Merge cherrypicks of [7316389, 7315812, 7315813, 7316457, 7316055, 7315736,...

    "packages/modules/Bluetooth/system/utils/include",

    "packages/modules/Bluetooth/system/include",

    "system/libhwbinder/include",

    "system/security/keystore/include",

    "hardware/interfaces/keymaster/4.0/support/include",

]

// libbtif static library for target

        "src/btif_hh.cc",

        "src/btif_hd.cc",

        "src/btif_hl.cc",

        "src/btif_keystore.cc",

        "src/btif_mce.cc",

        "src/btif_pan.cc",

        "src/btif_profile_queue.cc",

        "libhidltransport",

        "libhwbinder",

        "libutils",

        "libcrypto",

        "android.hardware.keymaster@4.0",

        "android.hardware.keymaster@3.0",

        "libkeymaster4support",

        "libkeystore_aidl",

        "libkeystore_binder",

        "libkeystore_parcelables",

    ],

    whole_static_libs: [

        "avrcp-target-service",

    name: "net_test_btif",

    defaults: ["fluoride_defaults"],

    include_dirs: btifCommonIncludes,

    srcs: [

        "test/btif_storage_test.cc",

        "test/btif_keystore_test.cc"

    ],

    srcs: ["test/btif_storage_test.cc"],

    header_libs: ["libbluetooth_headers"],

    shared_libs: [

        "libaudioclient",

        "libbluetooth-for-tests",

    ],

    cflags: ["-DBUILDCFG"],

    sanitize: {

        integer_overflow: true,

    },

}

// btif profile queue unit tests for target

/******************************************************************************

 *

 *  Copyright 2019 Google, Inc.

 *

 *  Licensed under the Apache License, Version 2.0 (the "License");

 *  you may not use this file except in compliance with the License.

 *  You may obtain a copy of the License at:

 *

 *  http://www.apache.org/licenses/LICENSE-2.0

 *

 *  Unless required by applicable law or agreed to in writing, software

 *  distributed under the License is distributed on an "AS IS" BASIS,

 *  WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.

 *  See the License for the specific language governing permissions and

 *  limitations under the License.

 *

 ******************************************************************************/

#include <base/logging.h>

#include <keystore/keystore_client_impl.h>

#include <mutex>

#include "osi/include/alarm.h"

#include "osi/include/allocator.h"

#include "osi/include/compat.h"

#include "osi/include/config.h"

#include "osi/include/log.h"

#include "osi/include/osi.h"

#include "osi/include/properties.h"

namespace bluetooth {

/**

 * Client wrapper to access AndroidKeystore.

 *

 * <p>Use to encrypt/decrypt data and store to disk.

 */

class BtifKeystore {

 public:

  /**

   * @param keystore_client injected pre-created client object for keystore

   */

  BtifKeystore(keystore::KeystoreClient* keystore_client);

  /**

   * Encrypts given data

   *

   * <p>Returns a string representation of the encrypted data

   *

   * @param data to be encrypted

   * @param flags for keystore

   */

  std::string Encrypt(const std::string& data, int32_t flags);

  /**

   * Returns a decrypted string representation of the encrypted data or empty

   * string on error.

   *

   * @param input encrypted data

   */

  std::string Decrypt(const std::string& input_filename);

 private:

  std::unique_ptr<keystore::KeystoreClient> keystore_client_;

  std::mutex api_mutex_;

  keystore::KeyStoreNativeReturnCode GenerateKey(const std::string& name,

                                                 int32_t flags,

                                                 bool auth_bound);

};

}  // namespace bluetooth

#include <base/logging.h>

#include <ctype.h>

#include <openssl/rand.h>

#include <openssl/sha.h>

#include <private/android_filesystem_config.h>

#include <stdio.h>

#include <string.h>

#include <time.h>

#include <unistd.h>

#include <mutex>

#include <sstream>

#include <string>

#include <mutex>

#include "bt_types.h"

#include "btcore/include/module.h"

#include "btif_api.h"

#include "btif_common.h"

#include "btif_config_transcode.h"

#include "btif_keystore.h"

#include "btif_util.h"

#include "osi/include/alarm.h"

#include "osi/include/allocator.h"

#define FILE_TIMESTAMP "TimeCreated"

#define FILE_SOURCE "FileSource"

#define TIME_STRING_LENGTH sizeof("YYYY-MM-DD HH:MM:SS")

#define DISABLED "disabled"

static const char* TIME_STRING_FORMAT = "%Y-%m-%d %H:%M:%S";

constexpr int kBufferSize = 400 * 10;  // initial file is ~400B

static bool use_key_attestation() { return getuid() == AID_BLUETOOTH; }

using bluetooth::BtifKeystore;

// TODO(armansito): Find a better way than searching by a hardcoded path.

