| /system/keymaster/legacy_support/ |
| H A D | rsa_keymaster0_key.cpp | 38 AuthorizationSet* hw_enforced,
40 if (!key_blob || !hw_enforced || !sw_enforced)
59 // These tags are hardware-enforced. Putting them in the hw_enforced set here will ensure that
61 hw_enforced->push_back(TAG_ALGORITHM, KM_ALGORITHM_RSA);
62 hw_enforced->push_back(TAG_RSA_PUBLIC_EXPONENT, public_exponent);
63 hw_enforced->push_back(TAG_KEY_SIZE, key_size);
64 hw_enforced->push_back(TAG_ORIGIN, KM_ORIGIN_UNKNOWN);
67 hw_enforced, sw_enforced);
73 AuthorizationSet* hw_enforced, AuthorizationSet* sw_enforced) const {
74 if (!output_key_blob || !hw_enforced || !sw_enforce
36 GenerateKey(const AuthorizationSet& key_description, KeymasterKeyBlob* key_blob, AuthorizationSet* hw_enforced, AuthorizationSet* sw_enforced) const argument
70 ImportKey( const AuthorizationSet& key_description, keymaster_key_format_t input_key_material_format, const KeymasterKeyBlob& input_key_material, KeymasterKeyBlob* output_key_blob, AuthorizationSet* hw_enforced, AuthorizationSet* sw_enforced) const argument
101 LoadKey(KeymasterKeyBlob&& key_material, const AuthorizationSet& additional_params, AuthorizationSet&& hw_enforced, AuthorizationSet&& sw_enforced, UniquePtr<Key>* key) const argument
[all...] |
| H A D | ec_keymaster0_key.cpp | 38 AuthorizationSet* hw_enforced,
40 if (!key_blob || !hw_enforced || !sw_enforced)
44 return super::GenerateKey(key_description, key_blob, hw_enforced, sw_enforced);
57 // These tags are hardware-enforced. Putting them in the hw_enforced set here will ensure that
59 hw_enforced->push_back(TAG_ALGORITHM, KM_ALGORITHM_EC);
60 hw_enforced->push_back(TAG_KEY_SIZE, key_size);
61 hw_enforced->push_back(TAG_EC_CURVE, ec_curve);
62 hw_enforced->push_back(TAG_ORIGIN, KM_ORIGIN_UNKNOWN);
65 hw_enforced, sw_enforced);
71 AuthorizationSet* hw_enforced, AuthorizationSe
36 GenerateKey(const AuthorizationSet& key_description, KeymasterKeyBlob* key_blob, AuthorizationSet* hw_enforced, AuthorizationSet* sw_enforced) const argument
68 ImportKey( const AuthorizationSet& key_description, keymaster_key_format_t input_key_material_format, const KeymasterKeyBlob& input_key_material, KeymasterKeyBlob* output_key_blob, AuthorizationSet* hw_enforced, AuthorizationSet* sw_enforced) const argument
100 LoadKey(KeymasterKeyBlob&& key_material, const AuthorizationSet& additional_params, AuthorizationSet&& hw_enforced, AuthorizationSet&& sw_enforced, UniquePtr<Key>* key) const argument
[all...] |
| H A D | ec_keymaster1_key.cpp | 66 AuthorizationSet* hw_enforced,
79 return engine_->GenerateKey(key_params_copy, key_blob, hw_enforced, sw_enforced);
85 AuthorizationSet* hw_enforced, AuthorizationSet* sw_enforced) const {
89 output_key_blob, hw_enforced, sw_enforced);
94 AuthorizationSet&& hw_enforced,
107 EcdsaKeymaster1Key(ecdsa.release(), move(hw_enforced), move(sw_enforced), this));
64 GenerateKey(const AuthorizationSet& key_description, KeymasterKeyBlob* key_blob, AuthorizationSet* hw_enforced, AuthorizationSet* sw_enforced) const argument
82 ImportKey( const AuthorizationSet& key_description, keymaster_key_format_t input_key_material_format, const KeymasterKeyBlob& input_key_material, KeymasterKeyBlob* output_key_blob, AuthorizationSet* hw_enforced, AuthorizationSet* sw_enforced) const argument
