Gitiles
Code Review Sign In
gerrit-public.fairphone.software / platform / system / core / d21dc825bbecad6ce480c5e5c574cc77eadcd779 / . / adb / adb_auth_host.cpp
blob: e11bff000f28d2a2db1725e630e1acf48d09c64e [file] [log] [blame]
Benoit Gobyd5fcafa2012-04-12 12:23:49 -0700[diff] [blame]1/*
2 * Copyright (C) 2012 The Android Open Source Project
3 *
4 * Licensed under the Apache License, Version 2.0 (the "License");
5 * you may not use this file except in compliance with the License.
6 * You may obtain a copy of the License at
7 *
8 * http://www.apache.org/licenses/LICENSE-2.0
9 *
10 * Unless required by applicable law or agreed to in writing, software
11 * distributed under the License is distributed on an "AS IS" BASIS,
12 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13 * See the License for the specific language governing permissions and
14 * limitations under the License.
15 */
16
Yabin Cuiaed3c612015-09-22 15:52:57 -0700[diff] [blame]17#define TRACE_TAG AUTH
Dan Albert33134262015-03-19 15:21:08 -0700[diff] [blame]18
19#include "sysdeps.h"
20#include "adb_auth.h"
21
Benoit Gobyd5fcafa2012-04-12 12:23:49 -0700[diff] [blame]22#include <stdio.h>
Christopher Ferris67a7a4a2014-11-06 14:34:24 -0800[diff] [blame]23#include <stdlib.h>
Dan Albert33134262015-03-19 15:21:08 -0700[diff] [blame]24#include <string.h>
Benoit Gobyd5fcafa2012-04-12 12:23:49 -0700[diff] [blame]25
26#ifdef _WIN32
Christopher Ferris67a7a4a2014-11-06 14:34:24 -0800[diff] [blame]27# ifndef WIN32_LEAN_AND_MEAN
28# define WIN32_LEAN_AND_MEAN
29# endif
Benoit Gobyd5fcafa2012-04-12 12:23:49 -0700[diff] [blame]30# include "windows.h"
31# include "shlobj.h"
32#else
33# include <sys/types.h>
34# include <sys/stat.h>
35# include <unistd.h>
36#endif
Benoit Gobyd5fcafa2012-04-12 12:23:49 -0700[diff] [blame]37
Benoit Gobyd5fcafa2012-04-12 12:23:49 -0700[diff] [blame]38#include "adb.h"
Benoit Gobyd5fcafa2012-04-12 12:23:49 -0700[diff] [blame]39
40/* HACK: we need the RSAPublicKey struct
41 * but RSA_verify conflits with openssl */
42#define RSA_verify RSA_verify_mincrypt
43#include "mincrypt/rsa.h"
44#undef RSA_verify
45
Elliott Hughes8d5fa6d2015-04-24 23:02:00 -0700[diff] [blame]46#include <base/strings.h>
Benoit Gobyd5fcafa2012-04-12 12:23:49 -0700[diff] [blame]47#include <cutils/list.h>
48
49#include <openssl/evp.h>
50#include <openssl/objects.h>
51#include <openssl/pem.h>
52#include <openssl/rsa.h>
53#include <openssl/sha.h>
54
Adam Langley179d9d62014-09-03 14:34:47 -0700[diff] [blame]55#if defined(OPENSSL_IS_BORINGSSL)
56#include <openssl/base64.h>
57#endif
58
Dan Albert286bb6d2015-07-09 20:35:09 +0000[diff] [blame]59#define ANDROID_PATH ".android"
60#define ADB_KEY_FILE "adbkey"
Benoit Gobyd5fcafa2012-04-12 12:23:49 -0700[diff] [blame]61
Benoit Gobyd5fcafa2012-04-12 12:23:49 -0700[diff] [blame]62struct adb_private_key {
