Gitiles
Code Review Sign In
gerrit.omnirom.org / android_system_security / d8f95847b3a078c31a9acfa25ee8f43bccc4f96b / . / keystore-engine / keystore_backend_binder.cpp
blob: 8b5a5842551b6a47c1981106da5307d8beb54686 [file] [log] [blame]
Paul Stewartac0ffbf2017-03-03 16:43:33 -0800[diff] [blame]1/* Copyright 2017 The Android Open Source Project
2 *
3 * Redistribution and use in source and binary forms, with or without
4 * modification, are permitted provided that the following conditions
5 * are met:
6 * 1. Redistributions of source code must retain the above copyright
7 * notice, this list of conditions and the following disclaimer.
8 * 2. Redistributions in binary form must reproduce the above copyright
9 * notice, this list of conditions and the following disclaimer in the
10 * documentation and/or other materials provided with the distribution.
11 *
12 * THIS SOFTWARE IS PROVIDED BY THE AUTHOR AND CONTRIBUTORS ``AS IS'' AND ANY
13 * EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED
14 * WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE
15 * DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE FOR ANY
16 * DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES
17 * (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
18 * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND
19 * ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
20 * (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF
21 * THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. */
22
23#include "keystore_backend_binder.h"
24
Janis Danisevskise5a09aa2018-08-09 11:13:51 -0700[diff] [blame]25#include <android-base/logging.h>
Rob Barnesbb6cabd2018-10-04 17:10:37 -0600[diff] [blame]26#include <android/security/keystore/IKeystoreService.h>
Paul Stewartac0ffbf2017-03-03 16:43:33 -0800[diff] [blame]27#include <binder/IServiceManager.h>
Janis Danisevskisba2985a2018-11-14 21:10:39 -0800[diff] [blame]28#include <binder/ProcessState.h>
Janis Danisevskise5a09aa2018-08-09 11:13:51 -0700[diff] [blame]29#include <keystore/KeyCharacteristics.h>
30#include <keystore/KeymasterArguments.h>
31#include <keystore/KeymasterBlob.h>
Rob Barnesbb6cabd2018-10-04 17:10:37 -0600[diff] [blame]32#include <keystore/KeystoreResponse.h>
Janis Danisevskise5a09aa2018-08-09 11:13:51 -0700[diff] [blame]33#include <keystore/OperationResult.h>
34#include <keystore/keymaster_types.h>
Paul Stewartac0ffbf2017-03-03 16:43:33 -0800[diff] [blame]35#include <keystore/keystore.h>
Paul Stewartac0ffbf2017-03-03 16:43:33 -0800[diff] [blame]36#include <keystore/keystore_hidl_support.h>
Rob Barnesbb6cabd2018-10-04 17:10:37 -0600[diff] [blame]37#include <keystore/keystore_promises.h>
Janis Danisevskise5a09aa2018-08-09 11:13:51 -0700[diff] [blame]38#include <keystore/keystore_return_types.h>
Paul Stewartac0ffbf2017-03-03 16:43:33 -0800[diff] [blame]39
Rob Barnesbb6cabd2018-10-04 17:10:37 -0600[diff] [blame]40#include <future>
Janis Danisevskisba2985a2018-11-14 21:10:39 -0800[diff] [blame]41#include <thread>
Rob Barnesbb6cabd2018-10-04 17:10:37 -0600[diff] [blame]42
43using android::security::keystore::IKeystoreService;
Paul Stewartac0ffbf2017-03-03 16:43:33 -0800[diff] [blame]44using namespace android;
