• Home
  • Line#
  • Scopes#
  • Navigate#
  • Raw
  • Download
1 /*
2  * Copyright (C) 2015 The Android Open Source Project
3  *
4  * Licensed under the Apache License, Version 2.0 (the "License");
5  * you may not use this file except in compliance with the License.
6  * You may obtain a copy of the License at
7  *
8  *      http://www.apache.org/licenses/LICENSE-2.0
9  *
10  * Unless required by applicable law or agreed to in writing, software
11  * distributed under the License is distributed on an "AS IS" BASIS,
12  * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13  * See the License for the specific language governing permissions and
14  * limitations under the License.
15  */
16 
17 #ifndef KEYSTORE_OPERATION_H_
18 #define KEYSTORE_OPERATION_H_
19 
20 #include <map>
21 #include <vector>
22 
23 #include <binder/Binder.h>
24 #include <binder/IBinder.h>
25 #include <keymasterV4_0/Keymaster.h>
26 #include <utils/StrongPointer.h>
27 
28 #include <keystore/keymaster_types.h>
29 #include <keystore/keystore_hidl_support.h>
30 
31 #include "operation_proto_handler.h"
32 #include "operation_struct.h"
33 
34 namespace keystore {
35 
36 using ::android::IBinder;
37 using ::android::sp;
38 using keymaster::support::Keymaster;
39 
40 /**
41  * OperationMap handles the translation of uint64_t's and keymaster2_device_t's to opaque binder
42  * tokens that can be used to reference that operation at a later time by applications. It also does
43  * LRU tracking for operation pruning and keeps a mapping of clients to operations to allow for
44  * graceful handling of application death.
45  */
46 
47 class OperationMap {
48   public:
49     explicit OperationMap(IBinder::DeathRecipient* deathRecipient);
50     sp<IBinder> addOperation(uint64_t handle, uint64_t keyid, KeyPurpose purpose,
51                              const sp<Keymaster>& dev, const sp<IBinder>& appToken,
52                              KeyCharacteristics&& characteristics,
53                              const hidl_vec<KeyParameter>& params, bool pruneable);
54     NullOr<const Operation&> getOperation(const sp<IBinder>& token);
55     NullOr<Operation> removeOperation(const sp<IBinder>& token, bool wasSuccessful);
56     bool hasPruneableOperation() const;
getOperationCount()57     size_t getOperationCount() const { return mMap.size(); }
58     size_t getPruneableOperationCount() const;
59     void setOperationAuthToken(const sp<IBinder>& token, HardwareAuthToken authToken);
60     void setOperationVerificationToken(const sp<IBinder>& token, VerificationToken authToken);
61     sp<IBinder> getOldestPruneableOperation();
62     std::vector<sp<IBinder>> getOperationsForToken(const sp<IBinder>& appToken);
63 
64   private:
65     void updateLru(const sp<IBinder>& token);
66     void removeOperationTracking(const sp<IBinder>& token, const sp<IBinder>& appToken);
67     std::map<sp<IBinder>, Operation> mMap;
68     std::vector<sp<IBinder>> mLru;
69     std::map<sp<IBinder>, std::vector<sp<IBinder>>> mAppTokenMap;
70     IBinder::DeathRecipient* mDeathRecipient;
71 };
72 
73 }  // namespace keystore
74 
75 #endif
76