Android-cuttlefish cvd tool
tpm_key_blob_maker.h
Go to the documentation of this file.
1//
2// Copyright (C) 2020 The Android Open Source Project
3//
4// Licensed under the Apache License, Version 2.0 (the "License");
5// you may not use this file except in compliance with the License.
6// You may obtain a copy of the License at
7//
8// http://www.apache.org/licenses/LICENSE-2.0
9//
10// Unless required by applicable law or agreed to in writing, software
11// distributed under the License is distributed on an "AS IS" BASIS,
12// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13// See the License for the specific language governing permissions and
14// limitations under the License.
15
16#pragma once
17
18#include <optional>
19//
20#include <keymaster/soft_key_factory.h>
21//
22#include "cuttlefish/host/commands/secure_env/tpm_resource_manager.h"
23
24namespace cuttlefish {
25
34class TpmKeyBlobMaker : public keymaster::SoftwareKeyBlobMaker {
35public:
36 TpmKeyBlobMaker(TpmResourceManager& resource_manager);
37
38 keymaster_error_t CreateKeyBlob(
39 const keymaster::AuthorizationSet& key_description,
40 keymaster_key_origin_t origin,
41 const keymaster::KeymasterKeyBlob& key_material,
42 keymaster::KeymasterKeyBlob* blob,
43 keymaster::AuthorizationSet* hw_enforced,
44 keymaster::AuthorizationSet* sw_enforced) const override;
45
46 keymaster_error_t UnvalidatedCreateKeyBlob(
47 const keymaster::KeymasterKeyBlob& key_material,
48 const keymaster::AuthorizationSet& hw_enforced,
49 const keymaster::AuthorizationSet& sw_enforced,
50 const keymaster::AuthorizationSet& hidden,
51 keymaster::KeymasterKeyBlob* blob) const;
52
64 keymaster_error_t UnwrapKeyBlob(
65 const keymaster_key_blob_t& blob,
66 keymaster::AuthorizationSet* hw_enforced,
67 keymaster::AuthorizationSet* sw_enforced,
68 const keymaster::AuthorizationSet& hidden,
69 keymaster::KeymasterKeyBlob* key_material) const;
70
71 keymaster_error_t SetSystemVersion(uint32_t os_version, uint32_t os_patchlevel);
72 keymaster_error_t SetVendorPatchlevel(uint32_t vendor_patchlevel);
73 keymaster_error_t SetBootPatchlevel(uint32_t boot_patchlevel);
74
75 private:
76 TpmResourceManager& resource_manager_;
77 uint32_t os_version_;
78 uint32_t os_patchlevel_;
79 std::optional<uint32_t> vendor_patchlevel_;
80 std::optional<uint32_t> boot_patchlevel_;
81};
82
83} // namespace cuttlefish
cuttlefish::TpmKeyBlobMaker
Definition: tpm_key_blob_maker.h:34
cuttlefish::TpmKeyBlobMaker::vendor_patchlevel_
std::optional< uint32_t > vendor_patchlevel_
Definition: tpm_key_blob_maker.h:79
cuttlefish::TpmKeyBlobMaker::os_version_
uint32_t os_version_
Definition: tpm_key_blob_maker.h:77
cuttlefish::TpmKeyBlobMaker::SetSystemVersion
keymaster_error_t SetSystemVersion(uint32_t os_version, uint32_t os_patchlevel)
Definition: tpm_key_blob_maker.cpp:273
cuttlefish::TpmKeyBlobMaker::CreateKeyBlob
keymaster_error_t CreateKeyBlob(const keymaster::AuthorizationSet &key_description, keymaster_key_origin_t origin, const keymaster::KeymasterKeyBlob &key_material, keymaster::KeymasterKeyBlob *blob, keymaster::AuthorizationSet *hw_enforced, keymaster::AuthorizationSet *sw_enforced) const override
Definition: tpm_key_blob_maker.cpp:184
cuttlefish::TpmKeyBlobMaker::SetVendorPatchlevel
keymaster_error_t SetVendorPatchlevel(uint32_t vendor_patchlevel)
Definition: tpm_key_blob_maker.cpp:281
cuttlefish::TpmKeyBlobMaker::os_patchlevel_
uint32_t os_patchlevel_
Definition: tpm_key_blob_maker.h:78
cuttlefish::TpmKeyBlobMaker::UnwrapKeyBlob
keymaster_error_t UnwrapKeyBlob(const keymaster_key_blob_t &blob, keymaster::AuthorizationSet *hw_enforced, keymaster::AuthorizationSet *sw_enforced, const keymaster::AuthorizationSet &hidden, keymaster::KeymasterKeyBlob *key_material) const
Definition: tpm_key_blob_maker.cpp:245
cuttlefish::TpmKeyBlobMaker::resource_manager_
TpmResourceManager & resource_manager_
Definition: tpm_key_blob_maker.h:76
cuttlefish::TpmKeyBlobMaker::boot_patchlevel_
std::optional< uint32_t > boot_patchlevel_
Definition: tpm_key_blob_maker.h:80
cuttlefish::TpmKeyBlobMaker::SetBootPatchlevel
keymaster_error_t SetBootPatchlevel(uint32_t boot_patchlevel)
Definition: tpm_key_blob_maker.cpp:287
cuttlefish::TpmKeyBlobMaker::UnvalidatedCreateKeyBlob
keymaster_error_t UnvalidatedCreateKeyBlob(const keymaster::KeymasterKeyBlob &key_material, const keymaster::AuthorizationSet &hw_enforced, const keymaster::AuthorizationSet &sw_enforced, const keymaster::AuthorizationSet &hidden, keymaster::KeymasterKeyBlob *blob) const
Definition: tpm_key_blob_maker.cpp:215
cuttlefish::TpmKeyBlobMaker::TpmKeyBlobMaker
TpmKeyBlobMaker(TpmResourceManager &resource_manager)
Definition: tpm_key_blob_maker.cpp:180
cuttlefish::TpmResourceManager
Definition: tpm_resource_manager.h:50
cuttlefish
Definition: alloc_utils.cpp:23
tpm_resource_manager.h
Generated by doxygen 1.9.4