Home
last modified time | relevance | path

Searched refs:authorizations (Results 1 – 25 of 64) sorted by relevance

123

/system/security/keystore2/test_utils/
Dkey_generations.rs38 use crate::authorizations::AuthSetBuilder;
401 pub fn check_key_param(authorizations: &[Authorization], key_param: &KeyParameter) -> bool { in check_key_param()
402 authorizations.iter().any(|auth| &auth.keyParameter == key_param) in check_key_param()
407 authorizations: &[Authorization], in check_key_authorizations()
412 authorizations.iter().all(|auth| { in check_key_authorizations()
431 && !authorizations.iter().any(|auth| auth.keyParameter.tag == key_param.tag) in check_key_authorizations()
452 check_key_param(authorizations, key_param), in check_key_authorizations()
460 check_common_auths(authorizations, expected_key_origin); in check_key_authorizations()
464 fn check_common_auths(authorizations: &[Authorization], expected_key_origin: KeyOrigin) { in check_common_auths()
466 authorizations, in check_common_auths()
[all …]
/system/security/keystore2/tests/
Dkeystore2_client_authorizations_tests.rs39 authorizations, get_keystore_auth_service, get_keystore_service, key_generations,
58 let gen_params = authorizations::AuthSetBuilder::new() in gen_key_including_unique_id()
82 gen_params: &authorizations::AuthSetBuilder, in generate_key_and_perform_sign_verify_op_max_times()
102 gen_params: &authorizations::AuthSetBuilder, in generate_key_and_perform_op_with_max_usage_limit()
116 let auth = key_generations::get_key_auth(&key_metadata.authorizations, Tag::USAGE_COUNT_LIMIT) in generate_key_and_perform_op_with_max_usage_limit()
147 &authorizations::AuthSetBuilder::new().purpose(KeyPurpose::SIGN).digest(Digest::SHA_2_256), in generate_key_and_perform_op_with_max_usage_limit()
164 let gen_params = authorizations::AuthSetBuilder::new() in keystore2_gen_key_auth_active_datetime_test_success()
178 &authorizations::AuthSetBuilder::new().purpose(KeyPurpose::SIGN).digest(Digest::SHA_2_256), in keystore2_gen_key_auth_active_datetime_test_success()
196 let gen_params = authorizations::AuthSetBuilder::new() in keystore2_gen_key_auth_future_active_datetime_test_op_fail()
210 &authorizations::AuthSetBuilder::new().purpose(KeyPurpose::SIGN).digest(Digest::SHA_2_256), in keystore2_gen_key_auth_future_active_datetime_test_op_fail()
[all …]
Dkeystore2_client_key_agreement_tests.rs34 authorizations, get_keystore_service, key_generations, key_generations::Error,
62 let authorizations = authorizations::AuthSetBuilder::new().purpose(KeyPurpose::AGREE_KEY); in check_agreement() localVariable
63 let key_agree_op = sec_level.createOperation(keymint_key, &authorizations, false).unwrap(); in check_agreement()
171 let authorizations = authorizations::AuthSetBuilder::new().purpose(KeyPurpose::AGREE_KEY); in keystore2_ec_agree_key_with_different_curves_fail() localVariable
172 let key_agree_op = sec_level.createOperation(&keymint_key.key, &authorizations, false).unwrap(); in keystore2_ec_agree_key_with_different_curves_fail()
Dkeystore2_client_device_unique_attestation_tests.rs20 authorizations, get_keystore_service, key_generations, key_generations::Error,
53 let gen_params = authorizations::AuthSetBuilder::new() in generate_ec_key_device_unique_attested_with_id_attest()
70 let gen_params = authorizations::AuthSetBuilder::new() in generate_rsa_key_device_unique_attested_with_id_attest()
89 gen_params: authorizations::AuthSetBuilder, in add_attest_id_auth()
92 ) -> authorizations::AuthSetBuilder { in add_attest_id_auth()
112 gen_params: authorizations::AuthSetBuilder, in generate_device_unique_attested_key_with_device_attest_ids()
167 let gen_params = authorizations::AuthSetBuilder::new() in keystore2_gen_key_device_unique_attest_with_default_sec_level_unimplemented()
204 let gen_params = authorizations::AuthSetBuilder::new() in keystore2_gen_ec_key_device_unique_attest_with_strongbox_sec_level_test_success()
