied for %d: zero", callingUid);

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

1714

return -1;

1715

}

Kenny Root

2012-02-15 17:20:23 -0800

[diff] [blame]

1716

Kenny Root

2013-04-04 08:37:42 -0700

[diff] [blame]

1717

return mKeyStore->isEmpty(callingUid) ? ::KEY_NOT_FOUND : ::NO_ERROR;

Kenny Root

2012-02-15 17:20:23 -0800

[diff] [blame]

1718

}

1719

Kenny Root

2013-08-16 14:02:41 -0700

[diff] [blame]

1720

int32_t generate(const String16& name, int32_t targetUid, int32_t keyType, int32_t keySize,

1721

int32_t flags, Vector<sp<KeystoreArg> >* args) {

Kenny Root

2013-02-13 12:59:14 -0800

[diff] [blame]

1722

uid_t callingUid = IPCThreadState::self()->getCallingUid();

1723

if (!has_permission(callingUid, P_INSERT)) {

1724

ALOGW("permission denied for %d: generate", callingUid);

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

1725

return ::PERMISSION_DENIED;

1726

}

Kenny Root

2012-02-15 17:20:23 -0800

[diff] [blame]

1727

Kenny Root

2013-03-19 13:41:33 -0700

[diff] [blame]

1728

if (targetUid == -1) {

1729

targetUid = callingUid;

1730

} else if (!is_granted_to(callingUid, targetUid)) {

Kenny Root

2013-02-13 14:43:43 -0800

[diff] [blame]

1731

return ::PERMISSION_DENIED;

1732

}

1733

Kenny Root

2013-04-04 08:37:42 -0700

[diff] [blame]

1734

State state = mKeyStore->getState(callingUid);

Kenny Root

2013-04-03 09:22:15 -0700

[diff] [blame]

1735

if ((flags & KEYSTORE_FLAG_ENCRYPTED) && !isKeystoreUnlocked(state)) {

1736

ALOGW("calling generate in state: %d", state);

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

1737

return state;

1738

}

Kenny Root

2012-02-15 17:20:23 -0800

[diff] [blame]

1739

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

1740

uint8_t* data;

1741

size_t dataLength;

1742

int rc;

Kenny Root

2013-09-04 13:56:03 -0700

[diff] [blame]

1743

bool isFallback = false;

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

1744

1745

const keymaster_device_t* device = mKeyStore->getDevice();

1746

if (device == NULL) {

1747

return ::SYSTEM_ERROR;

1748

}

1749

1750

if (device->generate_keypair == NULL) {

1751

return ::SYSTEM_ERROR;

1752

}

1753

Kenny Root

2013-09-04 13:56:03 -0700

[diff] [blame]

1754

if (keyType == EVP_PKEY_DSA) {

Kenny Root

2013-08-16 14:02:41 -0700

[diff] [blame]

1755

keymaster_dsa_keygen_params_t dsa_params;

1756

memset(&dsa_params, '\0', sizeof(dsa_params));

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

1757

Kenny Root

2013-08-16 14:02:41 -0700

[diff] [blame]

1758

if (keySize == -1) {

1759

keySize = DSA_DEFAULT_KEY_SIZE;

1760

} else if ((keySize % 64) != 0 || keySize < DSA_MIN_KEY_SIZE

1761

|| keySize > DSA_MAX_KEY_SIZE) {

1762

ALOGI("invalid key size %d", keySize);

1763

return ::SYSTEM_ERROR;

1764

}

1765

dsa_params.key_size = keySize;

1766

1767

if (args->size() == 3) {

1768

sp<KeystoreArg> gArg = args->itemAt(0);

1769

sp<KeystoreArg> pArg = args->itemAt(1);

1770

sp<KeystoreArg> qArg = args->itemAt(2);

1771

1772

if (gArg != NULL && pArg != NULL && qArg != NULL) {

1773

dsa_params.generator = reinterpret_cast<const uint8_t*>(gArg->data());

1774

dsa_params.generator_len = gArg->size();

1775

1776

dsa_params.prime_p = reinterpret_cast<const uint8_t*>(pArg->data());

1777

dsa_params.prime_p_len = pArg->size();

1778

1779

dsa_params.prime_q = reinterpret_cast<const uint8_t*>(qArg->data());

1780

dsa_params.prime_q_len = qArg->size();

1781

} else {

1782

ALOGI("not all DSA parameters were read");

1783

return ::SYSTEM_ERROR;

1784

}

1785

} else if (args->size() != 0) {

1786

ALOGI("DSA args must be 3");

1787

return ::SYSTEM_ERROR;

1788

}

1789

Kenny Root

2013-09-04 13:56:03 -0700

[diff] [blame]

1790

if (device->common.module->module_api_version >= KEYMASTER_MODULE_API_VERSION_0_2) {

1791

rc = device->generate_keypair(device, TYPE_DSA, &dsa_params, &data, &dataLength);

