Shawn Willden | c1d1fee | 2016-01-26 22:44:56 -0700 | [diff] [blame] | 1 | /* |
| 2 | * Copyright (C) 2016 The Android Open Source Project |
| 3 | * |
| 4 | * Licensed under the Apache License, Version 2.0 (the "License"); |
| 5 | * you may not use this file except in compliance with the License. |
| 6 | * You may obtain a copy of the License at |
| 7 | * |
| 8 | * http://www.apache.org/licenses/LICENSE-2.0 |
| 9 | * |
| 10 | * Unless required by applicable law or agreed to in writing, software |
| 11 | * distributed under the License is distributed on an "AS IS" BASIS, |
| 12 | * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. |
| 13 | * See the License for the specific language governing permissions and |
| 14 | * limitations under the License. |
| 15 | */ |
| 16 | |
| 17 | #ifndef KEYSTORE_KEYSTORE_H_ |
| 18 | #define KEYSTORE_KEYSTORE_H_ |
| 19 | |
Janis Danisevskis | c7a9fa2 | 2016-10-13 18:43:45 +0100 | [diff] [blame] | 20 | #include <android/hardware/keymaster/3.0/IKeymasterDevice.h> |
Shawn Willden | c1d1fee | 2016-01-26 22:44:56 -0700 | [diff] [blame] | 21 | |
| 22 | #include <utils/Vector.h> |
| 23 | |
Shawn Willden | bb22a6c | 2017-12-06 19:35:28 -0700 | [diff] [blame^] | 24 | #include <keystore/keymaster_types.h> |
| 25 | |
Shawn Willden | c67a8aa | 2017-12-03 17:51:29 -0700 | [diff] [blame] | 26 | #include "Keymaster.h" |
Shawn Willden | c1d1fee | 2016-01-26 22:44:56 -0700 | [diff] [blame] | 27 | #include "blob.h" |
Janis Danisevskis | 6d449e8 | 2017-06-07 18:03:31 -0700 | [diff] [blame] | 28 | #include "grant_store.h" |
Shawn Willden | fa5702f | 2017-12-03 15:14:58 -0700 | [diff] [blame] | 29 | #include "user_state.h" |
Shawn Willden | c1d1fee | 2016-01-26 22:44:56 -0700 | [diff] [blame] | 30 | |
Shawn Willden | c67a8aa | 2017-12-03 17:51:29 -0700 | [diff] [blame] | 31 | namespace keystore { |
| 32 | |
| 33 | using ::android::sp; |
Janis Danisevskis | e8ba180 | 2017-01-30 10:49:51 +0000 | [diff] [blame] | 34 | |
Shawn Willden | c1d1fee | 2016-01-26 22:44:56 -0700 | [diff] [blame] | 35 | class KeyStore { |
| 36 | public: |
Shawn Willden | c67a8aa | 2017-12-03 17:51:29 -0700 | [diff] [blame] | 37 | KeyStore(Entropy* entropy, const sp<Keymaster>& device, const sp<Keymaster>& fallback, |
Janis Danisevskis | e8ba180 | 2017-01-30 10:49:51 +0000 | [diff] [blame] | 38 | bool allowNewFallback); |
Shawn Willden | c1d1fee | 2016-01-26 22:44:56 -0700 | [diff] [blame] | 39 | ~KeyStore(); |
| 40 | |
Shawn Willden | c67a8aa | 2017-12-03 17:51:29 -0700 | [diff] [blame] | 41 | sp<Keymaster>& getDevice() { return mDevice; } |
Shawn Willden | c1d1fee | 2016-01-26 22:44:56 -0700 | [diff] [blame] | 42 | |
Shawn Willden | c67a8aa | 2017-12-03 17:51:29 -0700 | [diff] [blame] | 43 | NullOr<sp<Keymaster>&> getFallbackDevice() { |
Janis Danisevskis | e8ba180 | 2017-01-30 10:49:51 +0000 | [diff] [blame] | 44 | // we only return the fallback device if the creation of new fallback key blobs is |
| 45 | // allowed. (also see getDevice below) |
| 46 | if (mAllowNewFallback) { |
| 47 | return mFallbackDevice; |
| 48 | } else { |
| 49 | return {}; |
| 50 | } |
| 51 | } |
Shawn Willden | c1d1fee | 2016-01-26 22:44:56 -0700 | [diff] [blame] | 52 | |
