Google Git
Sign in
cos / mirrors / cros / chromiumos / platform2 / refs/heads/stabilize-10569.B / . / biod / cros_fp_biometrics_manager.cc
blob: 0f077b833b7e6618b79335715def921e99cae514 [file] [log] [blame]
// Copyright 2018 The Chromium OS Authors. All rights reserved.
// Use of this source code is governed by a BSD-style license that can be
// found in the LICENSE file.
#include "biod/cros_fp_biometrics_manager.h"
#include <algorithm>
#include <utility>
#include <errno.h>
#include <fcntl.h>
#include <poll.h>
#include <sys/ioctl.h>
#include <sys/stat.h>
#include <sys/types.h>
#include <base/base64.h>
#include <base/bind.h>
#include <base/logging.h>
#include <base/message_loop/message_loop.h>
#include <base/strings/string_number_conversions.h>
#include <base/strings/string_piece.h>
#include <base/strings/stringprintf.h>
#include <crypto/random.h>
extern "C" {
// Cros EC host commands definition as used by cros_fp.
#include "biod/ec/cros_ec_dev.h"
#include "biod/ec/ec_commands.h"
}
using MessageLoopForIO = base::MessageLoopForIO;
using VendorTemplate = std::vector<uint8_t>;
namespace {
std::string FourCC(const uint32_t a) {
return base::StringPrintf(
"%c%c%c%c", static_cast<char>(a), static_cast<char>(a >> 8),
static_cast<char>(a >> 16), static_cast<char>(a >> 24));
}
// Kernel device exposing the MCU command interface.
const char kCrosFpPath[] = "/dev/cros_fp";
const int kLastTemplate = -1;
// Align template transfers on 128-bit boundary, so it's easier/faster for
// crypto.
const uint32_t kTemplateChunkAlignMask = ~((128 / 8) - 1);
// Upper bound of the host command packet transfer size.
const int kMaxPacketSize = 544;
}; // namespace
namespace biod {
// Empty request or response for the EcCommand template below.
struct EmptyParam {};
// empty struct is one byte in C++, get the size we want instead.
template <typename T>
constexpr size_t realsizeof() {
return std::is_empty<T>::value ? 0 : sizeof(T);
}
// Helper to build and send the command structures for cros_fp.
template <typename O, typename I>
class EcCommand {
public:
explicit EcCommand(uint32_t cmd, uint32_t ver = 0, const O& req = {})
: data_({
.cmd = {.version = ver,
.command = cmd,
.result = 0xff,
.outsize = realsizeof<O>(),
.insize = realsizeof<I>()},
.req = req,
}) {}
void SetRespSize(uint32_t insize) { data_.cmd.insize = insize; }
void SetReqSize(uint32_t outsize) { data_.cmd.outsize = outsize; }
void SetReq(const O& req) { data_.req = req; }
bool Run(int ec_fd) {
return ioctl(ec_fd, CROS_EC_DEV_IOCXCMD_V2, &data_) == data_.cmd.insize;
}
I* Resp() { return &data_.resp; }
O* Req() { return &data_.req; }
private:
struct {
struct cros_ec_command_v2 cmd;
union {
O req;
I resp;
};
} data_;
DISALLOW_COPY_AND_ASSIGN(EcCommand);
};
class CrosFpBiometricsManager::CrosFpDevice : public MessageLoopForIO::Watcher {
public:
using MkbpCallback = base::Callback<void(const uint32_t event)>;
explicit CrosFpDevice(const MkbpCallback& mkbp_event)
: mkbp_event_(mkbp_event),
fd_watcher_(std::make_unique<MessageLoopForIO::FileDescriptorWatcher>(
FROM_HERE)) {}
~CrosFpDevice();
static std::unique_ptr<CrosFpDevice> Open(const MkbpCallback& callback);
bool FpMode(uint32_t mode);
bool GetDirtyMap(std::bitset<32>* bitmap);
bool GetTemplate(int index, VendorTemplate* out);
bool UploadTemplate(const VendorTemplate& tmpl);
bool SetContext(std::string user_id);
bool ResetContext();
int MaxTemplateCount() { return info_.template_max; }
protected:
// MessageLoopForIO::Watcher overrides:
void OnFileCanReadWithoutBlocking(int fd) override;
void OnFileCanWriteWithoutBlocking(int fd) override {}
private:
bool Init();
bool EcDevInit();
bool EcProtoInfo(ssize_t* max_read, ssize_t* max_write);
bool FpFrame(int index, std::vector<uint8_t>* frame);
bool UpdateFpInfo();
base::ScopedFD cros_fd_;
ssize_t max_read_size_;
ssize_t max_write_size_;
struct ec_response_fp_info info_;
MkbpCallback mkbp_event_;
std::unique_ptr<MessageLoopForIO::FileDescriptorWatcher> fd_watcher_;
DISALLOW_COPY_AND_ASSIGN(CrosFpDevice);
};
CrosFpBiometricsManager::CrosFpDevice::~CrosFpDevice() {
// Current session is gone, clean-up temporary state in the FP MCU.
