Add a verification flow for the user to exit repair mode am: 1c95758c

    public static final String ACTION_PREPARE_REPAIR_MODE_DEVICE_CREDENTIAL =

            "android.app.action.PREPARE_REPAIR_MODE_DEVICE_CREDENTIAL";

    /**

     * Intent used to prompt user for device credential that is written by

     * {@link #ACTION_PREPARE_REPAIR_MODE_DEVICE_CREDENTIAL} for exiting

     * repair mode.

     * @hide

     */

    public static final String ACTION_CONFIRM_REPAIR_MODE_DEVICE_CREDENTIAL =

            "android.app.action.CONFIRM_REPAIR_MODE_DEVICE_CREDENTIAL";

    /**

     * A CharSequence dialog title to show to the user when used with a

     * {@link #ACTION_CONFIRM_DEVICE_CREDENTIAL}.

     */

    public static final int USER_FRP = UserHandle.USER_NULL + 1;

    /**

     * Special user id for triggering the exiting repair mode verification flow.

     */

    public static final int USER_REPAIR_MODE = UserHandle.USER_NULL + 2;

    public final static String PASSWORD_TYPE_KEY = "lockscreen.password_type";

    @Deprecated

    public final static String PASSWORD_TYPE_ALTERNATE_KEY = "lockscreen.password_type_alternate";

    @UnsupportedAppUsage

    public void reportFailedPasswordAttempt(int userId) {

        if (userId == USER_FRP && frpCredentialEnabled(mContext)) {

        if (isSpecialUserId(mContext, userId, /* checkDeviceSupported= */ true)) {

            return;

        }

        getDevicePolicyManager().reportFailedPasswordAttempt(userId);

    @UnsupportedAppUsage

    public void reportSuccessfulPasswordAttempt(int userId) {

        if (userId == USER_FRP && frpCredentialEnabled(mContext)) {

        if (isSpecialUserId(mContext, userId, /* checkDeviceSupported= */ true)) {

            return;

        }

        getDevicePolicyManager().reportSuccessfulPasswordAttempt(userId);

    }

    public void reportPasswordLockout(int timeoutMs, int userId) {

        if (userId == USER_FRP && frpCredentialEnabled(mContext)) {

        if (isSpecialUserId(mContext, userId, /* checkDeviceSupported= */ true)) {

            return;

        }

        getTrustManager().reportUnlockLockout(timeoutMs, userId);

    }

    public int getCurrentFailedPasswordAttempts(int userId) {

        if (userId == USER_FRP && frpCredentialEnabled(mContext)) {

        if (isSpecialUserId(mContext, userId, /* checkDeviceSupported= */ true)) {

            return 0;

        }

        return getDevicePolicyManager().getCurrentFailedPasswordAttempts(userId);

    }

    public int getMaximumFailedPasswordsForWipe(int userId) {

        if (userId == USER_FRP && frpCredentialEnabled(mContext)) {

        if (isSpecialUserId(mContext, userId, /* checkDeviceSupported= */ true)) {

            return 0;

        }

        return getDevicePolicyManager().getMaximumFailedPasswordsForWipe(

        }

    }

    /** Returns the credential type corresponding to the given PIN or password quality. */

    public static int pinOrPasswordQualityToCredentialType(int quality) {

        if (isQualityAlphabeticPassword(quality)) {

            return CREDENTIAL_TYPE_PASSWORD;

        }

        if (isQualityNumericPin(quality)) {

            return CREDENTIAL_TYPE_PIN;

        }

        throw new IllegalArgumentException("Quality is neither Pin nor password: " + quality);

    }

    /**

     * Save a new lockscreen credential.

     *

                }

                @Override

                public boolean shouldBypassCache(Integer userHandle) {

                    return userHandle == USER_FRP;

                    return isSpecialUserId(userHandle);

                }

            };

    @UnsupportedAppUsage

    public long setLockoutAttemptDeadline(int userId, int timeoutMs) {

        final long deadline = SystemClock.elapsedRealtime() + timeoutMs;

        if (userId == USER_FRP) {

            // For secure password storage (that is required for FRP), the underlying storage also

            // enforces the deadline. Since we cannot store settings for the FRP user, don't.

        if (isSpecialUserId(userId)) {

            // For secure password storage (that is required for special users such as FRP), the

            // underlying storage also enforces the deadline. Since we cannot store settings

            // for special users, don't.

            return deadline;

        }

        mLockoutDeadlines.put(userId, deadline);

        return SystemProperties.getInt(GSI_RUNNING_PROP, 0) > 0;

    }

    /**

     * Return {@code true} if the given user id is a special user such as {@link #USER_FRP}.