1792

} else {

1793

isFallback = true;

1794

rc = openssl_generate_keypair(device, TYPE_DSA, &dsa_params, &data, &dataLength);

1795

}

1796

} else if (keyType == EVP_PKEY_EC) {

Kenny Root

2013-08-16 14:02:41 -0700

[diff] [blame]

1797

keymaster_ec_keygen_params_t ec_params;

1798

memset(&ec_params, '\0', sizeof(ec_params));

1799

1800

if (keySize == -1) {

1801

keySize = EC_DEFAULT_KEY_SIZE;

1802

} else if (keySize < EC_MIN_KEY_SIZE || keySize > EC_MAX_KEY_SIZE) {

1803

ALOGI("invalid key size %d", keySize);

1804

return ::SYSTEM_ERROR;

1805

}

1806

ec_params.field_size = keySize;

1807

Kenny Root

2013-09-04 13:56:03 -0700

[diff] [blame]

1808

if (device->common.module->module_api_version >= KEYMASTER_MODULE_API_VERSION_0_2) {

1809

rc = device->generate_keypair(device, TYPE_EC, &ec_params, &data, &dataLength);

1810

} else {

1811

isFallback = true;

1812

rc = openssl_generate_keypair(device, TYPE_EC, &ec_params, &data, &dataLength);

1813

}

Kenny Root

2013-08-16 14:02:41 -0700

[diff] [blame]

1814

} else if (keyType == EVP_PKEY_RSA) {

1815

keymaster_rsa_keygen_params_t rsa_params;

1816

memset(&rsa_params, '\0', sizeof(rsa_params));

1817

rsa_params.public_exponent = RSA_DEFAULT_EXPONENT;

1818

1819

if (keySize == -1) {

1820

keySize = RSA_DEFAULT_KEY_SIZE;

1821

} else if (keySize < RSA_MIN_KEY_SIZE || keySize > RSA_MAX_KEY_SIZE) {

1822

ALOGI("invalid key size %d", keySize);

1823

return ::SYSTEM_ERROR;

1824

}

1825

rsa_params.modulus_size = keySize;

1826

1827

if (args->size() > 1) {

1828

ALOGI("invalid number of arguments: %d", args->size());

1829

return ::SYSTEM_ERROR;

1830

} else if (args->size() == 1) {

1831

sp<KeystoreArg> pubExpBlob = args->itemAt(0);

1832

if (pubExpBlob != NULL) {

1833

Unique_BIGNUM pubExpBn(

1834

BN_bin2bn(reinterpret_cast<const unsigned char*>(pubExpBlob->data()),

1835

pubExpBlob->size(), NULL));

1836

if (pubExpBn.get() == NULL) {

1837

ALOGI("Could not convert public exponent to BN");

1838

return ::SYSTEM_ERROR;

1839

}

1840

unsigned long pubExp = BN_get_word(pubExpBn.get());

1841

if (pubExp == 0xFFFFFFFFL) {

1842

ALOGI("cannot represent public exponent as a long value");

1843

return ::SYSTEM_ERROR;

1844

}

1845

rsa_params.public_exponent = pubExp;

}

}

rc = device->generate_keypair(device, TYPE_RSA, &rsa_params, &data, &dataLength);

1850

} else {

1851

ALOGW("Unsupported key type %d", keyType);

rc = -1;

}

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

1855

if (rc) {

1856

return ::SYSTEM_ERROR;

1857

}

1858

Kenny Root

2013-04-04 08:37:42 -0700

[diff] [blame]

1859

String8 name8(name);

1860

String8 filename(mKeyStore->getKeyNameForUidWithDir(name8, callingUid));

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

1861

1862

Blob keyBlob(data, dataLength, NULL, 0, TYPE_KEY_PAIR);

1863

free(data);

1864

Kenny Root

ee8068b

2013-10-07 09:49:15 -0700

[diff] [blame]

1865

keyBlob.setEncrypted(flags & KEYSTORE_FLAG_ENCRYPTED);

Kenny Root

2013-09-04 13:56:03 -0700

[diff] [blame]

1866

keyBlob.setFallback(isFallback);

1867

Kenny Root

2013-04-04 08:37:42 -0700

[diff] [blame]

1868

return mKeyStore->put(filename.string(), &keyBlob, callingUid);

Kenny Root

2012-02-15 17:20:23 -0800

[diff] [blame]

1869

}

1870

Kenny Root

2013-04-03 09:22:15 -0700

[diff] [blame]

1871

int32_t import(const String16& name, const uint8_t* data, size_t length, int targetUid,

1872

int32_t flags) {

Kenny Root

2013-02-13 12:59:14 -0800

[diff] [blame]

1873

uid_t callingUid = IPCThreadState::self()->getCallingUid();

1874

if (!has_permission(callingUid, P_INSERT)) {

1875

ALOGW("permission denied for %d: import", callingUid);

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

1876

return ::PERMISSION_DENIED;

