2 * Copyright (c) 2015 Samsung Electronics Co., Ltd All Rights Reserved
4 * Licensed under the Apache License, Version 2.0 (the "License");
5 * you may not use this file except in compliance with the License.
6 * You may obtain a copy of the License at
8 * http://www.apache.org/licenses/LICENSE-2.0
10 * Unless required by applicable law or agreed to in writing, software
11 * distributed under the License is distributed on an "AS IS" BASIS,
12 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13 * See the License for the specific language governing permissions and
14 * limitations under the License
18 * @author Bartłomiej Grzelewski (b.grzelewski@samsung.com)
21 #include <dpl/log/log.h>
23 #include <crypto-backend.h>
25 #include <platform/decider.h>
27 #include <generic-backend/exception.h>
28 #include <sw-backend/store.h>
29 #include <tz-backend/store.h>
35 CryptoBackend chooseCryptoBackend(DataType dataType, bool exportable, bool encrypted) {
36 // Only software backend supports device encyption key
38 return CryptoBackend::OpenSSL;
40 // The list of items that MUST be support by OpenSSL
41 if (dataType.isCertificate())
42 return CryptoBackend::OpenSSL;
44 if (dataType.isBinaryData())
45 return CryptoBackend::OpenSSL;
48 return CryptoBackend::OpenSSL;
50 // This is the place where we can use trust zone backend
53 // if (dataType.isKeyPrivate())
54 // return CryptoBackend::TrustZone;
56 // This item does not met Trust Zone requirements. Let's use software backend
57 return CryptoBackend::OpenSSL;
62 : m_swStore(new SW::Store(CryptoBackend::OpenSSL))
63 , m_tzStore(new TZ::Store(CryptoBackend::TrustZone))
66 GStore& Decider::getStore(const Token &token) const {
67 return getStore(token.backendId);
70 GStore& Decider::getStore(CryptoBackend cryptoBackend) const {
71 GStore *gStore = NULL;
72 if (cryptoBackend == CryptoBackend::OpenSSL)
73 gStore = m_swStore.get();
74 if (cryptoBackend == CryptoBackend::TrustZone)
75 gStore = m_tzStore.get();
80 ThrowErr(Exc::Crypto::InternalError,
81 "Backend not available. BackendId: ", (int)cryptoBackend);
84 GStore& Decider::getStore(DataType data, bool exportable, bool encrypted) const {
85 return getStore(chooseCryptoBackend(data, exportable, encrypted));