#if defined(OS_GENERIC)

static const char* CONFIG_FILE_PATH = "bt_config.conf";

#else   // !defined(OS_GENERIC)

static const char* CONFIG_FILE_PATH = "/data/misc/bluedroid/bt_config.conf";

static const char* CONFIG_BACKUP_PATH = "/data/misc/bluedroid/bt_config.bak";

static const char* CONFIG_FILE_CHECKSUM_PATH = "/data/misc/bluedroid/bt_config.conf.encrypted-checksum";

static const char* CONFIG_BACKUP_CHECKSUM_PATH = "/data/misc/bluedroid/bt_config.bak.encrypted-checksum";

static const char* CONFIG_LEGACY_FILE_PATH =

    "/data/misc/bluedroid/bt_config.xml";

#endif  // defined(OS_GENERIC)

static void delete_config_files(void);

static void btif_config_remove_unpaired(config_t* config);

static void btif_config_remove_restricted(config_t* config);

static std::unique_ptr<config_t> btif_config_open(const char* filename, const char* checksum_filename);

// Key attestation

static std::string hash_file(const char* filename);

static std::string read_checksum_file(const char* filename);

static void write_checksum_file(const char* filename, const std::string& hash);

static std::unique_ptr<config_t> btif_config_open(const char* filename);

static enum ConfigSource {

  NOT_LOADED,

static std::unique_ptr<config_t> config;

static alarm_t* config_timer;

static BtifKeystore btif_keystore(new keystore::KeystoreClientImpl);

// Module lifecycle functions

static future_t* init(void) {

  std::string file_source;

  config = btif_config_open(CONFIG_FILE_PATH, CONFIG_FILE_CHECKSUM_PATH);

  config = btif_config_open(CONFIG_FILE_PATH);

  btif_config_source = ORIGINAL;

  if (!config) {

    LOG_WARN(LOG_TAG, "%s unable to load config file: %s; using backup.",

             __func__, CONFIG_FILE_PATH);

    remove(CONFIG_FILE_CHECKSUM_PATH);

    config = btif_config_open(CONFIG_BACKUP_PATH, CONFIG_BACKUP_CHECKSUM_PATH);

    config = btif_config_open(CONFIG_BACKUP_PATH);

    btif_config_source = BACKUP;

    file_source = "Backup";

  }

    LOG_WARN(LOG_TAG,

             "%s unable to load backup; attempting to transcode legacy file.",

             __func__);

    remove(CONFIG_BACKUP_CHECKSUM_PATH);

    config = btif_config_transcode(CONFIG_LEGACY_FILE_PATH);

    btif_config_source = LEGACY;

    file_source = "Legacy";

  return future_new_immediate(FUTURE_FAIL);

}

static std::unique_ptr<config_t> btif_config_open(const char* filename, const char* checksum_filename) {

  // START KEY ATTESTATION

  // Get hash of current file

  std::string current_hash = hash_file(filename);

  // Get stored hash

  std::string stored_hash = read_checksum_file(checksum_filename);

  if (stored_hash.empty()) {

    LOG(ERROR) << __func__ << ": stored_hash=<empty>";

    if (!current_hash.empty()) {

      write_checksum_file(checksum_filename, current_hash);

      stored_hash = read_checksum_file(checksum_filename);

    }

  }

  // Compare hashes

  if (current_hash != stored_hash) {

    return nullptr;

  }

  // END KEY ATTESTATION

static std::unique_ptr<config_t> btif_config_open(const char* filename) {

  std::unique_ptr<config_t> config = config_new(filename);

  if (!config) return nullptr;

  bool ret = config_save(*config, CONFIG_FILE_PATH);

  btif_config_source = RESET;

  // Save encrypted hash

  std::string current_hash = hash_file(CONFIG_FILE_PATH);

  if (!current_hash.empty()) {

    write_checksum_file(CONFIG_FILE_CHECKSUM_PATH, current_hash);

  }

  return ret;

}

  std::unique_lock<std::mutex> lock(config_lock);

  rename(CONFIG_FILE_PATH, CONFIG_BACKUP_PATH);

  rename(CONFIG_FILE_CHECKSUM_PATH, CONFIG_BACKUP_CHECKSUM_PATH);

  std::unique_ptr<config_t> config_paired = config_new_clone(*config);

  btif_config_remove_unpaired(config_paired.get());

  config_save(*config_paired, CONFIG_FILE_PATH);