249 let gen_params = authorizations::AuthSetBuilder::new() in keystore2_gen_rsa_key_device_unique_attest_with_strongbox_sec_level_test_success()
306 let gen_params = authorizations::AuthSetBuilder::new() in keystore2_device_unique_attest_key_fails_with_invalid_attestation_id()
Dkeystore2_client_import_keys_tests.rs32 authorizations, get_keystore_service, key_generations, key_generations::Error,
50 import_params: authorizations::AuthSetBuilder, in import_rsa_sign_key_and_perform_sample_operation()
143 let import_params = authorizations::AuthSetBuilder::new() in keystore2_rsa_import_key_success()
176 let import_params = authorizations::AuthSetBuilder::new() in keystore2_rsa_import_key_determine_key_size_and_pub_exponent()
204 let import_params = authorizations::AuthSetBuilder::new() in keystore2_rsa_import_key_fails_with_keysize_param_mismatch_error()
237 let import_params = authorizations::AuthSetBuilder::new() in keystore2_rsa_import_key_fails_with_public_exponent_param_mismatch_error()
271 let import_params = authorizations::AuthSetBuilder::new() in keystore2_rsa_import_key_with_multipurpose_fails_incompt_purpose_error()
317 let import_params = authorizations::AuthSetBuilder::new() in keystore2_import_ec_key_success()
347 let import_params = authorizations::AuthSetBuilder::new() in keystore2_ec_import_key_fails_with_mismatch_curve_error()
537 let wrapping_key_params = authorizations::AuthSetBuilder::new() in keystore2_import_wrapped_key_success()
[all …]
Dkeystore2_client_test_utils.rs49 authorizations, get_keystore_service, key_generations, key_generations::Error, run_as,
183 &authorizations::AuthSetBuilder::new().purpose(op_purpose).digest(op_digest), in create_signing_operation()
206 &authorizations::AuthSetBuilder::new() in perform_sample_hmac_sign_verify_op()
224 &authorizations::AuthSetBuilder::new() in perform_sample_hmac_sign_verify_op()
268 let mut authorizations = authorizations::AuthSetBuilder::new().purpose(KeyPurpose::SIGN); in perform_sample_asym_sign_verify_op() localVariable
270 authorizations = authorizations.padding_mode(value); in perform_sample_asym_sign_verify_op()
273 authorizations = authorizations.digest(value); in perform_sample_asym_sign_verify_op()
276 let sign_op = sec_level.createOperation(&key_metadata.key, &authorizations, false).unwrap(); in perform_sample_asym_sign_verify_op()
370 let mut op_params = authorizations::AuthSetBuilder::new() in perform_sample_sym_key_encrypt_op()
401 let mut op_params = authorizations::AuthSetBuilder::new() in perform_sample_sym_key_decrypt_op()
[all …]
Dkeystore2_client_key_id_domain_tests.rs25 authorizations, get_keystore_service, key_generations, key_generations::Error,
91 &authorizations::AuthSetBuilder::new() in keystore2_find_key_with_key_id_as_domain()
147 &authorizations::AuthSetBuilder::new().purpose(KeyPurpose::SIGN).digest(Digest::SHA_2_256), in keystore2_key_id_alias_rebind_verify_by_alias()
158 &authorizations::AuthSetBuilder::new() in keystore2_key_id_alias_rebind_verify_by_alias()
232 &authorizations::AuthSetBuilder::new().purpose(KeyPurpose::SIGN).digest(Digest::SHA_2_256), in keystore2_key_id_alias_rebind_verify_by_key_id()
243 &authorizations::AuthSetBuilder::new() in keystore2_key_id_alias_rebind_verify_by_key_id()
Dkeystore2_client_3des_key_tests.rs25 authorizations, get_keystore_service, key_generations, key_generations::Error,
129 let gen_params = authorizations::AuthSetBuilder::new() in keystore2_3des_key_fails_missing_padding()
152 let op_params = authorizations::AuthSetBuilder::new() in keystore2_3des_key_fails_missing_padding()
184 let op_params = authorizations::AuthSetBuilder::new() in keystore2_3des_key_encrypt_fails_invalid_input_length()
Dkeystore2_client_ec_key_tests.rs29 authorizations, get_keystore_service, key_generations, key_generations::Error, run_as,
72 &authorizations::AuthSetBuilder::new().purpose(KeyPurpose::SIGN).digest(digest), in create_ec_key_and_operation()
