1 /* 2 * Copyright (C) 2015 The Android Open Source Project 3 * 4 * Licensed under the Apache License, Version 2.0 (the "License"); 5 * you may not use this file except in compliance with the License. 6 * You may obtain a copy of the License at 7 * 8 * http://www.apache.org/licenses/LICENSE-2.0 9 * 10 * Unless required by applicable law or agreed to in writing, software 11 * distributed under the License is distributed on an "AS IS" BASIS, 12 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. 13 * See the License for the specific language governing permissions and 14 * limitations under the License. 15 */ 16 17 #ifndef KEYSTORE_OPERATION_H_ 18 #define KEYSTORE_OPERATION_H_ 19 20 #include <map> 21 #include <vector> 22 23 #include <binder/Binder.h> 24 #include <binder/IBinder.h> 25 #include <keymasterV4_0/Keymaster.h> 26 #include <utils/StrongPointer.h> 27 28 #include <keystore/keymaster_types.h> 29 #include <keystore/keystore_hidl_support.h> 30 31 #include "operation_proto_handler.h" 32 #include "operation_struct.h" 33 34 namespace keystore { 35 36 using ::android::IBinder; 37 using ::android::sp; 38 using keymaster::support::Keymaster; 39 40 /** 41 * OperationMap handles the translation of uint64_t's and keymaster2_device_t's to opaque binder 42 * tokens that can be used to reference that operation at a later time by applications. It also does 43 * LRU tracking for operation pruning and keeps a mapping of clients to operations to allow for 44 * graceful handling of application death. 45 */ 46 47 class OperationMap { 48 public: 49 explicit OperationMap(IBinder::DeathRecipient* deathRecipient); 50 sp<IBinder> addOperation(uint64_t handle, uint64_t keyid, KeyPurpose purpose, 51 const sp<Keymaster>& dev, const sp<IBinder>& appToken, 52 KeyCharacteristics&& characteristics, 53 const hidl_vec<KeyParameter>& params, bool pruneable); 54 NullOr<const Operation&> getOperation(const sp<IBinder>& token); 55 NullOr<Operation> removeOperation(const sp<IBinder>& token, bool wasSuccessful); 56 bool hasPruneableOperation() const; 57 size_t getOperationCount() const { return mMap.size(); } 58 size_t getPruneableOperationCount() const; 59 void setOperationAuthToken(const sp<IBinder>& token, HardwareAuthToken authToken); 60 void setOperationVerificationToken(const sp<IBinder>& token, VerificationToken authToken); 61 sp<IBinder> getOldestPruneableOperation(); 62 std::vector<sp<IBinder>> getOperationsForToken(const sp<IBinder>& appToken); 63 64 private: 65 void updateLru(const sp<IBinder>& token); 66 void removeOperationTracking(const sp<IBinder>& token, const sp<IBinder>& appToken); 67 std::map<sp<IBinder>, Operation> mMap; 68 std::vector<sp<IBinder>> mLru; 69 std::map<sp<IBinder>, std::vector<sp<IBinder>>> mAppTokenMap; 70 IBinder::DeathRecipient* mDeathRecipient; 71 }; 72 73 } // namespace keystore 74 75 #endif 76