[platform/core/security/key-manager-se-backend.git] / include / key-manager-se-backend.h

/*
 *  Copyright (c) 2016 Samsung Electronics Co., Ltd All Rights Reserved
 *
 *  Licensed under the Apache License, Version 2.0 (the "License");
 *  you may not use this file except in compliance with the License.
 *  You may obtain a copy of the License at
 *
 *      http://www.apache.org/licenses/LICENSE-2.0
 *
 *  Unless required by applicable law or agreed to in writing, software
 *  distributed under the License is distributed on an "AS IS" BASIS,
 *  WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 *  See the License for the specific language governing permissions and
 *  limitations under the License
 *
 *
 * @file        key-manager-se-backend.h
 * @author      Dongsun Lee (ds73.lee@samsung.com)
 * @version     1.0
 * @brief       provides fucntions for Key Manager SE Backend
 */


#ifndef _KEY_MANAGER_SE_BACKEND_H_
#define _KEY_MANAGER_SE_BACKEND_H_

#ifdef __cplusplus
extern "C" {
#endif

#include <tizen.h>

//################################################################################
// Common
//################################################################################
/* Tizen Key Manager SE Backend Error */
#define TIZEN_ERROR_KEY_MANAGER_SE_BACKEND        TIZEN_ERROR_KEY_MANAGER | 0x0100

/**
 * @brief Enumeration for errors of Key Manager SE Backend.
 */
typedef enum {
    KMSB_ERROR_NONE = TIZEN_ERROR_NONE,                             /**< Successful */
    KMSB_ERROR_NO_KEY = TIZEN_ERROR_KEY_NOT_AVAILABLE,              /**< No Key Available */
    KMSB_ERROR_OUT_OF_MEMORY = TIZEN_ERROR_OUT_OF_MEMORY,           /**< Out of memory */
    KMSB_ERROR_INVALID_PARAMETER = TIZEN_ERROR_INVALID_PARAMETER,   /**< Invalid parameter */
    KMSB_ERROR_NOT_PERMITTED = TIZEN_ERROR_NOT_PERMITTED,           /**< Not permitted operation*/
    KMSB_ERROR_NOT_SUPPORTED = TIZEN_ERROR_NOT_SUPPORTED,           /**< Not supported(implemented) operation*/
    KMSB_ERROR_OPERATION_FAILED = TIZEN_ERROR_TRY_AGAIN,            /**< Operation failed */
    KMSB_ERROR_VERIFICATION_FAILED = TIZEN_ERROR_KEY_MANAGER_SE_BACKEND | 0x01, /**< Verification failed */
} kmsb_error_e;

//################################################################################
// For Supporting Key Manager DB Encryption with SE Key
//################################################################################

/**
 * @brief Version of DB Protection Key(DBP Key) Scheme.
 * 
 * @note  This information is used in case of DBP Scheme upgrade.
 *        Version 1 : AES Key with 256 bit and CBC encrypiton mode
 */
const unsigned int SE_BACKEND_DBP_SCHEME_VERSION = 1;

/**
 * @brief Encrypts input with DB Protection Key(DBP Key) in AES CBC mode.
 * 
 * @param    dbp_scheme  [in]    Version of DB Protection Key(DBP Key) Scheme. This must be 1.
 * @param    input       [in]    pointer for input data to encrypt
 * @param    input_len   [in]    length for input data
 * @param    iv          [in]    pointer for initial vector
 * @param    iv_len      [in]    length for initial vector
 * @param    output      [out]   double pointer for output data. 
 *                               The memory for this is allocated by SE backend 
 *                               and it must be freed using `free()` by a caller after the usage.
 * @param    output_len  [out]   pointer for output data length.
 * @return  kmsb_error_e: TIZEN_ERROR_NONE means success, and other means fail
 *             - KMSB_ERROR_NO_KEY: when DBK is not generated.
 *             - KMSB_ERROR_OUT_OF_MEMORY: when there is no available memory
 *             - KMSB_ERROR_INVALID_PARAMETER: when input parameter is not valid
 *             - KMSB_ERROR_OPERATION_FAILED: when operation fails with unknown reason
 */
kmsb_error_e kmsb_encrypt_with_dbp_key(const int dbp_scheme,
    const unsigned char *input, const unsigned int input_len,
    const unsigned char *iv, const unsigned int iv_len,
    unsigned char **output, unsigned int *output_len);

