1*789431f2SAndroid Build Coastguard Worker /* 2*789431f2SAndroid Build Coastguard Worker * Copyright 2014 The Android Open Source Project 3*789431f2SAndroid Build Coastguard Worker * 4*789431f2SAndroid Build Coastguard Worker * Licensed under the Apache License, Version 2.0 (the "License"); 5*789431f2SAndroid Build Coastguard Worker * you may not use this file except in compliance with the License. 6*789431f2SAndroid Build Coastguard Worker * You may obtain a copy of the License at 7*789431f2SAndroid Build Coastguard Worker * 8*789431f2SAndroid Build Coastguard Worker * http://www.apache.org/licenses/LICENSE-2.0 9*789431f2SAndroid Build Coastguard Worker * 10*789431f2SAndroid Build Coastguard Worker * Unless required by applicable law or agreed to in writing, software 11*789431f2SAndroid Build Coastguard Worker * distributed under the License is distributed on an "AS IS" BASIS, 12*789431f2SAndroid Build Coastguard Worker * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. 13*789431f2SAndroid Build Coastguard Worker * See the License for the specific language governing permissions and 14*789431f2SAndroid Build Coastguard Worker * limitations under the License. 15*789431f2SAndroid Build Coastguard Worker */ 16*789431f2SAndroid Build Coastguard Worker 17*789431f2SAndroid Build Coastguard Worker #ifndef SYSTEM_KEYMASTER_HMAC_OPERATION_H_ 18*789431f2SAndroid Build Coastguard Worker #define SYSTEM_KEYMASTER_HMAC_OPERATION_H_ 19*789431f2SAndroid Build Coastguard Worker 20*789431f2SAndroid Build Coastguard Worker #include <keymaster/operation.h> 21*789431f2SAndroid Build Coastguard Worker #include <openssl/hmac.h> 22*789431f2SAndroid Build Coastguard Worker 23*789431f2SAndroid Build Coastguard Worker namespace keymaster { 24*789431f2SAndroid Build Coastguard Worker 25*789431f2SAndroid Build Coastguard Worker class HmacOperation : public Operation { 26*789431f2SAndroid Build Coastguard Worker public: 27*789431f2SAndroid Build Coastguard Worker HmacOperation(Key&& key, keymaster_purpose_t purpose, keymaster_digest_t digest, 28*789431f2SAndroid Build Coastguard Worker size_t mac_length, size_t min_mac_length); 29*789431f2SAndroid Build Coastguard Worker ~HmacOperation(); 30*789431f2SAndroid Build Coastguard Worker 31*789431f2SAndroid Build Coastguard Worker virtual keymaster_error_t Begin(const AuthorizationSet& input_params, 32*789431f2SAndroid Build Coastguard Worker AuthorizationSet* output_params); 33*789431f2SAndroid Build Coastguard Worker virtual keymaster_error_t Update(const AuthorizationSet& additional_params, const Buffer& input, 34*789431f2SAndroid Build Coastguard Worker AuthorizationSet* output_params, Buffer* output, 35*789431f2SAndroid Build Coastguard Worker size_t* input_consumed); 36*789431f2SAndroid Build Coastguard Worker virtual keymaster_error_t Abort(); 37*789431f2SAndroid Build Coastguard Worker virtual keymaster_error_t Finish(const AuthorizationSet& additional_params, const Buffer& input, 38*789431f2SAndroid Build Coastguard Worker const Buffer& signature, AuthorizationSet* output_params, 39*789431f2SAndroid Build Coastguard Worker Buffer* output); 40*789431f2SAndroid Build Coastguard Worker error()41*789431f2SAndroid Build Coastguard Worker keymaster_error_t error() { return error_; } 42*789431f2SAndroid Build Coastguard Worker 43*789431f2SAndroid Build Coastguard Worker private: 44*789431f2SAndroid Build Coastguard Worker HMAC_CTX ctx_; 45*789431f2SAndroid Build Coastguard Worker keymaster_error_t error_; 46*789431f2SAndroid Build Coastguard Worker const size_t mac_length_; 47*789431f2SAndroid Build Coastguard Worker const size_t min_mac_length_; 48*789431f2SAndroid Build Coastguard Worker }; 49*789431f2SAndroid Build Coastguard Worker 50*789431f2SAndroid Build Coastguard Worker /** 51*789431f2SAndroid Build Coastguard Worker * Abstract base for HMAC operation factories. This class does all of the work to create 52*789431f2SAndroid Build Coastguard Worker * HMAC operations. 53*789431f2SAndroid Build Coastguard Worker */ 54*789431f2SAndroid Build Coastguard Worker class HmacOperationFactory : public OperationFactory { 55*789431f2SAndroid Build Coastguard Worker public: registry_key()56*789431f2SAndroid Build Coastguard Worker virtual KeyType registry_key() const { return KeyType(KM_ALGORITHM_HMAC, purpose()); } 57*789431f2SAndroid Build Coastguard Worker 58*789431f2SAndroid Build Coastguard Worker virtual OperationPtr CreateOperation(Key&& key, const AuthorizationSet& begin_params, 59*789431f2SAndroid Build Coastguard Worker keymaster_error_t* error); 60*789431f2SAndroid Build Coastguard Worker 61*789431f2SAndroid Build Coastguard Worker virtual const keymaster_digest_t* SupportedDigests(size_t* digest_count) const; 62*789431f2SAndroid Build Coastguard Worker 63*789431f2SAndroid Build Coastguard Worker virtual keymaster_purpose_t purpose() const = 0; 64*789431f2SAndroid Build Coastguard Worker }; 65*789431f2SAndroid Build Coastguard Worker 66*789431f2SAndroid Build Coastguard Worker class HmacSignOperationFactory : public HmacOperationFactory { purpose()67*789431f2SAndroid Build Coastguard Worker keymaster_purpose_t purpose() const { return KM_PURPOSE_SIGN; } 68*789431f2SAndroid Build Coastguard Worker }; 69*789431f2SAndroid Build Coastguard Worker 70*789431f2SAndroid Build Coastguard Worker class HmacVerifyOperationFactory : public HmacOperationFactory { purpose()71*789431f2SAndroid Build Coastguard Worker keymaster_purpose_t purpose() const { return KM_PURPOSE_VERIFY; } 72*789431f2SAndroid Build Coastguard Worker }; 73*789431f2SAndroid Build Coastguard Worker 74*789431f2SAndroid Build Coastguard Worker } // namespace keymaster 75*789431f2SAndroid Build Coastguard Worker 76*789431f2SAndroid Build Coastguard Worker #endif // SYSTEM_KEYMASTER_HMAC_OPERATION_H_ 77