/* * Copyright (C) 2015 The Android Open Source Project * * Licensed under the Apache License, Version 2.0 (the "License"); * you may not use this file except in compliance with the License. * You may obtain a copy of the License at * * http://www.apache.org/licenses/LICENSE-2.0 * * Unless required by applicable law or agreed to in writing, software * distributed under the License is distributed on an "AS IS" BASIS, * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. * See the License for the specific language governing permissions and * limitations under the License. */ #include <hardware/hardware.h> #include <hardware/gatekeeper.h> #define LOG_TAG "CuttlefishGatekeeper" #include <cutils/log.h> #include <string.h> #include <errno.h> #include <stdlib.h> #include "SoftGateKeeper.h" #include "SoftGateKeeperDevice.h" using cuttlefish::SoftGateKeeperDevice; struct cuttlefish_gatekeeper_device { gatekeeper_device device; SoftGateKeeperDevice *s_gatekeeper; }; static cuttlefish_gatekeeper_device s_device; static int enroll(const struct gatekeeper_device *dev __unused, uint32_t uid, const uint8_t *current_password_handle, uint32_t current_password_handle_length, const uint8_t *current_password, uint32_t current_password_length, const uint8_t *desired_password, uint32_t desired_password_length, uint8_t **enrolled_password_handle, uint32_t *enrolled_password_handle_length) { SoftGateKeeperDevice *s_gatekeeper = ((cuttlefish_gatekeeper_device*)(dev))->s_gatekeeper; ALOGE("called %s with gate keeper %p device %p\n", __func__, s_gatekeeper, dev); if (s_gatekeeper == nullptr) { abort(); return -EINVAL; } return s_gatekeeper->enroll(uid, current_password_handle, current_password_handle_length, current_password, current_password_length, desired_password, desired_password_length, enrolled_password_handle, enrolled_password_handle_length); } static int verify(const struct gatekeeper_device *dev __unused, uint32_t uid, uint64_t challenge, const uint8_t *enrolled_password_handle, uint32_t enrolled_password_handle_length, const uint8_t *provided_password, uint32_t provided_password_length, uint8_t **auth_token, uint32_t *auth_token_length, bool *request_reenroll) { SoftGateKeeperDevice *s_gatekeeper = ((cuttlefish_gatekeeper_device*)(dev))->s_gatekeeper; ALOGE("called %s with gate keeper %p device %p\n", __func__, s_gatekeeper, dev); if (s_gatekeeper == nullptr) return -EINVAL; return s_gatekeeper->verify(uid, challenge, enrolled_password_handle, enrolled_password_handle_length, provided_password, provided_password_length, auth_token, auth_token_length, request_reenroll); } static int close_device(hw_device_t* dev __unused) { SoftGateKeeperDevice *s_gatekeeper = ((cuttlefish_gatekeeper_device*)(dev))->s_gatekeeper; if (s_gatekeeper == nullptr) return 0; delete s_gatekeeper; s_gatekeeper = nullptr; ALOGE("called %s with gate keeper %p device %p\n", __func__, s_gatekeeper, dev); return 0; } static int cuttlefish_gatekeeper_open(const hw_module_t *module, const char *name, hw_device_t **device) { if (strcmp(name, HARDWARE_GATEKEEPER) != 0) { abort(); return -EINVAL; } memset(&s_device, 0, sizeof(s_device)); SoftGateKeeperDevice *s_gatekeeper = new SoftGateKeeperDevice(); if (s_gatekeeper == nullptr) return -ENOMEM; s_device.s_gatekeeper = s_gatekeeper; s_device.device.common.tag = HARDWARE_DEVICE_TAG; s_device.device.common.version = 1; s_device.device.common.module = const_cast<hw_module_t *>(module); s_device.device.common.close = close_device; s_device.device.enroll = enroll; s_device.device.verify = verify; s_device.device.delete_user = nullptr; s_device.device.delete_all_users = nullptr; *device = &s_device.device.common; ALOGE("called %s with gate keeper %p device %p\n", __func__, s_gatekeeper, *device); return 0; } static struct hw_module_methods_t gatekeeper_module_methods = { .open = cuttlefish_gatekeeper_open, }; struct gatekeeper_module HAL_MODULE_INFO_SYM __attribute__((visibility("default"))) = { .common = { .tag = HARDWARE_MODULE_TAG, .module_api_version = GATEKEEPER_MODULE_API_VERSION_0_1, .hal_api_version = HARDWARE_HAL_API_VERSION, .id = GATEKEEPER_HARDWARE_MODULE_ID, .name = "Cuttlefish GateKeeper HAL", .author = "The Android Open Source Project", .methods = &gatekeeper_module_methods, .dso = 0, .reserved = {} }, };