  // Save hash

  std::string current_hash = hash_file(CONFIG_FILE_PATH);

  if (!current_hash.empty()) {

    write_checksum_file(CONFIG_FILE_CHECKSUM_PATH, current_hash);

  }

}

static void btif_config_remove_unpaired(config_t* conf) {

static void delete_config_files(void) {

  remove(CONFIG_FILE_PATH);

  remove(CONFIG_BACKUP_PATH);

  remove(CONFIG_FILE_CHECKSUM_PATH);

  remove(CONFIG_BACKUP_CHECKSUM_PATH);

  osi_property_set("persist.bluetooth.factoryreset", "false");

}

static std::string hash_file(const char* filename) {

  if (!use_key_attestation()) {

    LOG(INFO) << __func__ << ": Disabled for multi-user";

    return DISABLED;

  }

  FILE* fp = fopen(filename, "rb");

  if (!fp) {

    LOG(ERROR) << __func__ << ": unable to open config file: '" << filename

               << "': " << strerror(errno);

    return "";

  }

  uint8_t hash[SHA256_DIGEST_LENGTH];

  SHA256_CTX sha256;

  SHA256_Init(&sha256);

  std::array<unsigned char, kBufferSize> buffer;

  int bytes_read = 0;

  while ((bytes_read = fread(buffer.data(), 1, buffer.size(), fp))) {

    SHA256_Update(&sha256, buffer.data(), bytes_read);

  }

  SHA256_Final(hash, &sha256);

  std::stringstream ss;

  for (int i = 0; i < SHA256_DIGEST_LENGTH; i++) {

    ss << std::hex << std::setw(2) << std::setfill('0') << (int)hash[i];

  }

  fclose(fp);

  return ss.str();

}

static std::string read_checksum_file(const char* checksum_filename) {

  if (!use_key_attestation()) {

    LOG(INFO) << __func__ << ": Disabled for multi-user";

    return DISABLED;

  }

  std::string encrypted_hash = checksum_read(checksum_filename);

  if (encrypted_hash.empty()) {

    LOG(INFO) << __func__ << ": read empty hash.";

    return "";

  }

  return btif_keystore.Decrypt(encrypted_hash);

}

static void write_checksum_file(const char* checksum_filename,

                                const std::string& hash) {

  if (!use_key_attestation()) {

    LOG(INFO) << __func__

              << ": Disabled for multi-user, since config changed removing "

                 "checksums.";

    remove(CONFIG_FILE_CHECKSUM_PATH);

    remove(CONFIG_BACKUP_CHECKSUM_PATH);

    return;

  }

  std::string encrypted_checksum = btif_keystore.Encrypt(hash, 0);

  CHECK(!encrypted_checksum.empty())

      << __func__ << ": Failed encrypting checksum";

  CHECK(checksum_save(encrypted_checksum, checksum_filename))

      << __func__ << ": Failed to save checksum!";

}

  return !memcmp(zero, data, sizeof(zero));

}

static bool is_bonding_or_sdp() {

  return pairing_cb.state == BT_BOND_STATE_BONDING ||

         (pairing_cb.state == BT_BOND_STATE_BONDED && pairing_cb.sdp_attempts);

}

static void btif_dm_data_copy(uint16_t event, char* dst, char* src) {

  tBTA_DM_SEC* dst_dm_sec = (tBTA_DM_SEC*)dst;

  tBTA_DM_SEC* src_dm_sec = (tBTA_DM_SEC*)src;

                               bt_bond_state_t state) {

  btif_stats_add_bond_event(bd_addr, BTIF_DM_FUNC_BOND_STATE_CHANGED, state);

  // Send bonding state only once - based on outgoing/incoming we may receive

  // duplicates

  if ((pairing_cb.state == state) && (state == BT_BOND_STATE_BONDING)) {

    // Cross key pairing so send callback for static address

    if (!pairing_cb.static_bdaddr.IsEmpty()) {

  auto tmp = bd_addr;

  HAL_CBACK(bt_hal_cbacks, bond_state_changed_cb, status, &tmp, state);

  int dev_type;

  if (!btif_get_device_type(bd_addr, &dev_type)) {

    dev_type = BT_DEVICE_TYPE_BREDR;

  }

  if (state == BT_BOND_STATE_BONDING ||

      (state == BT_BOND_STATE_BONDED && pairing_cb.sdp_attempts > 0)) {

    // Save state for the device is bonding or SDP.