92 LoadKey(KeymasterKeyBlob&& key_material, const AuthorizationSet& additional_params, AuthorizationSet&& hw_enforced, AuthorizationSet&& sw_enforced, UniquePtr<Key>* key) const argument
|
| /system/keymaster/include/keymaster/key_blob_utils/ |
| H A D | integrity_assured_key_blob.h | 31 const AuthorizationSet& hw_enforced,
38 AuthorizationSet* hw_enforced,
43 AuthorizationSet* hw_enforced,
|
| H A D | auth_encrypted_key_blob.h | 30 const AuthorizationSet& hw_enforced,
37 AuthorizationSet* hw_enforced,
|
| H A D | software_keyblobs.h | 39 AuthorizationSet* hw_enforced,
44 AuthorizationSet* hw_enforced,
50 AuthorizationSet* hw_enforced,
55 uint32_t os_patchlevel, AuthorizationSet* hw_enforced,
|
| /system/keymaster/key_blob_utils/ |
| H A D | software_keyblobs.cpp | 95 AuthorizationSet* hw_enforced,
97 hw_enforced->Clear();
102 hw_enforced->push_back(TAG_ALGORITHM, KM_ALGORITHM_RSA);
103 hw_enforced->push_back(TAG_DIGEST, KM_DIGEST_NONE);
104 hw_enforced->push_back(TAG_DIGEST, KM_DIGEST_MD5);
105 hw_enforced->push_back(TAG_DIGEST, KM_DIGEST_SHA1);
106 hw_enforced->push_back(TAG_DIGEST, KM_DIGEST_SHA_2_224);
107 hw_enforced->push_back(TAG_DIGEST, KM_DIGEST_SHA_2_256);
108 hw_enforced->push_back(TAG_DIGEST, KM_DIGEST_SHA_2_384);
109 hw_enforced
94 FakeKeyAuthorizations(EVP_PKEY* pubkey, AuthorizationSet* hw_enforced, AuthorizationSet* sw_enforced) argument
172 ParseOldSoftkeymasterBlob( const KeymasterKeyBlob& blob, KeymasterKeyBlob* key_material, AuthorizationSet* hw_enforced, AuthorizationSet* sw_enforced) argument
243 ParseOcbAuthEncryptedBlob(const KeymasterKeyBlob& blob, const AuthorizationSet& hidden, KeymasterKeyBlob* key_material, AuthorizationSet* hw_enforced, AuthorizationSet* sw_enforced) argument
262 SetKeyBlobAuthorizations(const AuthorizationSet& key_description, keymaster_key_origin_t origin, uint32_t os_version, uint32_t os_patchlevel, AuthorizationSet* hw_enforced, AuthorizationSet* sw_enforced) argument
[all...] |
| /system/keymaster/include/keymaster/km_openssl/ |
| H A D | ec_key.h | 31 EcKey(AuthorizationSet&& hw_enforced, AuthorizationSet&& sw_enforced, argument
33 : AsymmetricKey(move(hw_enforced), move(sw_enforced), key_factory) {}
42 EcKey(EC_KEY* ec_key, AuthorizationSet&& hw_enforced, AuthorizationSet&& sw_enforced, argument
44 : AsymmetricKey(move(hw_enforced), move(sw_enforced), key_factory), ec_key_(ec_key) {}
|
| H A D | rsa_key.h | 28 RsaKey(AuthorizationSet&& hw_enforced, AuthorizationSet&& sw_enforced, argument
30 : AsymmetricKey(move(hw_enforced), move(sw_enforced), key_factory) {}
45 RsaKey(RSA* rsa, AuthorizationSet&& hw_enforced, AuthorizationSet&& sw_enforced, argument
47 : AsymmetricKey(move(hw_enforced), move(sw_enforced), key_factory), rsa_key_(rsa) {}
|
| H A D | hmac_key.h | 36 AuthorizationSet&& hw_enforced,
53 HmacKey(KeymasterKeyBlob&& key_material, AuthorizationSet&& hw_enforced, argument
55 : SymmetricKey(move(key_material), move(hw_enforced), move(sw_enforced), key_factory) {}
|
| H A D | asymmetric_key.h | 28 AsymmetricKey(AuthorizationSet&& hw_enforced, AuthorizationSet&& sw_enforced, argument
30 : Key(move(hw_enforced), move(sw_enforced), key_factory) {}
|