Paul Stewartac0ffbf2017-03-03 16:43:33 -0800[diff] [blame]45using keystore::hidl_vec;
46
Janis Danisevskise5a09aa2018-08-09 11:13:51 -0700[diff] [blame]47using android::hardware::keymaster::V4_0::Algorithm;
48using android::hardware::keymaster::V4_0::authorizationValue;
49using android::hardware::keymaster::V4_0::Digest;
50using android::hardware::keymaster::V4_0::KeyFormat;
51using android::hardware::keymaster::V4_0::KeyParameter;
52using android::hardware::keymaster::V4_0::KeyPurpose;
53using android::hardware::keymaster::V4_0::NullOr;
54using android::hardware::keymaster::V4_0::PaddingMode;
55using android::hardware::keymaster::V4_0::TAG_ALGORITHM;
56using android::hardware::keymaster::V4_0::TAG_DIGEST;
57using android::hardware::keymaster::V4_0::TAG_PADDING;
58using android::security::keymaster::ExportResult;
59using android::security::keymaster::KeyCharacteristics;
60using android::security::keymaster::KeymasterArguments;
61using android::security::keymaster::KeymasterBlob;
62using android::security::keymaster::OperationResult;
63
64using KSReturn = keystore::KeyStoreNativeReturnCode;
65
Paul Stewartac0ffbf2017-03-03 16:43:33 -0800[diff] [blame]66namespace {
67const char keystore_service_name[] = "android.security.keystore";
Janis Danisevskise5a09aa2018-08-09 11:13:51 -0700[diff] [blame]68constexpr int32_t UID_SELF = -1;
Rob Barnesbb6cabd2018-10-04 17:10:37 -0600[diff] [blame]69
70using keystore::KeyCharacteristicsPromise;
71using keystore::KeystoreExportPromise;
72using keystore::KeystoreResponsePromise;
73using keystore::OperationResultPromise;
74
75} // namespace
Paul Stewartac0ffbf2017-03-03 16:43:33 -0800[diff] [blame]76
Janis Danisevskise5a09aa2018-08-09 11:13:51 -0700[diff] [blame]77#define AT __func__ << ":" << __LINE__ << " "
78
79static NullOr<const Algorithm&> getKeyAlgoritmFromKeyCharacteristics(
80 const ::android::security::keymaster::KeyCharacteristics& characteristics) {
81 for (const auto& param : characteristics.hardwareEnforced.getParameters()) {
82 auto algo = authorizationValue(TAG_ALGORITHM, param);
83 if (algo.isOk()) return algo;
84 }
85 for (const auto& param : characteristics.softwareEnforced.getParameters()) {
86 auto algo = authorizationValue(TAG_ALGORITHM, param);
87 if (algo.isOk()) return algo;
88 }
89 return {};
90}
91
Janis Danisevskisba2985a2018-11-14 21:10:39 -0800[diff] [blame]92KeystoreBackendBinder::KeystoreBackendBinder() {
93 android::ProcessState::self()->startThreadPool();
94}
95
Dmitry Dementyeva447b3c2017-10-27 23:09:53 -0700[diff] [blame]96int32_t KeystoreBackendBinder::sign(const char* key_id, const uint8_t* in, size_t len,
97 uint8_t** reply, size_t* reply_len) {
Paul Stewartac0ffbf2017-03-03 16:43:33 -0800[diff] [blame]98 sp<IServiceManager> sm = defaultServiceManager();
99 sp<IBinder> binder = sm->getService(String16(keystore_service_name));
100 sp<IKeystoreService> service = interface_cast<IKeystoreService>(binder);
101
Yi Konge353f252018-07-30 01:38:39 -0700[diff] [blame]102 if (service == nullptr) {
Janis Danisevskise5a09aa2018-08-09 11:13:51 -0700[diff] [blame]103 LOG(ERROR) << AT << "could not contact keystore";
Paul Stewartac0ffbf2017-03-03 16:43:33 -0800[diff] [blame]104 return -1;
