VirtualBox

source: vbox/trunk/src/VBox/Main/include/SecretKeyStore.h@ 98694

Last change on this file since 98694 was 98103, checked in by vboxsync, 2 years ago

Copyright year updates by scm.

  • Property svn:eol-style set to native
  • Property svn:keywords set to Author Date Id Revision
File size: 6.4 KB
Line 
1/* $Id: SecretKeyStore.h 98103 2023-01-17 14:15:46Z vboxsync $ */
2/** @file
3 * Main - Secret key interface.
4 */
5
6/*
7 * Copyright (C) 2015-2023 Oracle and/or its affiliates.
8 *
9 * This file is part of VirtualBox base platform packages, as
10 * available from https://www.virtualbox.org.
11 *
12 * This program is free software; you can redistribute it and/or
13 * modify it under the terms of the GNU General Public License
14 * as published by the Free Software Foundation, in version 3 of the
15 * License.
16 *
17 * This program is distributed in the hope that it will be useful, but
18 * WITHOUT ANY WARRANTY; without even the implied warranty of
19 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
20 * General Public License for more details.
21 *
22 * You should have received a copy of the GNU General Public License
23 * along with this program; if not, see <https://www.gnu.org/licenses>.
24 *
25 * SPDX-License-Identifier: GPL-3.0-only
26 */
27
28#ifndef MAIN_INCLUDED_SecretKeyStore_h
29#define MAIN_INCLUDED_SecretKeyStore_h
30#ifndef RT_WITHOUT_PRAGMA_ONCE
31# pragma once
32#endif
33
34#include "VirtualBoxBase.h"
35#include "VBox/com/array.h"
36
37class SecretKey
38{
39 public:
40
41 /**
42 * Constructor for a secret key.
43 *
44 * @param pbKey The key buffer.
45 * @param cbKey Size of the key.
46 * @param fKeyBufNonPageable Flag whether the key buffer should be non pageable.
47 */
48 SecretKey(const uint8_t *pbKey, size_t cbKey, bool fKeyBufNonPageable);
49
50 /**
51 * Secret key destructor.
52 */
53 ~SecretKey();
54
55 /**
56 * Increments the reference counter of the key.
57 *
58 * @returns The new reference count.
59 */
60 uint32_t retain();
61
62 /**
63 * Releases a reference of the key.
64 * If the reference counter reaches 0 the key buffer might be protected
65 * against further access or the data will become scrambled.
66 *
67 * @returns The new reference count.
68 */
69 uint32_t release();
70
71 /**
72 * Returns the reference count of the secret key.
73 */
74 uint32_t refCount();
75
76 /**
77 * Sets the possible number of users for this key.
78 *
79 * @returns VBox status code.
80 * @param cUsers The possible number of user for this key.
81 */
82 int setUsers(uint32_t cUsers);
83
84 /**
85 * Returns the possible amount of users.
86 *
87 * @returns Possible amount of users.
88 */
89 uint32_t getUsers();
90
91 /**
92 * Sets the remove on suspend flag.
93 *
94 * @returns VBox status code.
95 * @param fRemoveOnSuspend Flag whether to remove the key on host suspend.
96 */
97 int setRemoveOnSuspend(bool fRemoveOnSuspend);
98
99 /**
100 * Returns whether the key should be destroyed on suspend.
101 */
102 bool getRemoveOnSuspend();
103
104 /**
105 * Returns the buffer to the key.
106 */
107 const void *getKeyBuffer();
108
109 /**
110 * Returns the size of the key.
111 */
112 size_t getKeySize();
113
114 private:
115 /** Reference counter of the key. */
116 volatile uint32_t m_cRefs;
117 /** Key material. */
118 uint8_t *m_pbKey;
119 /** Size of the key in bytes. */
120 size_t m_cbKey;
121 /** Flag whether to remove the key on suspend. */
122 bool m_fRemoveOnSuspend;
123 /** Number of entities which will use this key. */
124 uint32_t m_cUsers;
125};
126
127class SecretKeyStore
128{
129 public:
130
131 typedef std::map<com::Utf8Str, SecretKey *> SecretKeyMap;
132
133 /**
134 * Constructor for a secret key store.
135 *
136 * @param fKeyBufNonPageable Flag whether the key buffer is required to
137 * be non pageable.
138 */
139 SecretKeyStore(bool fKeyBufNonPageable);
140
141 /**
142 * Destructor of a secret key store. This will free all stored secret keys
143 * inluding the key buffers. Make sure there no one accesses one of the keys
144 * stored.
145 */
146 ~SecretKeyStore();
147
148 /**
149 * Add a secret key to the store.
150 *
151 * @returns VBox status code.
152 * @param strKeyId The key identifier.
153 * @param pbKey The key to store.
154 * @param cbKey Size of the key.
155 */
156 int addSecretKey(const com::Utf8Str &strKeyId, const uint8_t *pbKey, size_t cbKey);
157
158 /**
159 * Deletes a key from the key store associated with the given identifier.
160 *
161 * @returns VBox status code.
162 * @param strKeyId The key identifier.
163 */
164 int deleteSecretKey(const com::Utf8Str &strKeyId);
165
166 /**
167 * Returns the secret key object associated with the given identifier.
168 * This increments the reference counter of the secret key object.
169 *
170 * @returns VBox status code.
171 * @param strKeyId The key identifier.
172 * @param ppKey Where to store the secret key object on success.
173 */
174 int retainSecretKey(const com::Utf8Str &strKeyId, SecretKey **ppKey);
175
176 /**
177 * Releases a reference to the secret key object.
178 *
179 * @returns VBox status code.
180 * @param strKeyId The key identifier.
181 */
182 int releaseSecretKey(const com::Utf8Str &strKeyId);
183
184 /**
185 * Deletes all secret keys from the key store.
186 *
187 * @returns VBox status code.
188 * @param fSuspend Flag whether to delete only keys which are
189 * marked for deletion during a suspend.
190 * @param fForce Flag whether to force deletion if some keys
191 * are still in use. Otherwise an error is returned.
192 */
193 int deleteAllSecretKeys(bool fSuspend, bool fForce);
194
195 /**
196 * Iterators for enumerating keys
197 */
198 SecretKeyMap::iterator begin()
199 {
200 return m_mapSecretKeys.begin();
201 }
202
203 SecretKeyMap::iterator end()
204 {
205 return m_mapSecretKeys.end();
206 }
207
208 private:
209
210 /** The map to map key identifers to secret keys. */
211 SecretKeyMap m_mapSecretKeys;
212 /** Flag whether key buffers should be non pagable. */
213 bool m_fKeyBufNonPageable;
214};
215
216#endif /* !MAIN_INCLUDED_SecretKeyStore_h */
Note: See TracBrowser for help on using the repository browser.

© 2024 Oracle Support Privacy / Do Not Sell My Info Terms of Use Trademark Policy Automated Access Etiquette