| H A D | ecdsa_operation.h | 32 EcdsaOperation(AuthorizationSet&& hw_enforced, AuthorizationSet&& sw_enforced, argument
34 : Operation(purpose, move(hw_enforced), move(sw_enforced)), digest_(digest),
55 EcdsaSignOperation(AuthorizationSet&& hw_enforced, AuthorizationSet&& sw_enforced, argument
57 : EcdsaOperation(move(hw_enforced), move(sw_enforced), KM_PURPOSE_SIGN, digest, key) {}
70 EcdsaVerifyOperation(AuthorizationSet&& hw_enforced, AuthorizationSet&& sw_enforced, argument
72 : EcdsaOperation(move(hw_enforced), move(sw_enforced), KM_PURPOSE_VERIFY, digest, key) {}
91 virtual Operation* InstantiateOperation(AuthorizationSet&& hw_enforced,
99 Operation* InstantiateOperation(AuthorizationSet&& hw_enforced, AuthorizationSet&& sw_enforced,
102 EcdsaSignOperation(move(hw_enforced), move(sw_enforced), digest, key);
109 Operation* InstantiateOperation(AuthorizationSet&& hw_enforced, AuthorizationSe
[all...] |
| H A D | rsa_operation.h | 36 RsaOperation(AuthorizationSet&& hw_enforced, AuthorizationSet&& sw_enforced, argument
39 : Operation(purpose, move(hw_enforced), move(sw_enforced)), rsa_key_(key),
76 RsaDigestingOperation(AuthorizationSet&& hw_enforced, AuthorizationSet&& sw_enforced,
92 RsaSignOperation(AuthorizationSet&& hw_enforced, AuthorizationSet&& sw_enforced, argument
94 : RsaDigestingOperation(move(hw_enforced), move(sw_enforced), KM_PURPOSE_SIGN, digest,
116 RsaVerifyOperation(AuthorizationSet&& hw_enforced, AuthorizationSet&& sw_enforced, argument
118 : RsaDigestingOperation(move(hw_enforced), move(sw_enforced), KM_PURPOSE_VERIFY, digest,
140 RsaCryptOperation(AuthorizationSet&& hw_enforced, AuthorizationSet&& sw_enforced, argument
143 : RsaOperation(move(hw_enforced), move(sw_enforced), purpose, digest, padding, key) {}
158 RsaEncryptOperation(AuthorizationSet&& hw_enforced, AuthorizationSe argument
172 RsaDecryptOperation(AuthorizationSet&& hw_enforced, AuthorizationSet&& sw_enforced, keymaster_digest_t digest, keymaster_padding_t padding, EVP_PKEY* key) argument
[all...] |
| /system/keymaster/include/keymaster/legacy_support/ |
| H A D | keymaster1_legacy_support.h | 70 KeymasterKeyBlob* key_blob, AuthorizationSet* hw_enforced,
73 return software_digest_factory_.GenerateKey(key_description, key_blob, hw_enforced,
76 return passthrough_factory_.GenerateKey(key_description, key_blob, hw_enforced,
84 KeymasterKeyBlob* output_key_blob, AuthorizationSet* hw_enforced,
89 hw_enforced, sw_enforced);
93 hw_enforced, sw_enforced);
99 AuthorizationSet&& hw_enforced,
102 if (legacy_support_.RequiresSoftwareDigesting(AuthProxy(hw_enforced, sw_enforced))) {
104 move(hw_enforced), move(sw_enforced), key);
107 move(hw_enforced), mov
69 GenerateKey(const AuthorizationSet& key_description, KeymasterKeyBlob* key_blob, AuthorizationSet* hw_enforced, AuthorizationSet* sw_enforced) const argument
81 ImportKey(const AuthorizationSet& key_description, keymaster_key_format_t input_key_material_format, const KeymasterKeyBlob& input_key_material, KeymasterKeyBlob* output_key_blob, AuthorizationSet* hw_enforced, AuthorizationSet* sw_enforced) const argument
[all...] |
| H A D | ec_keymaster0_key.h | 41 KeymasterKeyBlob* key_blob, AuthorizationSet* hw_enforced,
47 KeymasterKeyBlob* output_key_blob, AuthorizationSet* hw_enforced,