/**
 * @brief Generates a DB Protection Key(DBP Key).
 * 
 * @param delete_old  [in]    flag for overriding an existing key.
 *                            if deleted_old == true, the existing key will be deleted before generation of a new key.
 *                            if deleted_odd == false, the error(KMSB_ERROR_NOT_PERMITTED) will be returned when an old key exists.
 * @return  kmsb_error_e: TIZEN_ERROR_NONE means success, and other means fail
 *             - KMSB_ERROR_NOT_PERMITTED: when deleted_odd == false and an old key exists.
 *             - KMSB_ERROR_OUT_OF_MEMORY: when there is no available memory
 *             - KMSB_ERROR_OPERATION_FAILED: when operation fails with unknown reason
 * 
 * @note  The DBP Key is AES key with 256 bit. 
 *        This key is used in kmsb_encrypt_with_dbp_key().
 */
kmsb_error_e kmsb_generate_dbp_key(const bool delete_old);


//################################################################################
// For Supporting Preloaded SE Data
//################################################################################

/**
 * @brief Enumeration for AES Mode.
 */
typedef enum __kmsb_aes_mode {
    KMSB_ALGO_AES_CTR = 1,  /**< AES-CTR algorithm
                            Supported parameters in kmsb_aes_param_s:
                            - mode : KMSB_ALGO_AES_CTR(mandatory),
                            - iv = 16-byte initialization vector(mandatory)
                            - iv_len = 16(mandatory)
                            - ctr_len = length of counter block in bits
                            (optional, only 128b is supported at the moment) */
    KMSB_ALGO_AES_CBC,      /**< AES-CBC algorithm
                               Supported parameters in kmsb_aes_param_s:
                            - mode = KMSB_ALGO_AES_CBC(mandatory),
                            - iv = 16-byte initialization vector(mandatory)
                            - iv_len = 16(mandatory) */
    KMSB_ALGO_AES_GCM,      /**< AES-GCM algorithm
                            Supported parameters in kmsb_aes_param_s:
                            - mode = KMSB_ALGO_AES_GCM(mandatory),
                            - iv = initialization vector(mandatory)
                            - iv_len = IV lenghth in bytes(mandatory)
                            - tag_bit_len = GCM tag length in bits. One of
                            {32, 64, 96, 104, 112, 120, 128} (mandatory)
                            - tag = pointer to tag(mandatory)
                            For encryption case, the resulting tag is written to this pointer.
                            The memory of tag must be assigned by a caller in advance 
                            and its size must be larget than tag_bit_len.
                            For decryption case, the caller must set tag value to this pointer in advance.
                            - aad = additional authentication data(optional)
                            - aad_len = AAD lenghth in bytes(optional) */
    KMSB_ALGO_AES_CFB,      /**< AES-CFB algorithm
                            Supported parameters in kmsb_aes_param_s:
                            - mode = KMSB_ALGO_AES_CFB(mandatory),
                            - iv = 16-byte initialization vector(mandatory)
                            - iv_len = 16(mandatory) */
} kmsb_aes_mode_e;

/**
 * @brief The structure for AES parameter.
 */
typedef struct __kmsb_aes_param {
    kmsb_aes_mode_e mode;      /**< AES mode */
    unsigned char *iv;         /**< Pointer to initialization vector */
    unsigned int iv_len;       /**< Length to initialization vector */
    unsigned int ctr_bit_len;  /**< Length of counter block in bits */
    unsigned int tag_bit_len;  /**< GCM tag length in bits */
    unsigned char *tag;        /**< Pointer to tag */
    unsigned char *aad;        /**< Additional authentication data*/
    unsigned int aad_len;      /**< Length of additional authentication data*/
} kmsb_aes_param_s;

/*
 * @brief   Encrypts input using AES
 *
 * @param   key_idx      [in]     Key index to use
 * @param   param        [in/out] Parameters for AES algorithm.
 *                                Tag is out in GCM mode.
 * @param   input        [in]     pointer for input data to encrypt
 * @param   input_len    [in]     length for input data
 * @param   output       [out]    double pointer for output data. 
 *                                The memory for this is allocated by SE backend 
 *                                and it must be freed using `free()` by a caller after the usage.
 * @param    output_len   [out]   pointer for output data length.
 * @return  kmsb_error_e: TIZEN_ERROR_NONE means success, and other means fail
 *             - KMSB_ERROR_NO_KEY: when there is no key with key_idx.
 *             - KMSB_ERROR_OUT_OF_MEMORY: when there is no available memory
 *             - KMSB_ERROR_INVALID_PARAMETER: when input parameter is not valid
 *             - KMSB_ERROR_NOT_SUPPORTED: when specified algorithms in param is not supported
 *                                      or this operation is not supported
 *             - KMSB_ERROR_OPERATION_FAILED: when operation fails with unknown reason
 */
kmsb_error_e kmsb_aes_encrypt(const unsigned int key_idx,
                            kmsb_aes_param_s *param,
                            const unsigned char *input, const unsigned int input_len,
                            unsigned char **output, unsigned int *output_len);