63 struct listnode node;
64 RSA *rsa;
65};
66
67static struct listnode key_list;
68
69
70/* Convert OpenSSL RSA private key to android pre-computed RSAPublicKey format */
71static int RSA_to_RSAPublicKey(RSA *rsa, RSAPublicKey *pkey)
72{
73 int ret = 1;
74 unsigned int i;
75
76 BN_CTX* ctx = BN_CTX_new();
77 BIGNUM* r32 = BN_new();
78 BIGNUM* rr = BN_new();
79 BIGNUM* r = BN_new();
80 BIGNUM* rem = BN_new();
81 BIGNUM* n = BN_new();
82 BIGNUM* n0inv = BN_new();
83
84 if (RSA_size(rsa) != RSANUMBYTES) {
85 ret = 0;
86 goto out;
87 }
88
89 BN_set_bit(r32, 32);
90 BN_copy(n, rsa->n);
91 BN_set_bit(r, RSANUMWORDS * 32);
92 BN_mod_sqr(rr, r, n, ctx);
93 BN_div(NULL, rem, n, r32, ctx);
94 BN_mod_inverse(n0inv, rem, r32, ctx);
95
96 pkey->len = RSANUMWORDS;
97 pkey->n0inv = 0 - BN_get_word(n0inv);
98 for (i = 0; i < RSANUMWORDS; i++) {
99 BN_div(rr, rem, rr, r32, ctx);
100 pkey->rr[i] = BN_get_word(rem);
101 BN_div(n, rem, n, r32, ctx);
102 pkey->n[i] = BN_get_word(rem);
103 }
104 pkey->exponent = BN_get_word(rsa->e);
105
106out:
107 BN_free(n0inv);
108 BN_free(n);
109 BN_free(rem);
110 BN_free(r);
111 BN_free(rr);
112 BN_free(r32);
113 BN_CTX_free(ctx);
114
115 return ret;
116}
117
118static void get_user_info(char *buf, size_t len)
119{
120 char hostname[1024], username[1024];
Nick Kralevichbea3f9c2014-11-13 15:17:29 -0800[diff] [blame]121 int ret = -1;
122
123 if (getenv("HOSTNAME") != NULL) {
124 strncpy(hostname, getenv("HOSTNAME"), sizeof(hostname));
125 hostname[sizeof(hostname)-1] = '\0';
126 ret = 0;
127 }
Benoit Gobyd5fcafa2012-04-12 12:23:49 -0700[diff] [blame]128
129#ifndef _WIN32
Benoit Gobyd5fcafa2012-04-12 12:23:49 -0700[diff] [blame]130 if (ret < 0)
Nick Kralevichbea3f9c2014-11-13 15:17:29 -0800[diff] [blame]131 ret = gethostname(hostname, sizeof(hostname));
Benoit Gobyd5fcafa2012-04-12 12:23:49 -0700[diff] [blame]132#endif
Nick Kralevichbea3f9c2014-11-13 15:17:29 -0800[diff] [blame]133 if (ret < 0)
Benoit Gobyd5fcafa2012-04-12 12:23:49 -0700[diff] [blame]134 strcpy(hostname, "unknown");
135
Nick Kralevichbea3f9c2014-11-13 15:17:29 -0800[diff] [blame]136 ret = -1;
137
138 if (getenv("LOGNAME") != NULL) {
139 strncpy(username, getenv("LOGNAME"), sizeof(username));
140 username[sizeof(username)-1] = '\0';
141 ret = 0;
142 }
143
Benoit Gobyd5fcafa2012-04-12 12:23:49 -0700[diff] [blame]144#if !defined _WIN32 && !defined ADB_HOST_ON_TARGET
Benoit Gobyd5fcafa2012-04-12 12:23:49 -0700[diff] [blame]145 if (ret < 0)
Nick Kralevichbea3f9c2014-11-13 15:17:29 -0800[diff] [blame]146 ret = getlogin_r(username, sizeof(username));
Benoit Gobyd5fcafa2012-04-12 12:23:49 -0700[diff] [blame]147#endif
Nick Kralevichbea3f9c2014-11-13 15:17:29 -0800[diff] [blame]148 if (ret < 0)
Benoit Gobyd5fcafa2012-04-12 12:23:49 -0700[diff] [blame]149 strcpy(username, "unknown");
150
