VirtualBox

source: vbox/trunk/src/VBox/Main/include/SecretKeyStore.h@ 94991

Last change on this file since 94991 was 94783, checked in by vboxsync, 3 years ago

Main/SecretKeyStore: Add begin() and end() to iterate over all secret keys, bugref:9955

  • Property svn:eol-style set to native
  • Property svn:keywords set to Author Date Id Revision
File size: 6.2 KB
Line 
1/* $Id: SecretKeyStore.h 94783 2022-05-02 13:33:33Z vboxsync $ */
2/** @file
3 * Main - Secret key interface.
4 */
5
6/*
7 * Copyright (C) 2015-2022 Oracle Corporation
8 *
9 * This file is part of VirtualBox Open Source Edition (OSE), as
10 * available from http://www.virtualbox.org. This file is free software;
11 * you can redistribute it and/or modify it under the terms of the GNU
12 * General Public License (GPL) as published by the Free Software
13 * Foundation, in version 2 as it comes in the "COPYING" file of the
14 * VirtualBox OSE distribution. VirtualBox OSE is distributed in the
15 * hope that it will be useful, but WITHOUT ANY WARRANTY of any kind.
16 */
17
18#ifndef MAIN_INCLUDED_SecretKeyStore_h
19#define MAIN_INCLUDED_SecretKeyStore_h
20#ifndef RT_WITHOUT_PRAGMA_ONCE
21# pragma once
22#endif
23
24#include "VirtualBoxBase.h"
25#include "VBox/com/array.h"
26
27class SecretKey
28{
29 public:
30
31 /**
32 * Constructor for a secret key.
33 *
34 * @param pbKey The key buffer.
35 * @param cbKey Size of the key.
36 * @param fKeyBufNonPageable Flag whether the key buffer should be non pageable.
37 */
38 SecretKey(const uint8_t *pbKey, size_t cbKey, bool fKeyBufNonPageable);
39
40 /**
41 * Secret key destructor.
42 */
43 ~SecretKey();
44
45 /**
46 * Increments the reference counter of the key.
47 *
48 * @returns The new reference count.
49 */
50 uint32_t retain();
51
52 /**
53 * Releases a reference of the key.
54 * If the reference counter reaches 0 the key buffer might be protected
55 * against further access or the data will become scrambled.
56 *
57 * @returns The new reference count.
58 */
59 uint32_t release();
60
61 /**
62 * Returns the reference count of the secret key.
63 */
64 uint32_t refCount();
65
66 /**
67 * Sets the possible number of users for this key.
68 *
69 * @returns VBox status code.
70 * @param cUsers The possible number of user for this key.
71 */
72 int setUsers(uint32_t cUsers);
73
74 /**
75 * Returns the possible amount of users.
76 *
77 * @returns Possible amount of users.
78 */
79 uint32_t getUsers();
80
81 /**
82 * Sets the remove on suspend flag.
83 *
84 * @returns VBox status code.
85 * @param fRemoveOnSuspend Flag whether to remove the key on host suspend.
86 */
87 int setRemoveOnSuspend(bool fRemoveOnSuspend);
88
89 /**
90 * Returns whether the key should be destroyed on suspend.
91 */
92 bool getRemoveOnSuspend();
93
94 /**
95 * Returns the buffer to the key.
96 */
97 const void *getKeyBuffer();
98
99 /**
100 * Returns the size of the key.
101 */
102 size_t getKeySize();
103
104 private:
105 /** Reference counter of the key. */
106 volatile uint32_t m_cRefs;
107 /** Key material. */
108 uint8_t *m_pbKey;
109 /** Size of the key in bytes. */
110 size_t m_cbKey;
111 /** Flag whether to remove the key on suspend. */
112 bool m_fRemoveOnSuspend;
113 /** Number of entities which will use this key. */
114 uint32_t m_cUsers;
115};
116
117class SecretKeyStore
118{
119 public:
120
121 typedef std::map<com::Utf8Str, SecretKey *> SecretKeyMap;
122
123 /**
124 * Constructor for a secret key store.
125 *
126 * @param fKeyBufNonPageable Flag whether the key buffer is required to
127 * be non pageable.
128 */
129 SecretKeyStore(bool fKeyBufNonPageable);
130
131 /**
132 * Destructor of a secret key store. This will free all stored secret keys
133 * inluding the key buffers. Make sure there no one accesses one of the keys
134 * stored.
135 */
136 ~SecretKeyStore();
137
138 /**
139 * Add a secret key to the store.
140 *
141 * @returns VBox status code.
142 * @param strKeyId The key identifier.
143 * @param pbKey The key to store.
144 * @param cbKey Size of the key.
145 */
146 int addSecretKey(const com::Utf8Str &strKeyId, const uint8_t *pbKey, size_t cbKey);
147
148 /**
149 * Deletes a key from the key store associated with the given identifier.
150 *
151 * @returns VBox status code.
152 * @param strKeyId The key identifier.
153 */
154 int deleteSecretKey(const com::Utf8Str &strKeyId);
155
156 /**
157 * Returns the secret key object associated with the given identifier.
158 * This increments the reference counter of the secret key object.
159 *
160 * @returns VBox status code.
161 * @param strKeyId The key identifier.
162 * @param ppKey Where to store the secret key object on success.
163 */
164 int retainSecretKey(const com::Utf8Str &strKeyId, SecretKey **ppKey);
165
166 /**
167 * Releases a reference to the secret key object.
168 *
169 * @returns VBox status code.
170 * @param strKeyId The key identifier.
171 */
172 int releaseSecretKey(const com::Utf8Str &strKeyId);
173
174 /**
175 * Deletes all secret keys from the key store.
176 *
177 * @returns VBox status code.
178 * @param fSuspend Flag whether to delete only keys which are
179 * marked for deletion during a suspend.
180 * @param fForce Flag whether to force deletion if some keys
181 * are still in use. Otherwise an error is returned.
182 */
183 int deleteAllSecretKeys(bool fSuspend, bool fForce);
184
185 /**
186 * Iterators for enumerating keys
187 */
188 SecretKeyMap::iterator begin()
189 {
190 return m_mapSecretKeys.begin();
191 }
192
193 SecretKeyMap::iterator end()
194 {
195 return m_mapSecretKeys.end();
196 }
197
198 private:
199
200 /** The map to map key identifers to secret keys. */
201 SecretKeyMap m_mapSecretKeys;
202 /** Flag whether key buffers should be non pagable. */
203 bool m_fKeyBufNonPageable;
204};
205
206#endif /* !MAIN_INCLUDED_SecretKeyStore_h */
Note: See TracBrowser for help on using the repository browser.

© 2024 Oracle Support Privacy / Do Not Sell My Info Terms of Use Trademark Policy Automated Access Etiquette