1877

}

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

1878

Kenny Root

2013-03-19 13:41:33 -0700

[diff] [blame]

1879

if (targetUid == -1) {

1880

targetUid = callingUid;

1881

} else if (!is_granted_to(callingUid, targetUid)) {

Kenny Root

2013-02-13 14:43:43 -0800

[diff] [blame]

1882

return ::PERMISSION_DENIED;

1883

}

1884

Kenny Root

2013-04-04 08:37:42 -0700

[diff] [blame]

1885

State state = mKeyStore->getState(callingUid);

Kenny Root

2013-04-03 09:22:15 -0700

[diff] [blame]

1886

if ((flags & KEYSTORE_FLAG_ENCRYPTED) && !isKeystoreUnlocked(state)) {

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

1887

ALOGD("calling import in state: %d", state);

return state;

}

String8 name8(name);

Kenny Root

6089889

2013-04-16 18:08:03 -0700

[diff] [blame]

1892

String8 filename(mKeyStore->getKeyNameForUidWithDir(name8, targetUid));

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

1893

Kenny Root

2013-04-03 09:22:15 -0700

[diff] [blame]

1894

return mKeyStore->importKey(data, length, filename.string(), callingUid, flags);

Kenny Root

2012-02-15 17:20:23 -0800

[diff] [blame]

1895

}

1896

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

1897

int32_t sign(const String16& name, const uint8_t* data, size_t length, uint8_t** out,

1898

size_t* outLength) {

Kenny Root

2013-02-13 12:59:14 -0800

[diff] [blame]

1899

uid_t callingUid = IPCThreadState::self()->getCallingUid();

1900

if (!has_permission(callingUid, P_SIGN)) {

1901

ALOGW("permission denied for %d: saw", callingUid);

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

1902

return ::PERMISSION_DENIED;

1903

}

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

1904

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

Blob keyBlob;

String8 name8(name);

Kenny Root

2013-02-13 12:59:14 -0800

[diff] [blame]

1908

ALOGV("sign %s from uid %d", name8.string(), callingUid);

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

1909

int rc;

1910

Kenny Root

2013-04-04 08:37:42 -0700

[diff] [blame]

1911

ResponseCode responseCode = mKeyStore->getKeyForName(&keyBlob, name8, callingUid,

Kenny Root

2013-02-13 12:59:14 -0800

[diff] [blame]

1912

::TYPE_KEY_PAIR);

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

1913

if (responseCode != ::NO_ERROR) {

return responseCode;

}

const keymaster_device_t* device = mKeyStore->getDevice();

1918

if (device == NULL) {

1919

ALOGE("no keymaster device; cannot sign");

1920

return ::SYSTEM_ERROR;

1921

}

1922

1923

if (device->sign_data == NULL) {

1924

ALOGE("device doesn't implement signing");

1925

return ::SYSTEM_ERROR;

1926

}

1927

1928

keymaster_rsa_sign_params_t params;

1929

params.digest_type = DIGEST_NONE;

1930

params.padding_type = PADDING_NONE;

1931

Kenny Root

2013-09-04 13:56:03 -0700

[diff] [blame]

1932

if (keyBlob.isFallback()) {

1933

rc = openssl_sign_data(device, &params, keyBlob.getValue(), keyBlob.getLength(), data,

1934

length, out, outLength);

1935

} else {

1936

rc = device->sign_data(device, &params, keyBlob.getValue(), keyBlob.getLength(), data,

1937

length, out, outLength);

1938

}

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

1939

if (rc) {

1940

ALOGW("device couldn't sign data");

1941

return ::SYSTEM_ERROR;

1942

}

1943

1944

return ::NO_ERROR;

Kenny Root

2012-02-15 17:20:23 -0800

[diff] [blame]

1945

}

1946

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

1947

int32_t verify(const String16& name, const uint8_t* data, size_t dataLength,

1948

const uint8_t* signature, size_t signatureLength) {

Kenny Root

2013-02-13 12:59:14 -0800

[diff] [blame]

1949

uid_t callingUid = IPCThreadState::self()->getCallingUid();

1950

if (!has_permission(callingUid, P_VERIFY)) {

1951

ALOGW("permission denied for %d: verify", callingUid);

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

1952

return ::PERMISSION_DENIED;

1953

}

Kenny Root

2012-02-15 17:20:23 -0800

[diff] [blame]

1954

Kenny Root

2013-04-04 08:37:42 -0700

[diff] [blame]

1955

State state = mKeyStore->getState(callingUid);

Kenny Root

2013-02-14 10:32:30 -0800

[diff] [blame]

1956

if (!isKeystoreUnlocked(state)) {

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

1957

ALOGD("calling verify in state: %d", state);

1958

return state;

1959

}

Kenny Root

2012-02-15 17:20:23 -0800

[diff] [blame]

1960

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

1961

Blob keyBlob;

1962

String8 name8(name);

