Merge "hwcrypto: Addressing ANAPIC review comments" into main

    int keySizeBytes;

  }

  union DerivedKeyPolicy {

    android.hardware.security.see.hwcrypto.IHwCryptoKey.ClearKeyPolicy clearKey;

    android.hardware.security.see.hwcrypto.IHwCryptoKey.ClearKeyPolicy clearKeyPolicy;

    byte[] opaqueKey;

  }

  parcelable DerivedKeyParameters {

package android.hardware.security.see.hwcrypto;

@VintfStability

interface IHwCryptoOperations {

  android.hardware.security.see.hwcrypto.CryptoOperationResult[] processCommandList(inout android.hardware.security.see.hwcrypto.CryptoOperationSet[] operations, out android.hardware.security.see.hwcrypto.CryptoOperationErrorAdditionalInfo additionalErrorInfo);

  android.hardware.security.see.hwcrypto.CryptoOperationResult[] processCommandList(inout android.hardware.security.see.hwcrypto.CryptoOperationSet[] operations);

}

         * If used we will derive a clear key and pass it back as an array of bytes on

         * <code>HwCryptoKeyMaterial::explicitKey</code>.

         */

        ClearKeyPolicy clearKey;

        ClearKeyPolicy clearKeyPolicy;

        /*

         * Policy for the newly derived opaque key. Defines how the key can be used and its type.

         * Its definition can be found in <code>KeyPolicy.cddl</code>, which is basically a CBOR

         * serialization of the file <code>KeyPolicy.aidl</code>.

         */

        byte[] opaqueKey;

    }

     *     Key to be used to derive the new key using HKDF.

     *

     * @return:

     *     A DiceCurrentBoundKeyResult containint the versioned key tied the current client version

     *     A DiceCurrentBoundKeyResult containing the versioned key tied the current client version

     *     on success.

     *

     * @throws:

     *      ServiceSpecificException based on <code>HalErrorCode</code> if any error occurs.

     *      ServiceSpecificException based on <code>HalErrorCode</code> if any error occurs,

     *      in particular:

     *          - BAD_PARAMETER if an invalid DeviceKeyId is requested.

     *          - INVALID_KEY if an opaque key is provided that is not suitable for key derivation.

     */

    DiceCurrentBoundKeyResult deriveCurrentDicePolicyBoundKey(

            in DiceBoundDerivationKey derivationKey);

     *      success.

     *

     * @throws:

     *      ServiceSpecificException based on <code>HalErrorCode</code> if any error occurs.

     *      ServiceSpecificException based on <code>HalErrorCode</code> if any error occurs,

     *      in particular:

     *          - BAD_PARAMETER if an invalid DeviceKeyId is requested or if dicePolicyForKeyVersion

     *            is not a valid encrypted DICE policy.

     *          - INVALID_KEY if an opaque key is provided that is not suitable for key derivation.

     */

    DiceBoundKeyResult deriveDicePolicyBoundKey(

            in DiceBoundDerivationKey derivationKey, in byte[] dicePolicyForKeyVersion);

     *      file for more information.

     *

     * @return:

     *      A HwCryptoKeyMaterial containing the derived key on success.

     *      A <code>DerivedKey</code> containing the derived key on success.

     *

     * @throws:

     *      ServiceSpecificException based on <code>HalErrorCode</code> if any error occurs.

     *      ServiceSpecificException based on <code>HalErrorCode</code> if any error occurs,

     *      in particular:

     *          - BAD_PARAMETER if an invalid key policy is provided or if the key policy conflicts

     *            with the requested key.

     *          - SERIALIZATION_ERROR if the provided key policy is not a valid CBOR key policy.

     *          - INVALID_KEY if an opaque key is provided that is not suitable for key derivation.

     */

    DerivedKey deriveKey(in DerivedKeyParameters parameters);

     *      IOpaqueKey on success.

     *

     * @throws:

     *      ServiceSpecificException based on <code>HalErrorCode</code> if any error occurs.

     *      ServiceSpecificException based on <code>HalErrorCode</code> if any error occurs,

     *      in particular:

     *          - BAD_PARAMETER if an invalid Key policy is provided or if the key policy conflicts

     *            with provided key material.

     *          - ALLOCATION_ERROR if the system runs out of memory while carring out the operation.

     */

    IOpaqueKey importClearKey(in ExplicitKeyMaterial keyMaterial, in KeyPolicy newKeyPolicy);

     * passing the receiver DICE policy to insure that only that receiver can import the key.

     *

     * @return:

     *      byte[] on success, which is the caller encrypted DICE policy.

     *      byte[] on success, which is the caller encrypted DICE policy. The DICE policy follows

     *      the structure defined on DicePolicy.cddl, located under

     *      hardware/interfaces/security/authgraph/aidl/android/hardware/security/authgraph/

     */

    byte[] getCurrentDicePolicy();

     *      DICE policy used to seal the exported key.

     *

     * @return:

     *      An IOpaqueKey that can be directly be used on the local HWCrypto service on success.

     *      An IOpaqueKey that can be directly used on the local HWCrypto service on success.

     *

     * @throws:

     *      ServiceSpecificException based on <code>HalErrorCode</code> if any error occurs.

     *      ServiceSpecificException based on <code>HalErrorCode</code> if any error occurs,

     *      in particular:

     *          - BAD_PARAMETER if an invalid encrypted sealing DICE policy is provided.

     *          - ALLOCATION_ERROR if the system runs out of memory while carring out the operation.

     *          - UNAUTHORIZED if the sealingDicePolicy do not match the caller.

     */

    IOpaqueKey keyTokenImport(in OpaqueKeyToken requestedKey, in byte[] sealingDicePolicy);

     *      An IOpaqueKey corresponding to the requested key slot on success.

     *

     * @throws:

     *      ServiceSpecificException <code>UNAUTHORIZED</code> if the caller cannot access the

     *      requested key, another specific error based on <code>HalErrorCode</code> otherwise.

     *      ServiceSpecificException based on <code>HalErrorCode</code> if any error occurs,

     *      in particular:

     *          - UNAUTHORIZED if the caller cannot access the requested key.

     */

    IOpaqueKey getKeyslotData(KeySlot slotId);

}

     *

     * @param operations:

     *      Parameter containing 1 or more set of commands to execute. Additionally, each set can

     *      also contain a context on which the commands will be executed.

     *

     * @param additionalErrorInfo:

     *      Structure containing additional info when errors are encountered. Only valid if the

     *      function failed its execution.

     *      also contain a context on which the commands will be executed. The parameter has type

     *      inout because it can contain buffers used to write the output of the operation.

     *

     * @return:

     *      CryptoOperationResult[] on success, which can contain a context to continue executing

     *      each of the provided operations sets.

     *

     * @throws:

     *      ServiceSpecificException based on <code>HalErrorCode</code> if any error occurs.

     *      ServiceSpecificException based on <code>HalErrorCode</code> if any error occurs,

     *      in particular:

     *          - INVALID_KEY if the provided key is not compatible with the operation requested.

     *          - BAD_STATE if the provided <code>CryptoOperationSet</code> contains operations that

     *            cannot be carried out in the current server state.

     *          - UNSUPPORTED if the requested operation is not supported by the server.

     *          - ALLOCATION_ERROR if the system runs out of memory while carring out the operation.

     */

    CryptoOperationResult[] processCommandList(inout CryptoOperationSet[] operations,

            out CryptoOperationErrorAdditionalInfo additionalErrorInfo);

    CryptoOperationResult[] processCommandList(inout CryptoOperationSet[] operations);

}