252 let gen_params = authorizations::AuthSetBuilder::new() in keystore2_generate_ec_key_missing_curve()
288 let gen_params = authorizations::AuthSetBuilder::new() in keystore2_generate_ec_key_25519_multi_purpose()
334 &authorizations::AuthSetBuilder::new().purpose(KeyPurpose::SIGN).digest(Digest::NONE), in keystore2_ec_25519_generate_key_success()
383 &authorizations::AuthSetBuilder::new().purpose(KeyPurpose::SIGN).digest(digest), in keystore2_ec_25519_generate_key_fail()
417 &authorizations::AuthSetBuilder::new().purpose(KeyPurpose::SIGN).digest(digest), in keystore2_create_op_with_incompatible_key_digest()
512 &authorizations::AuthSetBuilder::new().purpose(KeyPurpose::SIGN).digest(Digest::SHA_2_256), in keystore2_generate_key_with_blob_domain()
Dkeystore2_client_hmac_key_tests.rs24 authorizations, get_keystore_service, key_generations, key_generations::Error,
43 &authorizations::AuthSetBuilder::new() in create_hmac_key_and_operation()
166 let gen_params = authorizations::AuthSetBuilder::new() in keystore2_hmac_gen_key_multi_digests_fails_expect_unsupported_digest()
200 let gen_params = authorizations::AuthSetBuilder::new() in keystore2_hmac_gen_key_no_digests_fails_expect_unsupported_digest()
Dkeystore2_client_aes_key_tests.rs25 authorizations, get_keystore_service, key_generations, key_generations::Error,
222 let gen_params = authorizations::AuthSetBuilder::new() in keystore2_aes_key_op_fails_multi_block_modes()
247 let op_params = authorizations::AuthSetBuilder::new() in keystore2_aes_key_op_fails_multi_block_modes()
270 let gen_params = authorizations::AuthSetBuilder::new() in keystore2_aes_key_op_fails_multi_padding_modes()
295 let op_params = authorizations::AuthSetBuilder::new() in keystore2_aes_key_op_fails_multi_padding_modes()
/system/keymaster/android_keymaster/
Doperation.cpp100 !key.authorizations().Contains(TAG_PADDING, *padding) && in GetAndValidatePadding()
101 !key.authorizations().Contains(TAG_PADDING_OLD, *padding)) { in GetAndValidatePadding()
125 if (key.authorizations().Contains(TAG_DIGEST, KM_DIGEST_NONE)) { in GetAndValidateDigest()
139 !key.authorizations().Contains(TAG_DIGEST, *digest) && in GetAndValidateDigest()
140 !key.authorizations().Contains(TAG_DIGEST_OLD, *digest)) { in GetAndValidateDigest()
/system/keymaster/km_openssl/
Dsymmetric_key.cpp78 AuthorizationSet authorizations(key_description); in ImportKey() local
81 if (!authorizations.GetTagValue(TAG_KEY_SIZE, &key_bits)) { in ImportKey()
84 authorizations.push_back(TAG_KEY_SIZE, key_bits); in ImportKey()
98 return blob_maker_.CreateKeyBlob(authorizations, KM_ORIGIN_IMPORTED, input_key_material, in ImportKey()
Decies_kem.cpp25 const AuthorizationSet& authorizations(kem_description); in EciesKem() local
27 if (!authorizations.GetTagValue(TAG_EC_CURVE, &curve_)) { in EciesKem()
46 if (!authorizations.GetTagValue(TAG_KDF, &kdf)) { in EciesKem()
65 if (!authorizations.GetTagValue(TAG_KEY_SIZE, &key_bytes_to_generate_)) { in EciesKem()
71 single_hash_mode_ = authorizations.GetTagValue(TAG_ECIES_SINGLE_HASH_MODE); in EciesKem()
Dec_key_factory.cpp93 AuthorizationSet authorizations(key_description); in GenerateKey() local
97 keymaster_error_t error = GetCurveAndSize(authorizations, &ec_curve, &key_size); in GenerateKey()
100 } else if (!authorizations.Contains(TAG_KEY_SIZE, key_size)) { in GenerateKey()
101 authorizations.push_back(TAG_KEY_SIZE, key_size); in GenerateKey()
102 } else if (!authorizations.Contains(TAG_EC_CURVE, ec_curve)) { in GenerateKey()
103 authorizations.push_back(TAG_EC_CURVE, ec_curve); in GenerateKey()
169 error = blob_maker_.CreateKeyBlob(authorizations, KM_ORIGIN_GENERATED, key_material, key_blob, in GenerateKey()
219 AuthorizationSet authorizations; in ImportKey() local
222 key_description, input_key_material_format, input_key_material, &authorizations, &key_size); in ImportKey()
225 error = blob_maker_.CreateKeyBlob(authorizations, KM_ORIGIN_IMPORTED, input_key_material, in ImportKey()