105 }
106
Janis Danisevskise5a09aa2018-08-09 11:13:51 -0700[diff] [blame]107 String16 key_name16(key_id);
Rob Barnesbb6cabd2018-10-04 17:10:37 -0600[diff] [blame]108 int32_t error_code;
109 android::sp<KeyCharacteristicsPromise> kc_promise(new KeyCharacteristicsPromise);
110 auto kc_future = kc_promise->get_future();
111 auto binder_result = service->getKeyCharacteristics(kc_promise, key_name16, KeymasterBlob(),
112 KeymasterBlob(), UID_SELF, &error_code);
Janis Danisevskise5a09aa2018-08-09 11:13:51 -0700[diff] [blame]113 if (!binder_result.isOk()) {
114 LOG(ERROR) << AT << "communication error while calling keystore";
115 return -1;
116 }
Janis Danisevskis61aea512019-03-13 14:34:06 -0700[diff] [blame]117 if (!KSReturn(error_code).isOk()) {
Rob Barnesbb6cabd2018-10-04 17:10:37 -0600[diff] [blame]118 LOG(ERROR) << AT << "getKeyCharacteristics failed: " << error_code;
119 return -1;
Janis Danisevskise5a09aa2018-08-09 11:13:51 -0700[diff] [blame]120 }
121
Rob Barnesbb6cabd2018-10-04 17:10:37 -0600[diff] [blame]122 auto [km_response, characteristics] = kc_future.get();
123
Janis Danisevskis61aea512019-03-13 14:34:06 -0700[diff] [blame]124 if (!KSReturn(km_response.response_code()).isOk()) {
Rob Barnesbb6cabd2018-10-04 17:10:37 -0600[diff] [blame]125 LOG(ERROR) << AT << "getKeyCharacteristics failed: " << km_response.response_code();
126 return -1;
127 }
128
129 auto algorithm = getKeyAlgoritmFromKeyCharacteristics(characteristics);
Janis Danisevskise5a09aa2018-08-09 11:13:51 -0700[diff] [blame]130 if (!algorithm.isOk()) {
131 LOG(ERROR) << AT << "could not get algorithm from key characteristics";
Paul Stewartac0ffbf2017-03-03 16:43:33 -0800[diff] [blame]132 return -1;
133 }
134
Janis Danisevskise5a09aa2018-08-09 11:13:51 -0700[diff] [blame]135 hidl_vec<KeyParameter> params(3);
136 params[0] = Authorization(TAG_DIGEST, Digest::NONE);
137 params[1] = Authorization(TAG_PADDING, PaddingMode::NONE);
138 params[2] = Authorization(TAG_ALGORITHM, algorithm.value());
139
140 android::sp<android::IBinder> token(new android::BBinder);
Rob Barnesbb6cabd2018-10-04 17:10:37 -0600[diff] [blame]141 sp<OperationResultPromise> promise(new OperationResultPromise());
142 auto future = promise->get_future();
143 binder_result = service->begin(promise, token, key_name16, (int)KeyPurpose::SIGN,
144 true /*pruneable*/, KeymasterArguments(params),
145 std::vector<uint8_t>() /* entropy */, UID_SELF, &error_code);
Janis Danisevskise5a09aa2018-08-09 11:13:51 -0700[diff] [blame]146 if (!binder_result.isOk()) {
147 LOG(ERROR) << AT << "communication error while calling keystore";
148 return -1;
149 }
Rob Barnesbb6cabd2018-10-04 17:10:37 -0600[diff] [blame]150
151 keystore::KeyStoreNativeReturnCode rc(error_code);
152 if (!rc.isOk()) {
153 LOG(ERROR) << AT << "Keystore begin returned: " << error_code;
154 return -1;
155 }
156 OperationResult result = future.get();
157
Janis Danisevskise5a09aa2018-08-09 11:13:51 -0700[diff] [blame]158 if (!result.resultCode.isOk()) {
Branden Archer7cb02e32018-11-20 10:53:25 -0800[diff] [blame]159 LOG(ERROR) << AT << "begin failed: " << result.resultCode;
Janis Danisevskise5a09aa2018-08-09 11:13:51 -0700[diff] [blame]160 return -1;
