1 /* 2 * Copyright (C) 2007 The Android Open Source Project 3 * 4 * Licensed under the Apache License, Version 2.0 (the "License"); 5 * you may not use this file except in compliance with the License. 6 * You may obtain a copy of the License at 7 * 8 * http://www.apache.org/licenses/LICENSE-2.0 9 * 10 * Unless required by applicable law or agreed to in writing, software 11 * distributed under the License is distributed on an "AS IS" BASIS, 12 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. 13 * See the License for the specific language governing permissions and 14 * limitations under the License. 15 */ 16 17 #include <ctype.h> 18 #include <errno.h> 19 #include <fcntl.h> 20 #include <getopt.h> 21 #include <limits.h> 22 #include <linux/input.h> 23 #include <stdio.h> 24 #include <stdlib.h> 25 #include <string.h> 26 #include <sys/stat.h> 27 #include <sys/types.h> 28 #include <time.h> 29 #include <unistd.h> 30 #include <dirent.h> 31 32 #include "bootloader.h" 33 #include "common.h" 34 #include "cutils/properties.h" 35 #include "cutils/android_reboot.h" 36 #include "install.h" 37 #include "minui/minui.h" 38 #include "minzip/DirUtil.h" 39 #include "roots.h" 40 #include "ui.h" 41 #include "screen_ui.h" 42 #include "device.h" 43 #include "adb_install.h" 44 extern "C" { 45 #include "minadbd/adb.h" 46 } 47 48 struct selabel_handle *sehandle; 49 50 static const struct option OPTIONS[] = { 51 { "send_intent", required_argument, NULL, 's' }, 52 { "update_package", required_argument, NULL, 'u' }, 53 { "wipe_data", no_argument, NULL, 'w' }, 54 { "wipe_cache", no_argument, NULL, 'c' }, 55 { "show_text", no_argument, NULL, 't' }, 56 { "just_exit", no_argument, NULL, 'x' }, 57 { NULL, 0, NULL, 0 }, 58 }; 59 60 static const char *COMMAND_FILE = "/cache/recovery/command"; 61 static const char *INTENT_FILE = "/cache/recovery/intent"; 62 static const char *LOG_FILE = "/cache/recovery/log"; 63 static const char *LAST_LOG_FILE = "/cache/recovery/last_log"; 64 static const char *LAST_INSTALL_FILE = "/cache/recovery/last_install"; 65 static const char *CACHE_ROOT = "/cache"; 66 static const char *SDCARD_ROOT = "/sdcard"; 67 static const char *TEMPORARY_LOG_FILE = "/tmp/recovery.log"; 68 static const char *TEMPORARY_INSTALL_FILE = "/tmp/last_install"; 69 static const char *SIDELOAD_TEMP_DIR = "/tmp/sideload"; 70 71 RecoveryUI* ui = NULL; 72 73 /* 74 * The recovery tool communicates with the main system through /cache files. 75 * /cache/recovery/command - INPUT - command line for tool, one arg per line 76 * /cache/recovery/log - OUTPUT - combined log file from recovery run(s) 77 * /cache/recovery/intent - OUTPUT - intent that was passed in 78 * 79 * The arguments which may be supplied in the recovery.command file: 80 * --send_intent=anystring - write the text out to recovery.intent 81 * --update_package=path - verify install an OTA package file 82 * --wipe_data - erase user data (and cache), then reboot 83 * --wipe_cache - wipe cache (but not user data), then reboot 84 * --set_encrypted_filesystem=on|off - enables / diasables encrypted fs 85 * --just_exit - do nothing; exit and reboot 86 * 87 * After completing, we remove /cache/recovery/command and reboot. 88 * Arguments may also be supplied in the bootloader control block (BCB). 