blob: 80386818f5722a0e938e6196e3f4ac93cb826445 [file] [log] [blame]
Paul Crowley1ef25582016-01-21 20:26:12 +00001/*
2 * Copyright (C) 2016 The Android Open Source Project
3 *
4 * Licensed under the Apache License, Version 2.0 (the "License");
5 * you may not use this file except in compliance with the License.
6 * You may obtain a copy of the License at
7 *
8 * http://www.apache.org/licenses/LICENSE-2.0
9 *
10 * Unless required by applicable law or agreed to in writing, software
11 * distributed under the License is distributed on an "AS IS" BASIS,
12 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13 * See the License for the specific language governing permissions and
14 * limitations under the License.
15 */
16
17#include "Keymaster.h"
18
19#include <android-base/logging.h>
Satya Tangiralae8de4ff2021-02-28 22:32:07 -080020
21#include <aidl/android/hardware/security/keymint/SecurityLevel.h>
22#include <aidl/android/security/maintenance/IKeystoreMaintenance.h>
23#include <aidl/android/system/keystore2/Domain.h>
Janis Danisevskis3915b082021-04-20 12:50:58 -070024#include <aidl/android/system/keystore2/EphemeralStorageKeyResponse.h>
Satya Tangiralae8de4ff2021-02-28 22:32:07 -080025#include <aidl/android/system/keystore2/KeyDescriptor.h>
26
27// Keep these in sync with system/security/keystore2/src/keystore2_main.rs
28static constexpr const char keystore2_service_name[] =
29 "android.system.keystore2.IKeystoreService/default";
30static constexpr const char maintenance_service_name[] = "android.security.maintenance";
31
32/*
33 * Keep this in sync with the description for update() in
34 * system/hardware/interfaces/keystore2/aidl/android/system/keystore2/IKeystoreOperation.aidl
35 */
36static constexpr const size_t UPDATE_INPUT_MAX_SIZE = 32 * 1024; // 32 KiB
37
38// Keep this in sync with system/sepolicy/private/keystore2_key_contexts
39static constexpr const int VOLD_NAMESPACE = 100;
Paul Crowley1ef25582016-01-21 20:26:12 +000040
41namespace android {
42namespace vold {
43
Satya Tangiralae8de4ff2021-02-28 22:32:07 -080044namespace ks2_maint = ::aidl::android::security::maintenance;
Shawn Willden35351812018-01-22 09:08:32 -070045
Paul Crowley0323afd2016-03-15 17:04:39 -070046KeymasterOperation::~KeymasterOperation() {
Satya Tangiralae8de4ff2021-02-28 22:32:07 -080047 if (ks2Operation) ks2Operation->abort();
48}
49
50static void zeroize_vector(std::vector<uint8_t>& vec) {
51 memset_s(vec.data(), 0, vec.size());
52}
53
54static bool logKeystore2ExceptionIfPresent(::ndk::ScopedAStatus& rc, const std::string& func_name) {
55 if (rc.isOk()) return false;
56
57 auto exception_code = rc.getExceptionCode();
58 if (exception_code == EX_SERVICE_SPECIFIC) {
59 LOG(ERROR) << "keystore2 Keystore " << func_name
60 << " returned service specific error: " << rc.getServiceSpecificError();
61 } else {
62 LOG(ERROR) << "keystore2 Communication with Keystore " << func_name
63 << " failed error: " << exception_code;
64 }
65 return true;
Paul Crowley0323afd2016-03-15 17:04:39 -070066}
67
Pavel Grafove2e2d302017-08-01 17:15:53 +010068bool KeymasterOperation::updateCompletely(const char* input, size_t inputLen,
Shawn Willden785365b2018-01-20 09:37:36 -070069 const std::function<void(const char*, size_t)> consumer) {
Satya Tangiralae8de4ff2021-02-28 22:32:07 -080070 if (!ks2Operation) return false;
Janis Danisevskis8e537b82016-10-26 14:27:10 +010071
Satya Tangiralae8de4ff2021-02-28 22:32:07 -080072 while (inputLen != 0) {
73 size_t currLen = std::min(inputLen, UPDATE_INPUT_MAX_SIZE);
74 std::vector<uint8_t> input_vec(input, input + currLen);
75 inputLen -= currLen;
76 input += currLen;
Janis Danisevskis8e537b82016-10-26 14:27:10 +010077
Satya Tangiralae8de4ff2021-02-28 22:32:07 -080078 std::optional<std::vector<uint8_t>> output;
79 auto rc = ks2Operation->update(input_vec, &output);
80 zeroize_vector(input_vec);
81 if (logKeystore2ExceptionIfPresent(rc, "update")) {
82 ks2Operation = nullptr;
Paul Crowley1ef25582016-01-21 20:26:12 +000083 return false;
84 }
Eric Biggers940c0e52021-04-22 16:36:58 -070085 if (output) consumer((const char*)output->data(), output->size());
Paul Crowley1ef25582016-01-21 20:26:12 +000086 }
87 return true;
88}
89
Paul Crowleydff8c722016-05-16 08:14:56 -070090bool KeymasterOperation::finish(std::string* output) {