Shawn Willden | c67a8aa | 2017-12-03 17:51:29 -0700 | [diff] [blame] | 53 | sp<Keymaster>& getDevice(const Blob& blob) { |
Janis Danisevskis | e8ba180 | 2017-01-30 10:49:51 +0000 | [diff] [blame] | 54 | // We return a device, based on the nature of the blob to provide backward |
| 55 | // compatibility with old key blobs generated using the fallback device. |
Shawn Willden | c1d1fee | 2016-01-26 22:44:56 -0700 | [diff] [blame] | 56 | return blob.isFallback() ? mFallbackDevice : mDevice; |
| 57 | } |
| 58 | |
| 59 | ResponseCode initialize(); |
| 60 | |
| 61 | State getState(uid_t userId) { return getUserState(userId)->getState(); } |
| 62 | |
| 63 | ResponseCode initializeUser(const android::String8& pw, uid_t userId); |
| 64 | |
| 65 | ResponseCode copyMasterKey(uid_t srcUser, uid_t dstUser); |
| 66 | ResponseCode writeMasterKey(const android::String8& pw, uid_t userId); |
| 67 | ResponseCode readMasterKey(const android::String8& pw, uid_t userId); |
| 68 | |
Tucker Sylvestro | 0ab28b7 | 2016-08-05 18:02:47 -0400 | [diff] [blame] | 69 | android::String8 getKeyName(const android::String8& keyName, const BlobType type); |
| 70 | android::String8 getKeyNameForUid(const android::String8& keyName, uid_t uid, |
| 71 | const BlobType type); |
| 72 | android::String8 getKeyNameForUidWithDir(const android::String8& keyName, uid_t uid, |
| 73 | const BlobType type); |
Janis Danisevskis | 31b44f2 | 2017-09-21 11:29:47 -0700 | [diff] [blame] | 74 | NullOr<android::String8> getBlobFileNameIfExists(const android::String8& alias, uid_t uid, |
Dmitry Dementyev | a447b3c | 2017-10-27 23:09:53 -0700 | [diff] [blame] | 75 | const BlobType type); |
Shawn Willden | c1d1fee | 2016-01-26 22:44:56 -0700 | [diff] [blame] | 76 | |
| 77 | /* |
| 78 | * Delete entries owned by userId. If keepUnencryptedEntries is true |
| 79 | * then only encrypted entries will be removed, otherwise all entries will |
| 80 | * be removed. |
| 81 | */ |
| 82 | void resetUser(uid_t userId, bool keepUnenryptedEntries); |
| 83 | bool isEmpty(uid_t userId) const; |
| 84 | |
| 85 | void lock(uid_t userId); |
| 86 | |
| 87 | ResponseCode get(const char* filename, Blob* keyBlob, const BlobType type, uid_t userId); |
| 88 | ResponseCode put(const char* filename, Blob* keyBlob, uid_t userId); |
| 89 | ResponseCode del(const char* filename, const BlobType type, uid_t userId); |
| 90 | ResponseCode list(const android::String8& prefix, android::Vector<android::String16>* matches, |
| 91 | uid_t userId); |
| 92 | |
Janis Danisevskis | 6905c33 | 2017-09-01 13:24:23 -0700 | [diff] [blame] | 93 | std::string addGrant(const char* alias, uid_t granterUid, uid_t granteeUid); |
Janis Danisevskis | 31b44f2 | 2017-09-21 11:29:47 -0700 | [diff] [blame] | 94 | bool removeGrant(const char* alias, const uid_t granterUid, const uid_t granteeUid); |
| 95 | void removeAllGrantsToUid(const uid_t granteeUid); |
Shawn Willden | c1d1fee | 2016-01-26 22:44:56 -0700 | [diff] [blame] | 96 | |
| 97 | ResponseCode importKey(const uint8_t* key, size_t keyLen, const char* filename, uid_t userId, |
| 98 | int32_t flags); |
| 99 | |