ResetContext();
}
std::unique_ptr<CrosFpBiometricsManager::CrosFpDevice>
CrosFpBiometricsManager::CrosFpDevice::Open(const MkbpCallback& callback) {
std::unique_ptr<CrosFpDevice> dev = std::make_unique<CrosFpDevice>(callback);
if (!dev->Init())
return nullptr;
return dev;
}
bool CrosFpBiometricsManager::CrosFpDevice::EcProtoInfo(ssize_t* max_read,
ssize_t* max_write) {
/* read max request / response size from the MCU for protocol v3+ */
EcCommand<EmptyParam, struct ec_response_get_protocol_info> cmd(
EC_CMD_GET_PROTOCOL_INFO);
if (!cmd.Run(cros_fd_.get()))
return false;
*max_read =
cmd.Resp()->max_response_packet_size - sizeof(struct ec_host_response);
*max_write =
cmd.Resp()->max_request_packet_size - sizeof(struct ec_host_request);
return true;
}
bool CrosFpBiometricsManager::CrosFpDevice::EcDevInit() {
char version[80];
int ret = read(cros_fd_.get(), version, sizeof(version) - 1);
if (ret <= 0) {
int err = ret ? errno : 0;
LOG(ERROR) << "Failed to read cros_fp device: " << err;
return false;
}
version[ret] = '\0';
LOG(INFO) << "cros_fp device version: " << version;
char* s = strchr(version, '\n');
if (s)
*s = '\0';
if (strcmp(version, CROS_EC_DEV_VERSION)) {
LOG(ERROR) << "Invalid device version";
return false;
}
if (!EcProtoInfo(&max_read_size_, &max_write_size_)) {
LOG(ERROR) << "Fail to get cros_fp protocol info " << ret;
return false;
}
unsigned long mask = 1 << EC_MKBP_EVENT_FINGERPRINT; // NOLINT(runtime/int)
if (ioctl(cros_fd_.get(), CROS_EC_DEV_IOCEVENTMASK_V2, mask) < 0) {
LOG(ERROR) << "Fail to request fingerprint events";
return false;
}
return true;
}
void CrosFpBiometricsManager::CrosFpDevice::OnFileCanReadWithoutBlocking(
int fd) {
struct ec_response_get_next_event evt;
ssize_t sz = read(cros_fd_.get(), &evt, sizeof(evt));
// We are interested only in fingerprint events, discard the other ones.
if (evt.event_type != EC_MKBP_EVENT_FINGERPRINT ||
sz < sizeof(evt.event_type) + sizeof(evt.data.fp_events))
return;
// Properly aligned event value.