89 * These important scenarios must be safely restartable at any point: 90 * 91 * FACTORY RESET 92 * 1. user selects "factory reset" 93 * 2. main system writes "--wipe_data" to /cache/recovery/command 94 * 3. main system reboots into recovery 95 * 4. get_args() writes BCB with "boot-recovery" and "--wipe_data" 96 * -- after this, rebooting will restart the erase -- 97 * 5. erase_volume() reformats /data 98 * 6. erase_volume() reformats /cache 99 * 7. finish_recovery() erases BCB 100 * -- after this, rebooting will restart the main system -- 101 * 8. main() calls reboot() to boot main system 102 * 103 * OTA INSTALL 104 * 1. main system downloads OTA package to /cache/some-filename.zip 105 * 2. main system writes "--update_package=/cache/some-filename.zip" 106 * 3. main system reboots into recovery 107 * 4. get_args() writes BCB with "boot-recovery" and "--update_package=..." 108 * -- after this, rebooting will attempt to reinstall the update -- 109 * 5. install_package() attempts to install the update 110 * NOTE: the package install must itself be restartable from any point 111 * 6. finish_recovery() erases BCB 112 * -- after this, rebooting will (try to) restart the main system -- 113 * 7. ** if install failed ** 114 * 7a. prompt_and_wait() shows an error icon and waits for the user 115 * 7b; the user reboots (pulling the battery, etc) into the main system 116 * 8. main() calls maybe_install_firmware_update() 117 * ** if the update contained radio/hboot firmware **: 118 * 8a. m_i_f_u() writes BCB with "boot-recovery" and "--wipe_cache" 119 * -- after this, rebooting will reformat cache & restart main system -- 120 * 8b. m_i_f_u() writes firmware image into raw cache partition 121 * 8c. m_i_f_u() writes BCB with "update-radio/hboot" and "--wipe_cache" 122 * -- after this, rebooting will attempt to reinstall firmware -- 123 * 8d. bootloader tries to flash firmware 124 * 8e. bootloader writes BCB with "boot-recovery" (keeping "--wipe_cache") 125 * -- after this, rebooting will reformat cache & restart main system -- 126 * 8f. erase_volume() reformats /cache 127 * 8g. finish_recovery() erases BCB 128 * -- after this, rebooting will (try to) restart the main system -- 129 * 9. main() calls reboot() to boot main system 130 */ 131 132 static const int MAX_ARG_LENGTH = 4096; 133 static const int MAX_ARGS = 100; 134 135 // open a given path, mounting partitions as necessary 136 FILE* 137 fopen_path(const char *path, const char *mode) { 138 if (ensure_path_mounted(path) != 0) { 139 LOGE("Can't mount %s\n", path); 140 return NULL; 141 } 142 143 // When writing, try to create the containing directory, if necessary. 144 // Use generous permissions, the system (init.rc) will reset them. 145 if (strchr("wa", mode[0])) dirCreateHierarchy(path, 0777, NULL, 1, sehandle); 146 147 FILE *fp = fopen(path, mode); 148 return fp; 149 } 150 151 // close a file, log an error if the error indicator is set 152 static void 153 check_and_fclose(FILE *fp, const char *name) { 154 fflush(fp); 155 if (ferror(fp)) LOGE("Error in %s\n(%s)\n", name, strerror(errno)); 156 fclose(fp); 157 } 158 159 // command line args come from, in decreasing precedence: 160 // - the actual command line 161 // - the bootloader control block (one per line, after "recovery") 162 // - the contents of COMMAND_FILE (one per line) 163 static void 164 get_args(int *argc, char ***argv) { 165 struct bootloader_message boot; 166 memset(&boot, 0, sizeof(boot)); 167 get_bootloader_message(&boot); // this may fail, leaving a zeroed structure 168 169 if (boot.command[0] != 0 && boot.command[0] != 255) { 170 LOGI("Boot command: %.*s\n", sizeof(boot.command), boot.command); 171 } 172 173 if (boot.status[0] != 0 && boot.status[0] != 255) { 174 LOGI("Boot status: %.