Merge "The implementation of vts and default implementation to support...

    name: "android.hardware.security.keymint-service",

    name: "android.hardware.security.keymint-service",

    relative_install_path: "hw",

    relative_install_path: "hw",

    init_rc: ["android.hardware.security.keymint-service.rc"],

    init_rc: ["android.hardware.security.keymint-service.rc"],

    vintf_fragments: ["android.hardware.security.keymint-service.xml"],

    vintf_fragments: [

        "android.hardware.security.keymint-service.xml",

        "android.hardware.security.sharedsecret-service.xml",

        "android.hardware.security.secureclock-service.xml",

    ],

    vendor: true,

    vendor: true,

    cflags: [

    cflags: [

        "-Wall",

        "-Wall",

    ],

    ],

    shared_libs: [

    shared_libs: [

        "android.hardware.security.keymint-V1-ndk_platform",

        "android.hardware.security.keymint-V1-ndk_platform",

        "android.hardware.security.sharedsecret-unstable-ndk_platform",

        "android.hardware.security.secureclock-unstable-ndk_platform",

        "libbase",

        "libbase",

        "libbinder_ndk",

        "libbinder_ndk",

        "libcppbor",

        "libcppbor",

<manifest version="1.0" type="device">

    <hal format="aidl">

        <name>android.hardware.security.secureclock</name>

        <fqname>ISecureClock/default</fqname>

    </hal>

</manifest>

<manifest version="1.0" type="device">

    <hal format="aidl">

        <name>android.hardware.security.sharedsecret</name>

        <fqname>ISharedSecret/default</fqname>

    </hal>

</manifest>

#include <android/binder_process.h>

#include <android/binder_process.h>

#include <AndroidKeyMintDevice.h>

#include <AndroidKeyMintDevice.h>

#include <AndroidSecureClock.h>

#include <AndroidSharedSecret.h>

#include <keymaster/soft_keymaster_logger.h>

#include <keymaster/soft_keymaster_logger.h>

using aidl::android::hardware::security::keymint::AndroidKeyMintDevice;

using aidl::android::hardware::security::keymint::AndroidKeyMintDevice;

using aidl::android::hardware::security::keymint::SecurityLevel;

using aidl::android::hardware::security::keymint::SecurityLevel;

using aidl::android::hardware::security::secureclock::AndroidSecureClock;

using aidl::android::hardware::security::sharedsecret::AndroidSharedSecret;

template <typename T, class... Args>

std::shared_ptr<T> addService(Args&&... args) {

    std::shared_ptr<T> ser = ndk::SharedRefBase::make<T>(std::forward<Args>(args)...);

    auto instanceName = std::string(T::descriptor) + "/default";

    LOG(INFO) << "adding keymint service instance: " << instanceName;

    binder_status_t status =

            AServiceManager_addService(ser->asBinder().get(), instanceName.c_str());

    CHECK(status == STATUS_OK);

    return ser;

}

int main() {

int main() {

    // Zero threads seems like a useless pool, but below we'll join this thread to it, increasing

    // Zero threads seems like a useless pool, but below we'll join this thread to it, increasing

    // the pool size to 1.

    // the pool size to 1.

    ABinderProcess_setThreadPoolMaxThreadCount(0);

    ABinderProcess_setThreadPoolMaxThreadCount(0);

    std::shared_ptr<AndroidKeyMintDevice> keyMint =

            ndk::SharedRefBase::make<AndroidKeyMintDevice>(SecurityLevel::SOFTWARE);

    keymaster::SoftKeymasterLogger logger;

    const auto instanceName = std::string(AndroidKeyMintDevice::descriptor) + "/default";

    LOG(INFO) << "instance: " << instanceName;

    binder_status_t status =

            AServiceManager_addService(keyMint->asBinder().get(), instanceName.c_str());

    CHECK(status == STATUS_OK);

    // Add Keymint Service

    std::shared_ptr<AndroidKeyMintDevice> keyMint =

            addService<AndroidKeyMintDevice>(SecurityLevel::SOFTWARE);

    // Add Secure Clock Service

    addService<AndroidSecureClock>(keyMint);

    // Add Shared Secret Service

    addService<AndroidSharedSecret>(keyMint);

    ABinderProcess_joinThreadPool();

    ABinderProcess_joinThreadPool();

    return EXIT_FAILURE;  // should not reach

    return EXIT_FAILURE;  // should not reach

}

}

///////////////////////////////////////////////////////////////////////////////

/*

 * Copyright (C) 2020 The Android Open Source Project

 *

 * Licensed under the Apache License, Version 2.0 (the "License");

 * you may not use this file except in compliance with the License.

 * You may obtain a copy of the License at

 *

 *      http://www.apache.org/licenses/LICENSE-2.0

 *

 * Unless required by applicable law or agreed to in writing, software

 * distributed under the License is distributed on an "AS IS" BASIS,

 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.

 * limitations under the License.

 *////////////////////////////////////////////////////////////////////////////////

// THIS FILE IS IMMUTABLE. DO NOT EDIT IN ANY CASE.                          //

// THIS FILE IS IMMUTABLE. DO NOT EDIT IN ANY CASE.                          //

///////////////////////////////////////////////////////////////////////////////

///////////////////////////////////////////////////////////////////////////////

@VintfStability

@VintfStability

interface ISecureClock {

interface ISecureClock {

  android.hardware.security.secureclock.TimeStampToken generateTimeStamp(in long challenge);

  android.hardware.security.secureclock.TimeStampToken generateTimeStamp(in long challenge);

  const String TIME_STAMP_MAC_LABEL = "Time Verification";

  const String TIME_STAMP_MAC_LABEL = "Auth Verification";

}

}