uint32_t events;
memcpy(&events, &evt.data.fp_events, sizeof(events));
mkbp_event_.Run(events);
}
bool CrosFpBiometricsManager::CrosFpDevice::FpMode(uint32_t mode) {
EcCommand<struct ec_params_fp_mode, struct ec_response_fp_mode> cmd(
EC_CMD_FP_MODE, 0, {.mode = mode});
return cmd.Run(cros_fd_.get());
}
bool CrosFpBiometricsManager::CrosFpDevice::FpFrame(
int index, std::vector<uint8_t>* frame) {
EcCommand<struct ec_params_fp_frame, uint8_t[kMaxPacketSize]> cmd(
EC_CMD_FP_FRAME);
uint32_t offset = index << FP_FRAME_INDEX_SHIFT;
uint8_t* payload = cmd.Resp()[0];
auto pos = frame->begin();
while (pos < frame->end()) {
uint32_t len =
std::min(max_read_size_, frame->end() - pos) & kTemplateChunkAlignMask;
cmd.SetReq({.offset = offset, .size = len});
cmd.SetRespSize(len);
if (!cmd.Run(cros_fd_.get())) {
LOG(ERROR) << "FP_FRAME command failed @ 0x" << std::hex << offset;
return false;
}
std::copy(payload, payload + len, pos);
offset += len;
pos += len;
}
return true;
}
bool CrosFpBiometricsManager::CrosFpDevice::UpdateFpInfo() {
EcCommand<EmptyParam, struct ec_response_fp_info> cmd(EC_CMD_FP_INFO, 1);
if (!cmd.Run(cros_fd_.get())) {
LOG(ERROR) << "Failed to get FP information";
return false;
}
info_ = *cmd.Resp();
return true;
}
bool CrosFpBiometricsManager::CrosFpDevice::Init() {
cros_fd_ = base::ScopedFD(open(kCrosFpPath, O_RDWR));
if (cros_fd_.get() < 0) {
LOG(ERROR) << "Failed to open " << kCrosFpPath;
return false;
}
if (!EcDevInit())
return false;
// Clean MCU memory if anything is remaining from aborted sessions
ResetContext();
// Retrieve the sensor information / parameters.
if (!UpdateFpInfo())
return false;
LOG(INFO) << "CROS FP Sensor Info ";
LOG(INFO) << " Vendor ID : " << FourCC(info_.vendor_id);
LOG(INFO) << " Product ID : " << info_.product_id;
LOG(INFO) << " Model ID : 0x" << std::hex << info_.model_id;
LOG(INFO) << " Version : " << info_.version;
LOG(INFO) << "CROS FP Image Info ";
// Prints the pixel format in FOURCC format.
LOG(INFO) << " Pixel Format : " << FourCC(info_.pixel_format);
LOG(INFO) << " Image Data Size : " << info_.frame_size;
LOG(INFO) << " Image Dimensions : " << info_.width << "x" << info_.height
<< " " << info_.bpp << " bpp";
LOG(INFO) << "CROS FP Finger Template Info ";
LOG(INFO) << " Template Data Size : " << info_.template_size;
LOG(INFO) << " Max number of fingers : " << info_.template_max;
if (info_.template_size & ~kTemplateChunkAlignMask) {
LOG(ERROR) << "The template size (" << info_.template_size
<< ") is not aligned on a proper boundary.";
return false;
}
if (!MessageLoopForIO::current()->WatchFileDescriptor(
cros_fd_.get(), true, MessageLoopForIO::WATCH_READ, fd_watcher_.get(),
this)) {
LOG(ERROR) << "Unable to watch MKBP events";
return false;
}
return true;
}
bool CrosFpBiometricsManager::CrosFpDevice::GetDirtyMap(
std::bitset<32>* bitmap) {
// Retrieve the up-to-date dirty bitmap from the MCU.
if (!UpdateFpInfo())
return false;
*bitmap = std::bitset<32>(info_.template_dirty);
return true;
}
bool CrosFpBiometricsManager::CrosFpDevice::GetTemplate(int index,
VendorTemplate* out) {
if (index == kLastTemplate) {
// Get the count of valid templates and the dirty bitmap.
if (!UpdateFpInfo())
return false;
// Use the last template.