1963

int rc;

Kenny Root

2012-02-15 17:20:23 -0800

[diff] [blame]

1964

Kenny Root

2013-04-04 08:37:42 -0700

[diff] [blame]

1965

ResponseCode responseCode = mKeyStore->getKeyForName(&keyBlob, name8, callingUid,

Kenny Root

2013-03-19 13:41:33 -0700

[diff] [blame]

1966

TYPE_KEY_PAIR);

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

1967

if (responseCode != ::NO_ERROR) {

1968

return responseCode;

1969

}

Kenny Root

2012-02-15 17:20:23 -0800

[diff] [blame]

1970

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

1971

const keymaster_device_t* device = mKeyStore->getDevice();

1972

if (device == NULL) {

1973

return ::SYSTEM_ERROR;

1974

}

Kenny Root

2012-02-15 17:20:23 -0800

[diff] [blame]

1975

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

1976

if (device->verify_data == NULL) {

1977

return ::SYSTEM_ERROR;

1978

}

Kenny Root

2012-02-15 17:20:23 -0800

[diff] [blame]

1979

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

1980

keymaster_rsa_sign_params_t params;

1981

params.digest_type = DIGEST_NONE;

1982

params.padding_type = PADDING_NONE;

Kenny Root

344e0bc

2012-08-15 10:44:03 -0700

[diff] [blame]

1983

Kenny Root

2013-09-04 13:56:03 -0700

[diff] [blame]

1984

if (keyBlob.isFallback()) {

1985

rc = openssl_verify_data(device, &params, keyBlob.getValue(), keyBlob.getLength(), data,

1986

dataLength, signature, signatureLength);

1987

} else {

1988

rc = device->verify_data(device, &params, keyBlob.getValue(), keyBlob.getLength(), data,

1989

dataLength, signature, signatureLength);

1990

}

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

1991

if (rc) {

1992

return ::SYSTEM_ERROR;

1993

} else {

1994

return ::NO_ERROR;

Kenny Root

2012-02-15 15:00:46 -0800

[diff] [blame]

1995

}

1996

}

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

1997

1998

/*

1999

* TODO: The abstraction between things stored in hardware and regular blobs

2000

* of data stored on the filesystem should be moved down to keystore itself.

2001

* Unfortunately the Java code that calls this has naming conventions that it

2002

* knows about. Ideally keystore shouldn't be used to store random blobs of

2003

* data.

2004

*

2005

* Until that happens, it's necessary to have a separate "get_pubkey" and

2006

* "del_key" since the Java code doesn't really communicate what it's

2007

* intentions are.

2008

*/

2009

int32_t get_pubkey(const String16& name, uint8_t** pubkey, size_t* pubkeyLength) {

Kenny Root

2013-02-13 12:59:14 -0800

[diff] [blame]

2010

uid_t callingUid = IPCThreadState::self()->getCallingUid();

2011

if (!has_permission(callingUid, P_GET)) {

2012

ALOGW("permission denied for %d: get_pubkey", callingUid);

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

2013

return ::PERMISSION_DENIED;

2014

}

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

2015

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

Blob keyBlob;

String8 name8(name);

Kenny Root

2013-02-13 12:59:14 -0800

[diff] [blame]

2019

ALOGV("get_pubkey '%s' from uid %d", name8.string(), callingUid);

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

2020

Kenny Root

2013-04-04 08:37:42 -0700

[diff] [blame]

2021

ResponseCode responseCode = mKeyStore->getKeyForName(&keyBlob, name8, callingUid,

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

2022

TYPE_KEY_PAIR);

2023

if (responseCode != ::NO_ERROR) {

return responseCode;

}

const keymaster_device_t* device = mKeyStore->getDevice();

2028

if (device == NULL) {

2029

return ::SYSTEM_ERROR;

2030

}

2031

2032

if (device->get_keypair_public == NULL) {

2033

ALOGE("device has no get_keypair_public implementation!");

2034

return ::SYSTEM_ERROR;

2035

}

2036

Kenny Root

2013-09-04 13:56:03 -0700

[diff] [blame]

2037

int rc;

2038

if (keyBlob.isFallback()) {

2039

rc = openssl_get_keypair_public(device, keyBlob.getValue(), keyBlob.getLength(), pubkey,

2040

pubkeyLength);

2041

} else {

2042

rc = device->get_keypair_public(device, keyBlob.getValue(), keyBlob.getLength(), pubkey,

2043

pubkeyLength);

2044

}

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

2045

if (rc) {

2046

return ::SYSTEM_ERROR;

2047

}

2048

2049

return ::NO_ERROR;

Kenny Root

2012-02-15 15:00:46 -0800

[diff] [blame]

2050

}

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

2051

Kenny Root

2013-03-19 13:41:33 -0700

[diff] [blame]

2052

int32_t del_key(const String16& name, int targetUid) {

Kenny Root

2013-02-13 12:59:14 -0800

[diff] [blame]