151 ret = snprintf(buf, len, " %s@%s", username, hostname);
152 if (ret >= (signed)len)
153 buf[len - 1] = '\0';
154}
155
156static int write_public_keyfile(RSA *private_key, const char *private_key_path)
157{
158 RSAPublicKey pkey;
Adam Langley179d9d62014-09-03 14:34:47 -0700[diff] [blame]159 FILE *outfile = NULL;
Tamas Berghammer3d2904c2015-07-13 19:12:28 +0100[diff] [blame]160 char path[PATH_MAX], info[MAX_PAYLOAD_V1];
Dan Albertbac34742015-02-25 17:51:28 -0800[diff] [blame]161 uint8_t* encoded = nullptr;
Adam Langley179d9d62014-09-03 14:34:47 -0700[diff] [blame]162 size_t encoded_length;
163 int ret = 0;
Benoit Gobyd5fcafa2012-04-12 12:23:49 -0700[diff] [blame]164
Adam Langley179d9d62014-09-03 14:34:47 -0700[diff] [blame]165 if (snprintf(path, sizeof(path), "%s.pub", private_key_path) >=
166 (int)sizeof(path)) {
Yabin Cui7a3f8d62015-09-02 17:44:28 -0700[diff] [blame]167 D("Path too long while writing public key");
Benoit Gobyd5fcafa2012-04-12 12:23:49 -0700[diff] [blame]168 return 0;
Adam Langley179d9d62014-09-03 14:34:47 -0700[diff] [blame]169 }
Benoit Gobyd5fcafa2012-04-12 12:23:49 -0700[diff] [blame]170
Adam Langley179d9d62014-09-03 14:34:47 -0700[diff] [blame]171 if (!RSA_to_RSAPublicKey(private_key, &pkey)) {
Yabin Cui7a3f8d62015-09-02 17:44:28 -0700[diff] [blame]172 D("Failed to convert to publickey");
Benoit Gobyd5fcafa2012-04-12 12:23:49 -0700[diff] [blame]173 return 0;
174 }
175
Spencer Low9b960312015-05-07 19:08:29 -0700[diff] [blame]176 outfile = fopen(path, "w");
Adam Langley179d9d62014-09-03 14:34:47 -0700[diff] [blame]177 if (!outfile) {
Yabin Cui7a3f8d62015-09-02 17:44:28 -0700[diff] [blame]178 D("Failed to open '%s'", path);
Benoit Gobyd5fcafa2012-04-12 12:23:49 -0700[diff] [blame]179 return 0;
180 }
181
Yabin Cui7a3f8d62015-09-02 17:44:28 -0700[diff] [blame]182 D("Writing public key to '%s'", path);
Benoit Gobyd5fcafa2012-04-12 12:23:49 -0700[diff] [blame]183
Adam Langley179d9d62014-09-03 14:34:47 -0700[diff] [blame]184#if defined(OPENSSL_IS_BORINGSSL)
185 if (!EVP_EncodedLength(&encoded_length, sizeof(pkey))) {
Yabin Cui7a3f8d62015-09-02 17:44:28 -0700[diff] [blame]186 D("Public key too large to base64 encode");
Adam Langley179d9d62014-09-03 14:34:47 -0700[diff] [blame]187 goto out;
188 }
189#else
190 /* While we switch from OpenSSL to BoringSSL we have to implement
191 * |EVP_EncodedLength| here. */
192 encoded_length = 1 + ((sizeof(pkey) + 2) / 3 * 4);
193#endif
Benoit Gobyd5fcafa2012-04-12 12:23:49 -0700[diff] [blame]194
Elliott Hughes8d5fa6d2015-04-24 23:02:00 -0700[diff] [blame]195 encoded = new uint8_t[encoded_length];
Dan Albertbac34742015-02-25 17:51:28 -0800[diff] [blame]196 if (encoded == nullptr) {
Yabin Cui7a3f8d62015-09-02 17:44:28 -0700[diff] [blame]197 D("Allocation failure");
Adam Langley179d9d62014-09-03 14:34:47 -0700[diff] [blame]198 goto out;
199 }
