forked from trusty-ia/trusty_app_keymaster
-
Notifications
You must be signed in to change notification settings - Fork 0
/
trusty_keymaster_enforcement.h
61 lines (48 loc) · 2.03 KB
/
trusty_keymaster_enforcement.h
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
/*
* Copyright 2015 The Android Open Source Project
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
* http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
#ifndef TRUSTY_APP_KEYMASTER_TRUSTY_KEYMASTER_ENFORCEMENT_H_
#define TRUSTY_APP_KEYMASTER_TRUSTY_KEYMASTER_ENFORCEMENT_H_
#include "openssl_keymaster_enforcement.h"
namespace keymaster {
class TrustyKeymasterContext;
const int kAccessMapTableSize = 32;
const int kAccessCountTableSize = 32;
class TrustyKeymasterEnforcement : public OpenSSLKeymasterEnforcement {
public:
TrustyKeymasterEnforcement(TrustyKeymasterContext* context)
: OpenSSLKeymasterEnforcement(kAccessMapTableSize,
kAccessCountTableSize),
context_(context) {}
~TrustyKeymasterEnforcement() {}
bool activation_date_valid(uint64_t activation_date) const override {
// Have no wall clock, can't check activations.
return true;
}
bool expiration_date_passed(uint64_t expiration_date) const override {
// Have no wall clock, can't check expirations.
return false;
}
bool auth_token_timed_out(const hw_auth_token_t& token,
uint32_t timeout) const override;
uint64_t get_current_time_ms() const override;
keymaster_security_level_t SecurityLevel() const override;
bool ValidateTokenSignature(const hw_auth_token_t& token) const override;
private:
uint64_t milliseconds_since_boot() const;
TrustyKeymasterContext* context_;
};
} // namespace keymaster
#endif // TRUSTY_APP_KEYMASTER_TRUSTY_KEYMASTER_ENFORCEMENT_H_