Blame - ecdsa_key.cpp - android.googlesource.com/platform/system/keymaster

blob: 84d96498fa14e986b58e60cec45114d7625776db [file] [log] [blame]

Shawn Willden	2c8dd3e	2014-09-18 15:16:31 -0600	[diff] [blame]	1	/*
				2	* Copyright 2014 The Android Open Source Project
				3	*
				4	* Licensed under the Apache License, Version 2.0 (the "License");
				5	* you may not use this file except in compliance with the License.
				6	* You may obtain a copy of the License at
				7	*
				8	* http://www.apache.org/licenses/LICENSE-2.0
				9	*
				10	* Unless required by applicable law or agreed to in writing, software
				11	* distributed under the License is distributed on an "AS IS" BASIS,
				12	* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
				13	* See the License for the specific language governing permissions and
				14	* limitations under the License.
				15	*/
				16
				17	#include "ecdsa_key.h"
				18	#include "ecdsa_operation.h"
				19	#include "openssl_utils.h"
				20	#include "unencrypted_key_blob.h"
				21
				22	namespace keymaster {
				23
				24	const uint32_t ECDSA_DEFAULT_KEY_SIZE = 224;
				25
				26	/* static */
				27	EcdsaKey* EcdsaKey::GenerateKey(const AuthorizationSet& key_description, const Logger& logger,
				28	keymaster_error_t* error) {
				29	if (!error)
				30	return NULL;
				31
				32	AuthorizationSet authorizations(key_description);
				33
				34	uint32_t key_size = ECDSA_DEFAULT_KEY_SIZE;
				35	if (!authorizations.GetTagValue(TAG_KEY_SIZE, &key_size))
				36	authorizations.push_back(Authorization(TAG_KEY_SIZE, key_size));
				37
				38	UniquePtr<EC_KEY, ECDSA_Delete> ecdsa_key(EC_KEY_new());
				39	UniquePtr<EVP_PKEY, EVP_PKEY_Delete> pkey(EVP_PKEY_new());
				40	if (ecdsa_key.get() == NULL \|\| pkey.get() == NULL) {
				41	*error = KM_ERROR_MEMORY_ALLOCATION_FAILED;
				42	return NULL;
				43	}
				44
				45	UniquePtr<EC_GROUP, EC_GROUP_Delete> group(choose_group(key_size));
				46	if (group.get() == NULL) {
				47	// Technically, could also have been a memory allocation problem.
				48	*error = KM_ERROR_UNSUPPORTED_KEY_SIZE;
				49	return NULL;
				50	}
				51
Shawn Willden	baf99b6	2014-09-26 09:38:22 -0600	[diff] [blame]	52	#if !defined(OPENSSL_IS_BORINGSSL)
Adam Langley	a550fba	2015-02-13 14:44:14 -0800	[diff] [blame]	53	EC_GROUP_set_point_conversion_form(group.get(), POINT_CONVERSION_UNCOMPRESSED);
Shawn Willden	2c8dd3e	2014-09-18 15:16:31 -0600	[diff] [blame]	54	EC_GROUP_set_asn1_flag(group.get(), OPENSSL_EC_NAMED_CURVE);
Shawn Willden	baf99b6	2014-09-26 09:38:22 -0600	[diff] [blame]	55	#endif
Shawn Willden	2c8dd3e	2014-09-18 15:16:31 -0600	[diff] [blame]	56
				57	if (EC_KEY_set_group(ecdsa_key.get(), group.get()) != 1 \|\|
				58	EC_KEY_generate_key(ecdsa_key.get()) != 1 \|\| EC_KEY_check_key(ecdsa_key.get()) < 0) {
				59	*error = KM_ERROR_UNKNOWN_ERROR;
				60	return NULL;
				61	}
				62
				63	EcdsaKey* new_key = new EcdsaKey(ecdsa_key.release(), authorizations, logger);
				64	*error = new_key ? KM_ERROR_OK : KM_ERROR_MEMORY_ALLOCATION_FAILED;
				65	return new_key;
				66	}
				67
				68	/* static */
				69	EcdsaKey* EcdsaKey::ImportKey(const AuthorizationSet& key_description, EVP_PKEY* pkey,
				70	const Logger& logger, keymaster_error_t* error) {
				71	if (!error)
				72	return NULL;
				73	*error = KM_ERROR_UNKNOWN_ERROR;
				74
				75	UniquePtr<EC_KEY, ECDSA_Delete> ecdsa_key(EVP_PKEY_get1_EC_KEY(pkey));
				76	if (!ecdsa_key.get())
				77	return NULL;
				78
				79	AuthorizationSet authorizations(key_description);
				80
				81	size_t extracted_key_size_bits;
				82	error = get_group_size(EC_KEY_get0_group(ecdsa_key.get()), &extracted_key_size_bits);
				83	if (*error != KM_ERROR_OK)
				84	return NULL;
				85
				86	uint32_t key_size_bits;
				87	if (authorizations.GetTagValue(TAG_KEY_SIZE, &key_size_bits)) {
				88	// key_size_bits specified, make sure it matches the key.