     */

    public static boolean isSpecialUserId(int userId) {

        return isSpecialUserId(/* context= */ null, userId, /* checkDeviceSupported= */ false);

    }

    /**

     * Return {@code true} if the given user id is a special user for the verification flow.

     *

     * @param checkDeviceSupported {@code true} to check the specified user is supported

     *                             by the device.

     */

    private static boolean isSpecialUserId(@Nullable Context context, int userId,

            boolean checkDeviceSupported) {

        switch (userId) {

            case USER_FRP:

                if (checkDeviceSupported) return frpCredentialEnabled(context);

                return true;

            case USER_REPAIR_MODE:

                if (checkDeviceSupported) return isRepairModeSupported(context);

                return true;

        }

        return false;

    }

    /**

     * Attempt to rederive the unified work challenge for the specified profile user and unlock the

     * user. If successful, this would allow the user to leave quiet mode automatically without

        assertTrue(LockPatternUtils.USER_FRP < 0);

    }

    @Test

    public void testUserRepairMode_isNotRegularUser() {

        assertTrue(LockPatternUtils.USER_REPAIR_MODE < 0);

    }

    @Test

    public void testUserFrp_isNotAReservedSpecialUser() throws Exception {

        assertNotEquals(UserHandle.USER_NULL, LockPatternUtils.USER_FRP);

        assertNotEquals(UserHandle.USER_CURRENT, LockPatternUtils.USER_FRP);

        assertNotEquals(UserHandle.USER_CURRENT_OR_SELF, LockPatternUtils.USER_FRP);

    }

    @Test

    public void testUserRepairMode_isNotAReservedSpecialUser() throws Exception {

        assertNotEquals(UserHandle.USER_NULL, LockPatternUtils.USER_REPAIR_MODE);

        assertNotEquals(UserHandle.USER_ALL, LockPatternUtils.USER_REPAIR_MODE);

        assertNotEquals(UserHandle.USER_CURRENT, LockPatternUtils.USER_REPAIR_MODE);

        assertNotEquals(UserHandle.USER_CURRENT_OR_SELF, LockPatternUtils.USER_REPAIR_MODE);

    }

}

import static android.os.UserHandle.USER_SYSTEM;

import static com.android.internal.widget.LockPatternUtils.CREDENTIAL_TYPE_NONE;

import static com.android.internal.widget.LockPatternUtils.CREDENTIAL_TYPE_PASSWORD;

import static com.android.internal.widget.LockPatternUtils.CREDENTIAL_TYPE_PASSWORD_OR_PIN;

import static com.android.internal.widget.LockPatternUtils.CREDENTIAL_TYPE_PIN;

import static com.android.internal.widget.LockPatternUtils.CURRENT_LSKF_BASED_PROTECTOR_ID_KEY;

import static com.android.internal.widget.LockPatternUtils.StrongAuthTracker.STRONG_AUTH_REQUIRED_AFTER_LOCKOUT;

import static com.android.internal.widget.LockPatternUtils.StrongAuthTracker.STRONG_AUTH_REQUIRED_FOR_UNATTENDED_UPDATE;

import static com.android.internal.widget.LockPatternUtils.USER_FRP;

import static com.android.internal.widget.LockPatternUtils.USER_REPAIR_MODE;

import static com.android.internal.widget.LockPatternUtils.VERIFY_FLAG_REQUEST_GK_PW_HANDLE;

import static com.android.internal.widget.LockPatternUtils.VERIFY_FLAG_WRITE_REPAIR_MODE_PW;

import static com.android.internal.widget.LockPatternUtils.frpCredentialEnabled;

import static com.android.internal.widget.LockPatternUtils.isSpecialUserId;

import static com.android.internal.widget.LockPatternUtils.pinOrPasswordQualityToCredentialType;

import static com.android.internal.widget.LockPatternUtils.userOwnsFrpCredential;

import static com.android.server.locksettings.SyntheticPasswordManager.TOKEN_TYPE_STRONG;

import static com.android.server.locksettings.SyntheticPasswordManager.TOKEN_TYPE_WEAK;

