Home | History | Annotate | Download | only in trunks 
      1 //
      2 // Copyright (C) 2014 The Android Open Source Project
      3 //
      4 // Licensed under the Apache License, Version 2.0 (the "License");
      5 // you may not use this file except in compliance with the License.
      6 // You may obtain a copy of the License at
      7 //
      8 //      http://www.apache.org/licenses/LICENSE-2.0
      9 //
     10 // Unless required by applicable law or agreed to in writing, software
     11 // distributed under the License is distributed on an "AS IS" BASIS,
     12 // WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
     13 // See the License for the specific language governing permissions and
     14 // limitations under the License.
     15 //
     16 
     17 #ifndef TRUNKS_PASSWORD_AUTHORIZATION_DELEGATE_H_
     18 #define TRUNKS_PASSWORD_AUTHORIZATION_DELEGATE_H_
     19 
     20 #include <string>
     21 
     22 #include <base/gtest_prod_util.h>
     23 
     24 #include "trunks/authorization_delegate.h"
     25 #include "trunks/tpm_generated.h"
     26 #include "trunks/trunks_export.h"
     27 
     28 namespace trunks {
     29 
     30 // PasswdAuthorizationDelegate is an implementation of the AuthorizationDelegate
     31 // interface. This delegate is used for password based authorization. Upon
     32 // initialization of this delegate, we feed in the plaintext password. This
     33 // password is then used to authorize the commands issued with this delegate.
     34 // This delegate performs no parameter encryption.
     35 class TRUNKS_EXPORT PasswordAuthorizationDelegate
     36     : public AuthorizationDelegate {
     37  public:
     38   explicit PasswordAuthorizationDelegate(const std::string& password);
     39   ~PasswordAuthorizationDelegate() override;
     40   // AuthorizationDelegate methods.
     41   bool GetCommandAuthorization(const std::string& command_hash,
     42                                bool is_command_parameter_encryption_possible,
     43                                bool is_response_parameter_encryption_possible,
     44                                std::string* authorization) override;
     45   bool CheckResponseAuthorization(const std::string& response_hash,
     46                                   const std::string& authorization) override;
     47   bool EncryptCommandParameter(std::string* parameter) override;
     48   bool DecryptResponseParameter(std::string* parameter) override;
     49 
     50  protected:
     51   FRIEND_TEST(PasswordAuthorizationDelegateTest, NullInitialization);
     52 
     53  private:
     54   TPM2B_AUTH password_;
     55 
     56   DISALLOW_COPY_AND_ASSIGN(PasswordAuthorizationDelegate);
     57 };
     58 
     59 }  // namespace trunks
     60 
     61 #endif  // TRUNKS_PASSWORD_AUTHORIZATION_DELEGATE_H_
     62