/system/security/keystore/
Dkeystore_cli_v2.cpp156 bool verifyEncryptionKeyAttributes(const std::vector<ks2::Authorization> authorizations) { in verifyEncryptionKeyAttributes() argument
160 std::any_of(authorizations.begin(), authorizations.end(), [&](const ks2::Authorization& a) { in verifyEncryptionKeyAttributes()
169 std::any_of(authorizations.begin(), authorizations.end(), [&](const ks2::Authorization& a) { in verifyEncryptionKeyAttributes()
178 std::any_of(authorizations.begin(), authorizations.end(), [&](const ks2::Authorization& a) { in verifyEncryptionKeyAttributes()
187 std::any_of(authorizations.begin(), authorizations.end(), [&](const ks2::Authorization& a) { in verifyEncryptionKeyAttributes()
197 bool verifyAuthenticationKeyAttributes(const std::vector<ks2::Authorization> authorizations) { in verifyAuthenticationKeyAttributes() argument
201 std::any_of(authorizations.begin(), authorizations.end(), [&](const ks2::Authorization& a) { in verifyAuthenticationKeyAttributes()
210 std::any_of(authorizations.begin(), authorizations.end(), [&](const ks2::Authorization& a) { in verifyAuthenticationKeyAttributes()
219 std::any_of(authorizations.begin(), authorizations.end(), [&](const ks2::Authorization& a) { in verifyAuthenticationKeyAttributes()
228 std::any_of(authorizations.begin(), authorizations.end(), [&](const ks2::Authorization& a) { in verifyAuthenticationKeyAttributes()
[all …]
/system/keymint/tests/src/bin/
Dauth-keyblob-parse.rs172 assert_eq!(extracted[0].authorizations, filtered); in process()
178 authorizations: keyblob.hw_enforced, in process()
182 authorizations: keyblob.sw_enforced, in process()
/system/hardware/interfaces/keystore2/aidl/aidl_api/android.system.keystore2/1/android/system/keystore2/
DKeyMetadata.aidl40 android.system.keystore2.Authorization[] authorizations;
/system/core/trusty/keymaster/keymint/
DTrustyKeyMintDevice.cpp50 const keymaster::AuthorizationSet& authorizations) { in convertAuthSet() argument
52 std::transform(authorizations.begin(), authorizations.end(), in convertAuthSet()
53 std::back_inserter(retval.authorizations), kmParam2Aidl); in convertAuthSet()
66 if (!keyMintEnforced.authorizations.empty()) retval.push_back(std::move(keyMintEnforced)); in convertKeyCharacteristics()
67 if (includeKeystoreEnforced && !keystoreEnforced.authorizations.empty()) { in convertKeyCharacteristics()
/system/hardware/interfaces/keystore2/aidl/aidl_api/android.system.keystore2/2/android/system/keystore2/
DKeyMetadata.aidl40 android.system.keystore2.Authorization[] authorizations;
/system/hardware/interfaces/keystore2/aidl/aidl_api/android.system.keystore2/4/android/system/keystore2/
DKeyMetadata.aidl40 android.system.keystore2.Authorization[] authorizations;
/system/hardware/interfaces/keystore2/aidl/aidl_api/android.system.keystore2/current/android/system/keystore2/
DKeyMetadata.aidl40 android.system.keystore2.Authorization[] authorizations;
/system/hardware/interfaces/keystore2/aidl/aidl_api/android.system.keystore2/3/android/system/keystore2/
DKeyMetadata.aidl40 android.system.keystore2.Authorization[] authorizations;
/system/hardware/interfaces/keystore2/aidl/android/system/keystore2/
DKeyMetadata.aidl49 Authorization[] authorizations;
/system/keymaster/ng/
DAndroidKeyMintDevice.cpp55 keyMintEnforced.authorizations = kmParamSet2Aidl(hw_enforced); in convertKeyCharacteristics()
96 keystoreEnforced.authorizations.push_back(kmParam2Aidl(entry)); in convertKeyCharacteristics()
163 keyMintEnforced.authorizations.push_back(kmParam2Aidl(entry)); in convertKeyCharacteristics()
175 keystoreEnforced.authorizations.push_back(kmParam2Aidl(entry)); in convertKeyCharacteristics()
182 if (!keyMintEnforced.authorizations.empty()) retval.push_back(std::move(keyMintEnforced)); in convertKeyCharacteristics()
183 if (include_keystore_enforced && !keystoreEnforced.authorizations.empty()) { in convertKeyCharacteristics()

123