| /system/gatekeeper/tests/ |
| D | gatekeeper_device_test.cpp | 59 uint8_t *auth_token; in TEST_F() local
71 password_payload, password_len, &auth_token, &auth_token_len, &should_reenroll); in TEST_F()
82 uint8_t *auth_token; in TEST_F() local
94 password_payload, password_len, &auth_token, &auth_token_len, &should_reenroll); in TEST_F()
98 hat = reinterpret_cast<hw_auth_token_t *>(auth_token); in TEST_F()
109 uint8_t *auth_token = NULL; in TEST_F() local
126 password_payload, password_len, &auth_token, &auth_token_len, in TEST_F()
129 ASSERT_EQ(NULL, auth_token); in TEST_F()
143 password_payload, password_len, &auth_token, &auth_token_len, in TEST_F()
154 uint8_t *auth_token = NULL; in TEST_F() local
[all …]
|
| D | gatekeeper_messages_test.cpp | 194 deserialized_password = &deserialized_msg.auth_token; in TEST()
196 ASSERT_EQ(0, memcmp(msg.auth_token.Data<uint8_t>(), deserialized_password->Data<uint8_t>(), in TEST()
|
| /system/keymaster/android_keymaster/ |
| D | keymaster_enforcement.cpp | 286 const hw_auth_token_t* auth_token; in AuthorizeBegin() local
288 if (!GetAndValidateAuthToken(operation_params, &auth_token, &token_auth_type)) { in AuthorizeBegin()
292 uint64_t token_timestamp_millis = ntoh(auth_token->timestamp); in AuthorizeBegin()
450 const hw_auth_token_t** auth_token, in GetAndValidateAuthToken() argument
458 if (auth_token_blob.data_length != sizeof(**auth_token)) { in GetAndValidateAuthToken()
464 *auth_token = reinterpret_cast<const hw_auth_token_t*>(auth_token_blob.data); in GetAndValidateAuthToken()
465 if ((*auth_token)->version != HW_AUTH_TOKEN_VERSION) { in GetAndValidateAuthToken()
467 (*auth_token)->version, HW_AUTH_TOKEN_VERSION); in GetAndValidateAuthToken()
471 if (!ValidateTokenSignature(**auth_token)) { in GetAndValidateAuthToken()
476 *token_auth_type = ntoh((*auth_token)->authenticator_type); in GetAndValidateAuthToken()
[all …]
|
| /system/gatekeeper/ |
| D | gatekeeper_messages.cpp | 199 VerifyResponse::VerifyResponse(uint32_t user_id, SizedBuffer auth_token) { in VerifyResponse() argument
201 this->auth_token = move(auth_token); in VerifyResponse()
209 void VerifyResponse::SetVerificationToken(SizedBuffer auth_token) { in SetVerificationToken() argument
210 this->auth_token = move(auth_token); in SetVerificationToken()
214 return serialized_buffer_size(auth_token) + sizeof(request_reenroll); in nonErrorSerializedSize()
218 append_to_buffer(&buffer, auth_token); in nonErrorSerialize()
224 auth_token = {}; in nonErrorDeserialize()
226 gatekeeper_error_t err = read_from_buffer(&payload, end, &auth_token); in nonErrorDeserialize()
|
| D | gatekeeper.cpp | 148 SizedBuffer auth_token; in Verify() local
149 response->error = MintAuthToken(&auth_token, timestamp, in Verify()
154 response->SetVerificationToken(move(auth_token)); in Verify()
240 gatekeeper_error_t GateKeeper::MintAuthToken(SizedBuffer *auth_token, in MintAuthToken() argument
243 if (auth_token == nullptr) return ERROR_INVALID; in MintAuthToken()
278 *auth_token = { token_buffer, sizeof(hw_auth_token_t) }; in MintAuthToken()
|
| /system/security/keystore2/src/ |
| D | authorization.rs | 120 fn add_auth_token(&self, auth_token: &HardwareAuthToken) -> Result<()> { in add_auth_token()
124 ENFORCEMENTS.add_auth_token(auth_token.clone()); in add_auth_token()
227 let (auth_token, ts_token) = in get_auth_tokens_for_credstore()
229 Ok(AuthorizationTokens { authToken: auth_token, timestampToken: ts_token }) in get_auth_tokens_for_credstore()
236 fn addAuthToken(&self, auth_token: &HardwareAuthToken) -> BinderResult<()> { in addAuthToken()
238 map_or_log_err(self.add_auth_token(auth_token), Ok) in addAuthToken()
|
| D | raw_device.rs | 310 auth_token: Option<&HardwareAuthToken>, in use_key_in_one_step()
319 self.km_dev.begin(purpose, blob, operation_parameters, auth_token) in use_key_in_one_step()
|
| D | super_key.rs | 195 auth_token: &HardwareAuthToken, in decrypt()
