diff options
| author | Daniel Norman <danielnorman@google.com> | 2021-02-08 11:11:06 -0800 |
|---|---|---|
| committer | Daniel Norman <danielnorman@google.com> | 2021-02-08 14:07:55 -0800 |
| commit | f86b976dba9b016816efa57156e791fffd498d64 (patch) | |
| tree | 62e68f2885e6a7a73bf3386e8459f8fe98528ade /identity/aidl/default/FakeSecureHardwareProxy.cpp | |
| parent | a0da4d07b75fa61fcb4f5648ba304cbf4ac50f6a (diff) | |
| parent | 7fd5ae363319c3d8fa9128c39075ea82799989ab (diff) | |
Merge SP1A.210208.001
Change-Id: I0c596171de3bcead62935db7388b784e55444080
Diffstat (limited to 'identity/aidl/default/FakeSecureHardwareProxy.cpp')
| -rw-r--r-- | identity/aidl/default/FakeSecureHardwareProxy.cpp | 35 |
1 files changed, 29 insertions, 6 deletions
diff --git a/identity/aidl/default/FakeSecureHardwareProxy.cpp b/identity/aidl/default/FakeSecureHardwareProxy.cpp index de6762fc2e..287ffb82e1 100644 --- a/identity/aidl/default/FakeSecureHardwareProxy.cpp +++ b/identity/aidl/default/FakeSecureHardwareProxy.cpp @@ -67,6 +67,13 @@ bool FakeSecureHardwareProvisioningProxy::initialize(bool testCredential) { return eicProvisioningInit(&ctx_, testCredential); } +bool FakeSecureHardwareProvisioningProxy::initializeForUpdate( + bool testCredential, string docType, vector<uint8_t> encryptedCredentialKeys) { + return eicProvisioningInitForUpdate(&ctx_, testCredential, docType.c_str(), + encryptedCredentialKeys.data(), + encryptedCredentialKeys.size()); +} + // Returns public key certificate. optional<vector<uint8_t>> FakeSecureHardwareProvisioningProxy::createCredentialKey( const vector<uint8_t>& challenge, const vector<uint8_t>& applicationId) { @@ -140,14 +147,16 @@ optional<vector<uint8_t>> FakeSecureHardwareProvisioningProxy::finishAddingEntri return signatureOfToBeSigned; } -// Returns encryptedCredentialKeys (80 bytes). +// Returns encryptedCredentialKeys. optional<vector<uint8_t>> FakeSecureHardwareProvisioningProxy::finishGetCredentialData( const string& docType) { - vector<uint8_t> encryptedCredentialKeys(80); + vector<uint8_t> encryptedCredentialKeys(116); + size_t size = encryptedCredentialKeys.size(); if (!eicProvisioningFinishGetCredentialData(&ctx_, docType.c_str(), - encryptedCredentialKeys.data())) { + encryptedCredentialKeys.data(), &size)) { return {}; } + encryptedCredentialKeys.resize(size); return encryptedCredentialKeys; } @@ -162,7 +171,7 @@ bool FakeSecureHardwarePresentationProxy::initialize(bool testCredential, string LOG(INFO) << "FakeSecureHardwarePresentationProxy created, sizeof(EicPresentation): " << sizeof(EicPresentation); return eicPresentationInit(&ctx_, testCredential, docType.c_str(), - encryptedCredentialKeys.data()); + encryptedCredentialKeys.data(), encryptedCredentialKeys.size()); } // Returns publicKeyCert (1st component) and signingKeyBlob (2nd component) @@ -312,13 +321,27 @@ optional<vector<uint8_t>> FakeSecureHardwarePresentationProxy::finishRetrieval() } optional<vector<uint8_t>> FakeSecureHardwarePresentationProxy::deleteCredential( - const string& docType, size_t proofOfDeletionCborSize) { + const string& docType, const vector<uint8_t>& challenge, bool includeChallenge, + size_t proofOfDeletionCborSize) { vector<uint8_t> signatureOfToBeSigned(EIC_ECDSA_P256_SIGNATURE_SIZE); - if (!eicPresentationDeleteCredential(&ctx_, docType.c_str(), proofOfDeletionCborSize, + if (!eicPresentationDeleteCredential(&ctx_, docType.c_str(), challenge.data(), challenge.size(), + includeChallenge, proofOfDeletionCborSize, signatureOfToBeSigned.data())) { return {}; } return signatureOfToBeSigned; } +optional<vector<uint8_t>> FakeSecureHardwarePresentationProxy::proveOwnership( + const string& docType, bool testCredential, const vector<uint8_t>& challenge, + size_t proofOfOwnershipCborSize) { + vector<uint8_t> signatureOfToBeSigned(EIC_ECDSA_P256_SIGNATURE_SIZE); + if (!eicPresentationProveOwnership(&ctx_, docType.c_str(), testCredential, challenge.data(), + challenge.size(), proofOfOwnershipCborSize, + signatureOfToBeSigned.data())) { + return {}; + } + return signatureOfToBeSigned; +} + } // namespace android::hardware::identity |