Benoit Gobyd5fcafa2012-04-12 12:23:49 -0700[diff] [blame]200
Adam Langley179d9d62014-09-03 14:34:47 -0700[diff] [blame]201 encoded_length = EVP_EncodeBlock(encoded, (uint8_t*) &pkey, sizeof(pkey));
Benoit Gobyd5fcafa2012-04-12 12:23:49 -0700[diff] [blame]202 get_user_info(info, sizeof(info));
Benoit Gobyd5fcafa2012-04-12 12:23:49 -0700[diff] [blame]203
Adam Langley179d9d62014-09-03 14:34:47 -0700[diff] [blame]204 if (fwrite(encoded, encoded_length, 1, outfile) != 1 ||
205 fwrite(info, strlen(info), 1, outfile) != 1) {
Yabin Cui7a3f8d62015-09-02 17:44:28 -0700[diff] [blame]206 D("Write error while writing public key");
Adam Langley179d9d62014-09-03 14:34:47 -0700[diff] [blame]207 goto out;
208 }
209
210 ret = 1;
211
212 out:
213 if (outfile != NULL) {
214 fclose(outfile);
215 }
Elliott Hughes8d5fa6d2015-04-24 23:02:00 -0700[diff] [blame]216 delete[] encoded;
Adam Langley179d9d62014-09-03 14:34:47 -0700[diff] [blame]217 return ret;
Benoit Gobyd5fcafa2012-04-12 12:23:49 -0700[diff] [blame]218}
219
220static int generate_key(const char *file)
221{
222 EVP_PKEY* pkey = EVP_PKEY_new();
223 BIGNUM* exponent = BN_new();
224 RSA* rsa = RSA_new();
Benoit Goby64b31032012-08-31 12:14:21 -0700[diff] [blame]225 mode_t old_mask;
Benoit Gobyd5fcafa2012-04-12 12:23:49 -0700[diff] [blame]226 FILE *f = NULL;
227 int ret = 0;
228
Yabin Cui7a3f8d62015-09-02 17:44:28 -0700[diff] [blame]229 D("generate_key '%s'", file);
Benoit Gobyd5fcafa2012-04-12 12:23:49 -0700[diff] [blame]230
231 if (!pkey || !exponent || !rsa) {
Yabin Cui7a3f8d62015-09-02 17:44:28 -0700[diff] [blame]232 D("Failed to allocate key");
Benoit Gobyd5fcafa2012-04-12 12:23:49 -0700[diff] [blame]233 goto out;
234 }
235
236 BN_set_word(exponent, RSA_F4);
237 RSA_generate_key_ex(rsa, 2048, exponent, NULL);
238 EVP_PKEY_set1_RSA(pkey, rsa);
239
Benoit Goby64b31032012-08-31 12:14:21 -0700[diff] [blame]240 old_mask = umask(077);
241
Spencer Low9b960312015-05-07 19:08:29 -0700[diff] [blame]242 f = fopen(file, "w");
Benoit Gobyd5fcafa2012-04-12 12:23:49 -0700[diff] [blame]243 if (!f) {
Yabin Cui7a3f8d62015-09-02 17:44:28 -0700[diff] [blame]244 D("Failed to open '%s'", file);
Benoit Goby64b31032012-08-31 12:14:21 -0700[diff] [blame]245 umask(old_mask);
Benoit Gobyd5fcafa2012-04-12 12:23:49 -0700[diff] [blame]246 goto out;
247 }
248
Benoit Goby64b31032012-08-31 12:14:21 -0700[diff] [blame]249 umask(old_mask);
250
Benoit Gobyd5fcafa2012-04-12 12:23:49 -0700[diff] [blame]251 if (!PEM_write_PrivateKey(f, pkey, NULL, NULL, 0, NULL, NULL)) {
Yabin Cui7a3f8d62015-09-02 17:44:28 -0700[diff] [blame]252 D("Failed to write key");
Benoit Gobyd5fcafa2012-04-12 12:23:49 -0700[diff] [blame]253 goto out;
254 }
255
256 if (!write_public_keyfile(rsa, file)) {
Yabin Cui7a3f8d62015-09-02 17:44:28 -0700[diff] [blame]257 D("Failed to write public key");
Benoit Gobyd5fcafa2012-04-12 12:23:49 -0700[diff] [blame]258 goto out;