  if (state == BT_BOND_STATE_BONDING) {

    pairing_cb.state = state;

    pairing_cb.bd_addr = bd_addr;

  } else {

    pairing_cb = {};

    if (!pairing_cb.sdp_attempts)

      memset(&pairing_cb, 0, sizeof(pairing_cb));

    else

      BTIF_TRACE_DEBUG("%s: BR-EDR service discovery active", __func__);

  }

}

        /* Trigger SDP on the device */

        pairing_cb.sdp_attempts = 1;

        // Report bonded to Java before start SDP

        bond_state_changed(BT_STATUS_SUCCESS, bd_addr, BT_BOND_STATE_BONDED);

        btif_dm_get_remote_services(bd_addr);

      }

    }

      BTIF_TRACE_DEBUG("%s:(result=0x%x, services 0x%x)", __func__,

                       p_data->disc_res.result, p_data->disc_res.services);

      if (p_data->disc_res.result != BTA_SUCCESS &&

          pairing_cb.state == BT_BOND_STATE_BONDED &&

          pairing_cb.sdp_attempts < BTIF_DM_MAX_SDP_ATTEMPTS_AFTER_PAIRING) {

      if ((p_data->disc_res.result != BTA_SUCCESS) &&

          (pairing_cb.state == BT_BOND_STATE_BONDING) &&

          (pairing_cb.sdp_attempts < BTIF_DM_MAX_SDP_ATTEMPTS_AFTER_PAIRING)) {

        if (pairing_cb.sdp_attempts) {

          BTIF_TRACE_WARNING("%s: SDP failed after bonding re-attempting",

                             __func__);

      /* onUuidChanged requires getBondedDevices to be populated.

      ** bond_state_changed needs to be sent prior to remote_device_property

      */

      if (pairing_cb.state == BT_BOND_STATE_BONDED && pairing_cb.sdp_attempts &&

      if ((pairing_cb.state == BT_BOND_STATE_BONDING) &&

          (p_data->disc_res.bd_addr == pairing_cb.bd_addr ||

           p_data->disc_res.bd_addr == pairing_cb.static_bdaddr)) {

        LOG_INFO(LOG_TAG, "%s Remote Service SDP done.", __func__);

           p_data->disc_res.bd_addr == pairing_cb.static_bdaddr) &&

          pairing_cb.sdp_attempts > 0) {

        BTIF_TRACE_DEBUG(

            "%s Remote Service SDP done. Call bond_state_changed_cb BONDED",

            __func__);

        pairing_cb.sdp_attempts = 0;

        // If bond occured due to cross-key pairing, send bond state callback

        // If bonding occured due to cross-key pairing, send bonding callback

        // for static address now

        if (p_data->disc_res.bd_addr == pairing_cb.static_bdaddr) {

        if (p_data->disc_res.bd_addr == pairing_cb.static_bdaddr)

          bond_state_changed(BT_STATUS_SUCCESS, bd_addr, BT_BOND_STATE_BONDING);

          bond_state_changed(BT_STATUS_SUCCESS, bd_addr, BT_BOND_STATE_BONDED);

        }

        if (pairing_cb.state == BT_BOND_STATE_BONDED) {

          if (p_data->disc_res.result == BTA_SUCCESS) {

            // Device is bonded and SDP completed. Clear the pairing control

            // block.

            pairing_cb = {};

          } else {

            // Report empty UUID to Java if SDP report negative result while

            // pairing.

            bt_property_t prop;

            Uuid uuid;

            prop.type = BT_PROPERTY_UUIDS;

            prop.val = &uuid;

            prop.len = Uuid::kNumBytes128;

            /* Send the event to the BTIF */

            HAL_CBACK(bt_hal_cbacks, remote_device_properties_cb,

                      BT_STATUS_SUCCESS, &bd_addr, 1, &prop);

            break;

          }

        }

        bond_state_changed(BT_STATUS_SUCCESS, bd_addr, BT_BOND_STATE_BONDED);

      }

      if (p_data->disc_res.num_uuids != 0) {

      break;

    case BTA_DM_BOND_CANCEL_CMPL_EVT:

      if (is_bonding_or_sdp()) {

      if (pairing_cb.state == BT_BOND_STATE_BONDING) {

        bd_addr = pairing_cb.bd_addr;

        btm_set_bond_type_dev(pairing_cb.bd_addr, BOND_TYPE_UNKNOWN);

        bond_state_changed((bt_status_t)p_data->bond_cancel_cmpl.result,

  **  1. Restore scan modes

  **  2. special handling for HID devices

  */

  if (is_bonding_or_sdp()) {

  if (pairing_cb.state == BT_BOND_STATE_BONDING) {

    if (pairing_cb.is_ssp) {

      if (pairing_cb.is_le_only) {

        BTA_DmBleSecurityGrant(*bd_addr, BTA_DM_SEC_PAIR_NOT_SPT);

