Resolve challenge lifecycle race conditions

author Kevin Chyn <kchyn@google.com>

Tue, 4 Jun 2019 20:29:40 +0000 (13:29 -0700)

committer Kevin Chyn <kchyn@google.com>

Tue, 4 Jun 2019 21:27:28 +0000 (14:27 -0700)
author Kevin Chyn <kchyn@google.com>
Tue, 4 Jun 2019 20:29:40 +0000 (13:29 -0700)
committer Kevin Chyn <kchyn@google.com>
Tue, 4 Jun 2019 21:27:28 +0000 (14:27 -0700)
diff --git a/src/com/android/settings/biometrics/face/FaceSettings.java b/src/com/android/settings/biometrics/face/FaceSettings.java

index 48370d9..9766f34 100644 (file)
--- a/src/com/android/settings/biometrics/face/FaceSettings.java
+++ b/src/com/android/settings/biometrics/face/FaceSettings.java
@@ -69,6 +69,8 @@ public class FaceSettings extends DashboardFragment {
      private Preference mRemoveButton;
      private Preference mEnrollButton;
  
+    private boolean mConfirmingPassword;
+
      private final FaceSettingsRemoveButtonPreferenceController.Listener mRemovalListener = () -> {
  
          // Disable the toggles until the user re-enrolls
@@ -145,23 +147,27 @@ public class FaceSettings extends DashboardFragment {
          if (savedInstanceState != null) {
              mToken = savedInstanceState.getByteArray(KEY_TOKEN);
          }
+    }
  
-        if (mToken == null) {
+    @Override
+    public void onResume() {
+        super.onResume();
+
+        if (mToken == null && !mConfirmingPassword) {
+            // Generate challenge in onResume instead of onCreate, since FaceSettings can be
+            // created while Keyguard is showing, in which case the resetLockout revokeChallenge
+            // will invalidate the too-early created challenge here.
              final long challenge = mFaceManager.generateChallenge();
              ChooseLockSettingsHelper helper = new ChooseLockSettingsHelper(getActivity(), this);
+
+            mConfirmingPassword = true;
              if (!helper.launchConfirmationActivity(CONFIRM_REQUEST,
                      getString(R.string.security_settings_face_preference_title),
                      null, null, challenge, mUserId)) {
                  Log.e(TAG, "Password not set");
                  finish();
              }
-        }
-    }
-
-    @Override
-    public void onResume() {
-        super.onResume();
-        if (mToken != null) {
+        } else {
              mAttentionController.setToken(mToken);
              mEnrollController.setToken(mToken);
          }
@@ -175,6 +181,7 @@ public class FaceSettings extends DashboardFragment {
      public void onActivityResult(int requestCode, int resultCode, Intent data) {
          super.onActivityResult(requestCode, resultCode, data);
          if (requestCode == CONFIRM_REQUEST) {
+            mConfirmingPassword = false;
              if (resultCode == RESULT_FINISHED || resultCode == RESULT_OK) {
                  mFaceManager.setActiveUser(mUserId);
                  // The pin/pattern/password was set.
@@ -196,13 +203,20 @@ public class FaceSettings extends DashboardFragment {
      }
  
      @Override
-    public void onDestroy() {
-        super.onDestroy();
-        if (getActivity().isFinishing()) {
-            final int result = mFaceManager.revokeChallenge();
-            if (result < 0) {
-                Log.w(TAG, "revokeChallenge failed, result: " + result);
+    public void onStop() {
+        super.onStop();
+
+        if (!mEnrollController.isClicked() && !getActivity().isChangingConfigurations()
+                && !mConfirmingPassword) {
+            // Revoke challenge and finish
+            if (mToken != null) {
+                final int result = mFaceManager.revokeChallenge();
+                if (result < 0) {
+                    Log.w(TAG, "revokeChallenge failed, result: " + result);
+                }
+                mToken = null;
              }
+            getActivity().finish();
          }
      }
  
diff --git a/src/com/android/settings/biometrics/face/FaceSettingsEnrollButtonPreferenceController.java b/src/com/android/settings/biometrics/face/FaceSettingsEnrollButtonPreferenceController.java

index ec7b194..a087ccc 100644 (file)
--- a/src/com/android/settings/biometrics/face/FaceSettingsEnrollButtonPreferenceController.java
+++ b/src/com/android/settings/biometrics/face/FaceSettingsEnrollButtonPreferenceController.java
@@ -42,6 +42,7 @@ public class FaceSettingsEnrollButtonPreferenceController extends BasePreference
      private byte[] mToken;
      private SettingsActivity mActivity;
      private Button mButton;
+    private boolean mIsClicked;
  
      public FaceSettingsEnrollButtonPreferenceController(Context context) {
          this(context, KEY);
@@ -63,6 +64,7 @@ public class FaceSettingsEnrollButtonPreferenceController extends BasePreference
  
      @Override
      public void onClick(View v) {
+        mIsClicked = true;
          final Intent intent = new Intent();
          intent.setClassName("com.android.settings", FaceEnrollIntroduction.class.getName());
          intent.putExtra(Intent.EXTRA_USER_ID, mUserId);
@@ -83,6 +85,13 @@ public class FaceSettingsEnrollButtonPreferenceController extends BasePreference
          mToken = token;
      }
  
+    // Return the click state, then clear its state.
+    public boolean isClicked() {
+        final boolean wasClicked = mIsClicked;
+        mIsClicked = false;
+        return wasClicked;
+    }
+
      public void setActivity(SettingsActivity activity) {
          mActivity = activity;
      }
author	Kevin Chyn <kchyn@google.com>
	Tue, 4 Jun 2019 20:29:40 +0000 (13:29 -0700)
committer	Kevin Chyn <kchyn@google.com>
	Tue, 4 Jun 2019 21:27:28 +0000 (14:27 -0700)
src/com/android/settings/biometrics/face/FaceSettings.java		patch \| blob \| history
src/com/android/settings/biometrics/face/FaceSettingsEnrollButtonPreferenceController.java		patch \| blob \| history