Recreate shared prefs on failure

Splact · Splact · commit a7f0903d51a4 · 2021-11-03T15:08:31.000+01:00
diff --git a/OpenScienceJournal/whistlepunk_library/src/main/java/com/google/android/apps/forscience/whistlepunk/accounts/arduino/ArduinoAccountProvider.java b/OpenScienceJournal/whistlepunk_library/src/main/java/com/google/android/apps/forscience/whistlepunk/accounts/arduino/ArduinoAccountProvider.java
@@ -16,17 +16,21 @@
 import com.google.android.apps.forscience.whistlepunk.accounts.AppAccount;
 import com.google.android.apps.forscience.whistlepunk.remote.StringUtils;
 
+import java.io.File;
 import java.io.IOException;
 import java.security.GeneralSecurityException;
+import java.security.KeyStore;
 
 public class ArduinoAccountProvider extends AbstractAccountsProvider {
 
     private static final String LOG_TAG = "ArduinoAccountProvider";
+    private static final String SHARED_PREFS_FILENAME = "ArduinoSharedPreferences";
 
     private ArduinoAccount arduinoAccount;
 
     public ArduinoAccountProvider(final Context context) {
         super(context);
+
         final SharedPreferences prefs = getSharedPreferences();
         final String jsonToken = prefs.getString("token", null);
         if (!StringUtils.isEmpty(jsonToken)) {
@@ -100,27 +104,59 @@ public void showAddAccountDialog(Activity activity) {
     public void showAccountSwitcherDialog(Fragment fragment, int requestCode) {
     }
 
-    private SharedPreferences getSharedPreferences() {
+    private SharedPreferences getBrandNewSharedPreferences() {
         MasterKey masterKey = null;
+
         try {
+            File sharedPrefsFile = new File(applicationContext.getFilesDir().getParent() + "/shared_prefs/" + SHARED_PREFS_FILENAME + ".xml");
+            boolean deleted = sharedPrefsFile.delete();
+
+            Log.d(LOG_TAG, String.format("Shared prefs file deleted: %s", deleted));
+
+            // delete MasterKey
+            KeyStore keyStore = KeyStore.getInstance("AndroidKeyStore");
+            keyStore.load(null);
+            keyStore.deleteEntry(MasterKey.DEFAULT_MASTER_KEY_ALIAS);
+
+            // build MasterKey
             masterKey = new MasterKey.Builder(applicationContext, MasterKey.DEFAULT_MASTER_KEY_ALIAS)
                     .setKeyScheme(MasterKey.KeyScheme.AES256_GCM)
                     .build();
 
+            // create shared preferences
             return EncryptedSharedPreferences.create(
                     applicationContext,
-                    "ArduinoSharedPreferences",
+                    SHARED_PREFS_FILENAME,
                     masterKey,
                     EncryptedSharedPreferences.PrefKeyEncryptionScheme.AES256_SIV,
                     EncryptedSharedPreferences.PrefValueEncryptionScheme.AES256_GCM
             );
-        } catch (GeneralSecurityException e) {
-            Log.e(LOG_TAG, "Unable to retrieve encrypted shared preferences", e);
-            throw new RuntimeException("Unable to retrieve encrypted shared preferences", e);
-        } catch (IOException e) {
+        } catch (GeneralSecurityException | IOException e) {
             Log.e(LOG_TAG, "Unable to retrieve encrypted shared preferences", e);
             throw new RuntimeException("Unable to retrieve encrypted shared preferences", e);
         }
     }
 
+    private SharedPreferences getSharedPreferences() {
+        MasterKey masterKey = null;
+        try {
+            // build MasterKey
+            masterKey = new MasterKey.Builder(applicationContext, MasterKey.DEFAULT_MASTER_KEY_ALIAS)
+                    .setKeyScheme(MasterKey.KeyScheme.AES256_GCM)
+                    .build();
+
+            // get or create shared preferences
+            return EncryptedSharedPreferences.create(
+                    applicationContext,
+                    SHARED_PREFS_FILENAME,
+                    masterKey,
+                    EncryptedSharedPreferences.PrefKeyEncryptionScheme.AES256_SIV,
+                    EncryptedSharedPreferences.PrefValueEncryptionScheme.AES256_GCM
+            );
+        } catch (GeneralSecurityException | IOException e) {
+            Log.e(LOG_TAG, "Unable to retrieve encrypted shared preferences, regenerating master key.", e);
+            return this.getBrandNewSharedPreferences();
+        }
+    }
+
 }
diff --git a/OpenScienceJournal/whistlepunk_library/src/main/java/com/google/android/apps/forscience/whistlepunk/gdrivesync/GDriveShared.java b/OpenScienceJournal/whistlepunk_library/src/main/java/com/google/android/apps/forscience/whistlepunk/gdrivesync/GDriveShared.java
@@ -2,11 +2,18 @@
 