/*******************************************************************************

 *

 * Function         btif_dm_get_remote_services_by_transport

 * Function         btif_dm_get_remote_services_transport

 *

 * Description      Start SDP to get remote services by transport

 *

void btif_dm_on_disable() {

  /* cancel any pending pairing requests */

  if (is_bonding_or_sdp()) {

  if (pairing_cb.state == BT_BOND_STATE_BONDING) {

    BTIF_TRACE_DEBUG("%s: Cancel pending pairing request", __func__);

    btif_dm_cancel_bond(&pairing_cb.bd_addr);

  }

/******************************************************************************

 *

 *  Copyright 2019 Google, Inc.

 *

 *  Licensed under the Apache License, Version 2.0 (the "License");

 *  you may not use this file except in compliance with the License.

 *  You may obtain a copy of the License at:

 *

 *  http://www.apache.org/licenses/LICENSE-2.0

 *

 *  Unless required by applicable law or agreed to in writing, software

 *  distributed under the License is distributed on an "AS IS" BASIS,

 *  WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.

 *  See the License for the specific language governing permissions and

 *  limitations under the License.

 *

 ******************************************************************************/

#include "btif_keystore.h"

#include <base/files/file_util.h>

#include <base/logging.h>

#include <base/strings/string_number_conversions.h>

#include <base/strings/string_split.h>

#include <base/strings/string_util.h>

#include <base/strings/utf_string_conversions.h>

#include <sys/stat.h>

using namespace keystore;

using namespace bluetooth;

constexpr char kKeyStore[] = "AndroidKeystore";

namespace bluetooth {

BtifKeystore::BtifKeystore(keystore::KeystoreClient* keystore_client)

    : keystore_client_(keystore_client) {}

std::string BtifKeystore::Encrypt(const std::string& data, int32_t flags) {

  std::lock_guard<std::mutex> lock(api_mutex_);

  std::string output;

  if (data.empty()) {

    LOG(ERROR) << __func__ << ": empty data";

    return output;

  }

  if (!keystore_client_->doesKeyExist(kKeyStore)) {

    auto gen_result = GenerateKey(kKeyStore, 0, false);

    if (!gen_result.isOk()) {

      LOG(FATAL) << "EncryptWithAuthentication Failed: generateKey response="

                 << gen_result;

      return output;

    }

  }

  if (!keystore_client_->encryptWithAuthentication(kKeyStore, data, flags,

                                                   &output)) {

    LOG(FATAL) << "EncryptWithAuthentication failed.";

    return output;

  }

  return output;

}

std::string BtifKeystore::Decrypt(const std::string& input) {

  std::lock_guard<std::mutex> lock(api_mutex_);

  if (input.empty()) {

    LOG(ERROR) << __func__ << ": empty input data";

    return "";

  }

  std::string output;

  if (!keystore_client_->decryptWithAuthentication(kKeyStore, input, &output)) {

    LOG(FATAL) << "DecryptWithAuthentication failed.\n";

  }

  return output;

}

// Note: auth_bound keys created with this tool will not be usable.

KeyStoreNativeReturnCode BtifKeystore::GenerateKey(const std::string& name,

                                                   int32_t flags,

                                                   bool auth_bound) {

  AuthorizationSetBuilder params;

  params.RsaSigningKey(2048, 65537)

      .Digest(Digest::SHA_2_224)

      .Digest(Digest::SHA_2_256)

      .Digest(Digest::SHA_2_384)

      .Digest(Digest::SHA_2_512)

      .Padding(PaddingMode::RSA_PKCS1_1_5_SIGN)

      .Padding(PaddingMode::RSA_PSS);

  if (auth_bound) {

    // Gatekeeper normally generates the secure user id.

    // Using zero allows the key to be created, but it will not be usuable.

    params.Authorization(TAG_USER_SECURE_ID, 0);

  } else {

    params.Authorization(TAG_NO_AUTH_REQUIRED);

  }

  AuthorizationSet hardware_enforced_characteristics;

  AuthorizationSet software_enforced_characteristics;

  return keystore_client_->generateKey(name, params, flags,

                                       &hardware_enforced_characteristics,

                                       &software_enforced_characteristics);

}

}  // namespace bluetooth