219 Some(auth_token), in decrypt()
1018 entry.auth_token().userId == *sid || entry.auth_token().authenticatorId == *sid in try_unlock_user_with_biometric()
1026 auth_token_entry.auth_token(), in try_unlock_user_with_biometric()
1034 auth_token_entry.auth_token(), in try_unlock_user_with_biometric()
|
| D | enforcements.rs | 685 Some(hat.auth_token().clone()), in authorize_create()
822 let auth_token = if let Some((auth_token_entry, _)) = result { in get_auth_tokens() localVariable
851 Ok((auth_token, tst)) in get_auth_tokens()
|
| D | database.rs | 785 auth_token: HardwareAuthToken, field
791 fn new(auth_token: HardwareAuthToken, time_received: MonotonicRawTime) -> Self { in new()
792 AuthTokenEntry { auth_token, time_received } in new()
798 (sid == self.auth_token.userId || sid == self.auth_token.authenticatorId) in satisfies()
799 && (((auth_type.0 as i32) & (self.auth_token.authenticatorType.0 as i32)) != 0) in satisfies()
804 pub fn auth_token(&self) -> &HardwareAuthToken { in auth_token() method
805 &self.auth_token in auth_token()
810 self.auth_token in take_auth_token()
820 self.auth_token.challenge in challenge()
3157 pub fn insert_auth_token(&mut self, auth_token: &HardwareAuthToken) { in insert_auth_token()
[all …]
|
| /system/core/trusty/gatekeeper/ |
| D | trusty_gatekeeper.cpp | 125 hidl_vec<uint8_t> auth_token( in verify() local
126 response.auth_token.Data<uint8_t>(), in verify()
127 response.auth_token.Data<uint8_t>() + response.auth_token.size()); in verify()
131 response.retry_timeout, auth_token}); in verify()
|
| /system/security/keystore2/src/database/ |
| D | perboot.rs | 52 AuthTokenId::from_auth_token(&self.0.auth_token).hash(state) in hash()
58 AuthTokenId::from_auth_token(&self.0.auth_token) in eq()
59 == AuthTokenId::from_auth_token(&other.0.auth_token) in eq()
|
| /system/core/trusty/keymaster/4.0/ |
| D | TrustyKeymaster4Device.cpp | 109 hw_auth_token_t* auth_token = reinterpret_cast<hw_auth_token_t*>(p.blob.data()); in injectAuthToken() local
110 auth_token->version = 0; in injectAuthToken()
111 auth_token->challenge = authToken.challenge; in injectAuthToken()
112 auth_token->user_id = authToken.userId; in injectAuthToken()
113 auth_token->authenticator_id = authToken.authenticatorId; in injectAuthToken()
114 auth_token->authenticator_type = in injectAuthToken()
116 auth_token->timestamp = htobe64(authToken.timestamp); in injectAuthToken()
117 static_assert(mac_len == sizeof(auth_token->hmac)); in injectAuthToken()
118 memcpy(auth_token->hmac, authToken.mac.data(), mac_len); in injectAuthToken()
315 request.auth_token.challenge = authToken.challenge; in verifyAuthorization()
[all …]
|
| /system/gatekeeper/include/gatekeeper/ |
| D | gatekeeper_messages.h | 185 VerifyResponse(uint32_t user_id, SizedBuffer auth_token);
188 void SetVerificationToken(SizedBuffer auth_token);
194 SizedBuffer auth_token; member
|
| D | gatekeeper.h | 195 gatekeeper_error_t MintAuthToken(SizedBuffer *auth_token, uint64_t timestamp,
|
| /system/keymaster/ng/ |
| D | AndroidKeymaster4Device.cpp | 283 request.auth_token.challenge = authToken.challenge; in verifyAuthorization()
284 request.auth_token.user_id = authToken.userId; in verifyAuthorization()
285 request.auth_token.authenticator_id = authToken.authenticatorId; in verifyAuthorization()
286 request.auth_token.authenticator_type = legacy_enum_conversion(authToken.authenticatorType); in verifyAuthorization()
287 request.auth_token.timestamp = authToken.timestamp; in verifyAuthorization()
289 request.auth_token.mac = mac; in verifyAuthorization()
|
| /system/keymaster/include/keymaster/ |
| D | android_keymaster_messages.h | 938 auth_token.SerializedSize(); in SerializedSize()
944 return auth_token.Serialize(buf, end); in Serialize()
950 auth_token.Deserialize(buf_ptr, end)); in Deserialize()
955 HardwareAuthToken auth_token; member
|