52 AuthorizationSet&& hw_enforced,
62 EcKeymaster0Key(EC_KEY* ec_key, AuthorizationSet&& hw_enforced, argument
64 : EcKey(ec_key, move(hw_enforced), move(sw_enforced), key_factory) {}
|
| H A D | ec_keymaster1_key.h | 45 KeymasterKeyBlob* key_blob, AuthorizationSet* hw_enforced,
51 KeymasterKeyBlob* output_key_blob, AuthorizationSet* hw_enforced,
56 AuthorizationSet&& hw_enforced,
71 EcdsaKeymaster1Key(EC_KEY* ecdsa_key, AuthorizationSet&& hw_enforced, argument
73 : EcKey(ecdsa_key, move(hw_enforced), move(sw_enforced), key_factory) {}
|
| H A D | rsa_keymaster0_key.h | 41 KeymasterKeyBlob* key_blob, AuthorizationSet* hw_enforced,
47 KeymasterKeyBlob* output_key_blob, AuthorizationSet* hw_enforced,
52 AuthorizationSet&& hw_enforced,
62 RsaKeymaster0Key(RSA* rsa_key, AuthorizationSet&& hw_enforced, argument
65 : RsaKey(rsa_key, move(hw_enforced), move(sw_enforced), key_factory) {}
|
| H A D | rsa_keymaster1_key.h | 46 KeymasterKeyBlob* key_blob, AuthorizationSet* hw_enforced,
52 KeymasterKeyBlob* output_key_blob, AuthorizationSet* hw_enforced,
57 AuthorizationSet&& hw_enforced,
74 RsaKeymaster1Key(RSA* rsa_key, AuthorizationSet&& hw_enforced, argument
77 : RsaKey(rsa_key, move(hw_enforced), move(sw_enforced), key_factory) {}
|
| H A D | keymaster_passthrough_key.h | 44 KeymasterKeyBlob* key_blob, AuthorizationSet* hw_enforced,
46 return engine_->GenerateKey(key_description, key_blob, hw_enforced, sw_enforced);
52 KeymasterKeyBlob* output_key_blob, AuthorizationSet* hw_enforced,
55 output_key_blob, hw_enforced, sw_enforced);
60 AuthorizationSet&& hw_enforced,
78 KeymasterPassthroughKey(KeymasterKeyBlob&& key_material, AuthorizationSet&& hw_enforced, argument
83 : Key(move(hw_enforced), move(sw_enforced), key_factory),
|
| /system/keymaster/include/keymaster/ |
| H A D | asymmetric_key_factory.h | 32 AuthorizationSet&& hw_enforced,
36 virtual keymaster_error_t CreateEmptyKey(AuthorizationSet&& hw_enforced,
|
| H A D | key.h | 45 const AuthorizationSet& hw_enforced() const { return hw_enforced_; } function in class:keymaster::Key
47 AuthorizationSet& hw_enforced() { return hw_enforced_; } function in class:keymaster::Key
64 Key(AuthorizationSet&& hw_enforced, AuthorizationSet&& sw_enforced, argument
66 : hw_enforced_(move(hw_enforced)), sw_enforced_(move(sw_enforced)),
|
| /system/keymaster/km_openssl/ |
| H A D | symmetric_key.cpp | 35 AuthorizationSet* hw_enforced,
37 if (!key_blob || !hw_enforced || !sw_enforced)
61 hw_enforced, sw_enforced);
68 AuthorizationSet* hw_enforced,
70 if (!output_key_blob || !hw_enforced || !sw_enforced)
94 output_key_blob, hw_enforced, sw_enforced);
105 AuthorizationSet&& hw_enforced, AuthorizationSet&& sw_enforced,
107 : Key(move(hw_enforced), move(sw_enforced), key_factory) {
33 GenerateKey(const AuthorizationSet& key_description, KeymasterKeyBlob* key_blob, AuthorizationSet* hw_enforced, AuthorizationSet* sw_enforced) const argument
64 ImportKey(const AuthorizationSet& key_description, keymaster_key_format_t input_key_material_format, const KeymasterKeyBlob& input_key_material, KeymasterKeyBlob* output_key_blob, AuthorizationSet* hw_enforced, AuthorizationSet* sw_enforced) const argument