259 }
260
261 ret = 1;
262
263out:
264 if (f)
265 fclose(f);
266 EVP_PKEY_free(pkey);
267 RSA_free(rsa);
268 BN_free(exponent);
269 return ret;
270}
271
272static int read_key(const char *file, struct listnode *list)
273{
Yabin Cui7a3f8d62015-09-02 17:44:28 -0700[diff] [blame]274 D("read_key '%s'", file);
Benoit Gobyd5fcafa2012-04-12 12:23:49 -0700[diff] [blame]275
Spencer Low9b960312015-05-07 19:08:29 -0700[diff] [blame]276 FILE* fp = fopen(file, "r");
Elliott Hughes8d5fa6d2015-04-24 23:02:00 -0700[diff] [blame]277 if (!fp) {
Yabin Cui7a3f8d62015-09-02 17:44:28 -0700[diff] [blame]278 D("Failed to open '%s': %s", file, strerror(errno));
Benoit Gobyd5fcafa2012-04-12 12:23:49 -0700[diff] [blame]279 return 0;
280 }
281
Elliott Hughes8d5fa6d2015-04-24 23:02:00 -0700[diff] [blame]282 adb_private_key* key = new adb_private_key;
Benoit Gobyd5fcafa2012-04-12 12:23:49 -0700[diff] [blame]283 key->rsa = RSA_new();
284
Elliott Hughes8d5fa6d2015-04-24 23:02:00 -0700[diff] [blame]285 if (!PEM_read_RSAPrivateKey(fp, &key->rsa, NULL, NULL)) {
Yabin Cui7a3f8d62015-09-02 17:44:28 -0700[diff] [blame]286 D("Failed to read key");
Elliott Hughes8d5fa6d2015-04-24 23:02:00 -0700[diff] [blame]287 fclose(fp);
Benoit Gobyd5fcafa2012-04-12 12:23:49 -0700[diff] [blame]288 RSA_free(key->rsa);
Elliott Hughes8d5fa6d2015-04-24 23:02:00 -0700[diff] [blame]289 delete key;
Benoit Gobyd5fcafa2012-04-12 12:23:49 -0700[diff] [blame]290 return 0;
291 }
292
Elliott Hughes8d5fa6d2015-04-24 23:02:00 -0700[diff] [blame]293 fclose(fp);
Benoit Gobyd5fcafa2012-04-12 12:23:49 -0700[diff] [blame]294 list_add_tail(list, &key->node);
295 return 1;
296}
297
Dan Albert286bb6d2015-07-09 20:35:09 +0000[diff] [blame]298static int get_user_keyfilepath(char *filename, size_t len)
299{
300 const char *format, *home;
301 char android_dir[PATH_MAX];
302 struct stat buf;
Benoit Gobyd5fcafa2012-04-12 12:23:49 -0700[diff] [blame]303#ifdef _WIN32
Spencer Lowcf4ff642015-05-11 01:08:48 -0700[diff] [blame]304 std::string home_str;
Dan Albert286bb6d2015-07-09 20:35:09 +0000[diff] [blame]305 home = getenv("ANDROID_SDK_HOME");
306 if (!home) {
Spencer Lowcf4ff642015-05-11 01:08:48 -0700[diff] [blame]307 WCHAR path[MAX_PATH];
Spencer Low8df90322015-08-02 18:50:17 -0700[diff] [blame]308 const HRESULT hr = SHGetFolderPathW(NULL, CSIDL_PROFILE, NULL, 0, path);
309 if (FAILED(hr)) {
Yabin Cui7a3f8d62015-09-02 17:44:28 -0700[diff] [blame]310 D("SHGetFolderPathW failed: %s",
Spencer Low8df90322015-08-02 18:50:17 -0700[diff] [blame]311 SystemErrorCodeToString(hr).c_str());
Spencer Lowcf4ff642015-05-11 01:08:48 -0700[diff] [blame]312 return -1;
313 }
Spencer Lowd21dc822015-11-12 15:20:15 -0800[diff] [blame^]314 if (!android::base::WideToUTF8(path, &home_str)) {
315 return -1;
316 }
Spencer Lowcf4ff642015-05-11 01:08:48 -0700[diff] [blame]317 home = home_str.c_str();