2053

uid_t callingUid = IPCThreadState::self()->getCallingUid();

2054

if (!has_permission(callingUid, P_DELETE)) {

2055

ALOGW("permission denied for %d: del_key", callingUid);

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

2056

return ::PERMISSION_DENIED;

2057

}

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

2058

Kenny Root

2013-03-19 13:41:33 -0700

[diff] [blame]

2059

if (targetUid == -1) {

2060

targetUid = callingUid;

2061

} else if (!is_granted_to(callingUid, targetUid)) {

Kenny Root

2013-02-13 14:43:43 -0800

[diff] [blame]

2062

return ::PERMISSION_DENIED;

2063

}

2064

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

2065

String8 name8(name);

Kenny Root

2013-04-04 08:37:42 -0700

[diff] [blame]

2066

String8 filename(mKeyStore->getKeyNameForUidWithDir(name8, callingUid));

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

2067

2068

Blob keyBlob;

Kenny Root

2013-04-04 08:37:42 -0700

[diff] [blame]

2069

ResponseCode responseCode = mKeyStore->get(filename.string(), &keyBlob, ::TYPE_KEY_PAIR,

2070

callingUid);

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

2071

if (responseCode != ::NO_ERROR) {

return responseCode;

}

ResponseCode rc = ::NO_ERROR;

2076

2077

const keymaster_device_t* device = mKeyStore->getDevice();

2078

if (device == NULL) {

2079

rc = ::SYSTEM_ERROR;

2080

} else {

2081

// A device doesn't have to implement delete_keypair.

Kenny Root

2013-09-04 13:56:03 -0700

[diff] [blame]

2082

if (device->delete_keypair != NULL && !keyBlob.isFallback()) {

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

2083

if (device->delete_keypair(device, keyBlob.getValue(), keyBlob.getLength())) {

rc = ::SYSTEM_ERROR;

}

}

}

if (rc != ::NO_ERROR) {

return rc;

}

return (unlink(filename) && errno != ENOENT) ? ::SYSTEM_ERROR : ::NO_ERROR;

2094

}

2095

2096

int32_t grant(const String16& name, int32_t granteeUid) {

Kenny Root

2013-02-13 12:59:14 -0800

[diff] [blame]

2097

uid_t callingUid = IPCThreadState::self()->getCallingUid();

2098

if (!has_permission(callingUid, P_GRANT)) {

2099

ALOGW("permission denied for %d: grant", callingUid);

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

2100

return ::PERMISSION_DENIED;

2101

}

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

2102

Kenny Root

2013-04-04 08:37:42 -0700

[diff] [blame]

2103

State state = mKeyStore->getState(callingUid);

Kenny Root

2013-02-14 10:32:30 -0800

[diff] [blame]

2104

if (!isKeystoreUnlocked(state)) {

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

2105

ALOGD("calling grant in state: %d", state);

return state;

}

String8 name8(name);

Kenny Root

2013-04-04 08:37:42 -0700

[diff] [blame]

2110

String8 filename(mKeyStore->getKeyNameForUidWithDir(name8, callingUid));

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

2111

Kenny Root

2013-04-04 08:37:42 -0700

[diff] [blame]

2112

if (access(filename.string(), R_OK) == -1) {

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

2113

return (errno != ENOENT) ? ::SYSTEM_ERROR : ::KEY_NOT_FOUND;

2114

}

2115

Kenny Root

2013-04-04 08:37:42 -0700

[diff] [blame]

2116

mKeyStore->addGrant(filename.string(), granteeUid);

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

return ::NO_ERROR;

}

int32_t ungrant(const String16& name, int32_t granteeUid) {

Kenny Root

2013-02-13 12:59:14 -0800

[diff] [blame]

2121

uid_t callingUid = IPCThreadState::self()->getCallingUid();

2122

if (!has_permission(callingUid, P_GRANT)) {

2123

ALOGW("permission denied for %d: ungrant", callingUid);

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

2124

return ::PERMISSION_DENIED;

2125

}

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

2126

Kenny Root

2013-04-04 08:37:42 -0700

[diff] [blame]

2127

State state = mKeyStore->getState(callingUid);

Kenny Root

2013-02-14 10:32:30 -0800

[diff] [blame]

2128

if (!isKeystoreUnlocked(state)) {

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

2129

ALOGD("calling ungrant in state: %d", state);

return state;

}

String8 name8(name);

Kenny Root

2013-04-04 08:37:42 -0700

[diff] [blame]

2134

String8 filename(mKeyStore->getKeyNameForUidWithDir(name8, callingUid));

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

2135

Kenny Root

2013-04-04 08:37:42 -0700

[diff] [blame]

2136

if (access(filename.string(), R_OK) == -1) {

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

2137

return (errno != ENOENT) ? ::SYSTEM_ERROR : ::KEY_NOT_FOUND;