/*
 * @brief   Decrypts input using AES
 *
 * @param   key_idx      [in]    Key index to use
 * @param   param        [in]    Parameters for AES algorithm.
 * @param   input        [in]    pointer for input data to decrypt
 * @param   input_len    [in]    length for input data
 * @param   output       [out]   double pointer for output data. 
 *                               The memory for this is allocated by SE backend 
 *                               and it must be freed using `frsecp192r1Cee()` by a caller after the usage.
 * @param    output_len  [out]   pointer for output data length.
 * @return  kmsb_error_e: TIZEN_ERROR_NONE means success, and other means fail
 *             - KMSB_ERROR_NO_KEY: when there is no key with key_idx.
 *             - KMSB_ERROR_OUT_OF_MEMORY: when there is no available memory
 *             - KMSB_ERROR_INVALID_PARAMETER: when input parameter is not valid
 *             - KMSB_ERROR_VERIFICATION_FAILED: when GCM tag verification fails
 *             - KMSB_ERROR_NOT_SUPPORTED: when specified algorithms in param is not supported
 *                                      or this operation is not supported
 *             - KMSB_ERROR_OPERATION_FAILED: when operation fails with unknown reason
 */
kmsb_error_e kmsb_aes_decrypt(const unsigned int key_idx,
                            kmsb_aes_param_s *param,
                            const unsigned char *input, const unsigned int input_len,
                            unsigned char **output, unsigned int *output_len);

/**
 * @brief Enumeration for elliptic curve.
 * 
 * @note  This is the same as ckmc_ec_type_e in key-manager.
 */
typedef enum __kmsb_ec_type {
    KMSB_EC_PRIME192V1 = 0, /**< Elliptic curve domain "secp192r1" listed in "SEC 2" recommended
                                  elliptic curve domain */
    KMSB_EC_PRIME256V1,      /**< "SEC 2" recommended elliptic curve domain - secp256r1 */
    KMSB_EC_SECP384R1        /**< NIST curve P-384(covers "secp384r1", the elliptic curve domain
                                  listed in See SEC 2 */
} kmsb_ec_type_e;

/**
 * @brief Enumeration for hash algorithm.
 * 
 * @note  This is the same as ckmc_hash_algo_e in key-manager.
 */
typedef enum __kmsb_hash_algo {
    KMSB_HASH_NONE = 0, /**< No Hash Algorithm */
    KMSB_HASH_SHA1,     /**< Hash Algorithm SHA1 */
    KMSB_HASH_SHA256,   /**< Hash Algorithm SHA256 */
    KMSB_HASH_SHA384,   /**< Hash Algorithm SHA384 */
    KMSB_HASH_SHA512    /**< Hash Algorithm SHA512 */
} kmsb_hash_algo_e;

/**
 * @brief The structure for signing parameter.
 */
typedef struct __kmsb_sign_param {
    kmsb_ec_type_e ec_type;         /**< EC type(curve) of a key. (mandatory) */
    kmsb_hash_algo_e hash_algo;     /**< hash algorithm to digest in before processing. (mandatory) */
} kmsb_sign_param_s;

/*
 * @brief   Sign message with hashing
 *
 * @param   key_idx     [in]    Key index of key to use
 * @param   param       [in]    Parameters for signing.
 * @param   msg         [in]    pointer for message to sign
 * @param   msg_len     [in]    length for message
 * @param   sig         [out]   double pointer for signature.
 *                              The memory for this is allocated by SE backend 
 *                              and it must be freed using `free()` by a caller after the usage.
 * @param   sig_len     [out]   pointer for signature length.
 * @return  kmsb_error_e: TIZEN_ERROR_NONE means success, and other means fail
 *             - KMSB_ERROR_NO_KEY: when there is no key with key_idx.
 *             - KMSB_ERROR_OUT_OF_MEMORY: when there is no available memory
 *             - KMSB_ERROR_INVALID_PARAMETER: when input parameter is not valid
 *             - KMSB_ERROR_NOT_SUPPORTED: when specified algorithms in param is not supported
 *                                      or this operation is not supported
 *             - KMSB_ERROR_OPERATION_FAILED: when operation fails with unknown reason
 */
kmsb_error_e kmsb_create_signature(const unsigned int key_idx,
                    const kmsb_sign_param_s *param,
                    const unsigned char *msg, const unsigned int msg_len,
                    unsigned char **sig, unsigned int *sig_len);