Satya Tangiralae8de4ff2021-02-28 22:32:07 -080091 std::optional<std::vector<uint8_t>> out_vec;
92
93 if (!ks2Operation) return false;
94
95 auto rc = ks2Operation->finish(std::nullopt, std::nullopt, &out_vec);
96 if (logKeystore2ExceptionIfPresent(rc, "finish")) {
97 ks2Operation = nullptr;
Paul Crowley1ef25582016-01-21 20:26:12 +000098 return false;
99 }
Satya Tangiralae8de4ff2021-02-28 22:32:07 -0800100
101 if (output) *output = std::string(out_vec->begin(), out_vec->end());
102
Paul Crowley1ef25582016-01-21 20:26:12 +0000103 return true;
104}
105
106Keymaster::Keymaster() {
Satya Tangirala6ef4e372021-04-12 15:00:33 -0700107 ::ndk::SpAIBinder binder(AServiceManager_waitForService(keystore2_service_name));
Satya Tangiralae8de4ff2021-02-28 22:32:07 -0800108 auto keystore2Service = ks2::IKeystoreService::fromBinder(binder);
109
110 if (!keystore2Service) {
111 LOG(ERROR) << "Vold unable to connect to keystore2.";
112 return;
Shawn Willden28075362018-05-09 08:12:10 -0600113 }
Satya Tangiralae8de4ff2021-02-28 22:32:07 -0800114
115 /*
116 * There are only two options available to vold for the SecurityLevel: TRUSTED_ENVIRONMENT (TEE)
117 * and STRONGBOX. We don't use STRONGBOX because if a TEE is present it will have Weaver, which
118 * already strengthens CE, so there's no additional benefit from using StrongBox.
119 *
120 * The picture is slightly more complicated because Keystore2 reports a SOFTWARE instance as
121 * a TEE instance when there isn't a TEE instance available, but in that case, a STRONGBOX
122 * instance won't be available either, so we'll still be doing the best we can.
123 */
124 auto rc = keystore2Service->getSecurityLevel(km::SecurityLevel::TRUSTED_ENVIRONMENT,
125 &securityLevel);
126 if (logKeystore2ExceptionIfPresent(rc, "getSecurityLevel"))
127 LOG(ERROR) << "Vold unable to get security level from keystore2.";
Paul Crowley1ef25582016-01-21 20:26:12 +0000128}
129
Shawn Willden35351812018-01-22 09:08:32 -0700130bool Keymaster::generateKey(const km::AuthorizationSet& inParams, std::string* key) {
Satya Tangiralae8de4ff2021-02-28 22:32:07 -0800131 ks2::KeyDescriptor in_key = {
132 .domain = ks2::Domain::BLOB,
133 .alias = std::nullopt,
134 .nspace = VOLD_NAMESPACE,
135 .blob = std::nullopt,
Janis Danisevskis8e537b82016-10-26 14:27:10 +0100136 };
Satya Tangiralae8de4ff2021-02-28 22:32:07 -0800137 ks2::KeyMetadata keyMetadata;
138 auto rc = securityLevel->generateKey(in_key, std::nullopt, inParams.vector_data(), 0, {},
139 &keyMetadata);
Janis Danisevskis8e537b82016-10-26 14:27:10 +0100140
Satya Tangiralae8de4ff2021-02-28 22:32:07 -0800141 if (logKeystore2ExceptionIfPresent(rc, "generateKey")) return false;
142
143 if (keyMetadata.key.blob == std::nullopt) {
144 LOG(ERROR) << "keystore2 generated key blob was null";
Paul Crowley1ef25582016-01-21 20:26:12 +0000145 return false;
146 }
Satya Tangiralae8de4ff2021-02-28 22:32:07 -0800147 if (key) *key = std::string(keyMetadata.key.blob->begin(), keyMetadata.key.blob->end());
148
149 zeroize_vector(keyMetadata.key.blob.value());
Paul Crowley1ef25582016-01-21 20:26:12 +0000150 return true;
151}
152
Barani Muthukumaran3dfb0942020-02-03 13:06:45 -0800153bool Keymaster::exportKey(const KeyBuffer& kmKey, std::string* key) {
Satya Tangiralae8de4ff2021-02-28 22:32:07 -0800154 bool ret = false;
155 ks2::KeyDescriptor storageKey = {
156 .domain = ks2::Domain::BLOB,
157 .alias = std::nullopt,
158 .nspace = VOLD_NAMESPACE,
Barani Muthukumaran3dfb0942020-02-03 13:06:45 -0800159 };
Satya Tangiralae8de4ff2021-02-28 22:32:07 -0800160 storageKey.blob = std::make_optional<std::vector<uint8_t>>(kmKey.begin(), kmKey.end());
Janis Danisevskis3915b082021-04-20 12:50:58 -0700161 ks2::EphemeralStorageKeyResponse ephemeral_key_response;
162 auto rc = securityLevel->convertStorageKeyToEphemeral(storageKey, &ephemeral_key_response);
Satya Tangiralae8de4ff2021-02-28 22:32:07 -0800163
164 if (logKeystore2ExceptionIfPresent(rc, "exportKey")) goto out;
Janis Danisevskis3915b082021-04-20 12:50:58 -0700165 if (key)
166 *key = std::string(ephemeral_key_response.ephemeralKey.begin(),
167 ephemeral_key_response.ephemeralKey.end());
168
169 // TODO b/185811713 store the upgraded key blob if provided and delete the old key blob.
