apps/CtsVerifier/src/com/android/cts/verifier/biometrics/AbstractUserAuthenticationAeadCipherTest.java - platform/cts - Git at Google

 /*
  * Copyright (C) 2022 The Android Open Source Project
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
  * you may not use this file except in compliance with the License.
  * You may obtain a copy of the License at
  *
  *      http://www.apache.org/licenses/LICENSE-2.0
  *
  * Unless required by applicable law or agreed to in writing, software
  * distributed under the License is distributed on an "AS IS" BASIS,
  * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
  * See the License for the specific language governing permissions and
  * limitations under the License.
  */

 package com.android.cts.verifier.biometrics;

 import android.hardware.biometrics.BiometricPrompt;
 import android.security.keystore.KeyGenParameterSpec;
 import android.security.keystore.KeyProperties;

 import javax.crypto.Cipher;
 import javax.crypto.KeyGenerator;

 /**
  * An abstract base class to add Aead Cipher tests.
  */
 public abstract class AbstractUserAuthenticationAeadCipherTest
         extends AbstractUserAuthenticationTest {
     private Cipher mCipher;

     @Override
     void createUserAuthenticationKey(String keyName, int timeout, int authType,
             boolean useStrongBox) throws Exception {
         KeyGenParameterSpec.Builder builder = new KeyGenParameterSpec.Builder(
                 keyName, KeyProperties.PURPOSE_ENCRYPT | KeyProperties.PURPOSE_DECRYPT);
         builder.setBlockModes(KeyProperties.BLOCK_MODE_GCM)
                 .setEncryptionPaddings(KeyProperties.ENCRYPTION_PADDING_NONE)
                 .setUserAuthenticationRequired(true)
                 .setUserAuthenticationParameters(timeout, authType)
                 .setIsStrongBoxBacked(useStrongBox);

         KeyGenerator keyGenerator = KeyGenerator.getInstance(
                 KeyProperties.KEY_ALGORITHM_AES, "AndroidKeyStore");
         keyGenerator.init(builder.build());
         keyGenerator.generateKey();
     }

     @Override
     void initializeKeystoreOperation(String keyName) throws Exception {
         mCipher = Utils.initAeadCipher(keyName);
     }

     @Override
     BiometricPrompt.CryptoObject getCryptoObject() {
         return new BiometricPrompt.CryptoObject(mCipher);
     }

     @Override
     void doKeystoreOperation(byte[] payload) throws Exception {
         try {
             byte[] aad = "Test aad data".getBytes();
             mCipher.updateAAD(aad);
             Utils.doEncrypt(mCipher, payload);
         } finally {
             mCipher = null;
         }
     }
 }
	/*
	* Copyright (C) 2022 The Android Open Source Project
	*
	* Licensed under the Apache License, Version 2.0 (the "License");
	* you may not use this file except in compliance with the License.
	* You may obtain a copy of the License at
	*
	* http://www.apache.org/licenses/LICENSE-2.0
	*
	* Unless required by applicable law or agreed to in writing, software
	* distributed under the License is distributed on an "AS IS" BASIS,
	* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
	* See the License for the specific language governing permissions and
	* limitations under the License.
	*/

	package com.android.cts.verifier.biometrics;

	import android.hardware.biometrics.BiometricPrompt;
	import android.security.keystore.KeyGenParameterSpec;
	import android.security.keystore.KeyProperties;

	import javax.crypto.Cipher;
	import javax.crypto.KeyGenerator;

	/**
	* An abstract base class to add Aead Cipher tests.
	*/
	public abstract class AbstractUserAuthenticationAeadCipherTest
	extends AbstractUserAuthenticationTest {
	private Cipher mCipher;

	@Override
	void createUserAuthenticationKey(String keyName, int timeout, int authType,
	boolean useStrongBox) throws Exception {
	KeyGenParameterSpec.Builder builder = new KeyGenParameterSpec.Builder(
	keyName, KeyProperties.PURPOSE_ENCRYPT \| KeyProperties.PURPOSE_DECRYPT);
	builder.setBlockModes(KeyProperties.BLOCK_MODE_GCM)
	.setEncryptionPaddings(KeyProperties.ENCRYPTION_PADDING_NONE)
	.setUserAuthenticationRequired(true)
	.setUserAuthenticationParameters(timeout, authType)
	.setIsStrongBoxBacked(useStrongBox);

	KeyGenerator keyGenerator = KeyGenerator.getInstance(
	KeyProperties.KEY_ALGORITHM_AES, "AndroidKeyStore");
	keyGenerator.init(builder.build());
	keyGenerator.generateKey();
	}

	@Override
	void initializeKeystoreOperation(String keyName) throws Exception {
	mCipher = Utils.initAeadCipher(keyName);
	}

	@Override
	BiometricPrompt.CryptoObject getCryptoObject() {
	return new BiometricPrompt.CryptoObject(mCipher);
	}

	@Override
	void doKeystoreOperation(byte[] payload) throws Exception {
	try {
	byte[] aad = "Test aad data".getBytes();
	mCipher.updateAAD(aad);
	Utils.doEncrypt(mCipher, payload);
	} finally {
	mCipher = null;
	}
	}
	}