| // Copyright 2019 The Chromium Authors. All rights reserved. |
| // Use of this source code is governed by a BSD-style license that can be |
| // found in the LICENSE file. |
| |
| #ifndef CHROMEOS_SERVICES_DEVICE_SYNC_CRYPTAUTH_KEY_H_ |
| #define CHROMEOS_SERVICES_DEVICE_SYNC_CRYPTAUTH_KEY_H_ |
| |
| #include "base/optional.h" |
| #include "base/values.h" |
| #include "chromeos/services/device_sync/proto/cryptauth_common.pb.h" |
| |
| namespace chromeos { |
| |
| namespace device_sync { |
| |
| // Holds information for a key managed by CryptAuth or an ephemeral key, such as |
| // a Diffie-Hellman key-pair. |
| class CryptAuthKey { |
| public: |
| // Specified by CryptAuth in the Enrollment protocol by |
| // SyncKeysResponse::SyncSingleKeyResponse::KeyAction or |
| // SyncKeysResponse::SyncSingleKeyResponse::KeyCreation. kActive denotes that |
| // the key should be used. kInactive denotes that the key should be retained |
| // for possible future activation but not used. For ephemeral keys not managed |
| // by CryptAuth but used locally for intermediate cryptographic operations, |
| // this status is meaningless. |
| enum Status { kActive, kInactive }; |
| |
| static base::Optional<CryptAuthKey> FromDictionary(const base::Value& dict); |
| |
| // Constructor for symmetric keys. |
| CryptAuthKey(const std::string& symmetric_key, |
| Status status, |
| cryptauthv2::KeyType type, |
| const base::Optional<std::string>& handle = base::nullopt); |
| |
| // Constructor for asymmetric keys. Note that |public_key| should be a |
| // serialized securemessage::GenericPublicKey proto. |
| CryptAuthKey(const std::string& public_key, |
| const std::string& private_key, |
| Status status, |
| cryptauthv2::KeyType type, |
| const base::Optional<std::string>& handle = base::nullopt); |
| |
| CryptAuthKey(const CryptAuthKey&); |
| |
| ~CryptAuthKey(); |
| |
| bool IsSymmetricKey() const; |
| bool IsAsymmetricKey() const; |
| |
| Status status() const { return status_; } |
| cryptauthv2::KeyType type() const { return type_; } |
| const std::string& symmetric_key() const { |
| DCHECK(IsSymmetricKey()); |
| return symmetric_key_; |
| } |
| const std::string& public_key() const { |
| DCHECK(IsAsymmetricKey()); |
| return public_key_; |
| } |
| const std::string& private_key() const { |
| DCHECK(IsAsymmetricKey()); |
| return private_key_; |
| } |
| const std::string& handle() const { return handle_; } |
| |
| void set_status(Status status) { status_ = status; } |
| |
| // Converts CryptAuthKey to a dictionary-type Value of the form |
| // { |
| // "handle": <handle_> |
| // "status": <status_ as int> |
| // "symmetric_key": <symmetric_key_> |
| // "type": <type_ as int> |
| // } |
| base::Value AsSymmetricKeyDictionary() const; |
| |
| // Converts CryptAuthKey to a dictionary-type Value of the form |
| // { |
| // "handle": <handle_> |
| // "private_key" : <private_key_> |
| // "public_key" : <public_key_> |
| // "status": <status_ as int> |
| // "type": <type_ as int> |
| // } |
| base::Value AsAsymmetricKeyDictionary() const; |
| |
| bool operator==(const CryptAuthKey& other) const; |
| bool operator!=(const CryptAuthKey& other) const; |
| |
| private: |
| std::string symmetric_key_; |
| std::string public_key_; |
| std::string private_key_; |
| Status status_; |
| cryptauthv2::KeyType type_; |
| std::string handle_; |
| }; |
| |
| } // namespace device_sync |
| |
| } // namespace chromeos |
| |
| #endif // CHROMEOS_SERVICES_DEVICE_SYNC_CRYPTAUTH_KEY_H_ |