cryptohome/cryptohome_recovery_auth_block.h - mirrors/cros/chromiumos/platform2 - Git at Google

 // Copyright 2021 The Chromium OS Authors. All rights reserved.
 // Use of this source code is governed by a BSD-style license that can be
 // found in the LICENSE file.

 #ifndef CRYPTOHOME_CRYPTOHOME_RECOVERY_AUTH_BLOCK_H_
 #define CRYPTOHOME_CRYPTOHOME_RECOVERY_AUTH_BLOCK_H_

 #include "cryptohome/auth_block.h"
 #include "cryptohome/auth_block_state.h"
 #include "cryptohome/crypto.h"
 #include "cryptohome/key_objects.h"
 #include "cryptohome/vault_keyset.h"

 namespace cryptohome {

 // AuthBlock for Cryptohome Recovery flow. Secret is generated on the device and
 // later derived by Cryptohome Recovery process using data stored on the device
 // and by Recovery Mediator service.
 class CryptohomeRecoveryAuthBlock : public AuthBlock {
  public:
   CryptohomeRecoveryAuthBlock();
   CryptohomeRecoveryAuthBlock(const CryptohomeRecoveryAuthBlock&) = delete;
   CryptohomeRecoveryAuthBlock& operator=(const CryptohomeRecoveryAuthBlock&) =
       delete;
   ~CryptohomeRecoveryAuthBlock() = default;

   // `auth_input` object should have `salt` and
   // `cryptohome_recovery_auth_input.mediator_pub_key` fields set.
   base::Optional<AuthBlockState> Create(const AuthInput& auth_input,
                                         KeyBlobs* key_blobs,
                                         CryptoError* error) override;

   // `auth_input` object should have `salt`,
   // `cryptohome_recovery_auth_input.epoch_pub_key`,
   // `cryptohome_recovery_auth_input.ephemeral_pub_key` and
   // `cryptohome_recovery_auth_input.recovery_response` fields set.
   bool Derive(const AuthInput& auth_input,
               const AuthBlockState& state,
               KeyBlobs* key_blobs,
               CryptoError* error) override;
 };

 }  // namespace cryptohome

 #endif  // CRYPTOHOME_CRYPTOHOME_RECOVERY_AUTH_BLOCK_H_
	// Copyright 2021 The Chromium OS Authors. All rights reserved.
	// Use of this source code is governed by a BSD-style license that can be
	// found in the LICENSE file.

	#ifndef CRYPTOHOME_CRYPTOHOME_RECOVERY_AUTH_BLOCK_H_
	#define CRYPTOHOME_CRYPTOHOME_RECOVERY_AUTH_BLOCK_H_

	#include "cryptohome/auth_block.h"
	#include "cryptohome/auth_block_state.h"
	#include "cryptohome/crypto.h"
	#include "cryptohome/key_objects.h"
	#include "cryptohome/vault_keyset.h"

	namespace cryptohome {

	// AuthBlock for Cryptohome Recovery flow. Secret is generated on the device and
	// later derived by Cryptohome Recovery process using data stored on the device
	// and by Recovery Mediator service.
	class CryptohomeRecoveryAuthBlock : public AuthBlock {
	public:
	CryptohomeRecoveryAuthBlock();
	CryptohomeRecoveryAuthBlock(const CryptohomeRecoveryAuthBlock&) = delete;
	CryptohomeRecoveryAuthBlock& operator=(const CryptohomeRecoveryAuthBlock&) =
	delete;
	~CryptohomeRecoveryAuthBlock() = default;

	// `auth_input` object should have `salt` and
	// `cryptohome_recovery_auth_input.mediator_pub_key` fields set.
	base::Optional<AuthBlockState> Create(const AuthInput& auth_input,
	KeyBlobs* key_blobs,
	CryptoError* error) override;

	// `auth_input` object should have `salt`,
	// `cryptohome_recovery_auth_input.epoch_pub_key`,
	// `cryptohome_recovery_auth_input.ephemeral_pub_key` and
	// `cryptohome_recovery_auth_input.recovery_response` fields set.
	bool Derive(const AuthInput& auth_input,
	const AuthBlockState& state,
	KeyBlobs* key_blobs,
	CryptoError* error) override;
	};

	} // namespace cryptohome

	#endif // CRYPTOHOME_CRYPTOHOME_RECOVERY_AUTH_BLOCK_H_