Blame - keystore/operation.cpp - android_system_security

blob: 66fcee28f111be272f92164865404c51b04c33bc [file] [log] [blame]

Chad Brubaker	40a1a9b	2015-02-20 14:08:13 -0800	[diff] [blame]	1	/*
				2	* Copyright (C) 2015 The Android Open Source Project
				3	*
				4	* Licensed under the Apache License, Version 2.0 (the "License");
				5	* you may not use this file except in compliance with the License.
				6	* You may obtain a copy of the License at
				7	*
				8	* http://www.apache.org/licenses/LICENSE-2.0
				9	*
				10	* Unless required by applicable law or agreed to in writing, software
				11	* distributed under the License is distributed on an "AS IS" BASIS,
				12	* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
				13	* See the License for the specific language governing permissions and
				14	* limitations under the License.
				15	*/
				16	#define LOG_TAG "KeystoreOperation"
				17
				18	#include "operation.h"
				19
				20	#include <algorithm>
				21
Janis Danisevskis	c7a9fa2	2016-10-13 18:43:45 +0100	[diff] [blame]	22	namespace keystore {
Janis Danisevskis	c7a9fa2	2016-10-13 18:43:45 +0100	[diff] [blame]	23
Chad Brubaker	40a1a9b	2015-02-20 14:08:13 -0800	[diff] [blame]	24	OperationMap::OperationMap(IBinder::DeathRecipient* deathRecipient)
Shawn Willden	715d023	2016-01-21 00:45:13 -0700	[diff] [blame]	25	: mDeathRecipient(deathRecipient) {}
Chad Brubaker	40a1a9b	2015-02-20 14:08:13 -0800	[diff] [blame]	26
Janis Danisevskis	c7a9fa2	2016-10-13 18:43:45 +0100	[diff] [blame]	27	sp<IBinder> OperationMap::addOperation(uint64_t handle, uint64_t keyid, KeyPurpose purpose,
				28	const OperationMap::km_device_t& dev,
Chih-Hung Hsieh	24b2a39	2016-07-28 10:35:24 -0700	[diff] [blame]	29	const sp<IBinder>& appToken,
Janis Danisevskis	c7a9fa2	2016-10-13 18:43:45 +0100	[diff] [blame]	30	KeyCharacteristics&& characteristics, bool pruneable) {
Shawn Willden	da6dcc3	2017-12-03 14:56:05 -0700	[diff] [blame]	31	sp<IBinder> token = new ::android::BBinder();
				32	mMap.emplace(token,
				33	Operation(handle, keyid, purpose, dev, std::move(characteristics), appToken));
				34	if (pruneable) mLru.push_back(token);
				35	if (mAppTokenMap.find(appToken) == mAppTokenMap.end()) appToken->linkToDeath(mDeathRecipient);
Chad Brubaker	40a1a9b	2015-02-20 14:08:13 -0800	[diff] [blame]	36	mAppTokenMap[appToken].push_back(token);
Shawn Willden	da6dcc3	2017-12-03 14:56:05 -0700	[diff] [blame]	37
Chad Brubaker	40a1a9b	2015-02-20 14:08:13 -0800	[diff] [blame]	38	return token;
				39	}
				40
Shawn Willden	da6dcc3	2017-12-03 14:56:05 -0700	[diff] [blame]	41	NullOr<const OperationMap::Operation&> OperationMap::getOperation(const sp<IBinder>& token) {
Chad Brubaker	40a1a9b	2015-02-20 14:08:13 -0800	[diff] [blame]	42	auto entry = mMap.find(token);
Shawn Willden	da6dcc3	2017-12-03 14:56:05 -0700	[diff] [blame]	43	if (entry == mMap.end()) return {};
Chad Brubaker	40a1a9b	2015-02-20 14:08:13 -0800	[diff] [blame]	44
Shawn Willden	da6dcc3	2017-12-03 14:56:05 -0700	[diff] [blame]	45	updateLru(token);
				46	return entry->second;
Chad Brubaker	40a1a9b	2015-02-20 14:08:13 -0800	[diff] [blame]	47	}
				48
Chih-Hung Hsieh	24b2a39	2016-07-28 10:35:24 -0700	[diff] [blame]	49	void OperationMap::updateLru(const sp<IBinder>& token) {
Chad Brubaker	40a1a9b	2015-02-20 14:08:13 -0800	[diff] [blame]	50	auto lruEntry = std::find(mLru.begin(), mLru.end(), token);
				51	if (lruEntry != mLru.end()) {
				52	mLru.erase(lruEntry);
				53	mLru.push_back(token);
				54	}
				55	}
				56
Shawn Willden	da6dcc3	2017-12-03 14:56:05 -0700	[diff] [blame]	57	NullOr<OperationMap::Operation> OperationMap::removeOperation(const sp<IBinder>& token) {
Chad Brubaker	40a1a9b	2015-02-20 14:08:13 -0800	[diff] [blame]	58	auto entry = mMap.find(token);
Shawn Willden	da6dcc3	2017-12-03 14:56:05 -0700	[diff] [blame]	59	if (entry == mMap.end()) return {};
				60
				61	Operation op = std::move(entry->second);
Chad Brubaker	40a1a9b	2015-02-20 14:08:13 -0800	[diff] [blame]	62	mMap.erase(entry);
Shawn Willden	da6dcc3	2017-12-03 14:56:05 -0700	[diff] [blame]	63
Chad Brubaker	40a1a9b	2015-02-20 14:08:13 -0800	[diff] [blame]	64	auto lruEntry = std::find(mLru.begin(), mLru.end(), token);
Shawn Willden	da6dcc3	2017-12-03 14:56:05 -0700	[diff] [blame]	65	if (lruEntry != mLru.end()) mLru.erase(lruEntry);
				66	removeOperationTracking(token, op.appToken);
				67
				68	return op;
Chad Brubaker	40a1a9b	2015-02-20 14:08:13 -0800	[diff] [blame]	69	}
				70
Chih-Hung Hsieh	24b2a39	2016-07-28 10:35:24 -0700	[diff] [blame]	71	void OperationMap::removeOperationTracking(const sp<IBinder>& token, const sp<IBinder>& appToken) {
Chad Brubaker	40a1a9b	2015-02-20 14:08:13 -0800	[diff] [blame]	72	auto appEntry = mAppTokenMap.find(appToken);
				73	if (appEntry == mAppTokenMap.end()) {
				74	ALOGE("Entry for %p contains unmapped application token %p", token.get(), appToken.get());
				75	return;
				76	}
				77	auto tokenEntry = std::find(appEntry->second.begin(), appEntry->second.end(), token);
				78	appEntry->second.erase(tokenEntry);
				79	// Stop listening for death if all operations tied to the token have finished.
