biod/tools/bio_wash.cc - third_party/platform2 - Git at Google

 // Copyright 2018 The ChromiumOS Authors
 // Use of this source code is governed by a BSD-style license that can be
 // found in the LICENSE file.
 //
 // This is a utility to clear internal crypto entropy (if applicable) from
 // |BiometricsManager|s, so as to render useless templates and other user data
 // encrypted with old secrets.

 #include <stdlib.h>
 #include <sys/types.h>
 #include <unistd.h>

 #include <base/files/file_descriptor_watcher_posix.h>
 #include <base/logging.h>
 #include <base/process/process.h>
 #include <base/task/single_thread_task_executor.h>
 #include <base/time/time.h>
 #include <brillo/flag_helper.h>
 #include <cros_config/cros_config.h>

 #include "biod/biod_config.h"
 #include "biod/biod_version.h"
 #include "biod/cros_fp_device.h"

 namespace {

 static constexpr base::TimeDelta kTimeout = base::Seconds(30);

 constexpr char kHelpMessage[] = "bio_wash resets the SBP.";

 bool IsFingerprintSupported() {
   brillo::CrosConfig cros_config;
   return biod::FingerprintSupported(&cros_config);
 }

 int DoBioWash(const bool factory_init = false) {
   base::SingleThreadTaskExecutor task_executor(base::MessagePumpType::IO);
   base::FileDescriptorWatcher watcher(task_executor.task_runner());
   auto biod_metrics = std::make_unique<biod::BiodMetrics>();
   auto cros_fp_device = biod::CrosFpDevice::Create(
       biod_metrics.get(), std::make_unique<ec::EcCommandFactory>());
   bool success = cros_fp_device->InitEntropy(!factory_init);
   if (!success) {
     LOG(INFO) << "Entropy source reset failed.";
     return -1;
   }
   LOG(INFO) << "Entropy source has been successfully reset.";
   return 0;
 }

 }  // namespace

 int main(int argc, char* argv[]) {
   DEFINE_bool(factory_init, false, "First time initialisation in the factory.");
   DEFINE_bool(force, false, "Override cros config fingerprint system check.");

   brillo::FlagHelper::Init(argc, argv, kHelpMessage);

   biod::LogVersion();

   // Check if model supports fingerprint
   if (!FLAGS_force && !IsFingerprintSupported()) {
     LOG(INFO) << "Fingerprint is not supported on this model, exiting.";
     return EXIT_SUCCESS;
   }

   pid_t pid;
   pid = fork();

   if (pid == -1) {
     PLOG(ERROR) << "Failed to fork child process for bio_wash.";
     return -1;
   }

   if (pid == 0) {
     return DoBioWash(FLAGS_factory_init);
   }

   auto process = base::Process::Open(pid);
   int exit_code;
   if (!process.WaitForExitWithTimeout(kTimeout, &exit_code)) {
     LOG(ERROR) << "Bio wash timeout out, exit code: " << exit_code;
     process.Terminate(-1, false);
   }

   return exit_code;
 }
	// Copyright 2018 The ChromiumOS Authors
	// Use of this source code is governed by a BSD-style license that can be
	// found in the LICENSE file.
	//
	// This is a utility to clear internal crypto entropy (if applicable) from
	// \|BiometricsManager\|s, so as to render useless templates and other user data
	// encrypted with old secrets.

	#include <stdlib.h>
	#include <sys/types.h>
	#include <unistd.h>

	#include <base/files/file_descriptor_watcher_posix.h>
	#include <base/logging.h>
	#include <base/process/process.h>
	#include <base/task/single_thread_task_executor.h>
	#include <base/time/time.h>
	#include <brillo/flag_helper.h>
	#include <cros_config/cros_config.h>

	#include "biod/biod_config.h"
	#include "biod/biod_version.h"
	#include "biod/cros_fp_device.h"

	namespace {

	static constexpr base::TimeDelta kTimeout = base::Seconds(30);

	constexpr char kHelpMessage[] = "bio_wash resets the SBP.";

	bool IsFingerprintSupported() {
	brillo::CrosConfig cros_config;
	return biod::FingerprintSupported(&cros_config);
	}

	int DoBioWash(const bool factory_init = false) {
	base::SingleThreadTaskExecutor task_executor(base::MessagePumpType::IO);
	base::FileDescriptorWatcher watcher(task_executor.task_runner());
	auto biod_metrics = std::make_unique<biod::BiodMetrics>();
	auto cros_fp_device = biod::CrosFpDevice::Create(
	biod_metrics.get(), std::make_unique<ec::EcCommandFactory>());
	bool success = cros_fp_device->InitEntropy(!factory_init);
	if (!success) {
	LOG(INFO) << "Entropy source reset failed.";
	return -1;
	}
	LOG(INFO) << "Entropy source has been successfully reset.";
	return 0;
	}

	} // namespace

	int main(int argc, char* argv[]) {
	DEFINE_bool(factory_init, false, "First time initialisation in the factory.");
	DEFINE_bool(force, false, "Override cros config fingerprint system check.");

	brillo::FlagHelper::Init(argc, argv, kHelpMessage);

	biod::LogVersion();

	// Check if model supports fingerprint
	if (!FLAGS_force && !IsFingerprintSupported()) {
	LOG(INFO) << "Fingerprint is not supported on this model, exiting.";
	return EXIT_SUCCESS;
	}

	pid_t pid;
	pid = fork();

	if (pid == -1) {
	PLOG(ERROR) << "Failed to fork child process for bio_wash.";
	return -1;
	}

	if (pid == 0) {
	return DoBioWash(FLAGS_factory_init);
	}

	auto process = base::Process::Open(pid);
	int exit_code;
	if (!process.WaitForExitWithTimeout(kTimeout, &exit_code)) {
	LOG(ERROR) << "Bio wash timeout out, exit code: " << exit_code;
	process.Terminate(-1, false);
	}

	return exit_code;
	}