Use dukgenerator instead of the _DeviceKeyGenerator for the PrivateKey encryption

[platform/framework/native/appfw.git] / src / security / crypto / FSecCrypto_TrustZoneService.cpp

//
// Open Service Platform
// Copyright (c) 2013 Samsung Electronics Co., Ltd.
//
// Licensed under the Apache License, Version 2.0 (the License);
// you may not use this file except in compliance with the License.
// You may obtain a copy of the License at
//
//     http://www.apache.org/licenses/LICENSE-2.0
//
// Unless required by applicable law or agreed to in writing, software
// distributed under the License is distributed on an "AS IS" BASIS,
// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
// See the License for the specific language governing permissions and
// limitations under the License.
//

/**
 * @file        FSec_TrustZoneService.cpp
 * @brief       This is the implementation for the _AccessController class.
 */

#include <unique_ptr.h>
#include <FBaseSysLog.h>
#include <FBaseString.h>
#include <FBaseColArrayList.h>
#include <FIoFile.h>
#include <FIo_IpcClient.h>
#include <FBase.h>
#include <FIo_IpcCommonParamTraits.h>
#include <FSecCryptoAesCipher.h>
#include "FSecCrypto_TrustZoneService.h"
#include "FSecCrypto_TrustZoneServiceMessage.h"


using namespace Tizen::Io;
using namespace Tizen::Base;
using namespace Tizen::Security;

namespace Tizen { namespace Security { namespace Crypto
{

_TrustZoneService* _TrustZoneService::__pTrustZoneService = null;
_IpcClient* _TrustZoneService::__pIpcClient = null;
unsigned int _TrustZoneService::__refCount = 0;

_TrustZoneService::_TrustZoneService(void)
{

}

_TrustZoneService::~_TrustZoneService(void)
{

}

_TrustZoneService*
_TrustZoneService::GetInstance(void)
{
        static pthread_once_t once_block = PTHREAD_ONCE_INIT;
        if(!__pTrustZoneService)
        {
                pthread_once(&once_block, Initialize);
        }

        if(!__pIpcClient && __refCount == 0)
        {
                std::unique_ptr<_IpcClient> pIpcClient(new (std::nothrow) _IpcClient());
                SysTryReturn(NID_SEC_CRYPTO, pIpcClient != null, null, E_OUT_OF_MEMORY, "The memory is insufficient.");

                __pIpcClient = pIpcClient.release();

                result r = __pIpcClient->Construct("osp.security.ipcserver.trustzoneservice");
                SysTryReturn(NID_SEC_CRYPTO, r == E_SUCCESS, null, E_SYSTEM, "Failed to construct the instance of IPC.");
        }
        __refCount++;

        return __pTrustZoneService;
}

ByteBuffer*
_TrustZoneService::EncryptN(const ByteBuffer& appInfo, const ByteBuffer& plainBuffer)
{
        
        result ret = E_SUCCESS;
        std::unique_ptr<IPC::Message> pMessage(null);
        ByteBuffer* pEncryptedBuffer = null;

        _IpcBuffer ipcBuffer;
        ipcBuffer.size = 0;
        ipcBuffer.pBuffer = null;

        pMessage.reset(new (std::nothrow) TrustZoneService_Encrypt(appInfo, plainBuffer, &ipcBuffer, &ret));
        TryReturnResult(pMessage != null, null, E_OUT_OF_MEMORY, "[E_OUT_OF_MEMORY] The memory is insufficient.");

        result r = __pIpcClient->SendRequest(pMessage.get());
        TryReturnResult(r == E_SUCCESS, null, E_SYSTEM, "[E_SYSTEM] Failed to send IPC message.");
        TryReturnResult(ret == E_SUCCESS, null, ret, "[%s] Failed to encrypt", GetErrorMessage(ret));

        byte* pBuffer = static_cast<byte*>(ipcBuffer.pBuffer);
        TryReturnResult(pBuffer != null && ipcBuffer.size != 0, null, E_SYSTEM, "[E_SYSTEM] Failed to get encrypted data(%d).", ipcBuffer.size);

        pEncryptedBuffer = new (std::nothrow) ByteBuffer();
        TryReturnResult(pEncryptedBuffer != null, null, E_OUT_OF_MEMORY, "[E_OUT_OF_MEMORY] The memory is insufficient.");

        r = pEncryptedBuffer->Construct(ipcBuffer.size);
        r = pEncryptedBuffer->SetArray(pBuffer, 0, ipcBuffer.size);
        TryReturnResult(r == E_SUCCESS, null, r, "[%s] propagating.", r);
        pEncryptedBuffer->Flip();

        free(pBuffer); 

        return pEncryptedBuffer;
}

ByteBuffer*
_TrustZoneService::DecryptN(const ByteBuffer& appInfo, const ByteBuffer& encryptedBuffer)
{
        
        result ret = E_SUCCESS;
        std::unique_ptr<IPC::Message> pMessage(null);
        ByteBuffer* pPlainBuffer = null;

        _IpcBuffer ipcBuffer;
        ipcBuffer.size = 0;
        ipcBuffer.pBuffer = null;

        pMessage.reset(new (std::nothrow) TrustZoneService_Decrypt(appInfo, encryptedBuffer, &ipcBuffer, &ret));
        TryReturnResult(pMessage != null, null, E_OUT_OF_MEMORY, "[E_OUT_OF_MEMORY] The memory is insufficient.");

        result r = __pIpcClient->SendRequest(pMessage.get());
        TryReturnResult(r == E_SUCCESS, null, E_SYSTEM, "[E_SYSTEM] Failed to send IPC message.");
        TryReturnResult(ret == E_SUCCESS, null, ret, "[%s] Failed to Decrypt", GetErrorMessage(ret));

        byte* pBuffer = static_cast<byte*>(ipcBuffer.pBuffer);
        TryReturnResult(pBuffer != null && ipcBuffer.size != 0, null, E_SYSTEM, "[E_SYSTEM] Failed to Decrtype");

        pPlainBuffer = new (std::nothrow) ByteBuffer();
        TryReturnResult(pPlainBuffer != null, null, E_OUT_OF_MEMORY, "[E_OUT_OF_MEMORY] The memory is insufficient.");

        r = pPlainBuffer->Construct(ipcBuffer.size);
        r = pPlainBuffer->SetArray(pBuffer, 0, ipcBuffer.size);
        TryReturnResult(r == E_SUCCESS, null, r, "[%s] propagating.", r);
        pPlainBuffer->Flip();

        free(pBuffer);

        return pPlainBuffer;
}


void
_TrustZoneService::Initialize(void)
{

        static _TrustZoneService trustZoneService;
        _TrustZoneService::__pTrustZoneService = &trustZoneService;

}

void
_TrustZoneService::Release()
{
        if(--(__refCount) == 0)
        {
                SysLog(NID_SEC_CRYPTO, "Close IPC connection");
                delete __pIpcClient;
                __pIpcClient = null;
        }
}

}}} // Tizen::Security::Crypto