2138

}

2139

Kenny Root

2013-04-04 08:37:42 -0700

[diff] [blame]

2140

return mKeyStore->removeGrant(filename.string(), granteeUid) ? ::NO_ERROR : ::KEY_NOT_FOUND;

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

2141

}

2142

2143

int64_t getmtime(const String16& name) {

Kenny Root

2013-02-13 12:59:14 -0800

[diff] [blame]

2144

uid_t callingUid = IPCThreadState::self()->getCallingUid();

2145

if (!has_permission(callingUid, P_GET)) {

2146

ALOGW("permission denied for %d: getmtime", callingUid);

Kenny Root

2013-02-04 14:24:15 -0800

[diff] [blame]

2147

return -1L;

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

2148

}

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

2149

2150

String8 name8(name);

Kenny Root

2013-04-04 08:37:42 -0700

[diff] [blame]

2151

String8 filename(mKeyStore->getKeyNameForUidWithDir(name8, callingUid));

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

2152

Kenny Root

2013-04-04 08:37:42 -0700

[diff] [blame]

2153

if (access(filename.string(), R_OK) == -1) {

2154

ALOGW("could not access %s for getmtime", filename.string());

Kenny Root

2013-02-04 14:24:15 -0800

[diff] [blame]

2155

return -1L;

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

2156

}

2157

Kenny Root

2013-04-04 08:37:42 -0700

[diff] [blame]

2158

int fd = TEMP_FAILURE_RETRY(open(filename.string(), O_NOFOLLOW, O_RDONLY));

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

2159

if (fd < 0) {

Kenny Root

2013-04-04 08:37:42 -0700

[diff] [blame]

2160

ALOGW("could not open %s for getmtime", filename.string());

Kenny Root

2013-02-04 14:24:15 -0800

[diff] [blame]

2161

return -1L;

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

}

struct stat s;

int ret = fstat(fd, &s);

2166

close(fd);

2167

if (ret == -1) {

Kenny Root

2013-04-04 08:37:42 -0700

[diff] [blame]

2168

ALOGW("could not stat %s for getmtime", filename.string());

Kenny Root

2013-02-04 14:24:15 -0800

[diff] [blame]

2169

return -1L;

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

2170

}

2171

Kenny Root

2013-02-04 14:24:15 -0800

[diff] [blame]

2172

return static_cast<int64_t>(s.st_mtime);

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

2173

}

2174

Kenny Root

2013-03-21 14:10:15 -0700

[diff] [blame]

2175

int32_t duplicate(const String16& srcKey, int32_t srcUid, const String16& destKey,

2176

int32_t destUid) {

Kenny Root

2013-03-20 11:48:19 -0700

[diff] [blame]

2177

uid_t callingUid = IPCThreadState::self()->getCallingUid();

Kenny Root

2013-03-21 14:10:15 -0700

[diff] [blame]

2178

if (!has_permission(callingUid, P_DUPLICATE)) {

2179

ALOGW("permission denied for %d: duplicate", callingUid);

Kenny Root

2013-03-20 11:48:19 -0700

[diff] [blame]

return -1L;

}

Kenny Root

2013-04-04 08:37:42 -0700

[diff] [blame]

2183

State state = mKeyStore->getState(callingUid);

Kenny Root

2013-03-20 11:48:19 -0700

[diff] [blame]

2184

if (!isKeystoreUnlocked(state)) {

Kenny Root

2013-03-21 14:10:15 -0700

[diff] [blame]

2185

ALOGD("calling duplicate in state: %d", state);

Kenny Root

2013-03-20 11:48:19 -0700

[diff] [blame]

return state;

}

Kenny Root

2013-03-21 14:10:15 -0700

[diff] [blame]

2189

if (srcUid == -1 || static_cast<uid_t>(srcUid) == callingUid) {

2190

srcUid = callingUid;

2191

} else if (!is_granted_to(callingUid, srcUid)) {

2192

ALOGD("migrate not granted from source: %d -> %d", callingUid, srcUid);

Kenny Root

2013-03-20 11:48:19 -0700

[diff] [blame]

2193

return ::PERMISSION_DENIED;

2194

}

2195

Kenny Root

2013-03-21 14:10:15 -0700

[diff] [blame]

2196

if (destUid == -1) {

2197

destUid = callingUid;

2198

}

2199

2200

if (srcUid != destUid) {

2201

if (static_cast<uid_t>(srcUid) != callingUid) {

2202

ALOGD("can only duplicate from caller to other or to same uid: "

2203

"calling=%d, srcUid=%d, destUid=%d", callingUid, srcUid, destUid);

2204

return ::PERMISSION_DENIED;

2205

}

2206

2207

if (!is_granted_to(callingUid, destUid)) {

2208

ALOGD("duplicate not granted to dest: %d -> %d", callingUid, destUid);

2209

return ::PERMISSION_DENIED;

}

}

String8 source8(srcKey);

Kenny Root

2013-04-04 08:37:42 -0700

[diff] [blame]