				89	if (key_size_bits != extracted_key_size_bits) {
				90	*error = KM_ERROR_IMPORT_PARAMETER_MISMATCH;
				91	return NULL;
				92	}
				93	} else {
				94	// key_size_bits not specified, add it.
				95	authorizations.push_back(TAG_KEY_SIZE, extracted_key_size_bits);
				96	}
				97
				98	keymaster_algorithm_t algorithm;
				99	if (authorizations.GetTagValue(TAG_ALGORITHM, &algorithm)) {
				100	if (algorithm != KM_ALGORITHM_ECDSA) {
				101	*error = KM_ERROR_IMPORT_PARAMETER_MISMATCH;
				102	return NULL;
				103	}
				104	} else {
				105	authorizations.push_back(TAG_ALGORITHM, KM_ALGORITHM_ECDSA);
				106	}
				107
				108	// Don't bother with the other parameters. If the necessary padding, digest, purpose, etc. are
				109	// missing, the error will be diagnosed when the key is used (when auth checking is
				110	// implemented).
				111	*error = KM_ERROR_OK;
				112	return new EcdsaKey(ecdsa_key.release(), authorizations, logger);
				113	}
				114
				115	/* static */
				116	EC_GROUP* EcdsaKey::choose_group(size_t key_size_bits) {
				117	switch (key_size_bits) {
Shawn Willden	2c8dd3e	2014-09-18 15:16:31 -0600	[diff] [blame]	118	case 224:
				119	return EC_GROUP_new_by_curve_name(NID_secp224r1);
				120	break;
				121	case 256:
				122	return EC_GROUP_new_by_curve_name(NID_X9_62_prime256v1);
				123	break;
				124	case 384:
				125	return EC_GROUP_new_by_curve_name(NID_secp384r1);
				126	break;
				127	case 521:
				128	return EC_GROUP_new_by_curve_name(NID_secp521r1);
				129	break;
				130	default:
				131	return NULL;
				132	break;
				133	}
				134	}
				135
				136	/* static */
				137	keymaster_error_t EcdsaKey::get_group_size(const EC_GROUP& group, size_t* key_size_bits) {
				138	switch (EC_GROUP_get_curve_name(&group)) {
Shawn Willden	2c8dd3e	2014-09-18 15:16:31 -0600	[diff] [blame]	139	case NID_secp224r1:
				140	*key_size_bits = 224;
				141	break;
				142	case NID_X9_62_prime256v1:
				143	*key_size_bits = 256;
				144	break;
				145	case NID_secp384r1:
				146	*key_size_bits = 384;
				147	break;
				148	case NID_secp521r1:
				149	*key_size_bits = 521;
				150	break;
				151	default:
				152	return KM_ERROR_UNSUPPORTED_EC_FIELD;
				153	}
				154	return KM_ERROR_OK;
				155	}
				156
				157	EcdsaKey::EcdsaKey(const UnencryptedKeyBlob& blob, const Logger& logger, keymaster_error_t* error)
				158	: AsymmetricKey(blob, logger) {
				159	if (error)
				160	*error = LoadKey(blob);
				161	}
				162
Shawn Willden	9659921	2014-09-26 12:07:44 -0600	[diff] [blame]	163	Operation* EcdsaKey::CreateOperation(keymaster_purpose_t purpose, keymaster_error_t* error) {
Shawn Willden	2c8dd3e	2014-09-18 15:16:31 -0600	[diff] [blame]	164	Operation* op;
				165	switch (purpose) {
				166	case KM_PURPOSE_SIGN:
Shawn Willden	b15d77e	2014-12-17 16:44:29 -0700	[diff] [blame]	167	op = new EcdsaSignOperation(purpose, logger_, ecdsa_key_.release());
Shawn Willden	2c8dd3e	2014-09-18 15:16:31 -0600	[diff] [blame]	168	break;
				169	case KM_PURPOSE_VERIFY:
Shawn Willden	b15d77e	2014-12-17 16:44:29 -0700	[diff] [blame]	170	op = new EcdsaVerifyOperation(purpose, logger_, ecdsa_key_.release());
Shawn Willden	2c8dd3e	2014-09-18 15:16:31 -0600	[diff] [blame]	171	break;
				172	default:
				173	*error = KM_ERROR_UNIMPLEMENTED;
				174	return NULL;
				175	}
				176	*error = op ? KM_ERROR_OK : KM_ERROR_MEMORY_ALLOCATION_FAILED;
				177	return op;
				178	}
				179
				180	bool EcdsaKey::EvpToInternal(const EVP_PKEY* pkey) {
				181	ecdsa_key_.reset(EVP_PKEY_get1_EC_KEY(const_cast<EVP_PKEY*>(pkey)));
				182	return ecdsa_key_.get() != NULL;
				183	}
				184
				185	bool EcdsaKey::InternalToEvp(EVP_PKEY* pkey) const {
				186	return EVP_PKEY_set1_EC_KEY(pkey, ecdsa_key_.get()) == 1;
				187	}
				188
				189	} // namespace keymaster