Benoit Gobyd5fcafa2012-04-12 12:23:49 -0700[diff] [blame]318 }
Dan Albert286bb6d2015-07-09 20:35:09 +0000[diff] [blame]319 format = "%s\\%s";
Benoit Gobyd5fcafa2012-04-12 12:23:49 -0700[diff] [blame]320#else
Dan Albert286bb6d2015-07-09 20:35:09 +0000[diff] [blame]321 home = getenv("HOME");
322 if (!home)
323 return -1;
324 format = "%s/%s";
Benoit Gobyd5fcafa2012-04-12 12:23:49 -0700[diff] [blame]325#endif
326
Yabin Cui7a3f8d62015-09-02 17:44:28 -0700[diff] [blame]327 D("home '%s'", home);
Benoit Gobyd5fcafa2012-04-12 12:23:49 -0700[diff] [blame]328
Dan Albert286bb6d2015-07-09 20:35:09 +0000[diff] [blame]329 if (snprintf(android_dir, sizeof(android_dir), format, home,
330 ANDROID_PATH) >= (int)sizeof(android_dir))
331 return -1;
Benoit Gobyd5fcafa2012-04-12 12:23:49 -0700[diff] [blame]332
Dan Albert286bb6d2015-07-09 20:35:09 +0000[diff] [blame]333 if (stat(android_dir, &buf)) {
334 if (adb_mkdir(android_dir, 0750) < 0) {
Yabin Cui7a3f8d62015-09-02 17:44:28 -0700[diff] [blame]335 D("Cannot mkdir '%s'", android_dir);
Dan Albert286bb6d2015-07-09 20:35:09 +0000[diff] [blame]336 return -1;
Benoit Gobyd5fcafa2012-04-12 12:23:49 -0700[diff] [blame]337 }
338 }
339
Dan Albert286bb6d2015-07-09 20:35:09 +0000[diff] [blame]340 return snprintf(filename, len, format, android_dir, ADB_KEY_FILE);
Benoit Gobyd5fcafa2012-04-12 12:23:49 -0700[diff] [blame]341}
342
343static int get_user_key(struct listnode *list)
344{
Dan Albert286bb6d2015-07-09 20:35:09 +0000[diff] [blame]345 struct stat buf;
346 char path[PATH_MAX];
347 int ret;
348
349 ret = get_user_keyfilepath(path, sizeof(path));
350 if (ret < 0 || ret >= (signed)sizeof(path)) {
Yabin Cui7a3f8d62015-09-02 17:44:28 -0700[diff] [blame]351 D("Error getting user key filename");
Benoit Gobyd5fcafa2012-04-12 12:23:49 -0700[diff] [blame]352 return 0;
353 }
354
Yabin Cui7a3f8d62015-09-02 17:44:28 -0700[diff] [blame]355 D("user key '%s'", path);
Benoit Gobyd5fcafa2012-04-12 12:23:49 -0700[diff] [blame]356
Dan Albert286bb6d2015-07-09 20:35:09 +0000[diff] [blame]357 if (stat(path, &buf) == -1) {
358 if (!generate_key(path)) {
Yabin Cui7a3f8d62015-09-02 17:44:28 -0700[diff] [blame]359 D("Failed to generate new key");
Benoit Gobyd5fcafa2012-04-12 12:23:49 -0700[diff] [blame]360 return 0;
361 }
362 }
363
Dan Albert286bb6d2015-07-09 20:35:09 +0000[diff] [blame]364 return read_key(path, list);
Benoit Gobyd5fcafa2012-04-12 12:23:49 -0700[diff] [blame]365}
366
Elliott Hughes8d5fa6d2015-04-24 23:02:00 -0700[diff] [blame]367static void get_vendor_keys(struct listnode* key_list) {
368 const char* adb_keys_path = getenv("ADB_VENDOR_KEYS");
369 if (adb_keys_path == nullptr) {
Benoit Gobyd5fcafa2012-04-12 12:23:49 -0700[diff] [blame]370 return;
Elliott Hughes8d5fa6d2015-04-24 23:02:00 -0700[diff] [blame]371 }