index = info_.template_valid - 1;
// Is the last one really a new created one ?
if (!(info_.template_dirty & (1 << index)))
return false;
}
out->resize(static_cast<size_t>(info_.template_size));
// In the EC_CMD_FP_FRAME host command, the templates are indexed starting
// from 1, as 0 (aka FP_FRAME_INDEX_RAW_IMAGE) is used for the finger image.
return FpFrame(index + 1, out);
}
bool CrosFpBiometricsManager::CrosFpDevice::UploadTemplate(
const VendorTemplate& tmpl) {
union cmd_with_data {
struct ec_params_fp_template req;
uint8_t _fullsize[kMaxPacketSize];
};
EcCommand<union cmd_with_data, EmptyParam> cmd(EC_CMD_FP_TEMPLATE);
struct ec_params_fp_template* req = &cmd.Req()->req;
size_t max_chunk =
max_write_size_ - offsetof(struct ec_params_fp_template, data);
auto pos = tmpl.begin();
while (pos < tmpl.end()) {
size_t remaining = tmpl.end() - pos;
uint32_t tlen = std::min(max_chunk, remaining) & kTemplateChunkAlignMask;
req->offset = pos - tmpl.begin();
req->size = tlen | (remaining == tlen ? FP_TEMPLATE_COMMIT : 0);
std::copy(pos, pos + tlen, req->data);
cmd.SetReqSize(tlen + sizeof(struct ec_params_fp_template));
if (!cmd.Run(cros_fd_.get())) {
LOG(ERROR) << "FP_TEMPLATE command failed @ " << pos - tmpl.begin();
return false;
}
pos += tlen;
}
return true;
}
bool CrosFpBiometricsManager::CrosFpDevice::SetContext(std::string user_hex) {
struct ec_params_fp_context ctxt = {};
if (!user_hex.empty()) {
std::vector<uint8_t> user_id;
if (base::HexStringToBytes(user_hex, &user_id))
std::copy(user_id.begin(), user_id.end(), ctxt.userid);
}
crypto::RandBytes(ctxt.nonce, sizeof(ctxt.nonce));
EcCommand<struct ec_params_fp_context, struct ec_response_fp_context> cmd(
EC_CMD_FP_CONTEXT, 0, ctxt);
return cmd.Run(cros_fd_.get());
// Ignore the returned nonce for now.
}
bool CrosFpBiometricsManager::CrosFpDevice::ResetContext() {
return SetContext(std::string());
}
const std::string& CrosFpBiometricsManager::Record::GetId() const {
CHECK(biometrics_manager_);
CHECK(index_ < biometrics_manager_->records_.size());
local_record_id_ = biometrics_manager_->records_[index_].record_id;
return local_record_id_;
}
const std::string& CrosFpBiometricsManager::Record::GetUserId() const {
CHECK(biometrics_manager_);
CHECK(index_ <= biometrics_manager_->records_.size());
local_user_id_ = biometrics_manager_->records_[index_].user_id;
return local_user_id_;
}
const std::string& CrosFpBiometricsManager::Record::GetLabel() const {
CHECK(biometrics_manager_);
CHECK(index_ < biometrics_manager_->records_.size());
local_label_ = biometrics_manager_->records_[index_].label;
return local_label_;
}
bool CrosFpBiometricsManager::Record::SetLabel(std::string label) {
CHECK(biometrics_manager_);
CHECK(index_ < biometrics_manager_->records_.size());
std::string old_label = biometrics_manager_->records_[index_].label;
VendorTemplate tmpl;
// TODO(vpalatin): would be faster to read it from disk
if (!biometrics_manager_->cros_dev_->GetTemplate(index_, &tmpl))
return false;
biometrics_manager_->records_[index_].label = std::move(label);
if (!biometrics_manager_->WriteRecord(*this, tmpl.data(), tmpl.size())) {
biometrics_manager_->records_[index_].label = std::move(old_label);
return false;
}
return true;
}
bool CrosFpBiometricsManager::Record::Remove() {
if (!biometrics_manager_)
return false;
if (index_ >= biometrics_manager_->records_.size())
return false;
std::vector<InternalRecord>::iterator record =
biometrics_manager_->records_.begin() + index_;
if (!biometrics_manager_->biod_storage_.DeleteRecord(record->user_id,
record->record_id))
return false;
biometrics_manager_->records_.erase(record);
return true;
}
std::unique_ptr<BiometricsManager> CrosFpBiometricsManager::Create() {
std::unique_ptr<CrosFpBiometricsManager> biometrics_manager(
new CrosFpBiometricsManager);
if (!biometrics_manager->Init())
return nullptr;
return biometrics_manager;
}
BiometricType CrosFpBiometricsManager::GetType() {
return BIOMETRIC_TYPE_FINGERPRINT;
}
BiometricsManager::EnrollSession CrosFpBiometricsManager::StartEnrollSession(
std::string user_id, std::string label) {
LOG(INFO) << __func__;
// Another session is on-going, fail early ...