161 }
162 auto handle = std::move(result.token);
163
164 do {
Rob Barnesbb6cabd2018-10-04 17:10:37 -0600[diff] [blame]165 future = {};
166 promise = new OperationResultPromise();
167 future = promise->get_future();
168 binder_result = service->update(promise, handle, KeymasterArguments(params),
169 std::vector<uint8_t>(in, in + len), &error_code);
Janis Danisevskise5a09aa2018-08-09 11:13:51 -0700[diff] [blame]170 if (!binder_result.isOk()) {
171 LOG(ERROR) << AT << "communication error while calling keystore";
172 return -1;
173 }
Rob Barnesbb6cabd2018-10-04 17:10:37 -0600[diff] [blame]174
175 rc = keystore::KeyStoreNativeReturnCode(error_code);
176 if (!rc.isOk()) {
177 LOG(ERROR) << AT << "Keystore update returned: " << error_code;
178 return -1;
179 }
180 result = future.get();
181
Janis Danisevskise5a09aa2018-08-09 11:13:51 -0700[diff] [blame]182 if (!result.resultCode.isOk()) {
Branden Archer7cb02e32018-11-20 10:53:25 -0800[diff] [blame]183 LOG(ERROR) << AT << "update failed: " << result.resultCode;
Janis Danisevskise5a09aa2018-08-09 11:13:51 -0700[diff] [blame]184 return -1;
185 }
Rob Barnesbb6cabd2018-10-04 17:10:37 -0600[diff] [blame]186
Janis Danisevskise5a09aa2018-08-09 11:13:51 -0700[diff] [blame]187 if (result.inputConsumed > len) {
188 LOG(ERROR) << AT << "update consumed more data than provided";
Rob Barnesbb6cabd2018-10-04 17:10:37 -0600[diff] [blame]189 sp<KeystoreResponsePromise> abortPromise(new KeystoreResponsePromise);
190 auto abortFuture = abortPromise->get_future();
191 binder_result = service->abort(abortPromise, handle, &error_code);
192 if (!binder_result.isOk()) {
193 LOG(ERROR) << AT << "communication error while calling keystore";
194 return -1;
195 }
196 // This is mainly for logging since we already failed.
197 // But if abort returned OK we have to wait untill abort calls the callback
198 // hence the call to abortFuture.get().
199 if (!KSReturn(error_code).isOk()) {
200 LOG(ERROR) << AT << "abort failed: " << error_code;
201 } else if (!(rc = KSReturn(abortFuture.get().response_code())).isOk()) {
Branden Archer7cb02e32018-11-20 10:53:25 -0800[diff] [blame]202 LOG(ERROR) << AT << "abort failed: " << rc;
Rob Barnesbb6cabd2018-10-04 17:10:37 -0600[diff] [blame]203 }
Janis Danisevskise5a09aa2018-08-09 11:13:51 -0700[diff] [blame]204 return -1;
205 }
206 len -= result.inputConsumed;
207 in += result.inputConsumed;
208 } while (len > 0);
209
Rob Barnesbb6cabd2018-10-04 17:10:37 -0600[diff] [blame]210 future = {};
211 promise = new OperationResultPromise();
212 future = promise->get_future();
213
Rob Barnes3af223f2019-11-14 14:50:30 -0700[diff] [blame]214 binder_result = service->finish(
215 promise, handle, KeymasterArguments(params), std::vector<uint8_t>() /* input */,
216 std::vector<uint8_t>() /* signature */, std::vector<uint8_t>() /* entropy */, &error_code);
Rob Barnesbb6cabd2018-10-04 17:10:37 -0600[diff] [blame]217
Janis Danisevskise5a09aa2018-08-09 11:13:51 -0700[diff] [blame]218 if (!binder_result.isOk()) {
219 LOG(ERROR) << AT << "communication error while calling keystore";
220 return -1;
221 }
Rob Barnesbb6cabd2018-10-04 17:10:37 -0600[diff] [blame]222