*s\n", sizeof(boot.status), boot.status); 175 } 176 177 // --- if arguments weren't supplied, look in the bootloader control block 178 if (*argc <= 1) { 179 boot.recovery[sizeof(boot.recovery) - 1] = '\0'; // Ensure termination 180 const char *arg = strtok(boot.recovery, "\n"); 181 if (arg != NULL && !strcmp(arg, "recovery")) { 182 *argv = (char **) malloc(sizeof(char *) * MAX_ARGS); 183 (*argv)[0] = strdup(arg); 184 for (*argc = 1; *argc < MAX_ARGS; ++*argc) { 185 if ((arg = strtok(NULL, "\n")) == NULL) break; 186 (*argv)[*argc] = strdup(arg); 187 } 188 LOGI("Got arguments from boot message\n"); 189 } else if (boot.recovery[0] != 0 && boot.recovery[0] != 255) { 190 LOGE("Bad boot message\n\"%.20s\"\n", boot.recovery); 191 } 192 } 193 194 // --- if that doesn't work, try the command file 195 if (*argc <= 1) { 196 FILE *fp = fopen_path(COMMAND_FILE, "r"); 197 if (fp != NULL) { 198 char *argv0 = (*argv)[0]; 199 *argv = (char **) malloc(sizeof(char *) * MAX_ARGS); 200 (*argv)[0] = argv0; // use the same program name 201 202 char buf[MAX_ARG_LENGTH]; 203 for (*argc = 1; *argc < MAX_ARGS; ++*argc) { 204 if (!fgets(buf, sizeof(buf), fp)) break; 205 (*argv)[*argc] = strdup(strtok(buf, "\r\n")); // Strip newline. 206 } 207 208 check_and_fclose(fp, COMMAND_FILE); 209 LOGI("Got arguments from %s\n", COMMAND_FILE); 210 } 211 } 212 213 // --> write the arguments we have back into the bootloader control block 214 // always boot into recovery after this (until finish_recovery() is called) 215 strlcpy(boot.command, "boot-recovery", sizeof(boot.command)); 216 strlcpy(boot.recovery, "recovery\n", sizeof(boot.recovery)); 217 int i; 218 for (i = 1; i < *argc; ++i) { 219 strlcat(boot.recovery, (*argv)[i], sizeof(boot.recovery)); 220 strlcat(boot.recovery, "\n", sizeof(boot.recovery)); 221 } 222 set_bootloader_message(&boot); 223 } 224 225 static void 226 set_sdcard_update_bootloader_message() { 227 struct bootloader_message boot; 228 memset(&boot, 0, sizeof(boot)); 229 strlcpy(boot.command, "boot-recovery", sizeof(boot.command)); 230 strlcpy(boot.recovery, "recovery\n", sizeof(boot.recovery)); 231 set_bootloader_message(&boot); 232 } 233 234 // How much of the temp log we have copied to the copy in cache. 235 static long tmplog_offset = 0; 236 237 static void 238 copy_log_file(const char* source, const char* destination, int append) { 239 FILE *log = fopen_path(destination, append ? "a" : "w"); 240 if (log == NULL) { 241 LOGE("Can't open %s\n", destination); 242 } else { 243 FILE *tmplog = fopen(source, "r"); 244 if (tmplog != NULL) { 245 if (append) { 246 fseek(tmplog, tmplog_offset, SEEK_SET); // Since last write 247 } 248 char buf[4096]; 249 while (fgets(buf, sizeof(buf), tmplog)) fputs(buf, log); 250 if (append) { 251 tmplog_offset = ftell(tmplog); 252 } 253 check_and_fclose(tmplog, source); 254 } 255 check_and_fclose(log, destination); 256 } 257 } 258 259 260 // clear the recovery command and prepare to boot a (hopefully working) system, 261 // copy our log file to cache as well (for the system to read), and 262 // record any intent we were asked to communicate back to the system. 263 // this function is idempotent: call it as many times as you like. 264 static void 265 finish_recovery(const char *send_intent) { 266 // By this point, we're ready to return to the main system... 267 if (send_intent != NULL) { 268 FILE *fp = fopen_path(INTENT_FILE, "w"); 269 if (fp == NULL) { 270 LOGE("Can't open %s\n", INTENT_FILE); 271 } else { 272 fputs(send_intent, fp); 273 check_and_fclose(fp, INTENT_FILE); 274 } 275 } 276 277 // Copy logs to cache so the system can find out what happened. 