if (!next_session_action_.is_null())
return BiometricsManager::EnrollSession();
if (records_.size() >= cros_dev_->MaxTemplateCount()) {
LOG(ERROR) << "No space for an additional template.";
return BiometricsManager::EnrollSession();
}
if (!RequestEnrollImage(InternalRecord{biod_storage_.GenerateNewRecordId(),
std::move(user_id), std::move(label)}))
return BiometricsManager::EnrollSession();
return BiometricsManager::EnrollSession(session_weak_factory_.GetWeakPtr());
}
BiometricsManager::AuthSession CrosFpBiometricsManager::StartAuthSession() {
LOG(INFO) << __func__;
// Another session is on-going, fail early ...
if (!next_session_action_.is_null())
return BiometricsManager::AuthSession();
if (!RequestMatch())
return BiometricsManager::AuthSession();
return BiometricsManager::AuthSession(session_weak_factory_.GetWeakPtr());
}
std::vector<std::unique_ptr<BiometricsManager::Record>>
CrosFpBiometricsManager::GetRecords() {
std::vector<std::unique_ptr<BiometricsManager::Record>> records;
for (int i = 0; i < records_.size(); i++)
records.emplace_back(std::unique_ptr<BiometricsManager::Record>(
new Record(weak_factory_.GetWeakPtr(), i)));
return records;
}
bool CrosFpBiometricsManager::DestroyAllRecords() {
// Enumerate through records_ and delete each record.
bool delete_all_records = true;
for (auto& record : records_) {
delete_all_records &=
biod_storage_.DeleteRecord(record.user_id, record.record_id);
}
RemoveRecordsFromMemory();
return delete_all_records;
}
void CrosFpBiometricsManager::RemoveRecordsFromMemory() {
records_.clear();
cros_dev_->ResetContext();
}
bool CrosFpBiometricsManager::ReadRecords(
const std::unordered_set<std::string>& user_ids) {
return biod_storage_.ReadRecords(user_ids);
}
void CrosFpBiometricsManager::SetEnrollScanDoneHandler(
const BiometricsManager::EnrollScanDoneCallback& on_enroll_scan_done) {
on_enroll_scan_done_ = on_enroll_scan_done;
}
void CrosFpBiometricsManager::SetAuthScanDoneHandler(
const BiometricsManager::AuthScanDoneCallback& on_auth_scan_done) {
on_auth_scan_done_ = on_auth_scan_done;
}
void CrosFpBiometricsManager::SetSessionFailedHandler(
const BiometricsManager::SessionFailedCallback& on_session_failed) {
on_session_failed_ = on_session_failed;
}
void CrosFpBiometricsManager::EndEnrollSession() {
LOG(INFO) << __func__;
KillMcuSession();
}
void CrosFpBiometricsManager::EndAuthSession() {
LOG(INFO) << __func__;
KillMcuSession();
}
void CrosFpBiometricsManager::KillMcuSession() {
// TODO(vpalatin): test cros_dev_->FpMode(FP_MODE_DEEPSLEEP);
cros_dev_->FpMode(0);
OnTaskComplete();
}
CrosFpBiometricsManager::CrosFpBiometricsManager()
: session_weak_factory_(this),
weak_factory_(this),
biod_storage_(kCrosFpBiometricsManagerName,
base::Bind(&CrosFpBiometricsManager::LoadRecord,
base::Unretained(this))) {}
CrosFpBiometricsManager::~CrosFpBiometricsManager() {}
bool CrosFpBiometricsManager::Init() {
cros_dev_ = CrosFpDevice::Open(base::Bind(
&CrosFpBiometricsManager::OnMkbpEvent, base::Unretained(this)));