| 100 | bool isHardwareBacked(const android::String16& keyType) const; |
| 101 | |
| 102 | ResponseCode getKeyForName(Blob* keyBlob, const android::String8& keyName, const uid_t uid, |
| 103 | const BlobType type); |
| 104 | |
| 105 | /** |
| 106 | * Returns any existing UserState or creates it if it doesn't exist. |
| 107 | */ |
| 108 | UserState* getUserState(uid_t userId); |
| 109 | |
| 110 | /** |
| 111 | * Returns any existing UserState or creates it if it doesn't exist. |
| 112 | */ |
| 113 | UserState* getUserStateByUid(uid_t uid); |
| 114 | |
| 115 | /** |
| 116 | * Returns NULL if the UserState doesn't already exist. |
| 117 | */ |
| 118 | const UserState* getUserState(uid_t userId) const; |
| 119 | |
| 120 | /** |
| 121 | * Returns NULL if the UserState doesn't already exist. |
| 122 | */ |
| 123 | const UserState* getUserStateByUid(uid_t uid) const; |
| 124 | |
| 125 | private: |
Shawn Willden | 0329a82 | 2017-12-04 13:55:14 -0700 | [diff] [blame] | 126 | static const char* kOldMasterKey; |
| 127 | static const char* kMetaDataFile; |
| 128 | static const android::String16 kRsaKeyType; |
| 129 | static const android::String16 kEcKeyType; |
Shawn Willden | c1d1fee | 2016-01-26 22:44:56 -0700 | [diff] [blame] | 130 | Entropy* mEntropy; |
| 131 | |
Shawn Willden | c67a8aa | 2017-12-03 17:51:29 -0700 | [diff] [blame] | 132 | sp<Keymaster> mDevice; |
| 133 | sp<Keymaster> mFallbackDevice; |
Janis Danisevskis | e8ba180 | 2017-01-30 10:49:51 +0000 | [diff] [blame] | 134 | bool mAllowNewFallback; |
Shawn Willden | c1d1fee | 2016-01-26 22:44:56 -0700 | [diff] [blame] | 135 | |
| 136 | android::Vector<UserState*> mMasterKeys; |
| 137 | |
Janis Danisevskis | 6d449e8 | 2017-06-07 18:03:31 -0700 | [diff] [blame] | 138 | ::keystore::GrantStore mGrants; |
Shawn Willden | c1d1fee | 2016-01-26 22:44:56 -0700 | [diff] [blame] | 139 | |
Shawn Willden | fa5702f | 2017-12-03 15:14:58 -0700 | [diff] [blame] | 140 | typedef struct { uint32_t version; } keystore_metadata_t; |
Shawn Willden | c1d1fee | 2016-01-26 22:44:56 -0700 | [diff] [blame] | 141 | |
| 142 | keystore_metadata_t mMetaData; |
| 143 | |
Shawn Willden | c1d1fee | 2016-01-26 22:44:56 -0700 | [diff] [blame] | 144 | /** |
| 145 | * Upgrade the key from the current version to whatever is newest. |
| 146 | */ |
| 147 | bool upgradeBlob(const char* filename, Blob* blob, const uint8_t oldVersion, |
| 148 | const BlobType type, uid_t uid); |
| 149 | |
| 150 | /** |
| 151 | * Takes a blob that is an PEM-encoded RSA key as a byte array and converts it to a DER-encoded |
| 152 | * PKCS#8 for import into a keymaster. Then it overwrites the original blob with the new blob |
| 153 | * format that is returned from the keymaster. |
| 154 | */ |
| 155 | ResponseCode importBlobAsKey(Blob* blob, const char* filename, uid_t uid); |
| 156 | |
| 157 | void readMetaData(); |
| 158 | void writeMetaData(); |
| 159 | |
| 160 | bool upgradeKeystore(); |
| 161 | }; |
| 162 | |
Shawn Willden | c67a8aa | 2017-12-03 17:51:29 -0700 | [diff] [blame] | 163 | } // namespace keystore |
| 164 | |
Shawn Willden | c1d1fee | 2016-01-26 22:44:56 -0700 | [diff] [blame] | 165 | #endif // KEYSTORE_KEYSTORE_H_ |