/* * Copyright (C) 2012 The Android Open Source Project * * Licensed under the Apache License, Version 2.0 (the "License"); * you may not use this file except in compliance with the License. * You may obtain a copy of the License at * * http://www.apache.org/licenses/LICENSE-2.0 * * Unless required by applicable law or agreed to in writing, software * distributed under the License is distributed on an "AS IS" BASIS, * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. * See the License for the specific language governing permissions and * limitations under the License. */ #define TRACE_TAG AUTH #include <dirent.h> #include <stdio.h> #include <stdlib.h> #include <string.h> #if defined(__linux__) #include <sys/inotify.h> #endif #include <map> #include <mutex> #include <set> #include <string> #include <android-base/errors.h> #include <android-base/file.h> #include <android-base/stringprintf.h> #include <android-base/strings.h> #include <crypto_utils/android_pubkey.h> #include <openssl/base64.h> #include <openssl/evp.h> #include <openssl/objects.h> #include <openssl/pem.h> #include <openssl/rsa.h> #include <openssl/sha.h> #include "adb.h" #include "adb_auth.h" #include "adb_io.h" #include "adb_utils.h" #include "sysdeps.h" #include "transport.h" static std::mutex& g_keys_mutex = *new std::mutex; static std::map<std::string, std::shared_ptr<RSA>>& g_keys = *new std::map<std::string, std::shared_ptr<RSA>>; static std::map<int, std::string>& g_monitored_paths = *new std::map<int, std::string>; static bool calculate_public_key(std::string* out, RSA* private_key) { uint8_t binary_key_data[ANDROID_PUBKEY_ENCODED_SIZE]; if (!android_pubkey_encode(private_key, binary_key_data, sizeof(binary_key_data))) { LOG(ERROR) << "Failed to convert to public key"; return false; } size_t expected_length; if (!EVP_EncodedLength(&expected_length, sizeof(binary_key_data))) { LOG(ERROR) << "Public key too large to base64 encode"; return false; } out->resize(expected_length); size_t actual_length = EVP_EncodeBlock(reinterpret_cast<uint8_t*>(out->data()), binary_key_data, sizeof(binary_key_data)); out->resize(actual_length); return true; } static int generate_key(const std::string& file) { LOG(INFO) << "generate_key(" << file << ")..."; mode_t old_mask; FILE *f = nullptr; int ret = 0; EVP_PKEY* pkey = EVP_PKEY_new(); BIGNUM* exponent = BN_new(); RSA* rsa = RSA_new(); if (!pkey || !exponent || !rsa) { LOG(ERROR) << "Failed to allocate key"; goto out; } BN_set_word(exponent, RSA_F4); RSA_generate_key_ex(rsa, 2048, exponent, nullptr); EVP_PKEY_set1_RSA(pkey, rsa); old_mask = umask(077); f = fopen(file.c_str(), "w"); if (!f) { PLOG(ERROR) << "Failed to open " << file; umask(old_mask); goto out; } umask(old_mask); if (!PEM_write_PrivateKey(f, pkey, nullptr, nullptr, 0, nullptr, nullptr)) { D("Failed to write key"); goto out; } ret = 1; out: if (f) fclose(f); EVP_PKEY_free(pkey); RSA_free(rsa); BN_free(exponent); return ret; } static std::string hash_key(RSA* key) { unsigned char* pubkey = nullptr; int len = i2d_RSA_PUBKEY(key, &pubkey); if (len < 0) { LOG(ERROR) << "failed to encode RSA public key"; return std::string(); } std::string result; result.resize(SHA256_DIGEST_LENGTH); SHA256(pubkey, len, reinterpret_cast<unsigned char*>(&result[0])); OPENSSL_free(pubkey); return result; } static std::shared_ptr<RSA> read_key_file(const std::string& file) { std::unique_ptr<FILE, decltype(&fclose)> fp(fopen(file.c_str(), "r"), fclose); if (!fp) { PLOG(ERROR) << "Failed to open '" << file << "'"; return nullptr; } RSA* key = RSA_new(); if (!PEM_read_RSAPrivateKey(fp.get(), &key, nullptr, nullptr)) { LOG(ERROR) << "Failed to read key"; RSA_free(key); return nullptr; } return std::shared_ptr<RSA>(key, RSA_free); } static bool load_key(const std::string& file) { std::shared_ptr<RSA> key = read_key_file(file); if (!key) { return false; } std::lock_guard<std::mutex> lock(g_keys_mutex); std::string fingerprint = hash_key(key.get()); if (g_keys.find(fingerprint) != g_keys.end()) { LOG(INFO) << "ignoring already-loaded key: " << file; } else { g_keys[fingerprint] = std::move(key); } return true; } static bool load_keys(const std::string& path, bool allow_dir = true) { LOG(INFO) << "load_keys '" << path << "'..."; struct stat st; if (stat(path.c_str(), &st) != 0) { PLOG(ERROR) << "failed to stat '" << path << "'"; return false; } if (S_ISREG(st.st_mode)) { return load_key(path); } else if (S_ISDIR(st.st_mode)) { if (!allow_dir) { // inotify isn't recursive. It would break expectations to load keys in nested // directories but not monitor them for new keys. LOG(WARNING) << "refusing to recurse into directory '" << path << "'"; return false; } std::unique_ptr<DIR, decltype(&closedir)> dir(opendir(path.c_str()), closedir); if (!dir) { PLOG(ERROR) << "failed to open directory '" << path << "'"; return false; } bool result = false; while (struct dirent* dent = readdir(dir.get())) { std::string name = dent->d_name; // We can't use dent->d_type here because it's not available on Windows. if (name == "." || name == "..") { continue; } if (!android::base::EndsWith(name, ".adb_key")) { LOG(INFO) << "skipping non-adb_key '" << path << "/" << name << "'"; continue; } result |= load_key((path + OS_PATH_SEPARATOR + name)); } return result; } LOG(ERROR) << "unexpected type for '" << path << "': 0x" << std::hex << st.st_mode; return false; } static std::string get_user_key_path() { return adb_get_android_dir_path() + OS_PATH_SEPARATOR + "adbkey"; } static bool generate_userkey() { std::string path = get_user_key_path(); if (path.empty()) { PLOG(ERROR) << "Error getting user key filename"; return false; } struct stat buf; if (stat(path.c_str(), &buf) == -1) { LOG(INFO) << "User key '" << path << "' does not exist..."; if (!generate_key(path)) { LOG(ERROR) << "Failed to generate new key"; return false; } } return load_key(path); } static std::set<std::string> get_vendor_keys() { const char* adb_keys_path = getenv("ADB_VENDOR_KEYS"); if (adb_keys_path == nullptr) { return std::set<std::string>(); } std::set<std::string> result; for (const auto& path : android::base::Split(adb_keys_path, ENV_PATH_SEPARATOR_STR)) { result.emplace(path); } return result; } std::deque<std::shared_ptr<RSA>> adb_auth_get_private_keys() { std::deque<std::shared_ptr<RSA>> result; // Copy all the currently known keys. std::lock_guard<std::mutex> lock(g_keys_mutex); for (const auto& it : g_keys) { result.push_back(it.second); } // Add a sentinel to the list. Our caller uses this to mean "out of private keys, // but try using the public key" (the empty deque could otherwise mean this _or_ // that this function hasn't been called yet to request the keys). result.push_back(nullptr); return result; } static std::string adb_auth_sign(RSA* key, const char* token, size_t token_size) { if (token_size != TOKEN_SIZE) { D("Unexpected token size %zd", token_size); return nullptr; } std::string result; result.resize(MAX_PAYLOAD); unsigned int len; if (!RSA_sign(NID_sha1, reinterpret_cast<const uint8_t*>(token), token_size, reinterpret_cast<uint8_t*>(&result[0]), &len, key)) { return std::string(); } result.resize(len); D("adb_auth_sign len=%d", len); return result; } static bool pubkey_from_privkey(std::string* out, const std::string& path) { std::shared_ptr<RSA> privkey = read_key_file(path); if (!privkey) { return false; } return calculate_public_key(out, privkey.get()); } std::string adb_auth_get_userkey() { std::string path = get_user_key_path(); if (path.empty()) { PLOG(ERROR) << "Error getting user key filename"; return ""; } std::string result; if (!pubkey_from_privkey(&result, path)) { return ""; } return result; } int adb_auth_keygen(const char* filename) { return (generate_key(filename) == 0); } int adb_auth_pubkey(const char* filename) { std::string pubkey; if (!pubkey_from_privkey(&pubkey, filename)) { return 1; } pubkey.push_back('\n'); return WriteFdExactly(STDOUT_FILENO, pubkey.data(), pubkey.size()) ? 