return !!cros_dev_;
}
void CrosFpBiometricsManager::OnEnrollScanDone(
ScanResult result, const BiometricsManager::EnrollStatus& enroll_status) {
if (!on_enroll_scan_done_.is_null())
on_enroll_scan_done_.Run(result, enroll_status);
}
void CrosFpBiometricsManager::OnAuthScanDone(
ScanResult result, const BiometricsManager::AttemptMatches& matches) {
if (!on_auth_scan_done_.is_null())
on_auth_scan_done_.Run(result, matches);
}
void CrosFpBiometricsManager::OnSessionFailed() {
if (!on_session_failed_.is_null())
on_session_failed_.Run();
}
void CrosFpBiometricsManager::OnMkbpEvent(uint32_t event) {
if (!next_session_action_.is_null())
next_session_action_.Run(event);
}
bool CrosFpBiometricsManager::RequestEnrollImage(InternalRecord record) {
next_session_action_ =
base::Bind(&CrosFpBiometricsManager::DoEnrollImageEvent,
base::Unretained(this), std::move(record));
if (!cros_dev_->FpMode(FP_MODE_ENROLL_SESSION | FP_MODE_ENROLL_IMAGE)) {
next_session_action_ = SessionAction();
LOG(ERROR) << "Failed to start enrolling mode";
return false;
}
return true;
}
bool CrosFpBiometricsManager::RequestEnrollFingerUp(InternalRecord record) {
next_session_action_ =
base::Bind(&CrosFpBiometricsManager::DoEnrollFingerUpEvent,
base::Unretained(this), std::move(record));
if (!cros_dev_->FpMode(FP_MODE_ENROLL_SESSION | FP_MODE_FINGER_UP)) {
next_session_action_ = SessionAction();
LOG(ERROR) << "Failed to wait for finger up";
return false;
}
return true;
}
bool CrosFpBiometricsManager::RequestMatch(int attempt) {
next_session_action_ = base::Bind(&CrosFpBiometricsManager::DoMatchEvent,
base::Unretained(this), attempt);
if (!cros_dev_->FpMode(FP_MODE_MATCH)) {
next_session_action_ = SessionAction();
LOG(ERROR) << "Failed to start matching mode";
return false;
}
return true;
}
void CrosFpBiometricsManager::DoEnrollImageEvent(InternalRecord record,
uint32_t event) {
if (!(event & EC_MKBP_FP_ENROLL)) {
LOG(WARNING) << "Unexpected MKBP event: 0x" << std::hex << event;
// Continue waiting for the proper event, do not abort session.
return;
}
int image_result = EC_MKBP_FP_ERRCODE(event);
LOG(INFO) << __func__ << " result: " << image_result;
ScanResult scan_result;
switch (image_result) {
case EC_MKBP_FP_ERR_ENROLL_OK:
scan_result = ScanResult::SCAN_RESULT_SUCCESS;
break;
case EC_MKBP_FP_ERR_ENROLL_IMMOBILE:
scan_result = ScanResult::SCAN_RESULT_IMMOBILE;
break;
case EC_MKBP_FP_ERR_ENROLL_LOW_COVERAGE:
scan_result = ScanResult::SCAN_RESULT_PARTIAL;
break;
case EC_MKBP_FP_ERR_ENROLL_LOW_QUALITY:
scan_result = ScanResult::SCAN_RESULT_INSUFFICIENT;
break;
case EC_MKBP_FP_ERR_ENROLL_INTERNAL:
default:
LOG(ERROR) << "Unexpected result from capture: " << std::hex << event;
OnSessionFailed();
return;
}
int percent = EC_MKBP_FP_ENROLL_PROGRESS(event);
if (percent < 100) {
BiometricsManager::EnrollStatus enroll_status = {false, percent};
OnEnrollScanDone(scan_result, enroll_status);
// The user needs to remove the finger before the next enrollment image.