278 copy_log_file(TEMPORARY_LOG_FILE, LOG_FILE, true); 279 copy_log_file(TEMPORARY_LOG_FILE, LAST_LOG_FILE, false); 280 copy_log_file(TEMPORARY_INSTALL_FILE, LAST_INSTALL_FILE, false); 281 chmod(LOG_FILE, 0600); 282 chown(LOG_FILE, 1000, 1000); // system user 283 chmod(LAST_LOG_FILE, 0640); 284 chmod(LAST_INSTALL_FILE, 0644); 285 286 // Reset to normal system boot so recovery won't cycle indefinitely. 287 struct bootloader_message boot; 288 memset(&boot, 0, sizeof(boot)); 289 set_bootloader_message(&boot); 290 291 // Remove the command file, so recovery won't repeat indefinitely. 292 if (ensure_path_mounted(COMMAND_FILE) != 0 || 293 (unlink(COMMAND_FILE) && errno != ENOENT)) { 294 LOGW("Can't unlink %s\n", COMMAND_FILE); 295 } 296 297 ensure_path_unmounted(CACHE_ROOT); 298 sync(); // For good measure. 299 } 300 301 static int 302 erase_volume(const char *volume) { 303 ui->SetBackground(RecoveryUI::INSTALLING); 304 ui->SetProgressType(RecoveryUI::INDETERMINATE); 305 ui->Print("Formatting %s...\n", volume); 306 307 ensure_path_unmounted(volume); 308 309 if (strcmp(volume, "/cache") == 0) { 310 // Any part of the log we'd copied to cache is now gone. 311 // Reset the pointer so we copy from the beginning of the temp 312 // log. 313 tmplog_offset = 0; 314 } 315 316 return format_volume(volume); 317 } 318 319 static char* 320 copy_sideloaded_package(const char* original_path) { 321 if (ensure_path_mounted(original_path) != 0) { 322 LOGE("Can't mount %s\n", original_path); 323 return NULL; 324 } 325 326 if (ensure_path_mounted(SIDELOAD_TEMP_DIR) != 0) { 327 LOGE("Can't mount %s\n", SIDELOAD_TEMP_DIR); 328 return NULL; 329 } 330 331 if (mkdir(SIDELOAD_TEMP_DIR, 0700) != 0) { 332 if (errno != EEXIST) { 333 LOGE("Can't mkdir %s (%s)\n", SIDELOAD_TEMP_DIR, strerror(errno)); 334 return NULL; 335 } 336 } 337 338 // verify that SIDELOAD_TEMP_DIR is exactly what we expect: a 339 // directory, owned by root, readable and writable only by root. 340 struct stat st; 341 if (stat(SIDELOAD_TEMP_DIR, &st) != 0) { 342 LOGE("failed to stat %s (%s)\n", SIDELOAD_TEMP_DIR, strerror(errno)); 343 return NULL; 344 } 345 if (!S_ISDIR(st.st_mode)) { 346 LOGE("%s isn't a directory\n", SIDELOAD_TEMP_DIR); 347 return NULL; 348 } 349 if ((st.st_mode & 0777) != 0700) { 350 LOGE("%s has perms %o\n", SIDELOAD_TEMP_DIR, st.st_mode); 351 return NULL; 352 } 353 if (st.st_uid != 0) { 354 LOGE("%s owned by %lu; not root\n", SIDELOAD_TEMP_DIR, st.st_uid); 355 return NULL; 356 } 357 358 char copy_path[PATH_MAX]; 359 strcpy(copy_path, SIDELOAD_TEMP_DIR); 360 strcat(copy_path, "/package.zip"); 361 362 char* buffer = (char*)malloc(BUFSIZ); 363 if (buffer == NULL) { 364 LOGE("Failed to allocate buffer\n"); 365 return NULL; 366 } 367 368 size_t read; 369 FILE* fin = fopen(original_path, "rb"); 370 if (fin == NULL) { 371 LOGE("Failed to open %s (%s)\n", original_path, strerror(errno)); 372 return NULL; 373 } 374 FILE* fout = fopen(copy_path, "wb"); 375 if (fout == NULL) { 376 LOGE("Failed to open %s (%s)\n", copy_path, strerror(errno)); 377 return NULL; 378 } 379 380 while ((read = fread(buffer, 1, BUFSIZ, fin)) > 0) { 381 if (fwrite(buffer, 1, read, fout) != read) { 382 LOGE("Short write of %s (%s)\n", copy_path, strerror(errno)); 383 return NULL; 384 } 385 } 386 387 free(buffer); 388 389 if (fclose(fout) != 0) { 390 LOGE("Failed to close %s (%s)\n", copy_path, strerror(errno)); 391 return NULL; 392 } 393 394 if (fclose(fin) != 0) { 395 LOGE("Failed to close %s (%s)\n", original_path, strerror(errno)); 396 return NULL; 397 } 398 399 // "adb push" is happy to overwrite read-only files when it's 400 // running as root, but we'll try anyway. 