0 : 1; } #if defined(__linux__) static void adb_auth_inotify_update(int fd, unsigned fd_event, void*) { LOG(INFO) << "adb_auth_inotify_update called"; if (!(fd_event & FDE_READ)) { return; } char buf[sizeof(struct inotify_event) + NAME_MAX + 1]; while (true) { ssize_t rc = TEMP_FAILURE_RETRY(unix_read(fd, buf, sizeof(buf))); if (rc == -1) { if (errno == EAGAIN) { LOG(INFO) << "done reading inotify fd"; break; } PLOG(FATAL) << "read of inotify event failed"; } // The read potentially returned multiple events. char* start = buf; char* end = buf + rc; while (start < end) { inotify_event* event = reinterpret_cast<inotify_event*>(start); auto root_it = g_monitored_paths.find(event->wd); if (root_it == g_monitored_paths.end()) { LOG(FATAL) << "observed inotify event for unmonitored path, wd = " << event->wd; } std::string path = root_it->second; if (event->len > 0) { path += '/'; path += event->name; } if (event->mask & (IN_CREATE | IN_MOVED_TO)) { if (event->mask & IN_ISDIR) { LOG(INFO) << "ignoring new directory at '" << path << "'"; } else { LOG(INFO) << "observed new file at '" << path << "'"; load_keys(path, false); } } else { LOG(WARNING) << "unmonitored event for " << path << ": 0x" << std::hex << event->mask; } start += sizeof(struct inotify_event) + event->len; } } } static void adb_auth_inotify_init(const std::set<std::string>& paths) { LOG(INFO) << "adb_auth_inotify_init..."; int infd = inotify_init1(IN_CLOEXEC | IN_NONBLOCK); if (infd < 0) { PLOG(ERROR) << "failed to create inotify fd"; return; } for (const std::string& path : paths) { int wd = inotify_add_watch(infd, path.c_str(), IN_CREATE | IN_MOVED_TO); if (wd < 0) { PLOG(ERROR) << "failed to inotify_add_watch on path '" << path; continue; } g_monitored_paths[wd] = path; LOG(INFO) << "watch descriptor " << wd << " registered for " << path; } fdevent* event = fdevent_create(infd, adb_auth_inotify_update, nullptr); fdevent_add(event, FDE_READ); } #endif void adb_auth_init() { LOG(INFO) << "adb_auth_init..."; if (!generate_userkey()) { LOG(ERROR) << "Failed to generate user key"; return; } const auto& key_paths = get_vendor_keys(); #if defined(__linux__) adb_auth_inotify_init(key_paths); #endif for (const std::string& path : key_paths) { load_keys(path); } } static void send_auth_publickey(atransport* t) { LOG(INFO) << "Calling send_auth_publickey"; std::string key = adb_auth_get_userkey(); if (key.empty()) { D("Failed to get user public key"); return; } if (key.size() >= MAX_PAYLOAD_V1) { D("User public key too large (%zu B)", key.size()); return; } apacket* p = get_apacket(); p->msg.command = A_AUTH; p->msg.arg0 = ADB_AUTH_RSAPUBLICKEY; // adbd expects a null-terminated string. p->payload.assign(key.data(), key.data() + key.size() + 1); p->msg.data_length = p->payload.size(); send_packet(p, t); } void send_auth_response(const char* token, size_t token_size, atransport* t) { std::shared_ptr<RSA> key = t->NextKey(); if (key == nullptr) { // No more private keys to try, send the public key. t->SetConnectionState(kCsUnauthorized); t->SetConnectionEstablished(true); send_auth_publickey(t); return; } LOG(INFO) << "Calling send_auth_response"; apacket* p = get_apacket(); std::string result = adb_auth_sign(key.get(), token, token_size); if (result.empty()) { D("Error signing the token"); put_apacket(p); return; } p->msg.command = A_AUTH; p->msg.arg0 = ADB_AUTH_SIGNATURE; p->payload.assign(result.begin(), result.end()); p->msg.data_length = p->payload.size(); send_packet(p, t); }