2 * Copyright (c) 2015 Samsung Electronics Co., Ltd All Rights Reserved
4 * Licensed under the Apache License, Version 2.0 (the "License");
5 * you may not use this file except in compliance with the License.
6 * You may obtain a copy of the License at
8 * http://www.apache.org/licenses/LICENSE-2.0
10 * Unless required by applicable law or agreed to in writing, software
11 * distributed under the License is distributed on an "AS IS" BASIS,
12 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13 * See the License for the specific language governing permissions and
14 * limitations under the License
18 * @author Bartłomiej Grzelewski (b.grzelewski@samsung.com)
21 #include <dpl/log/log.h>
23 #include <crypto-backend.h>
25 #include <platform/decider.h>
27 #include <generic-backend/exception.h>
28 #include <sw-backend/store.h>
29 #include <tz-backend/store.h>
35 CryptoBackend chooseCryptoBackend(DataType dataType, bool exportable,
38 // Only software backend supports device encyption key
40 return CryptoBackend::OpenSSL;
42 // The list of items that MUST be support by OpenSSL
43 if (dataType.isCertificate())
44 return CryptoBackend::OpenSSL;
46 if (dataType.isBinaryData())
47 return CryptoBackend::OpenSSL;
50 return CryptoBackend::OpenSSL;
52 // This is the place where we can use trust zone backend
55 // if (dataType.isKeyPrivate())
56 // return CryptoBackend::TrustZone;
58 // This item does not met Trust Zone requirements. Let's use software backend
59 return CryptoBackend::OpenSSL;
64 : m_swStore(new SW::Store(CryptoBackend::OpenSSL))
65 , m_tzStore(new TZ::Store(CryptoBackend::TrustZone))
69 GStore &Decider::getStore(const Token &token) const
71 return getStore(token.backendId);
74 GStore &Decider::getStore(CryptoBackend cryptoBackend) const
76 GStore *gStore = NULL;
78 if (cryptoBackend == CryptoBackend::OpenSSL)
79 gStore = m_swStore.get();
81 if (cryptoBackend == CryptoBackend::TrustZone)
82 gStore = m_tzStore.get();
87 ThrowErr(Exc::Crypto::InternalError,
88 "Backend not available. BackendId: ", (int)cryptoBackend);
91 GStore &Decider::getStore(DataType data, bool exportable, bool encrypted) const
93 return getStore(chooseCryptoBackend(data, exportable, encrypted));