| /* |
| * Copyright (C) 2015 The Android Open Source Project |
| * |
| * Licensed under the Apache License, Version 2.0 (the "License"); |
| * you may not use this file except in compliance with the License. |
| * You may obtain a copy of the License at |
| * |
| * http://www.apache.org/licenses/LICENSE-2.0 |
| * |
| * Unless required by applicable law or agreed to in writing, software |
| * distributed under the License is distributed on an "AS IS" BASIS, |
| * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. |
| * See the License for the specific language governing permissions and |
| * limitations under the License. |
| */ |
| #define LOG_TAG "KeystoreOperation" |
| |
| #include "operation.h" |
| |
| #include <algorithm> |
| |
| namespace android { |
| OperationMap::OperationMap(IBinder::DeathRecipient* deathRecipient) |
| : mDeathRecipient(deathRecipient) { |
| } |
| |
| sp<IBinder> OperationMap::addOperation(keymaster_operation_handle_t handle, |
| uint64_t keyid, keymaster_purpose_t purpose, |
| const keymaster1_device_t* dev, |
| sp<IBinder> appToken, |
| keymaster_key_characteristics_t* characteristics, |
| bool pruneable) { |
| sp<IBinder> token = new BBinder(); |
| mMap[token] = Operation(handle, keyid, purpose, dev, characteristics, appToken); |
| if (pruneable) { |
| mLru.push_back(token); |
| } |
| if (mAppTokenMap.find(appToken) == mAppTokenMap.end()) { |
| appToken->linkToDeath(mDeathRecipient); |
| } |
| mAppTokenMap[appToken].push_back(token); |
| return token; |
| } |
| |
| bool OperationMap::getOperation(sp<IBinder> token, keymaster_operation_handle_t* outHandle, |
| uint64_t* outKeyid, keymaster_purpose_t* outPurpose, |
| const keymaster1_device_t** outDevice, |
| const keymaster_key_characteristics_t** outCharacteristics) { |
| if (!outHandle || !outDevice) { |
| return false; |
| } |
| auto entry = mMap.find(token); |
| if (entry == mMap.end()) { |
| return false; |
| } |
| updateLru(token); |
| |
| *outHandle = entry->second.handle; |
| *outKeyid = entry->second.keyid; |
| *outPurpose = entry->second.purpose; |
| *outDevice = entry->second.device; |
| if (outCharacteristics) { |
| *outCharacteristics = entry->second.characteristics.get(); |
| } |
| return true; |
| } |
| |
| void OperationMap::updateLru(sp<IBinder> token) { |
| auto lruEntry = std::find(mLru.begin(), mLru.end(), token); |
| if (lruEntry != mLru.end()) { |
| mLru.erase(lruEntry); |
| mLru.push_back(token); |
| } |
| } |
| |
| bool OperationMap::removeOperation(sp<IBinder> token) { |
| auto entry = mMap.find(token); |
| if (entry == mMap.end()) { |
| return false; |
| } |
| sp<IBinder> appToken = entry->second.appToken; |
| mMap.erase(entry); |
| auto lruEntry = std::find(mLru.begin(), mLru.end(), token); |
| if (lruEntry != mLru.end()) { |
| mLru.erase(lruEntry); |
| } |
| removeOperationTracking(token, appToken); |
| return true; |
| } |
| |
| void OperationMap::removeOperationTracking(sp<IBinder> token, sp<IBinder> appToken) { |
| auto appEntry = mAppTokenMap.find(appToken); |
| if (appEntry == mAppTokenMap.end()) { |
| ALOGE("Entry for %p contains unmapped application token %p", token.get(), appToken.get()); |
| return; |
| } |
| auto tokenEntry = std::find(appEntry->second.begin(), appEntry->second.end(), token); |
| appEntry->second.erase(tokenEntry); |
| // Stop listening for death if all operations tied to the token have finished. |
| if (appEntry->second.size() == 0) { |
| appToken->unlinkToDeath(mDeathRecipient); |
| mAppTokenMap.erase(appEntry); |
| } |
| } |
| |
| bool OperationMap::hasPruneableOperation() const { |
| return mLru.size() != 0; |
| } |
| |
| size_t OperationMap::getPruneableOperationCount() const { |
| return mLru.size(); |
| } |
| |
| sp<IBinder> OperationMap::getOldestPruneableOperation() { |
| if (!hasPruneableOperation()) { |
| return sp<IBinder>(NULL); |
| } |
| return mLru[0]; |
| } |
| |
| bool OperationMap::getOperationAuthToken(sp<IBinder> token, const hw_auth_token_t** outToken) { |
| auto entry = mMap.find(token); |
| if (entry == mMap.end()) { |
| return false; |
| } |
| *outToken = entry->second.authToken.get(); |
| return true; |
| } |
| |
| bool OperationMap::setOperationAuthToken(sp<IBinder> token, const hw_auth_token_t* authToken) { |
| auto entry = mMap.find(token); |
| if (entry == mMap.end()) { |
| return false; |
| } |
| entry->second.authToken.reset(new hw_auth_token_t); |
| *entry->second.authToken = *authToken; |
| return true; |
| } |
| |
| std::vector<sp<IBinder>> OperationMap::getOperationsForToken(sp<IBinder> appToken) { |
| auto appEntry = mAppTokenMap.find(appToken); |
| if (appEntry != mAppTokenMap.end()) { |
| return appEntry->second; |
| } else { |
| return std::vector<sp<IBinder>>(); |
| } |
| } |
| |
| OperationMap::Operation::Operation(keymaster_operation_handle_t handle_, |
| uint64_t keyid_, |
| keymaster_purpose_t purpose_, |
| const keymaster1_device_t* device_, |
| keymaster_key_characteristics_t* characteristics_, |
| sp<IBinder> appToken_) |
| : handle(handle_), |
| keyid(keyid_), |
| purpose(purpose_), |
| device(device_), |
| characteristics(characteristics_), |
| appToken(appToken_) { |
| } |
| |
| OperationMap::Operation::Operation() : handle(0), device(NULL), characteristics(), appToken(NULL) { |
| } |
| } // namespace android |