if (!RequestEnrollFingerUp(std::move(record)))
OnSessionFailed();
return;
}
// we are done with captures, save the template.
OnTaskComplete();
VendorTemplate tmpl;
if (!cros_dev_->GetTemplate(kLastTemplate, &tmpl)) {
LOG(ERROR) << "Failed to retrieve enrolled finger";
OnSessionFailed();
return;
}
records_.emplace_back(record);
Record current_record(weak_factory_.GetWeakPtr(), records_.size() - 1);
if (!WriteRecord(current_record, tmpl.data(), tmpl.size())) {
records_.pop_back();
OnSessionFailed();
return;
}
BiometricsManager::EnrollStatus enroll_status = {true, 100};
OnEnrollScanDone(ScanResult::SCAN_RESULT_SUCCESS, enroll_status);
}
void CrosFpBiometricsManager::DoEnrollFingerUpEvent(InternalRecord record,
uint32_t event) {
if (!(event & EC_MKBP_FP_FINGER_UP)) {
LOG(WARNING) << "Unexpected MKBP event: 0x" << std::hex << event;
// Continue waiting for the proper event, do not abort session.
return;
}
if (!RequestEnrollImage(std::move(record)))
OnSessionFailed();
}
void CrosFpBiometricsManager::DoMatchEvent(int attempt, uint32_t event) {
if (!(event & EC_MKBP_FP_MATCH)) {
LOG(WARNING) << "Unexpected MKBP event: 0x" << std::hex << event;
// Continue waiting for the proper event, do not abort session.
return;
}
ScanResult result;
int match_result = EC_MKBP_FP_ERRCODE(event);
// If the finger is positioned slightly off the sensor, retry a few times
// before failing. Typically the user has put their finger down and is now
// moving their finger to the correct position on the sensor. Instead of
// immediately failing, retry until we get a good image.
// Retry 20 times, which takes about 5 to 15s, before giving up and sending
// an error back to the user. Assume ~1s for user noticing that no matching
// happened, some time to move the finger on the sensor to allow a full
// capture and another 1s for the second matching attempt. 5s gives a bit of
// margin to avoid interrupting the user while they're moving the finger on
// the sensor.
const int kMaxPartialAttempts = 20;
if (match_result == EC_MKBP_FP_ERR_MATCH_NO_LOW_COVERAGE &&
attempt < kMaxPartialAttempts) {
/* retry a match */
if (!RequestMatch(attempt + 1))
OnSessionFailed();
return;
}
std::vector<int> dirty_list;
if (match_result == EC_MKBP_FP_ERR_MATCH_YES_UPDATED) {
std::bitset<32> dirty_bitmap(0);
// Retrieve which templates have been updates.
if (!cros_dev_->GetDirtyMap(&dirty_bitmap))
LOG(ERROR) << "Failed to get updated templates map";
// Create a list of modified template indexes from the bitmap.
dirty_list.reserve(dirty_bitmap.count());
for (int i = 0; dirty_bitmap.any() && i < dirty_bitmap.size(); i++)
if (dirty_bitmap[i]) {
dirty_list.emplace_back(i);
dirty_bitmap.reset(i);
}
}
BiometricsManager::AttemptMatches matches;
std::vector<std::string> records;
LOG(INFO) << __func__ << " result: " << match_result;
switch (match_result) {
case EC_MKBP_FP_ERR_MATCH_NO:
// This is the API: empty matches but still SCAN_RESULT_SUCCESS.