104 SymmetricKey(KeymasterKeyBlob&& key_material, AuthorizationSet&& hw_enforced, AuthorizationSet&& sw_enforced, const KeyFactory* key_factory) argument
|
| H A D | aes_key.cpp | 46 AuthorizationSet&& hw_enforced,
53 if (hw_enforced.Contains(TAG_BLOCK_MODE, KM_MODE_GCM) ||
56 if (!hw_enforced.GetTagValue(TAG_MIN_MAC_LENGTH, &min_mac_length) &&
65 key->reset(new (std::nothrow) AesKey(move(key_material), move(hw_enforced), move(sw_enforced),
44 LoadKey(KeymasterKeyBlob&& key_material, const AuthorizationSet& , AuthorizationSet&& hw_enforced, AuthorizationSet&& sw_enforced, UniquePtr<Key>* key) const argument
|
| /system/keymaster/contexts/ |
| H A D | keymaster1_passthrough_context.cpp | 102 if (key->hw_enforced().Contains(TAG_PURPOSE) &&
103 !key->hw_enforced().Contains(TAG_OS_PATCHLEVEL)) {
114 AuthorizationSet* hw_enforced,
135 hw_enforced->Reinitialize(characteristics->hw_enforced);
143 AuthorizationSet hw_enforced; local
154 error = DeserializeIntegrityAssuredBlob(blob, hidden, &key_material, &hw_enforced, &sw_enforced);
160 &key_material, &hw_enforced, &sw_enforced);
166 if (!hw_enforced.GetTagValue(TAG_ALGORITHM, &algorithm) &&
172 return factory->LoadKey(move(key_material), additional_params, move(hw_enforced),
110 parseKeymaster1HwBlob(const keymaster1_device_t* device, const KeymasterKeyBlob& blob, const AuthorizationSet& additional_params, KeymasterKeyBlob* key_material, AuthorizationSet* hw_enforced, AuthorizationSet* sw_enforced) argument
182 AuthorizationSet hw_enforced, sw_enforced; local
213 CreateKeyBlob(const AuthorizationSet& key_description, const keymaster_key_origin_t origin, const KeymasterKeyBlob& key_material, KeymasterKeyBlob* blob, AuthorizationSet* hw_enforced, AuthorizationSet* sw_enforced) const argument
[all...] |
| H A D | soft_keymaster_context.cpp | 157 uint32_t os_patchlevel, AuthorizationSet* hw_enforced,
180 // hw_enforced, in which case we defer to its decision.
182 if (hw_enforced->GetTagCount(entry.tag) == 0)
200 AuthorizationSet* hw_enforced,
203 os_patchlevel_, hw_enforced, sw_enforced);
212 return SerializeIntegrityAssuredBlob(key_material, hidden, *hw_enforced, *sw_enforced, blob);
235 if (km1_dev_ && key->hw_enforced().Contains(TAG_PURPOSE) &&
236 !key->hw_enforced().Contains(TAG_OS_PATCHLEVEL))
278 AuthorizationSet hw_enforced; local
288 if (!hw_enforced
155 SetAuthorizations(const AuthorizationSet& key_description, keymaster_key_origin_t origin, uint32_t os_version, uint32_t os_patchlevel, AuthorizationSet* hw_enforced, AuthorizationSet* sw_enforced) argument
196 CreateKeyBlob(const AuthorizationSet& key_description, const keymaster_key_origin_t origin, const KeymasterKeyBlob& key_material, KeymasterKeyBlob* blob, AuthorizationSet* hw_enforced, AuthorizationSet* sw_enforced) const argument
338 AuthorizationSet hw_enforced, sw_enforced; local
359 AuthorizationSet hw_enforced, sw_enforced; local
395 ParseKeymaster1HwBlob( const KeymasterKeyBlob& blob, const AuthorizationSet& additional_params, KeymasterKeyBlob* key_material, AuthorizationSet* hw_enforced, AuthorizationSet* sw_enforced) const argument
427 ParseKeymaster0HwBlob(const KeymasterKeyBlob& blob, KeymasterKeyBlob* key_material, AuthorizationSet* hw_enforced, AuthorizationSet* sw_enforced) const argument
[all...] |