Satya Tangiralae8de4ff2021-02-28 22:32:07 -0800170
171 ret = true;
172out:
Janis Danisevskis3915b082021-04-20 12:50:58 -0700173 zeroize_vector(ephemeral_key_response.ephemeralKey);
Satya Tangiralae8de4ff2021-02-28 22:32:07 -0800174 zeroize_vector(storageKey.blob.value());
175 return ret;
Barani Muthukumaran3dfb0942020-02-03 13:06:45 -0800176}
177
Paul Crowleydf528a72016-03-09 09:31:37 -0800178bool Keymaster::deleteKey(const std::string& key) {
Satya Tangiralae8de4ff2021-02-28 22:32:07 -0800179 ks2::KeyDescriptor keyDesc = {
180 .domain = ks2::Domain::BLOB,
181 .alias = std::nullopt,
182 .nspace = VOLD_NAMESPACE,
Janis Danisevskis8e537b82016-10-26 14:27:10 +0100183 };
Satya Tangiralae8de4ff2021-02-28 22:32:07 -0800184 keyDesc.blob =
185 std::optional<std::vector<uint8_t>>(std::vector<uint8_t>(key.begin(), key.end()));
186
187 auto rc = securityLevel->deleteKey(keyDesc);
188 return !logKeystore2ExceptionIfPresent(rc, "deleteKey");
Paul Crowleydff8c722016-05-16 08:14:56 -0700189}
190
Satya Tangiralae8de4ff2021-02-28 22:32:07 -0800191KeymasterOperation Keymaster::begin(const std::string& key, const km::AuthorizationSet& inParams,
Shawn Willden35351812018-01-22 09:08:32 -0700192 km::AuthorizationSet* outParams) {
Satya Tangiralae8de4ff2021-02-28 22:32:07 -0800193 ks2::KeyDescriptor keyDesc = {
194 .domain = ks2::Domain::BLOB,
195 .alias = std::nullopt,
196 .nspace = VOLD_NAMESPACE,
Janis Danisevskis8e537b82016-10-26 14:27:10 +0100197 };
Satya Tangiralae8de4ff2021-02-28 22:32:07 -0800198 keyDesc.blob =
199 std::optional<std::vector<uint8_t>>(std::vector<uint8_t>(key.begin(), key.end()));
Janis Danisevskis8e537b82016-10-26 14:27:10 +0100200
Satya Tangiralae8de4ff2021-02-28 22:32:07 -0800201 ks2::CreateOperationResponse cor;
202 auto rc = securityLevel->createOperation(keyDesc, inParams.vector_data(), true, &cor);
203 if (logKeystore2ExceptionIfPresent(rc, "createOperation")) {
204 if (rc.getExceptionCode() == EX_SERVICE_SPECIFIC)
205 return KeymasterOperation((km::ErrorCode)rc.getServiceSpecificError());
206 else
207 return KeymasterOperation();
Paul Crowley1ef25582016-01-21 20:26:12 +0000208 }
Satya Tangiralae8de4ff2021-02-28 22:32:07 -0800209
210 if (!cor.iOperation) {
211 LOG(ERROR) << "keystore2 createOperation didn't return an operation";
212 return KeymasterOperation();
Paul Crowley1ef25582016-01-21 20:26:12 +0000213 }
Satya Tangiralae8de4ff2021-02-28 22:32:07 -0800214
215 if (outParams && cor.parameters) *outParams = cor.parameters->keyParameter;
216
217 return KeymasterOperation(cor.iOperation, cor.upgradedBlob);
Paul Crowley1ef25582016-01-21 20:26:12 +0000218}
Shawn Willden35351812018-01-22 09:08:32 -0700219
Shawn Willden2b1ff5a2020-01-16 14:08:36 -0700220void Keymaster::earlyBootEnded() {
Satya Tangiralae8de4ff2021-02-28 22:32:07 -0800221 ::ndk::SpAIBinder binder(AServiceManager_getService(maintenance_service_name));
222 auto maint_service = ks2_maint::IKeystoreMaintenance::fromBinder(binder);
223
224 if (!maint_service) {
225 LOG(ERROR) << "Unable to connect to keystore2 maintenance service for earlyBootEnded";
226 return;
Shawn Willden2b1ff5a2020-01-16 14:08:36 -0700227 }
Satya Tangiralae8de4ff2021-02-28 22:32:07 -0800228
229 auto rc = maint_service->earlyBootEnded();
230 logKeystore2ExceptionIfPresent(rc, "earlyBootEnded");
Shawn Willden2b1ff5a2020-01-16 14:08:36 -0700231}
232
Paul Crowley1ef25582016-01-21 20:26:12 +0000233} // namespace vold
234} // namespace android