Fix lockscreen's 'device locked' crash on Android 12 and 12L devices

[jmartinesp]

Type of change

• Feature
• Bugfix
• Technical
• Other :

Content

Fixes #6768.
Depends on #6769.

Motivation and context

On Android 12 and 12L (APIs 31 and 32) there seems to be a bug that causes KeyguardManager.isDeviceLocked to be true for a few milliseconds even after the lock screen has been dismissed and the app is already displayed.

Since we added setRequiresDeviceUnlocked(true) to the biometric key, it can only be used after the device is unlocked and KeyStore will throw an exception if we try to access the key while it's locked. In this case, it's causing crashes when trying to update LockScreenViewModel's state based on the biometric keys info.

I also tried to simplify the implementation of the lock screen feature by removing some redundant components (LockScreenConfigurationProvider).

Screenshots / GIFs

Tests

• Make sure you're on Android 12 or 12L, in a physical device if possible (emulators on those APIs sometimes don't work well with biometric auth).
• Also, make sure the device has biometric authentication enabled.
• Open the app, set up biometric authentication for it if it wasn't already enabled. You can do this on Settings > Security and privacy > Protect access.
• With the app visible, lock and unlock the device using the power button then your pin/pattern/fingerprint.

If the app didn't crash, the fix is working.

Tested devices

• Physical
• Emulator
• OS version(s): 13, 12L, 12, 11.

Checklist

• Changes has been tested on an Android device or Android emulator with API 21
• UI change has been tested on both light and dark themes
• Accessibility has been taken into account. See https://github.com/vector-im/element-android/blob/develop/CONTRIBUTING.md#accessibility
• Pull request is based on the develop branch
• Pull request includes a new file under ./changelog.d. See https://github.com/vector-im/element-android/blob/develop/CONTRIBUTING.md#changelog
• Pull request includes screenshots or videos if containing UI changes
• Pull request includes a sign off
• You've made a self review of your PR
• If you have modified the screen flow, or added new screens to the application, you have updated the test UiAllScreensSanityTest.allScreensTest()

[jmartinesp]

Since we started using CryptoObject, the system key is created when that CryptoObject is instantiated. Instead of ensuring the system key is created on success, make sure it's removed on error if we were on the process of enabling biometric auth.

[jmartinesp]

This is the actual code that fixes the issue.

[ouchadam]

do you think it's worth extracting this to a dedicated class/usecase? would also mean we could avoid the VisibleForTesting

not a blocker for me

[jmartinesp]

Actually, the @VisibleForTesting annotation is no longer needed, I forgot to revert it to private.

I also thought about making it an external component, but it seemed too specific since it's only used here and it's a terrible hack that shouldn't be used anywhere if there's an alternative.

[ouchadam]

I don't have tooo strong of an opinion here, up to you!
I would lean towards extracting as ViewModels tend to collect logic, requiring more setup for unit tests

[ouchadam]

if the PR is set to be based on #6780 we'll get a smaller diff (and it'll automatically update the base branch when the base is merged)

[ouchadam]

can also use justRun/coJustRun for these Unit cases

[ouchadam]

I'm wondering if we should expose this as a ViewEvent, the ViewModel.init would register to the state and emit the event in onEach rather than the Fragment handling the logic (would have the benefit of being testable at the ViewModel layer)

what do you think? (could be a separate PR if you agree)

[jmartinesp]

I think we don't need to observe the field, just checking it once on init, inside the launched coroutine should be enough: we only want to display the prompt automatically once when the user enters the lockscreen, so triggering the event several times depending on external changes might be weird behaviour.

[ouchadam]

I see! in that case flow.first { it.showBiometricPromptAutomatically } might be better than distinct + filter

it's also worth highlighting init is probably a bad place to emit events as it requires the fragments to be able to start observing before the ViewModel has been created, otherwise it creates race conditions 😅

other ViewModels have dedicated actions that correlate to the lifecycle like Resumed/Visible

[jmartinesp]

Do you mean something like this?

init {
    ...
    observeStateChanges()
}

private fun observeStateChanges() {
    viewModelScope.launch {
        if (stateFlow.firstOrNull { it.showBiometricPromptAutomatically } != null) {
            _viewEvents.post(LockScreenViewEvent.ShowBiometricPromptAutomatically)
        }
    }

    viewModelScope.launch {
        if (stateFlow.firstOrNull { it.isBiometricKeyInvalidated } != null) {
            onBiometricKeyInvalidated()
        }
    }
}

[ouchadam]

yep ^^^ but if it's possible for the view event to trigger before a fragment has a chance to start observing we'll need another ViewAction when onCreate or onResume happens to trigger the logic instead of init

[jmartinesp]

I added an OnUIReady action to be triggered when the fragment's onViewCreated is called, right after it starts observing events.

[sonarqubecloud]

SonarCloud Quality Gate failed.   

0 Bugs
0 Vulnerabilities
0 Security Hotspots
0 Code Smells

52.3% Coverage
0.0% Duplication