2214

String8 sourceFile(mKeyStore->getKeyNameForUidWithDir(source8, srcUid));

Kenny Root

2013-03-20 11:48:19 -0700

[diff] [blame]

2215

Kenny Root

2013-03-21 14:10:15 -0700

[diff] [blame]

2216

String8 target8(destKey);

Kenny Root

2013-04-04 08:37:42 -0700

[diff] [blame]

2217

String8 targetFile(mKeyStore->getKeyNameForUidWithDir(target8, srcUid));

Kenny Root

2013-03-20 11:48:19 -0700

[diff] [blame]

2218

Kenny Root

2013-04-04 08:37:42 -0700

[diff] [blame]

2219

if (access(targetFile.string(), W_OK) != -1 || errno != ENOENT) {

2220

ALOGD("destination already exists: %s", targetFile.string());

Kenny Root

2013-03-20 11:48:19 -0700

[diff] [blame]

2221

return ::SYSTEM_ERROR;

2222

}

2223

Kenny Root

2013-03-21 14:10:15 -0700

[diff] [blame]

2224

Blob keyBlob;

Kenny Root

2013-04-04 08:37:42 -0700

[diff] [blame]

2225

ResponseCode responseCode = mKeyStore->get(sourceFile.string(), &keyBlob, TYPE_ANY,

2226

callingUid);

Kenny Root

2013-03-21 14:10:15 -0700

[diff] [blame]

2227

if (responseCode != ::NO_ERROR) {

2228

return responseCode;

Kenny Root

2013-03-20 11:48:19 -0700

[diff] [blame]

2229

}

Kenny Root

2013-03-21 14:10:15 -0700

[diff] [blame]

2230

Kenny Root

2013-04-04 08:37:42 -0700

[diff] [blame]

2231

return mKeyStore->put(targetFile.string(), &keyBlob, callingUid);

Kenny Root

2013-03-20 11:48:19 -0700

[diff] [blame]

2232

}

2233

Kenny Root

2013-09-05 13:06:32 -0700

[diff] [blame]

2234

int32_t is_hardware_backed(const String16& keyType) {

2235

return mKeyStore->isHardwareBacked(keyType) ? 1 : 0;

Kenny Root

8ddf35a

2013-03-29 11:15:50 -0700

[diff] [blame]

2236

}

2237

Kenny Root

2013-04-01 16:29:11 -0700

[diff] [blame]

2238

int32_t clear_uid(int64_t targetUid) {

2239

uid_t callingUid = IPCThreadState::self()->getCallingUid();

2240

if (!has_permission(callingUid, P_CLEAR_UID)) {

2241

ALOGW("permission denied for %d: clear_uid", callingUid);

2242

return ::PERMISSION_DENIED;

2243

}

2244

Kenny Root

2013-04-04 08:37:42 -0700

[diff] [blame]

2245

State state = mKeyStore->getState(callingUid);

Kenny Root

2013-04-01 16:29:11 -0700

[diff] [blame]

2246

if (!isKeystoreUnlocked(state)) {

2247

ALOGD("calling clear_uid in state: %d", state);

return state;

}

const keymaster_device_t* device = mKeyStore->getDevice();

2252

if (device == NULL) {

Kenny Root

2013-04-04 08:37:42 -0700

[diff] [blame]

2253

ALOGW("can't get keymaster device");

Kenny Root

2013-04-01 16:29:11 -0700

[diff] [blame]

2254

return ::SYSTEM_ERROR;

2255

}

2256

Kenny Root

2013-04-04 08:37:42 -0700

[diff] [blame]

2257

UserState* userState = mKeyStore->getUserState(callingUid);

2258

DIR* dir = opendir(userState->getUserDirName());

Kenny Root

2013-04-01 16:29:11 -0700

[diff] [blame]

2259

if (!dir) {

Kenny Root

2013-04-04 08:37:42 -0700

[diff] [blame]

2260

ALOGW("can't open user directory: %s", strerror(errno));

Kenny Root

2013-04-01 16:29:11 -0700

[diff] [blame]

2261

return ::SYSTEM_ERROR;

2262

}

2263

Kenny Root

2013-04-04 08:37:42 -0700

[diff] [blame]

2264

char prefix[NAME_MAX];

2265

int n = snprintf(prefix, NAME_MAX, "%u_", static_cast<uid_t>(targetUid));

Kenny Root

2013-04-01 16:29:11 -0700

[diff] [blame]

2266

2267

ResponseCode rc = ::NO_ERROR;

2268

2269

struct dirent* file;

2270

while ((file = readdir(dir)) != NULL) {

Kenny Root

2013-04-04 08:37:42 -0700

[diff] [blame]

2271

// We only care about files.

2272

if (file->d_type != DT_REG) {

Kenny Root

2013-04-01 16:29:11 -0700

[diff] [blame]

continue;

}

Kenny Root

2013-04-04 08:37:42 -0700

[diff] [blame]

2276

// Skip anything that starts with a "."

