/* * Copyright (C) 2012 The Android Open Source Project * * Licensed under the Apache License, Version 2.0 (the "License"); * you may not use this file except in compliance with the License. * You may obtain a copy of the License at * * http://www.apache.org/licenses/LICENSE-2.0 * * Unless required by applicable law or agreed to in writing, software * distributed under the License is distributed on an "AS IS" BASIS, * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. * See the License for the specific language governing permissions and * limitations under the License. */ #define TRACE_TAG AUTH #include #include #include #include #if defined(__linux__) #include #endif #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include "adb.h" #include "adb_auth.h" #include "adb_utils.h" #include "sysdeps.h" static std::mutex& g_keys_mutex = *new std::mutex; static std::map>& g_keys = *new std::map>; static std::map& g_monitored_paths = *new std::map; static std::string get_user_info() { LOG(INFO) << "get_user_info..."; std::string hostname; if (getenv("HOSTNAME")) hostname = getenv("HOSTNAME"); #if !defined(_WIN32) char buf[64]; if (hostname.empty() && gethostname(buf, sizeof(buf)) != -1) hostname = buf; #endif if (hostname.empty()) hostname = "unknown"; std::string username; if (getenv("LOGNAME")) username = getenv("LOGNAME"); #if !defined _WIN32 && !defined ADB_HOST_ON_TARGET if (username.empty() && getlogin()) username = getlogin(); #endif if (username.empty()) hostname = "unknown"; return " " + username + "@" + hostname; } static bool write_public_keyfile(RSA* private_key, const std::string& private_key_path) { LOG(INFO) << "write_public_keyfile..."; uint8_t binary_key_data[ANDROID_PUBKEY_ENCODED_SIZE]; if (!android_pubkey_encode(private_key, binary_key_data, sizeof(binary_key_data))) { LOG(ERROR) << "Failed to convert to public key"; return false; } size_t base64_key_length; if (!EVP_EncodedLength(&base64_key_length, sizeof(binary_key_data))) { LOG(ERROR) << "Public key too large to base64 encode"; return false; } std::string content; content.resize(base64_key_length); base64_key_length = EVP_EncodeBlock(reinterpret_cast(&content[0]), binary_key_data, sizeof(binary_key_data)); content += get_user_info(); std::string path(private_key_path + ".pub"); if (!android::base::WriteStringToFile(content, path)) { PLOG(ERROR) << "Failed to write public key to '" << path << "'"; return false; } return true; } static int generate_key(const std::string& file) { LOG(INFO) << "generate_key(" << file << ")..."; mode_t old_mask; FILE *f = NULL; int ret = 0; EVP_PKEY* pkey = EVP_PKEY_new(); BIGNUM* exponent = BN_new(); RSA* rsa = RSA_new(); if (!pkey || !exponent || !rsa) { LOG(ERROR) << "Failed to allocate key"; goto out; } BN_set_word(exponent, RSA_F4); RSA_generate_key_ex(rsa, 2048, exponent, NULL); EVP_PKEY_set1_RSA(pkey, rsa); old_mask = umask(077); f = fopen(file.c_str(), "w"); if (!f) { PLOG(ERROR) << "Failed to open " << file; umask(old_mask); goto out; } umask(old_mask); if (!PEM_write_PrivateKey(f, pkey, NULL, NULL, 0, NULL, NULL)) { D("Failed to write key"); goto out; } if (!write_public_keyfile(rsa, file)) { D("Failed to write public key"); goto out; } ret = 1; out: if (f) fclose(f); EVP_PKEY_free(pkey); RSA_free(rsa); BN_free(exponent); return ret; } static std::string hash_key(RSA* key) { unsigned char* pubkey = nullptr; int len = i2d_RSA_PUBKEY(key, &pubkey); if (len < 0) { LOG(ERROR) << "failed to encode RSA public key"; return std::string(); } std::string result; result.resize(SHA256_DIGEST_LENGTH); SHA256(pubkey, len, reinterpret_cast(&result[0])); OPENSSL_free(pubkey); return result; } static bool read_key_file(const std::string& file) { LOG(INFO) << "read_key_file '" << file << "'..."; std::unique_ptr fp(fopen(file.c_str(), "r"), fclose); if (!fp) { PLOG(ERROR) << "Failed to open '" << file << "'"; return false; } RSA* key = RSA_new(); if (!PEM_read_RSAPrivateKey(fp.get(), &key, nullptr, nullptr)) { LOG(ERROR) << "Failed to read key"; RSA_free(key); return false; } std::lock_guard lock(g_keys_mutex); std::string fingerprint = hash_key(key); if (g_keys.find(fingerprint) != g_keys.end()) { LOG(INFO) << "ignoring already-loaded key: " << file; RSA_free(key); } else { g_keys[fingerprint] = std::shared_ptr(key, RSA_free); } return true; } static bool read_keys(const std::string& path, bool allow_dir = true) { LOG(INFO) << "read_keys '" << path << "'..."; struct stat st; if (stat(path.c_str(), &st) != 0) { PLOG(ERROR) << "failed to stat '" << path << "'"; return false; } if (S_ISREG(st.st_mode)) { if (!android::base::EndsWith(path, ".adb_key")) { LOG(INFO) << "skipping non-adb_key '" << path << "'"; return false; } return read_key_file(path); } else if (S_ISDIR(st.st_mode)) { if (!allow_dir) { // inotify isn't recursive. It would break expectations to load keys