401 if (chmod(copy_path, 0400) != 0) { 402 LOGE("Failed to chmod %s (%s)\n", copy_path, strerror(errno)); 403 return NULL; 404 } 405 406 return strdup(copy_path); 407 } 408 409 static const char** 410 prepend_title(const char* const* headers) { 411 const char* title[] = { "Android system recovery <" 412 EXPAND(RECOVERY_API_VERSION) "e>", 413 "", 414 NULL }; 415 416 // count the number of lines in our title, plus the 417 // caller-provided headers. 418 int count = 0; 419 const char* const* p; 420 for (p = title; *p; ++p, ++count); 421 for (p = headers; *p; ++p, ++count); 422 423 const char** new_headers = (const char**)malloc((count+1) * sizeof(char*)); 424 const char** h = new_headers; 425 for (p = title; *p; ++p, ++h) *h = *p; 426 for (p = headers; *p; ++p, ++h) *h = *p; 427 *h = NULL; 428 429 return new_headers; 430 } 431 432 static int 433 get_menu_selection(const char* const * headers, const char* const * items, 434 int menu_only, int initial_selection, Device* device) { 435 // throw away keys pressed previously, so user doesn't 436 // accidentally trigger menu items. 437 ui->FlushKeys(); 438 439 ui->StartMenu(headers, items, initial_selection); 440 int selected = initial_selection; 441 int chosen_item = -1; 442 443 while (chosen_item < 0) { 444 int key = ui->WaitKey(); 445 int visible = ui->IsTextVisible(); 446 447 if (key == -1) { // ui_wait_key() timed out 448 if (ui->WasTextEverVisible()) { 449 continue; 450 } else { 451 LOGI("timed out waiting for key input; rebooting.\n"); 452 ui->EndMenu(); 453 return 0; // XXX fixme 454 } 455 } 456 457 int action = device->HandleMenuKey(key, visible); 458 459 if (action < 0) { 460 switch (action) { 461 case Device::kHighlightUp: 462 --selected; 463 selected = ui->SelectMenu(selected); 464 break; 465 case Device::kHighlightDown: 466 ++selected; 467 selected = ui->SelectMenu(selected); 468 break; 469 case Device::kInvokeItem: 470 chosen_item = selected; 471 break; 472 case Device::kNoAction: 473 break; 474 } 475 } else if (!menu_only) { 476 chosen_item = action; 477 } 478 } 479 480 ui->EndMenu(); 481 return chosen_item; 482 } 483 484 static int compare_string(const void* a, const void* b) { 485 return strcmp(*(const char**)a, *(const char**)b); 486 } 487 488 static int 489 update_directory(const char* path, const char* unmount_when_done, 490 int* wipe_cache, Device* device) { 491 ensure_path_mounted(path); 492 493 const char* MENU_HEADERS[] = { "Choose a package to install:", 494 path, 495 "", 496 NULL }; 497 DIR* d; 498 struct dirent* de; 499 d = opendir(path); 500 if (d == NULL) { 501 LOGE("error opening %s: %s\n", path, strerror(errno)); 502 if (unmount_when_done != NULL) { 503 ensure_path_unmounted(unmount_when_done); 504 } 505 return 0; 506 } 507 508 const char** headers = prepend_title(MENU_HEADERS); 509 510 int d_size = 0; 511 int d_alloc = 10; 512 char** dirs = (char**)malloc(d_alloc * sizeof(char*)); 513 int z_size = 1; 514 int z_alloc = 10; 515 char** zips = (char**)malloc(z_alloc * sizeof(char*)); 516 zips[0] = strdup("../"); 517 518 while ((de = readdir(d)) != NULL) { 519 int name_len = strlen(de->d_name); 520 521 if (de->d_type == DT_DIR) { 522 // skip "." and ".." entries 523 if (name_len == 1 && de->d_name[0] == '.') continue; 524 if (name_len == 2 && de->d_name[0] == '.' && 525 de->d_name[1] == '.') continue; 526 527 if (d_size >= d_alloc) { 528 d_alloc *= 2; 529 dirs = (char**)realloc(dirs, d_alloc * sizeof(char*)); 530 } 531 