result = ScanResult::SCAN_RESULT_SUCCESS;
break;
case EC_MKBP_FP_ERR_MATCH_YES:
case EC_MKBP_FP_ERR_MATCH_YES_UPDATED:
case EC_MKBP_FP_ERR_MATCH_YES_UPDATE_FAILED:
result = ScanResult::SCAN_RESULT_SUCCESS;
std::transform(
dirty_list.begin(), dirty_list.end(), std::back_inserter(records),
[this](int idx) -> std::string { return records_[idx].record_id; });
// when we don't know which one, use the first one ?
if (!records.size())
records.push_back(records_[0].record_id);
// TODO(vpalatin): FIXME for multi-user ?
matches.emplace(records_[0].user_id, std::move(records));
break;
case EC_MKBP_FP_ERR_MATCH_NO_LOW_QUALITY:
result = ScanResult::SCAN_RESULT_INSUFFICIENT;
break;
case EC_MKBP_FP_ERR_MATCH_NO_LOW_COVERAGE:
result = ScanResult::SCAN_RESULT_PARTIAL;
break;
case EC_MKBP_FP_ERR_MATCH_NO_INTERNAL:
default:
LOG(ERROR) << "Unexpected result from matching templates: " << std::hex
<< event;
OnSessionFailed();
return;
}
// Send back the result directly (as we are running on the main thread).
OnAuthScanDone(result, std::move(matches));
// Record updated templates
// TODO(vpalatin): this is slow, move to end of session ?
for (int i : dirty_list) {
VendorTemplate templ;
bool rc = cros_dev_->GetTemplate(i, &templ);
LOG(INFO) << "Retrieve updated template " << i << " -> " << rc;
if (!rc)
continue;
Record current_record(weak_factory_.GetWeakPtr(), i);
if (!WriteRecord(current_record, templ.data(), templ.size())) {
LOG(ERROR) << "Cannot update record " << records_[i].record_id
<< " in storage during AuthSession because writing failed.";
}
}
// Continue trying to match fingers
if (!RequestMatch())
OnSessionFailed();
}
void CrosFpBiometricsManager::OnTaskComplete() {
session_weak_factory_.InvalidateWeakPtrs();
next_session_action_ = SessionAction();
}
bool CrosFpBiometricsManager::LoadRecord(const std::string& user_id,
const std::string& label,
const std::string& record_id,
const base::Value& data) {
std::string tmpl_data_base64;
if (!data.GetAsString(&tmpl_data_base64)) {
LOG(ERROR) << "Cannot load data string from record " << record_id << ".";
return false;
}
base::StringPiece tmpl_data_base64_sp(tmpl_data_base64);
std::string tmpl_data_str;
base::Base64Decode(tmpl_data_base64_sp, &tmpl_data_str);
if (records_.size() >= cros_dev_->MaxTemplateCount()) {
LOG(ERROR) << "No space to upload template from " << record_id << ".";
return false;
}
LOG(INFO) << "Upload record " << record_id;
VendorTemplate tmpl(tmpl_data_str.begin(), tmpl_data_str.end());
if (!cros_dev_->UploadTemplate(tmpl)) {
LOG(ERROR) << "Cannot send template to the MCU from " << record_id << ".";
return false;
}
InternalRecord internal_record = {record_id, user_id, label};
records_.emplace_back(std::move(internal_record));
return true;
}
bool CrosFpBiometricsManager::WriteRecord(
const BiometricsManager::Record& record,
uint8_t* tmpl_data,
size_t tmpl_size) {
base::StringPiece tmpl_sp(reinterpret_cast<char*>(tmpl_data), tmpl_size);
std::string tmpl_base64;
base::Base64Encode(tmpl_sp, &tmpl_base64);
return biod_storage_.WriteRecord(
record, std::unique_ptr<base::Value>(new base::StringValue(tmpl_base64)));
}
} // namespace biod