in nested // directories but not monitor them for new keys. LOG(WARNING) << "refusing to recurse into directory '" << path << "'"; return false; } std::unique_ptr dir(opendir(path.c_str()), closedir); if (!dir) { PLOG(ERROR) << "failed to open directory '" << path << "'"; return false; } bool result = false; while (struct dirent* dent = readdir(dir.get())) { std::string name = dent->d_name; // We can't use dent->d_type here because it's not available on Windows. if (name == "." || name == "..") { continue; } result |= read_keys((path + OS_PATH_SEPARATOR + name).c_str(), false); } return result; } LOG(ERROR) << "unexpected type for '" << path << "': 0x" << std::hex << st.st_mode; return false; } static std::string get_user_key_path() { return adb_get_android_dir_path() + OS_PATH_SEPARATOR + "adbkey"; } static bool get_user_key() { std::string path = get_user_key_path(); if (path.empty()) { PLOG(ERROR) << "Error getting user key filename"; return false; } struct stat buf; if (stat(path.c_str(), &buf) == -1) { LOG(INFO) << "User key '" << path << "' does not exist..."; if (!generate_key(path)) { LOG(ERROR) << "Failed to generate new key"; return false; } } return read_key_file(path); } static std::set get_vendor_keys() { const char* adb_keys_path = getenv("ADB_VENDOR_KEYS"); if (adb_keys_path == nullptr) { return std::set(); } std::set result; for (const auto& path : android::base::Split(adb_keys_path, ENV_PATH_SEPARATOR_STR)) { result.emplace(path); } return result; } std::deque> adb_auth_get_private_keys() { std::deque> result; // Copy all the currently known keys. std::lock_guard lock(g_keys_mutex); for (const auto& it : g_keys) { result.push_back(it.second); } // Add a sentinel to the list. Our caller uses this to mean "out of private keys, // but try using the public key" (the empty deque could otherwise mean this _or_ // that this function hasn't been called yet to request the keys). result.push_back(nullptr); return result; } int adb_auth_sign(RSA* key, const unsigned char* token, size_t token_size, unsigned char* sig) { if (token_size != TOKEN_SIZE) { D("Unexpected token size %zd", token_size); return 0; } unsigned int len; if (!RSA_sign(NID_sha1, token, token_size, sig, &len, key)) { return 0; } D("adb_auth_sign len=%d", len); return (int)len; } std::string adb_auth_get_userkey() { std::string path = get_user_key_path(); if (path.empty()) { PLOG(ERROR) << "Error getting user key filename"; return ""; } path += ".pub"; std::string content; if (!android::base::ReadFileToString(path, &content)) { PLOG(ERROR) << "Can't load '" << path << "'"; return ""; } return content; } int adb_auth_keygen(const char* filename) { return (generate_key(filename) == 0); } #if defined(__linux__) static void adb_auth_inotify_update(int fd, unsigned fd_event, void*) { LOG(INFO) << "adb_auth_inotify_update called"; if (!(fd_event & FDE_READ)) { return; } char buf[sizeof(struct inotify_event) + NAME_MAX + 1]; while (true) { ssize_t rc = TEMP_FAILURE_RETRY(unix_read(fd, buf, sizeof(buf))); if (rc == -1) { if (errno == EAGAIN) { LOG(INFO) << "done reading inotify fd"; break; } PLOG(FATAL) << "read of inotify event failed"; } // The read potentially returned multiple events. char* start = buf; char* end = buf + rc; while (start < end) { inotify_event* event = reinterpret_cast(start); auto root_it = g_monitored_paths.find(event->wd); if (root_it == g_monitored_paths.end()) { LOG(FATAL) << "observed inotify event for unmonitored path, wd = " << event->wd; } std::string path = root_it->second; if (event->len > 0) { path += '/'; path += event->name; } if (event->mask & (IN_CREATE | IN_MOVED_TO)) { if (event->mask & IN_ISDIR) { LOG(INFO) << "ignoring new directory at '" << path << "'"; } else { LOG(INFO) << "observed new file at '" << path << "'"; read_keys(path, false); } } else { LOG(WARNING) << "unmonitored event for " << path << ": 0x" << std::hex << event->mask; } start += sizeof(struct inotify_event) + event->len; } } } static void adb_auth_inotify_init(const std::set& paths) { LOG(INFO) << "adb_auth_inotify_init..."; int infd = inotify_init1(IN_CLOEXEC | IN_NONBLOCK); for (const std::string& path : paths) { int wd = inotify_add_watch(infd, path.c_str(), IN_CREATE | IN_MOVED_TO); if (wd < 0) { PLOG(ERROR) << "failed to inotify_add_watch on path '" << path; continue; } g_monitored_paths[wd] = path; LOG(INFO) << "watch descriptor " << wd << " registered for " << path; } fdevent* event = fdevent_create(infd, adb_auth_inotify_update, nullptr); fdevent_add(event, FDE_READ); } #endif void adb_auth_init() { LOG(INFO) << "adb_auth_init..."; if (!get_user_key()) { LOG(ERROR) << "Failed to get user key"; return; } const auto& key_paths = get_vendor_keys(); #if defined(__linux__) adb_auth_inotify_init(key_paths); #endif for (const std::string& path : key_paths) { read_keys(path.c_str()); } }