dirs[d_size] = (char*)malloc(name_len + 2); 532 strcpy(dirs[d_size], de->d_name); 533 dirs[d_size][name_len] = '/'; 534 dirs[d_size][name_len+1] = '\0'; 535 ++d_size; 536 } else if (de->d_type == DT_REG && 537 name_len >= 4 && 538 strncasecmp(de->d_name + (name_len-4), ".zip", 4) == 0) { 539 if (z_size >= z_alloc) { 540 z_alloc *= 2; 541 zips = (char**)realloc(zips, z_alloc * sizeof(char*)); 542 } 543 zips[z_size++] = strdup(de->d_name); 544 } 545 } 546 closedir(d); 547 548 qsort(dirs, d_size, sizeof(char*), compare_string); 549 qsort(zips, z_size, sizeof(char*), compare_string); 550 551 // append dirs to the zips list 552 if (d_size + z_size + 1 > z_alloc) { 553 z_alloc = d_size + z_size + 1; 554 zips = (char**)realloc(zips, z_alloc * sizeof(char*)); 555 } 556 memcpy(zips + z_size, dirs, d_size * sizeof(char*)); 557 free(dirs); 558 z_size += d_size; 559 zips[z_size] = NULL; 560 561 int result; 562 int chosen_item = 0; 563 do { 564 chosen_item = get_menu_selection(headers, zips, 1, chosen_item, device); 565 566 char* item = zips[chosen_item]; 567 int item_len = strlen(item); 568 if (chosen_item == 0) { // item 0 is always "../" 569 // go up but continue browsing (if the caller is update_directory) 570 result = -1; 571 break; 572 } else if (item[item_len-1] == '/') { 573 // recurse down into a subdirectory 574 char new_path[PATH_MAX]; 575 strlcpy(new_path, path, PATH_MAX); 576 strlcat(new_path, "/", PATH_MAX); 577 strlcat(new_path, item, PATH_MAX); 578 new_path[strlen(new_path)-1] = '\0'; // truncate the trailing '/' 579 result = update_directory(new_path, unmount_when_done, wipe_cache, device); 580 if (result >= 0) break; 581 } else { 582 // selected a zip file: attempt to install it, and return 583 // the status to the caller. 584 char new_path[PATH_MAX]; 585 strlcpy(new_path, path, PATH_MAX); 586 strlcat(new_path, "/", PATH_MAX); 587 strlcat(new_path, item, PATH_MAX); 588 589 ui->Print("\n-- Install %s ...\n", path); 590 set_sdcard_update_bootloader_message(); 591 char* copy = copy_sideloaded_package(new_path); 592 if (unmount_when_done != NULL) { 593 ensure_path_unmounted(unmount_when_done); 594 } 595 if (copy) { 596 result = install_package(copy, wipe_cache, TEMPORARY_INSTALL_FILE); 597 free(copy); 598 } else { 599 result = INSTALL_ERROR; 600 } 601 break; 602 } 603 } while (true); 604 605 int i; 606 for (i = 0; i < z_size; ++i) free(zips[i]); 607 free(zips); 608 free(headers); 609 610 if (unmount_when_done != NULL) { 611 ensure_path_unmounted(unmount_when_done); 612 } 613 return result; 614 } 615 616 static void 617 wipe_data(int confirm, Device* device) { 618 if (confirm) { 619 static const char** title_headers = NULL; 620 621 if (title_headers == NULL) { 622 const char* headers[] = { "Confirm wipe of all user data?", 623 " THIS CAN NOT BE UNDONE.", 624 "", 625 NULL }; 626 title_headers = prepend_title((const char**)headers); 627 } 628 629 const char* items[] = { " No", 630 " No", 631 " No", 632 " No", 633 " No", 634 " No", 635 " No", 636 " Yes -- delete all user data", // [7] 637 " No", 638 " No", 639 " No", 640 NULL }; 641 642 int chosen_item = get_menu_selection(title_headers, items, 1, 0, device); 643 if (chosen_item != 7) { 644 return; 645 } 646 } 647 648 ui->Print("\n-- Wiping data...\n"); 649 device->WipeData(); 650 erase_volume("/data"); 651 erase_volume("/cache"); 652 ui->Print("Data wipe complete.