Google Git
Sign in
android / platform / system / keymaster / f268d742dbefe0e84b4046db7669c4ffbc110f7d / . / google_keymaster_messages.h
blob: 9b86d0cf624e72596b6e059a4268c3514d465baf [file] [log] [blame]
/*
* Copyright 2014 The Android Open Source Project
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
* http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
#ifndef SYSTEM_KEYMASTER_GOOGLE_KEYMASTER_MESSAGES_H_
#define SYSTEM_KEYMASTER_GOOGLE_KEYMASTER_MESSAGES_H_
#include <stdlib.h>
#include <string.h>
#include "authorization_set.h"
#include "google_keymaster_utils.h"
namespace keymaster {
// Commands
const uint32_t GENERATE_KEY = 0;
/**
* All responses include an error value, and if the error is not KM_ERROR_OK, return no additional
* data. This abstract class factors out the common serialization functionality for all of the
* responses, so we only have to implement it once. Inheritance for reuse is generally not a great
* structure, but in this case it's the cleanest option.
*/
struct KeymasterResponse : public Serializable {
size_t SerializedSize() const;
uint8_t* Serialize(uint8_t* buf, const uint8_t* end) const;
bool Deserialize(const uint8_t** buf_ptr, const uint8_t* end);
virtual size_t NonErrorSerializedSize() const = 0;
virtual uint8_t* NonErrorSerialize(uint8_t* buf, const uint8_t* end) const = 0;
virtual bool NonErrorDeserialize(const uint8_t** buf_ptr, const uint8_t* end) = 0;
keymaster_error_t error;
};
struct SupportedAlgorithmsResponse : public KeymasterResponse {
SupportedAlgorithmsResponse() : algorithms(NULL), algorithms_length(0) {}
~SupportedAlgorithmsResponse() { delete[] algorithms; }
size_t NonErrorSerializedSize() const;
uint8_t* NonErrorSerialize(uint8_t* buf, const uint8_t* end) const;
bool NonErrorDeserialize(const uint8_t** buf_ptr, const uint8_t* end);
keymaster_algorithm_t* algorithms;
size_t algorithms_length;
};
template <typename T> struct SupportedResponse : public KeymasterResponse {
SupportedResponse() : results(NULL), results_length(0) {}
~SupportedResponse() { delete[] results; }
template <size_t N> void SetResults(const T (&arr)[N]) {
delete[] results;
results_length = 0;
results = dup_array(arr);
if (results == NULL) {
error = KM_ERROR_MEMORY_ALLOCATION_FAILED;
} else {
results_length = N;
error = KM_ERROR_OK;
}
}
size_t NonErrorSerializedSize() const {
return sizeof(uint32_t) + results_length * sizeof(uint32_t);
}
uint8_t* NonErrorSerialize(uint8_t* buf, const uint8_t* end) const {
return append_uint32_array_to_buf(buf, end, results, results_length);
}
bool NonErrorDeserialize(const uint8_t** buf_ptr, const uint8_t* end) {
return copy_uint32_array_from_buf(buf_ptr, end, &results, &results_length);
}
T* results;
size_t results_length;
};
struct GenerateKeyRequest : public Serializable {
GenerateKeyRequest() {}
GenerateKeyRequest(uint8_t* buf, size_t size) : key_description(buf, size) {}
size_t SerializedSize() const { return key_description.SerializedSize(); }
uint8_t* Serialize(uint8_t* buf, const uint8_t* end) const {
return key_description.Serialize(buf, end);
}
bool Deserialize(const uint8_t** buf_ptr, const uint8_t* end) {
return key_description.Deserialize(buf_ptr, end);
}
AuthorizationSet key_description;
};
struct GenerateKeyResponse : public KeymasterResponse {
GenerateKeyResponse() {
error = KM_ERROR_OK;
key_blob.key_material = NULL;
key_blob.key_material_size = 0;
}
~GenerateKeyResponse();
size_t NonErrorSerializedSize() const;
uint8_t* NonErrorSerialize(uint8_t* buf, const uint8_t* end) const;
bool NonErrorDeserialize(const uint8_t** buf_ptr, const uint8_t* end);
keymaster_key_blob_t key_blob;
AuthorizationSet enforced;
AuthorizationSet unenforced;
};
struct GetKeyCharacteristicsRequest : public Serializable {
GetKeyCharacteristicsRequest() { key_blob.key_material = NULL; }
~GetKeyCharacteristicsRequest();
void SetKeyMaterial(const void* key_material, size_t length);
void SetKeyMaterial(const keymaster_key_blob_t& blob) {
SetKeyMaterial(blob.key_material, blob.key_material_size);
}
size_t SerializedSize() const;
uint8_t* Serialize(uint8_t* buf, const uint8_t* end) const;
bool Deserialize(const uint8_t** buf_ptr, const uint8_t* end);
keymaster_key_blob_t key_blob;
AuthorizationSet additional_params;
};
struct GetKeyCharacteristicsResponse : public KeymasterResponse {
size_t NonErrorSerializedSize() const;
uint8_t* NonErrorSerialize(uint8_t* buf, const uint8_t* end) const;
bool NonErrorDeserialize(const uint8_t** buf_ptr, const uint8_t* end);
AuthorizationSet enforced;