Benoit Gobyd5fcafa2012-04-12 12:23:49 -0700[diff] [blame]372
Elliott Hughes65fe2512015-10-07 15:59:35 -0700[diff] [blame]373 for (const auto& path : android::base::Split(adb_keys_path, ENV_PATH_SEPARATOR_STR)) {
Elliott Hughes8d5fa6d2015-04-24 23:02:00 -0700[diff] [blame]374 if (!read_key(path.c_str(), key_list)) {
Yabin Cui7a3f8d62015-09-02 17:44:28 -0700[diff] [blame]375 D("Failed to read '%s'", path.c_str());
Elliott Hughes8d5fa6d2015-04-24 23:02:00 -0700[diff] [blame]376 }
Benoit Gobyd5fcafa2012-04-12 12:23:49 -0700[diff] [blame]377 }
378}
379
Dan Albertbac34742015-02-25 17:51:28 -0800[diff] [blame]380int adb_auth_sign(void *node, const unsigned char* token, size_t token_size,
381 unsigned char* sig)
Benoit Gobyd5fcafa2012-04-12 12:23:49 -0700[diff] [blame]382{
383 unsigned int len;
384 struct adb_private_key *key = node_to_item(node, struct adb_private_key, node);
385
Sami Tolvanen7b9c20d2015-01-27 16:48:35 +0000[diff] [blame]386 if (token_size != TOKEN_SIZE) {
Yabin Cui7a3f8d62015-09-02 17:44:28 -0700[diff] [blame]387 D("Unexpected token size %zd", token_size);
Sami Tolvanen7b9c20d2015-01-27 16:48:35 +0000[diff] [blame]388 return 0;
389 }
390
Benoit Gobyd5fcafa2012-04-12 12:23:49 -0700[diff] [blame]391 if (!RSA_sign(NID_sha1, token, token_size, sig, &len, key->rsa)) {
392 return 0;
393 }
394
Yabin Cui7a3f8d62015-09-02 17:44:28 -0700[diff] [blame]395 D("adb_auth_sign len=%d", len);
Benoit Gobyd5fcafa2012-04-12 12:23:49 -0700[diff] [blame]396 return (int)len;
397}
398
399void *adb_auth_nextkey(void *current)
400{
401 struct listnode *item;
402
403 if (list_empty(&key_list))
404 return NULL;
405
406 if (!current)
407 return list_head(&key_list);
408
409 list_for_each(item, &key_list) {
410 if (item == current) {
411 /* current is the last item, we tried all the keys */
412 if (item->next == &key_list)
413 return NULL;
414 return item->next;
415 }
416 }
417
418 return NULL;
419}
420
421int adb_auth_get_userkey(unsigned char *data, size_t len)
422{
Dan Albert286bb6d2015-07-09 20:35:09 +0000[diff] [blame]423 char path[PATH_MAX];
424 int ret = get_user_keyfilepath(path, sizeof(path) - 4);
425 if (ret < 0 || ret >= (signed)(sizeof(path) - 4)) {
Yabin Cui7a3f8d62015-09-02 17:44:28 -0700[diff] [blame]426 D("Error getting user key filename");
Benoit Gobyd5fcafa2012-04-12 12:23:49 -0700[diff] [blame]427 return 0;
428 }
Dan Albert286bb6d2015-07-09 20:35:09 +0000[diff] [blame]429 strcat(path, ".pub");
Benoit Gobyd5fcafa2012-04-12 12:23:49 -0700[diff] [blame]430
Dan Albertbac34742015-02-25 17:51:28 -0800[diff] [blame]431 // TODO(danalbert): ReadFileToString
Spencer Low6ac5d7d2015-05-22 20:09:06 -0700[diff] [blame]432 // Note that on Windows, load_file() does not do CR/LF translation, but
433 // ReadFileToString() uses the C Runtime which uses CR/LF translation by
434 // default (by is overridable with _setmode()).