\n"); 653 } 654 655 static void 656 prompt_and_wait(Device* device) { 657 const char* const* headers = prepend_title(device->GetMenuHeaders()); 658 659 for (;;) { 660 finish_recovery(NULL); 661 ui->SetProgressType(RecoveryUI::EMPTY); 662 663 int chosen_item = get_menu_selection(headers, device->GetMenuItems(), 0, 0, device); 664 665 // device-specific code may take some action here. It may 666 // return one of the core actions handled in the switch 667 // statement below. 668 chosen_item = device->InvokeMenuItem(chosen_item); 669 670 int status; 671 int wipe_cache; 672 switch (chosen_item) { 673 case Device::REBOOT: 674 return; 675 676 case Device::WIPE_DATA: 677 wipe_data(ui->IsTextVisible(), device); 678 if (!ui->IsTextVisible()) return; 679 break; 680 681 case Device::WIPE_CACHE: 682 ui->Print("\n-- Wiping cache...\n"); 683 erase_volume("/cache"); 684 ui->Print("Cache wipe complete.\n"); 685 if (!ui->IsTextVisible()) return; 686 break; 687 688 case Device::APPLY_EXT: 689 // Some packages expect /cache to be mounted (eg, 690 // standard incremental packages expect to use /cache 691 // as scratch space). 692 ensure_path_mounted(CACHE_ROOT); 693 status = update_directory(SDCARD_ROOT, SDCARD_ROOT, &wipe_cache, device); 694 if (status == INSTALL_SUCCESS && wipe_cache) { 695 ui->Print("\n-- Wiping cache (at package request)...\n"); 696 if (erase_volume("/cache")) { 697 ui->Print("Cache wipe failed.\n"); 698 } else { 699 ui->Print("Cache wipe complete.\n"); 700 } 701 } 702 if (status >= 0) { 703 if (status != INSTALL_SUCCESS) { 704 ui->SetBackground(RecoveryUI::ERROR); 705 ui->Print("Installation aborted.\n"); 706 } else if (!ui->IsTextVisible()) { 707 return; // reboot if logs aren't visible 708 } else { 709 ui->Print("\nInstall from sdcard complete.\n"); 710 } 711 } 712 break; 713 714 case Device::APPLY_CACHE: 715 // Don't unmount cache at the end of this. 716 status = update_directory(CACHE_ROOT, NULL, &wipe_cache, device); 717 if (status == INSTALL_SUCCESS && wipe_cache) { 718 ui->Print("\n-- Wiping cache (at package request)...\n"); 719 if (erase_volume("/cache")) { 720 ui->Print("Cache wipe failed.\n"); 721 } else { 722 ui->Print("Cache wipe complete.\n"); 723 } 724 } 725 if (status >= 0) { 726 if (status != INSTALL_SUCCESS) { 727 ui->SetBackground(RecoveryUI::ERROR); 728 ui->Print("Installation aborted.\n"); 729 } else if (!ui->IsTextVisible()) { 730 return; // reboot if logs aren't visible 731 } else { 732 ui->Print("\nInstall from cache complete.\n"); 733 } 734 } 735 break; 736 737 case Device::APPLY_ADB_SIDELOAD: 738 ensure_path_mounted(CACHE_ROOT); 739 status = apply_from_adb(ui, &wipe_cache, TEMPORARY_INSTALL_FILE); 740 if (status >= 0) { 741 if (status != INSTALL_SUCCESS) { 742 ui->SetBackground(RecoveryUI::ERROR); 743 ui->Print("Installation aborted.\n"); 744 } else if (!ui->IsTextVisible()) { 745 return; // reboot if logs aren't visible 746 } else { 747 ui->Print("\nInstall from ADB complete.\n"); 748 } 749 } 750 break; 751 } 752 } 753 } 754 755 static void 756 print_property(const char *key, const char *name, void *cookie) { 757 printf("%s=%s\n", key, name); 758 } 759 760 int 761 main(int argc, char **argv) { 762 time_t start = time(NULL); 763 764 // If these fail, there's not really anywhere to complain... 765 freopen(TEMPORARY_LOG_FILE, "a", stdout); setbuf(stdout, NULL); 766 freopen(TEMPORARY_LOG_FILE, "a", stderr); setbuf(stderr, NULL); 767 768 // If this binary is started with the single argument "--adbd", 769 // instead of being the normal recovery binary, it turns into kind 770 // of a stripped-down version of adbd that only supports the 771 // 'sideload' command. Note this must be a real argument, not 772 // anything in the command file or bootloader control block; the 773 // only way recovery should be run with this argument is when it 774 // starts a copy of itself from the apply_from_adb() function. 