/*
 * @brief   Verify signature
 *
 * @param   key_idx     [in]    Key index of key to use
 * @param   param       [in]    Parameters for signing.
 * @param   msg         [in]    pointer for message to sign
 * @param   msg_len     [in]    length for message
 * @param   sig         [in]    pointer for signature.
 * @param   sig_len     [in]    signature length.
 * @return  kmsb_error_e: TIZEN_ERROR_NONE means success of verification, and other means fail
 *             - KMSB_ERROR_VERIFICATION_FAILED: when signature verification fails
 *             - KMSB_ERROR_NO_KEY: when there is no key with key_idx.
 *             - KMSB_ERROR_OUT_OF_MEMORY: when there is no available memory
 *             - KMSB_ERROR_INVALID_PARAMETER: when input parameter is not valid
 *             - KMSB_ERROR_NOT_SUPPORTED: when specified algorithms in param is not supported
 *                                      or this operation is not supported
 *             - KMSB_ERROR_OPERATION_FAILED: when operation fails with unknown reason
 */
kmsb_error_e kmsb_verify_signature(const unsigned int key_idx,
                    const kmsb_sign_param_s *param,
                    const unsigned char *msg, const unsigned int msg_len,
                    const unsigned char *sig, const unsigned int sig_len);

/*
 * @brief   Get a key value from SE
 * 
 * @note  Only the value of public key can be extracted from SE.
 *        Private keys or symmetric keys can not be extracted from SE.
 * 
 * @param   key_idx     [in]    Key index to get
 * @param   output      [out]   double pointer for output data. 
 *                              The memory for this is allocated by SE backend 
 *                              and it must be freed using `free()` by a caller after the usage.
 * @param   output_len  [out]   pointer for output data length.
 * @return  kmsb_error_e: TIZEN_ERROR_NONE means success, and other means fail
 *             - KMSB_ERROR_NO_KEY: when there is no key with key_idx.
 *             - KMSB_ERROR_NOT_PERMITTED: when the key is not allowed to be exported from SE.
 *             - KMSB_ERROR_OUT_OF_MEMORY: when there is no available memory
 *             - KMSB_ERROR_INVALID_PARAMETER: when input parameter is not valid
 *             - KMSB_ERROR_NOT_SUPPORTED: when this operation is not supported
 *             - KMSB_ERROR_OPERATION_FAILED: when operation fails with unknown reason
 */
kmsb_error_e kmsb_get_key(const unsigned int key_idx, unsigned char **output, unsigned int *output_len);

/*
 * @brief   Get a certificate value from SE
 * 
 * @note  the format of certificate is the DER encoded form of X.509.
 * 
 * @param   cert_idx    [in]    Certificate index to get
 * @param   output      [out]   double pointer for output data. 
 *                              The memory for this is allocated by SE backend 
 *                              and it must be freed using `free()` by a caller after the usage.
 * @param   output_len  [out]   pointer for output data length.
 * @return  kmsb_error_e: TIZEN_ERROR_NONE means success, and other means fail
 *             - KMSB_ERROR_NO_KEY: when there is no certificate with cert_idx.
 *             - KMSB_ERROR_NOT_PERMITTED: when the certificate is not allowed to be exported from SE.
 *             - KMSB_ERROR_OUT_OF_MEMORY: when there is no available memory
 *             - KMSB_ERROR_INVALID_PARAMETER: when input parameter is not valid
 *             - KMSB_ERROR_NOT_SUPPORTED: when this operation is not supported
 *             - KMSB_ERROR_OPERATION_FAILED: when operation fails with unknown reason
 */
kmsb_error_e kmsb_get_certificate(const unsigned int cert_idx, unsigned char **output, unsigned int *output_len);

/*
 * @brief   Get a data value from SE
 * 
 * @param   data_idx    [in]    Certificate index to get
 * @param   output      [out]   double pointer for output data. 
 *                              The memory for this is allocated by SE backend 
 *                              and it must be freed using `free()` by a caller after the usage.
 * @param   output_len  [out]   pointer for output data length.
 * @return  kmsb_error_e: TIZEN_ERROR_NONE means success, and other means fail
 *             - KMSB_ERROR_NO_KEY: when there is no certificate with data_idx.
 *             - KMSB_ERROR_NOT_PERMITTED: when the data is not allowed to be exported from SE.
 *             - KMSB_ERROR_OUT_OF_MEMORY: when there is no available memory
 *             - KMSB_ERROR_INVALID_PARAMETER: when input parameter is not valid
 *             - KMSB_ERROR_NOT_SUPPORTED: when this operation is not supported
 *             - KMSB_ERROR_OPERATION_FAILED: when operation fails with unknown reason
 */
kmsb_error_e kmsb_get_data(const unsigned int data_idx, unsigned char **output, unsigned int *output_len);

#ifdef __cplusplus
}
#endif

#endif /*_KEY_MANAGER_SE_BACKEND_H_*/