Dan Albertbac34742015-02-25 17:51:28 -0800[diff] [blame]435 unsigned size;
Dan Albert286bb6d2015-07-09 20:35:09 +0000[diff] [blame]436 char* file_data = reinterpret_cast<char*>(load_file(path, &size));
Dan Albertbac34742015-02-25 17:51:28 -0800[diff] [blame]437 if (file_data == nullptr) {
Yabin Cui7a3f8d62015-09-02 17:44:28 -0700[diff] [blame]438 D("Can't load '%s'", path);
Benoit Gobyd5fcafa2012-04-12 12:23:49 -0700[diff] [blame]439 return 0;
440 }
441
Dan Albertbac34742015-02-25 17:51:28 -0800[diff] [blame]442 if (len < (size_t)(size + 1)) {
Yabin Cui7a3f8d62015-09-02 17:44:28 -0700[diff] [blame]443 D("%s: Content too large ret=%d", path, size);
Dan Albertbac34742015-02-25 17:51:28 -0800[diff] [blame]444 free(file_data);
Benoit Gobyd5fcafa2012-04-12 12:23:49 -0700[diff] [blame]445 return 0;
446 }
447
Dan Albertbac34742015-02-25 17:51:28 -0800[diff] [blame]448 memcpy(data, file_data, size);
449 free(file_data);
450 file_data = nullptr;
451 data[size] = '\0';
Benoit Gobyd5fcafa2012-04-12 12:23:49 -0700[diff] [blame]452
Dan Albertbac34742015-02-25 17:51:28 -0800[diff] [blame]453 return size + 1;
Benoit Gobyd5fcafa2012-04-12 12:23:49 -0700[diff] [blame]454}
455
Nick Kralevichbea3f9c2014-11-13 15:17:29 -0800[diff] [blame]456int adb_auth_keygen(const char* filename) {
Nick Kralevichbea3f9c2014-11-13 15:17:29 -0800[diff] [blame]457 return (generate_key(filename) == 0);
458}
459
Benoit Gobyd5fcafa2012-04-12 12:23:49 -0700[diff] [blame]460void adb_auth_init(void)
461{
462 int ret;
463
Yabin Cui7a3f8d62015-09-02 17:44:28 -0700[diff] [blame]464 D("adb_auth_init");
Benoit Gobyd5fcafa2012-04-12 12:23:49 -0700[diff] [blame]465
466 list_init(&key_list);
467
468 ret = get_user_key(&key_list);
469 if (!ret) {
Yabin Cui7a3f8d62015-09-02 17:44:28 -0700[diff] [blame]470 D("Failed to get user key");
Benoit Gobyd5fcafa2012-04-12 12:23:49 -0700[diff] [blame]471 return;
472 }
473
474 get_vendor_keys(&key_list);
475}