     * {@link #CREDENTIAL_TYPE_PASSWORD}

     */

    private int getCredentialTypeInternal(int userId) {

        if (userId == USER_FRP) {

            return getFrpCredentialType();

        if (isSpecialUserId(userId)) {

            return mSpManager.getSpecialUserCredentialType(userId);

        }

        synchronized (mSpManager) {

            final long protectorId = getCurrentLskfBasedProtectorId(userId);

        }

    }

    private int getFrpCredentialType() {

        PersistentData data = mStorage.readPersistentDataBlock();

        if (data.type != PersistentData.TYPE_SP_GATEKEEPER &&

                data.type != PersistentData.TYPE_SP_WEAVER) {

            return CREDENTIAL_TYPE_NONE;

        }

        int credentialType = SyntheticPasswordManager.getFrpCredentialType(data.payload);

        if (credentialType != CREDENTIAL_TYPE_PASSWORD_OR_PIN) {

            return credentialType;

        }

        return pinOrPasswordQualityToCredentialType(data.qualityForUi);

    }

    private static int pinOrPasswordQualityToCredentialType(int quality) {

        if (LockPatternUtils.isQualityAlphabeticPassword(quality)) {

            return CREDENTIAL_TYPE_PASSWORD;

        }

        if (LockPatternUtils.isQualityNumericPin(quality)) {

            return CREDENTIAL_TYPE_PIN;

        }

        throw new IllegalArgumentException("Quality is neither Pin nor password: " + quality);

    }

    private boolean isUserSecure(int userId) {

        return getCredentialTypeInternal(userId) != CREDENTIAL_TYPE_NONE;

    }

     * unlock operation.

     */

    private void sendCredentialsOnUnlockIfRequired(LockscreenCredential credential, int userId) {

        // Don't send credentials during the factory reset protection flow.

        if (userId == USER_FRP) {

        // Don't send credentials during the special user flow.

        if (isSpecialUserId(userId)) {

            return;

        }

            Slog.e(TAG, "FRP credential can only be verified prior to provisioning.");

            return VerifyCredentialResponse.ERROR;

        }

        if (userId == USER_REPAIR_MODE && !LockPatternUtils.isRepairModeActive(mContext)) {

            Slog.e(TAG, "Repair mode is not active on the device.");

            return VerifyCredentialResponse.ERROR;

        }

        Slogf.i(TAG, "Verifying lockscreen credential for user %d", userId);

        final AuthenticationResult authResult;

        VerifyCredentialResponse response;

        synchronized (mSpManager) {

            if (userId == USER_FRP) {

                return mSpManager.verifyFrpCredential(getGateKeeperService(), credential,

                        progressCallback);

            if (isSpecialUserId(userId)) {

                return mSpManager.verifySpecialUserCredential(userId, getGateKeeperService(),

                        credential, progressCallback);

            }

            long protectorId = getCurrentLskfBasedProtectorId(userId);

import static android.content.Context.USER_SERVICE;

import static com.android.internal.annotations.VisibleForTesting.Visibility.PACKAGE;

import static com.android.internal.widget.LockPatternUtils.USER_FRP;

import static com.android.internal.widget.LockPatternUtils.isSpecialUserId;

import android.annotation.Nullable;

import android.app.admin.DevicePolicyManager;

    }

    public void setString(String key, String value, int userId) {

        Preconditions.checkArgument(userId != USER_FRP, "cannot store lock settings for FRP user");

        Preconditions.checkArgument(!isSpecialUserId(userId),

                "cannot store lock settings for special user: %d", userId);

        writeKeyValue(key, value, userId);

        if (ArrayUtils.contains(SETTINGS_TO_BACKUP, key)) {

    }

    public String getString(String key, String defaultValue, int userId) {

        if (userId == USER_FRP) {

        if (isSpecialUserId(userId)) {

            return null;

        }

        return readKeyValue(key, defaultValue, userId);