				80	if (appEntry->second.size() == 0) {
				81	appToken->unlinkToDeath(mDeathRecipient);
				82	mAppTokenMap.erase(appEntry);
				83	}
				84	}
				85
Alex Klyubin	700c1a3	2015-06-23 15:21:51 -0700	[diff] [blame]	86	bool OperationMap::hasPruneableOperation() const {
Shawn Willden	da6dcc3	2017-12-03 14:56:05 -0700	[diff] [blame]	87	return !mLru.empty();
Chad Brubaker	40a1a9b	2015-02-20 14:08:13 -0800	[diff] [blame]	88	}
				89
Alex Klyubin	700c1a3	2015-06-23 15:21:51 -0700	[diff] [blame]	90	size_t OperationMap::getPruneableOperationCount() const {
				91	return mLru.size();
				92	}
				93
Chad Brubaker	40a1a9b	2015-02-20 14:08:13 -0800	[diff] [blame]	94	sp<IBinder> OperationMap::getOldestPruneableOperation() {
Shawn Willden	da6dcc3	2017-12-03 14:56:05 -0700	[diff] [blame]	95	if (!hasPruneableOperation()) return sp<IBinder>(nullptr);
				96	return mLru.front();
Chad Brubaker	0cf34a2	2015-04-23 11:06:16 -0700	[diff] [blame]	97	}
				98
Shawn Willden	debb61e	2017-12-03 12:51:19 -0700	[diff] [blame]	99	bool OperationMap::setOperationAuthToken(const sp<IBinder>& token, HardwareAuthToken authToken) {
Chad Brubaker	0cf34a2	2015-04-23 11:06:16 -0700	[diff] [blame]	100	auto entry = mMap.find(token);
Shawn Willden	da6dcc3	2017-12-03 14:56:05 -0700	[diff] [blame]	101	if (entry == mMap.end()) return false;
				102
Shawn Willden	debb61e	2017-12-03 12:51:19 -0700	[diff] [blame]	103	entry->second.authToken = std::make_unique<HardwareAuthToken>(std::move(authToken));
Chad Brubaker	0cf34a2	2015-04-23 11:06:16 -0700	[diff] [blame]	104	return true;
				105	}
				106
Chih-Hung Hsieh	24b2a39	2016-07-28 10:35:24 -0700	[diff] [blame]	107	std::vector<sp<IBinder>> OperationMap::getOperationsForToken(const sp<IBinder>& appToken) {
Chad Brubaker	40a1a9b	2015-02-20 14:08:13 -0800	[diff] [blame]	108	auto appEntry = mAppTokenMap.find(appToken);
Shawn Willden	da6dcc3	2017-12-03 14:56:05 -0700	[diff] [blame]	109	if (appEntry == mAppTokenMap.end()) return {};
				110	return appEntry->second;
Chad Brubaker	40a1a9b	2015-02-20 14:08:13 -0800	[diff] [blame]	111	}
				112
Janis Danisevskis	c7a9fa2	2016-10-13 18:43:45 +0100	[diff] [blame]	113	OperationMap::Operation::Operation(uint64_t handle_, uint64_t keyid_, KeyPurpose purpose_,
				114	const OperationMap::km_device_t& device_,
				115	KeyCharacteristics&& characteristics_, sp<IBinder> appToken_)
Shawn Willden	715d023	2016-01-21 00:45:13 -0700	[diff] [blame]	116	: handle(handle_), keyid(keyid_), purpose(purpose_), device(device_),
				117	characteristics(characteristics_), appToken(appToken_) {}
Chad Brubaker	40a1a9b	2015-02-20 14:08:13 -0800	[diff] [blame]	118
Shawn Willden	da6dcc3	2017-12-03 14:56:05 -0700	[diff] [blame]	119	} // namespace keystore