 import android.content.Context;
 import android.content.SharedPreferences;
+import android.util.Log;
 
 import androidx.security.crypto.EncryptedSharedPreferences;
-import androidx.security.crypto.MasterKeys;
+import androidx.security.crypto.MasterKey;
+
+import java.io.File;
+import java.io.IOException;
+import java.security.GeneralSecurityException;
+import java.security.KeyStore;
 
 public class GDriveShared {
+    private static final String LOG_TAG = "GDriveShared";
 
     private static boolean mAccountLoaded = false;
 
@@ -54,23 +61,62 @@ public static GDriveAccount getCredentials(final Context context) {
         return mAccount;
     }
 
-    private static SharedPreferences getSharedPreferences(final Context context) {
+    private static SharedPreferences getBrandNewSharedPreferences(Context context) {
+        MasterKey masterKey = null;
+
         try {
-            final String masterKeyAlias = MasterKeys.getOrCreate(MasterKeys.AES256_GCM_SPEC);
+            File sharedPrefsFile = new File(context.getFilesDir().getParent() + "/shared_prefs/" + SHARED_PREFS_FILENAME + ".xml");
+            boolean deleted = sharedPrefsFile.delete();
+
+            Log.d(LOG_TAG, String.format("Shared prefs file deleted: %s", deleted));
+
+            // delete MasterKey
+            KeyStore keyStore = KeyStore.getInstance("AndroidKeyStore");
+            keyStore.load(null);
+            keyStore.deleteEntry(MasterKey.DEFAULT_MASTER_KEY_ALIAS);
+
+            // build MasterKey
+            masterKey = new MasterKey.Builder(context, MasterKey.DEFAULT_MASTER_KEY_ALIAS)
+                    .setKeyScheme(MasterKey.KeyScheme.AES256_GCM)
+                    .build();
+
+            // create shared preferences
             return EncryptedSharedPreferences.create(
-                    PREFS_NAME,
-                    masterKeyAlias,
                     context,
+                    SHARED_PREFS_FILENAME,
+                    masterKey,
                     EncryptedSharedPreferences.PrefKeyEncryptionScheme.AES256_SIV,
                     EncryptedSharedPreferences.PrefValueEncryptionScheme.AES256_GCM
             );
-        } catch (Exception e) {
-            throw new RuntimeException(e);
+        } catch (GeneralSecurityException | IOException e) {
+            Log.e(LOG_TAG, "Unable to retrieve encrypted shared preferences", e);
+            throw new RuntimeException("Unable to retrieve encrypted shared preferences", e);
         }
     }
 
-    private static final String PREFS_NAME = "GoogleDriveSync";
+    private static SharedPreferences getSharedPreferences(final Context context) {
+        MasterKey masterKey = null;
+        try {
+            // build MasterKey
+            masterKey = new MasterKey.Builder(context, MasterKey.DEFAULT_MASTER_KEY_ALIAS)
+                    .setKeyScheme(MasterKey.KeyScheme.AES256_GCM)
+                    .build();
+
+            // get or create shared preferences
+            return EncryptedSharedPreferences.create(
+                    context,
+                    SHARED_PREFS_FILENAME,
+                    masterKey,
+                    EncryptedSharedPreferences.PrefKeyEncryptionScheme.AES256_SIV,
+                    EncryptedSharedPreferences.PrefValueEncryptionScheme.AES256_GCM
+            );
+        } catch (GeneralSecurityException | IOException e) {
+            Log.e(LOG_TAG, "Unable to retrieve encrypted shared preferences, regenerating master key.", e);
+            return getBrandNewSharedPreferences(context);
+        }
+    }
 
+    private static final String SHARED_PREFS_FILENAME = "GoogleDriveSync";
     private static final String KEY_ACCOUNT_ID = "account_id";
     private static final String KEY_EMAIL = "email";
     private static final String KEY_TOKEN = "token";