AuthorizationSet unenforced;
};
struct BeginOperationRequest : public Serializable {
BeginOperationRequest() { key_blob.key_material = NULL; }
~BeginOperationRequest() { delete[] key_blob.key_material; }
void SetKeyMaterial(const void* key_material, size_t length);
void SetKeyMaterial(const keymaster_key_blob_t& blob) {
SetKeyMaterial(blob.key_material, blob.key_material_size);
}
size_t SerializedSize() const;
uint8_t* Serialize(uint8_t* buf, const uint8_t* end) const;
bool Deserialize(const uint8_t** buf_ptr, const uint8_t* end);
keymaster_purpose_t purpose;
keymaster_key_blob_t key_blob;
AuthorizationSet additional_params;
};
struct BeginOperationResponse : public KeymasterResponse {
size_t NonErrorSerializedSize() const;
uint8_t* NonErrorSerialize(uint8_t* buf, const uint8_t* end) const;
bool NonErrorDeserialize(const uint8_t** buf_ptr, const uint8_t* end);
keymaster_operation_handle_t op_handle;
};
struct UpdateOperationRequest : public Serializable {
size_t SerializedSize() const;
uint8_t* Serialize(uint8_t* buf, const uint8_t* end) const;
bool Deserialize(const uint8_t** buf_ptr, const uint8_t* end);
keymaster_operation_handle_t op_handle;
Buffer input;
};
struct UpdateOperationResponse : public KeymasterResponse {
size_t NonErrorSerializedSize() const;
uint8_t* NonErrorSerialize(uint8_t* buf, const uint8_t* end) const;
bool NonErrorDeserialize(const uint8_t** buf_ptr, const uint8_t* end);
Buffer output;
};
struct FinishOperationRequest : public Serializable {
size_t SerializedSize() const;
uint8_t* Serialize(uint8_t* buf, const uint8_t* end) const;
bool Deserialize(const uint8_t** buf_ptr, const uint8_t* end);
keymaster_operation_handle_t op_handle;
Buffer signature;
};
struct FinishOperationResponse : public KeymasterResponse {
size_t NonErrorSerializedSize() const;
uint8_t* NonErrorSerialize(uint8_t* buf, const uint8_t* end) const;
bool NonErrorDeserialize(const uint8_t** buf_ptr, const uint8_t* end);
Buffer output;
};
struct AddEntropyRequest : public Serializable {
size_t SerializedSize() const;
uint8_t* Serialize(uint8_t* buf, const uint8_t* end) const;
bool Deserialize(const uint8_t** buf_ptr, const uint8_t* end);
Buffer random_data;
};
struct ImportKeyRequest : public Serializable {
ImportKeyRequest() : key_data(NULL) {}
~ImportKeyRequest() { delete[] key_data; }
void SetKeyMaterial(const void* key_material, size_t length);
size_t SerializedSize() const;
uint8_t* Serialize(uint8_t* buf, const uint8_t* end) const;
bool Deserialize(const uint8_t** buf_ptr, const uint8_t* end);
AuthorizationSet additional_params;
keymaster_key_format_t key_format;
uint8_t* key_data;
size_t key_data_length;
};
struct ImportKeyResponse : public KeymasterResponse {
ImportKeyResponse() { key_blob.key_material = NULL; }
~ImportKeyResponse() { delete[] key_blob.key_material; }
void SetKeyMaterial(const void* key_material, size_t length);
void SetKeyMaterial(const keymaster_key_blob_t& blob) {
SetKeyMaterial(blob.key_material, blob.key_material_size);
}
size_t NonErrorSerializedSize() const;
uint8_t* NonErrorSerialize(uint8_t* buf, const uint8_t* end) const;
bool NonErrorDeserialize(const uint8_t** buf_ptr, const uint8_t* end);
keymaster_key_blob_t key_blob;
AuthorizationSet enforced;
AuthorizationSet unenforced;
};
struct ExportKeyRequest : public Serializable {
ExportKeyRequest() { key_blob.key_material = NULL; }
~ExportKeyRequest() { delete[] key_blob.key_material; }
void SetKeyMaterial(const void* key_material, size_t length);
void SetKeyMaterial(const keymaster_key_blob_t& blob) {
SetKeyMaterial(blob.key_material, blob.key_material_size);
}
size_t SerializedSize() const;
uint8_t* Serialize(uint8_t* buf, const uint8_t* end) const;
bool Deserialize(const uint8_t** buf_ptr, const uint8_t* end);
AuthorizationSet additional_params;
keymaster_key_format_t key_format;
keymaster_key_blob_t key_blob;
};
struct ExportKeyResponse : public KeymasterResponse {
ExportKeyResponse() : key_data(NULL) {}
~ExportKeyResponse() { delete[] key_data; }
void SetKeyMaterial(const void* key_material, size_t length);
size_t NonErrorSerializedSize() const;
uint8_t* NonErrorSerialize(uint8_t* buf, const uint8_t* end) const;
bool NonErrorDeserialize(const uint8_t** buf_ptr, const uint8_t* end);
uint8_t* key_data;
size_t key_data_length;
};
// The structs below are trivial because they're not implemented yet.
struct RescopeRequest : public Serializable {};
struct RescopeResponse : public KeymasterResponse {};
} // namespace keymaster
#endif // SYSTEM_KEYMASTER_GOOGLE_KEYMASTER_MESSAGES_H_