775 if (argc == 2 && strcmp(argv[1], "--adbd") == 0) { 776 adb_main(); 777 return 0; 778 } 779 780 printf("Starting recovery on %s", ctime(&start)); 781 782 Device* device = make_device(); 783 ui = device->GetUI(); 784 785 ui->Init(); 786 ui->SetBackground(RecoveryUI::NONE); 787 load_volume_table(); 788 get_args(&argc, &argv); 789 790 int previous_runs = 0; 791 const char *send_intent = NULL; 792 const char *update_package = NULL; 793 int wipe_data = 0, wipe_cache = 0; 794 bool just_exit = false; 795 796 int arg; 797 while ((arg = getopt_long(argc, argv, "", OPTIONS, NULL)) != -1) { 798 switch (arg) { 799 case 'p': previous_runs = atoi(optarg); break; 800 case 's': send_intent = optarg; break; 801 case 'u': update_package = optarg; break; 802 case 'w': wipe_data = wipe_cache = 1; break; 803 case 'c': wipe_cache = 1; break; 804 case 't': ui->ShowText(true); break; 805 case 'x': just_exit = true; break; 806 case '?': 807 LOGE("Invalid command argument\n"); 808 continue; 809 } 810 } 811 812 #ifdef HAVE_SELINUX 813 struct selinux_opt seopts[] = { 814 { SELABEL_OPT_PATH, "/file_contexts" } 815 }; 816 817 sehandle = selabel_open(SELABEL_CTX_FILE, seopts, 1); 818 819 if (!sehandle) { 820 fprintf(stderr, "Warning: No file_contexts\n"); 821 ui->Print("Warning: No file_contexts\n"); 822 } 823 #endif 824 825 device->StartRecovery(); 826 827 printf("Command:"); 828 for (arg = 0; arg < argc; arg++) { 829 printf(" \"%s\"", argv[arg]); 830 } 831 printf("\n"); 832 833 if (update_package) { 834 // For backwards compatibility on the cache partition only, if 835 // we're given an old 'root' path "CACHE:foo", change it to 836 // "/cache/foo". 837 if (strncmp(update_package, "CACHE:", 6) == 0) { 838 int len = strlen(update_package) + 10; 839 char* modified_path = (char*)malloc(len); 840 strlcpy(modified_path, "/cache/", len); 841 strlcat(modified_path, update_package+6, len); 842 printf("(replacing path \"%s\" with \"%s\")\n", 843 update_package, modified_path); 844 update_package = modified_path; 845 } 846 } 847 printf("\n"); 848 849 property_list(print_property, NULL); 850 printf("\n"); 851 852 int status = INSTALL_SUCCESS; 853 854 if (update_package != NULL) { 855 status = install_package(update_package, &wipe_cache, TEMPORARY_INSTALL_FILE); 856 if (status == INSTALL_SUCCESS && wipe_cache) { 857 if (erase_volume("/cache")) { 858 LOGE("Cache wipe (requested by package) failed."); 859 } 860 } 861 if (status != INSTALL_SUCCESS) ui->Print("Installation aborted.\n"); 862 } else if (wipe_data) { 863 if (device->WipeData()) status = INSTALL_ERROR; 864 if (erase_volume("/data")) status = INSTALL_ERROR; 865 if (wipe_cache && erase_volume("/cache")) status = INSTALL_ERROR; 866 if (status != INSTALL_SUCCESS) ui->Print("Data wipe failed.\n"); 867 } else if (wipe_cache) { 868 if (wipe_cache && erase_volume("/cache")) status = INSTALL_ERROR; 869 if (status != INSTALL_SUCCESS) ui->Print("Cache wipe failed.\n"); 870 } else if (!just_exit) { 871 status = INSTALL_ERROR; // No command specified 872 } 873 874 if (status != INSTALL_SUCCESS) ui->SetBackground(RecoveryUI::ERROR); 875 if (status != INSTALL_SUCCESS || ui->IsTextVisible()) { 876 prompt_and_wait(device); 877 } 878 879 // Otherwise, get ready to boot the main system... 880 finish_recovery(send_intent); 881 ui->Print("Rebooting...\n"); 882 android_reboot(ANDROID_RB_RESTART, 0, 0); 883 return EXIT_SUCCESS; 884 } 885
