Blame - identity/Credential.h - android_system_security

blob: a0d90634590ff91060648c7dabe18389488c7c00 [file] [log] [blame]

David Zeuthen	ab3e565	2019-10-28 13:32:48 -0400	[diff] [blame]	1	/*
				2	* Copyright (c) 2019, The Android Open Source Project
				3	*
				4	* Licensed under the Apache License, Version 2.0 (the "License");
				5	* you may not use this file except in compliance with the License.
				6	* You may obtain a copy of the License at
				7	*
				8	* http://www.apache.org/licenses/LICENSE-2.0
				9	*
				10	* Unless required by applicable law or agreed to in writing, software
				11	* distributed under the License is distributed on an "AS IS" BASIS,
				12	* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
				13	* See the License for the specific language governing permissions and
				14	* limitations under the License.
				15	*/
				16
				17	#ifndef SYSTEM_SECURITY_CREDENTIAL_H_
				18	#define SYSTEM_SECURITY_CREDENTIAL_H_
				19
				20	#include <string>
				21	#include <vector>
				22
				23	#include <android/security/identity/BnCredential.h>
				24
David Zeuthen	a6f9fba	2020-02-11 22:08:27 -0500	[diff] [blame]	25	#include <android/hardware/identity/IIdentityCredentialStore.h>
David Zeuthen	ab3e565	2019-10-28 13:32:48 -0400	[diff] [blame]	26
				27	#include "CredentialData.h"
				28
				29	namespace android {
				30	namespace security {
				31	namespace identity {
				32
				33	using ::android::sp;
				34	using ::android::binder::Status;
				35	using ::std::string;
				36	using ::std::vector;
				37
David Zeuthen	a6f9fba	2020-02-11 22:08:27 -0500	[diff] [blame]	38	using ::android::hardware::identity::CipherSuite;
				39	using ::android::hardware::identity::IIdentityCredential;
				40	using ::android::hardware::identity::IIdentityCredentialStore;
David Zeuthen	ab3e565	2019-10-28 13:32:48 -0400	[diff] [blame]	41
				42	class Credential : public BnCredential {
				43	public:
David Zeuthen	a6f9fba	2020-02-11 22:08:27 -0500	[diff] [blame]	44	Credential(CipherSuite cipherSuite, const string& dataPath, const string& credentialName);
David Zeuthen	ab3e565	2019-10-28 13:32:48 -0400	[diff] [blame]	45	~Credential();
				46
				47	Status loadCredential(sp<IIdentityCredentialStore> halStoreBinder);
				48
				49	// ICredential overrides
				50	Status createEphemeralKeyPair(vector<uint8_t>* _aidl_return) override;
				51
				52	Status setReaderEphemeralPublicKey(const vector<uint8_t>& publicKey) override;
				53
				54	Status deleteCredential(vector<uint8_t>* _aidl_return) override;
				55
				56	Status getCredentialKeyCertificateChain(vector<uint8_t>* _aidl_return) override;
				57
				58	Status selectAuthKey(bool allowUsingExhaustedKeys, int64_t* _aidl_return) override;
				59
				60	Status getEntries(const vector<uint8_t>& requestMessage,
				61	const vector<RequestNamespaceParcel>& requestNamespaces,
				62	const vector<uint8_t>& sessionTranscript,
				63	const vector<uint8_t>& readerSignature, bool allowUsingExhaustedKeys,
				64	GetEntriesResultParcel* _aidl_return) override;
				65
				66	Status setAvailableAuthenticationKeys(int32_t keyCount, int32_t maxUsesPerKey) override;
				67	Status getAuthKeysNeedingCertification(vector<AuthKeyParcel>* _aidl_return) override;
				68	Status storeStaticAuthenticationData(const AuthKeyParcel& authenticationKey,
				69	const vector<uint8_t>& staticAuthData) override;
				70	Status getAuthenticationDataUsageCount(vector<int32_t>* _aidl_return) override;
				71
				72	private:
David Zeuthen	a6f9fba	2020-02-11 22:08:27 -0500	[diff] [blame]	73	CipherSuite cipherSuite_;
David Zeuthen	ab3e565	2019-10-28 13:32:48 -0400	[diff] [blame]	74	string dataPath_;
				75	string credentialName_;
				76
				77	const AuthKeyData* selectedAuthKey_ = nullptr;
				78	uint64_t selectedChallenge_ = 0;
				79
				80	sp<CredentialData> data_;
				81
				82	sp<IIdentityCredential> halBinder_;
				83	};
				84
				85	} // namespace identity
				86	} // namespace security
				87	} // namespace android
				88
				89	#endif // SYSTEM_SECURITY_IDENTITY_CREDENTIAL_H_