2277

if (file->d_name[0] == '.') {

2278

continue;

2279

}

Kenny Root

2013-04-01 16:29:11 -0700

[diff] [blame]

2280

Kenny Root

2013-04-04 08:37:42 -0700

[diff] [blame]

2281

if (strncmp(prefix, file->d_name, n)) {

continue;

}

String8 filename(String8::format("%s/%s", userState->getUserDirName(), file->d_name));

Kenny Root

2013-04-01 16:29:11 -0700

[diff] [blame]

2286

Blob keyBlob;

Kenny Root

2013-04-04 08:37:42 -0700

[diff] [blame]

2287

if (mKeyStore->get(filename.string(), &keyBlob, ::TYPE_ANY, callingUid)

2288

!= ::NO_ERROR) {

2289

ALOGW("couldn't open %s", filename.string());

Kenny Root

2013-04-01 16:29:11 -0700

[diff] [blame]

continue;

}

if (keyBlob.getType() == ::TYPE_KEY_PAIR) {

2294

// A device doesn't have to implement delete_keypair.

Kenny Root

2013-09-04 13:56:03 -0700

[diff] [blame]

2295

if (device->delete_keypair != NULL && !keyBlob.isFallback()) {

Kenny Root

2013-04-01 16:29:11 -0700

[diff] [blame]

2296

if (device->delete_keypair(device, keyBlob.getValue(), keyBlob.getLength())) {

2297

rc = ::SYSTEM_ERROR;

Kenny Root

2013-04-04 08:37:42 -0700

[diff] [blame]

2298

ALOGW("device couldn't remove %s", filename.string());

Kenny Root

2013-04-01 16:29:11 -0700

[diff] [blame]

}

}

}

Kenny Root

2013-04-12 11:31:50 -0700

[diff] [blame]

2303

if (unlinkat(dirfd(dir), file->d_name, 0) && errno != ENOENT) {

Kenny Root

2013-04-01 16:29:11 -0700

[diff] [blame]

2304

rc = ::SYSTEM_ERROR;

Kenny Root

2013-04-04 08:37:42 -0700

[diff] [blame]

2305

ALOGW("couldn't unlink %s", filename.string());

Kenny Root

2013-04-01 16:29:11 -0700

[diff] [blame]

}

}

closedir(dir);

return rc;

}

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

2313

private:

Kenny Root

2013-02-14 10:32:30 -0800

[diff] [blame]

2314

inline bool isKeystoreUnlocked(State state) {

2315

switch (state) {

2316

case ::STATE_NO_ERROR:

2317

return true;

2318

case ::STATE_UNINITIALIZED:

case ::STATE_LOCKED:

return false;

}

return false;

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

2323

}

2324

2325

::KeyStore* mKeyStore;

2326

};

2327

2328

}; // namespace android

Kenny Root

2012-02-15 15:00:46 -0800

[diff] [blame]

2329

2330

int main(int argc, char* argv[]) {

Kenny Root

2012-02-15 15:00:46 -0800

[diff] [blame]

2331

if (argc < 2) {

2332

ALOGE("A directory must be specified!");

2333

return 1;

2334

}

2335

if (chdir(argv[1]) == -1) {

2336

ALOGE("chdir: %s: %s", argv[1], strerror(errno));

return 1;

}

Entropy entropy;

if (!entropy.open()) {

2342

return 1;

2343

}

Kenny Root

2012-02-15 17:20:23 -0800

[diff] [blame]

2344

2345

keymaster_device_t* dev;

2346

if (keymaster_device_initialize(&dev)) {

2347

ALOGE("keystore keymaster could not be initialized; exiting");

return 1;

}

Kenny Root

2012-02-15 17:20:23 -0800

[diff] [blame]

2351

KeyStore keyStore(&entropy, dev);

Kenny Root

2013-04-04 08:37:42 -0700

[diff] [blame]

2352

keyStore.initialize();

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

2353

android::sp<android::IServiceManager> sm = android::defaultServiceManager();

2354

android::sp<android::KeyStoreProxy> proxy = new android::KeyStoreProxy(&keyStore);

2355

android::status_t ret = sm->addService(android::String16("android.security.keystore"), proxy);

2356

if (ret != android::OK) {

2357

ALOGE("Couldn't register binder service!");

2358

return -1;

Kenny Root

2012-02-15 15:00:46 -0800

[diff] [blame]

2359

}

Kenny Root

2012-11-02 15:41:02 -0700

[diff] [blame]

2360

2361

/*

2362

* We're the only thread in existence, so we're just going to process

2363

* Binder transaction as a single-threaded program.

2364

*/

2365

android::IPCThreadState::self()->joinThreadPool();

Kenny Root

2012-02-15 17:20:23 -0800

[diff] [blame]

2366

2367

keymaster_device_release(dev);

Kenny Root