223 rc = keystore::KeyStoreNativeReturnCode(error_code);
224 if (!rc.isOk()) {
225 LOG(ERROR) << AT << "Keystore finish returned: " << error_code;
226 return -1;
227 }
228 result = future.get();
229
Janis Danisevskise5a09aa2018-08-09 11:13:51 -0700[diff] [blame]230 if (!result.resultCode.isOk()) {
Branden Archer7cb02e32018-11-20 10:53:25 -0800[diff] [blame]231 LOG(ERROR) << AT << "finish failed: " << result.resultCode;
Janis Danisevskise5a09aa2018-08-09 11:13:51 -0700[diff] [blame]232 return -1;
233 }
234
235 hidl_vec<uint8_t> reply_hidl(result.data);
236 if (reply_len) {
237 *reply_len = reply_hidl.size();
238 }
239 if (reply) {
240 *reply = reply_hidl.releaseData();
241 }
Paul Stewartac0ffbf2017-03-03 16:43:33 -0800[diff] [blame]242 return 0;
243}
244
Dmitry Dementyeva447b3c2017-10-27 23:09:53 -0700[diff] [blame]245int32_t KeystoreBackendBinder::get_pubkey(const char* key_id, uint8_t** pubkey,
246 size_t* pubkey_len) {
Paul Stewartac0ffbf2017-03-03 16:43:33 -0800[diff] [blame]247 sp<IServiceManager> sm = defaultServiceManager();
248 sp<IBinder> binder = sm->getService(String16(keystore_service_name));
249 sp<IKeystoreService> service = interface_cast<IKeystoreService>(binder);
250
Yi Konge353f252018-07-30 01:38:39 -0700[diff] [blame]251 if (service == nullptr) {
Janis Danisevskise5a09aa2018-08-09 11:13:51 -0700[diff] [blame]252 LOG(ERROR) << AT << "could not contact keystore";
Paul Stewartac0ffbf2017-03-03 16:43:33 -0800[diff] [blame]253 return -1;
254 }
255
Rob Barnesbb6cabd2018-10-04 17:10:37 -0600[diff] [blame]256 int32_t error_code;
257 android::sp<KeystoreExportPromise> promise(new KeystoreExportPromise);
258 auto future = promise->get_future();
259 auto binder_result = service->exportKey(
260 promise, String16(key_id), static_cast<int32_t>(KeyFormat::X509),
261 KeymasterBlob() /* clientId */, KeymasterBlob() /* appData */, UID_SELF, &error_code);
Janis Danisevskise5a09aa2018-08-09 11:13:51 -0700[diff] [blame]262 if (!binder_result.isOk()) {
263 LOG(ERROR) << AT << "communication error while calling keystore";
264 return -1;
265 }
Rob Barnesbb6cabd2018-10-04 17:10:37 -0600[diff] [blame]266
267 KSReturn rc(error_code);
268 if (!rc.isOk()) {
269 LOG(ERROR) << AT << "exportKey failed: " << error_code;
Paul Stewartac0ffbf2017-03-03 16:43:33 -0800[diff] [blame]270 return -1;
271 }
272
Rob Barnesbb6cabd2018-10-04 17:10:37 -0600[diff] [blame]273 auto export_result = future.get();
274 if (!export_result.resultCode.isOk()) {
Branden Archer7cb02e32018-11-20 10:53:25 -0800[diff] [blame]275 LOG(ERROR) << AT << "exportKey failed: " << export_result.resultCode;
Rob Barnesbb6cabd2018-10-04 17:10:37 -0600[diff] [blame]276 return -1;
277 }
278
Janis Danisevskise5a09aa2018-08-09 11:13:51 -0700[diff] [blame]279 if (pubkey_len) {
Rob Barnesbb6cabd2018-10-04 17:10:37 -0600[diff] [blame]280 *pubkey_len = export_result.exportData.size();
Janis Danisevskise5a09aa2018-08-09 11:13:51 -0700[diff] [blame]281 }
282 if (pubkey) {
Rob Barnesbb6cabd2018-10-04 17:10:37 -0600[diff] [blame]283 *pubkey = export_result.exportData.releaseData();
Janis Danisevskise5a09aa2018-08-09 11:13:51 -0700[diff] [blame]284 }
Paul Stewartac0ffbf2017-03-03 16:43:33 -0800[diff] [blame]285 return 0;
286}