diff options
author | David Drysdale <drysdale@google.com> | 2022-01-24 08:07:34 +0000 |
---|---|---|
committer | Armelle Laine <armellel@google.com> | 2022-06-09 06:00:29 +0000 |
commit | 9355fadefa5ab9c9fbae6f074e2dc9cdd8e8052f (patch) | |
tree | 32ee9e4ba582f27435a25719377256e9badd85c4 | |
parent | fdeafb864cefd667ef85be50fdfa863339046791 (diff) | |
download | keymaster-9355fadefa5ab9c9fbae6f074e2dc9cdd8e8052f.tar.gz |
Use new (std::nothrow) throughout
If code uses "normal" `new`, the compiler is allowed to assume that
`nullptr` is never returned, even if built with -fno-exceptions.
Use `new (std::nothrow)` throughout so that `nullptr` gets returned
and can (in some cases) be handled.
Bug: 215451239
Test: VtsAidlKeyMintTargetTest
Ignore-AOSP-First: Cherry pick from AOSP
Change-Id: Ied97ce946c0fbfbd5449c533e7ce1acbd0f595c5
(cherry picked from commit b80ef359b047a6bb72947b582102a979568f5c30)
-rw-r--r-- | contexts/keymaster1_passthrough_context.cpp | 12 | ||||
-rw-r--r-- | contexts/keymaster2_passthrough_context.cpp | 2 | ||||
-rw-r--r-- | contexts/pure_soft_keymaster_context.cpp | 13 | ||||
-rw-r--r-- | contexts/soft_keymaster_context.cpp | 19 | ||||
-rw-r--r-- | contexts/soft_keymaster_device.cpp | 8 | ||||
-rw-r--r-- | include/keymaster/android_keymaster_utils.h | 2 | ||||
-rw-r--r-- | legacy_support/ec_keymaster1_key.cpp | 4 | ||||
-rw-r--r-- | legacy_support/ecdsa_keymaster1_operation.cpp | 2 | ||||
-rw-r--r-- | legacy_support/keymaster1_engine.cpp | 6 | ||||
-rw-r--r-- | legacy_support/keymaster_passthrough_engine.cpp | 40 | ||||
-rw-r--r-- | legacy_support/rsa_keymaster1_key.cpp | 9 | ||||
-rw-r--r-- | legacy_support/rsa_keymaster1_operation.cpp | 4 | ||||
-rw-r--r-- | ng/AndroidKeyMintDevice.cpp | 6 | ||||
-rw-r--r-- | ng/AndroidKeymaster3Device.cpp | 23 | ||||
-rw-r--r-- | ng/AndroidKeymaster41Device.cpp | 2 | ||||
-rw-r--r-- | ng/AndroidKeymaster4Device.cpp | 13 | ||||
-rw-r--r-- | ng/AndroidRemotelyProvisionedComponentDevice.cpp | 2 | ||||
-rw-r--r-- | ng/AndroidSharedSecret.cpp | 3 | ||||
-rw-r--r-- | ng/KeyMintAidlUtils.cpp | 2 | ||||
-rw-r--r-- | tests/key_blob_test.cpp | 2 |
20 files changed, 95 insertions, 79 deletions
diff --git a/contexts/keymaster1_passthrough_context.cpp b/contexts/keymaster1_passthrough_context.cpp index 5c82633..02c4623 100644 --- a/contexts/keymaster1_passthrough_context.cpp +++ b/contexts/keymaster1_passthrough_context.cpp @@ -38,7 +38,7 @@ Keymaster1PassthroughContext::Keymaster1PassthroughContext(KmVersion version, keymaster1_device_t* dev) : SoftAttestationContext(version), device_(dev), pt_engine_(KeymasterPassthroughEngine::createInstance(dev)), - km1_engine_(new Keymaster1Engine(dev)) {} + km1_engine_(new (std::nothrow) Keymaster1Engine(dev)) {} keymaster_error_t Keymaster1PassthroughContext::SetSystemVersion(uint32_t os_version, uint32_t os_patchlevel) { @@ -58,22 +58,22 @@ KeyFactory* Keymaster1PassthroughContext::GetKeyFactory(keymaster_algorithm_t al if (!result) { switch (algorithm) { case KM_ALGORITHM_RSA: - result.reset(new Keymaster1ArbitrationFactory<RsaKeymaster1KeyFactory>( + result.reset(new (std::nothrow) Keymaster1ArbitrationFactory<RsaKeymaster1KeyFactory>( pt_engine_.get(), KM_ALGORITHM_RSA, device_, *this /* blob_maker */, *this /* context */, km1_engine_.get())); break; case KM_ALGORITHM_EC: - result.reset(new Keymaster1ArbitrationFactory<EcdsaKeymaster1KeyFactory>( + result.reset(new (std::nothrow) Keymaster1ArbitrationFactory<EcdsaKeymaster1KeyFactory>( pt_engine_.get(), KM_ALGORITHM_EC, device_, *this /* blob_maker */, *this /* context */, km1_engine_.get())); break; case KM_ALGORITHM_AES: - result.reset(new Keymaster1ArbitrationFactory<AesKeyFactory>( + result.reset(new (std::nothrow) Keymaster1ArbitrationFactory<AesKeyFactory>( pt_engine_.get(), KM_ALGORITHM_AES, device_, *this /* blob_maker */, *this /* random_source */)); break; case KM_ALGORITHM_HMAC: - result.reset(new Keymaster1ArbitrationFactory<HmacKeyFactory>( + result.reset(new (std::nothrow) Keymaster1ArbitrationFactory<HmacKeyFactory>( pt_engine_.get(), KM_ALGORITHM_HMAC, device_, *this /* blob_maker */, *this /* random_source */)); break; @@ -152,7 +152,7 @@ Keymaster1PassthroughContext::ParseKeyBlob(const KeymasterKeyBlob& blob, BuildHiddenAuthorizations(additional_params, &hidden, softwareRootOfTrust); if (error != KM_ERROR_OK) return error; - // Assume it's an integrity-assured blob (new software-only blob + // Assume it's an integrity-assured blob (new software-only blob). error = DeserializeIntegrityAssuredBlob(blob, hidden, &key_material, &hw_enforced, &sw_enforced); if (error != KM_ERROR_INVALID_KEY_BLOB && error != KM_ERROR_OK) return error; diff --git a/contexts/keymaster2_passthrough_context.cpp b/contexts/keymaster2_passthrough_context.cpp index fe83de8..75ed9b6 100644 --- a/contexts/keymaster2_passthrough_context.cpp +++ b/contexts/keymaster2_passthrough_context.cpp @@ -42,7 +42,7 @@ void Keymaster2PassthroughContext::GetSystemVersion(uint32_t* os_version, KeyFactory* Keymaster2PassthroughContext::GetKeyFactory(keymaster_algorithm_t algorithm) const { auto& result = factories_[algorithm]; if (!result) { - result.reset(new KeymasterPassthroughKeyFactory(engine_.get(), algorithm)); + result.reset(new (std::nothrow) KeymasterPassthroughKeyFactory(engine_.get(), algorithm)); } return result.get(); } diff --git a/contexts/pure_soft_keymaster_context.cpp b/contexts/pure_soft_keymaster_context.cpp index e9d8245..937238b 100644 --- a/contexts/pure_soft_keymaster_context.cpp +++ b/contexts/pure_soft_keymaster_context.cpp @@ -54,11 +54,14 @@ PureSoftKeymasterContext::PureSoftKeymasterContext(KmVersion version, keymaster_security_level_t security_level) : SoftAttestationContext(version), - rsa_factory_(new RsaKeyFactory(*this /* blob_maker */, *this /* context */)), - ec_factory_(new EcKeyFactory(*this /* blob_maker */, *this /* context */)), - aes_factory_(new AesKeyFactory(*this /* blob_maker */, *this /* random_source */)), - tdes_factory_(new TripleDesKeyFactory(*this /* blob_maker */, *this /* random_source */)), - hmac_factory_(new HmacKeyFactory(*this /* blob_maker */, *this /* random_source */)), + rsa_factory_(new (std::nothrow) RsaKeyFactory(*this /* blob_maker */, *this /* context */)), + ec_factory_(new (std::nothrow) EcKeyFactory(*this /* blob_maker */, *this /* context */)), + aes_factory_(new (std::nothrow) + AesKeyFactory(*this /* blob_maker */, *this /* random_source */)), + tdes_factory_(new (std::nothrow) + TripleDesKeyFactory(*this /* blob_maker */, *this /* random_source */)), + hmac_factory_(new (std::nothrow) + HmacKeyFactory(*this /* blob_maker */, *this /* random_source */)), os_version_(0), os_patchlevel_(0), soft_keymaster_enforcement_(64, 64), security_level_(security_level) { // We're pretending to be some sort of secure hardware which supports secure key storage, diff --git a/contexts/soft_keymaster_context.cpp b/contexts/soft_keymaster_context.cpp index 86bdd3f..66c1a57 100644 --- a/contexts/soft_keymaster_context.cpp +++ b/contexts/soft_keymaster_context.cpp @@ -52,11 +52,14 @@ KeymasterBlob string2Blob(const std::string& str) { SoftKeymasterContext::SoftKeymasterContext(KmVersion version, const std::string& root_of_trust) : SoftAttestationContext(version), // - rsa_factory_(new RsaKeyFactory(*this /* blob_maker */, *this /* context */)), - ec_factory_(new EcKeyFactory(*this /* blob_maker */, *this /* context */)), - aes_factory_(new AesKeyFactory(*this /* blob_maker */, *this /* random_source */)), - tdes_factory_(new TripleDesKeyFactory(*this /* blob_maker */, *this /* random_source */)), - hmac_factory_(new HmacKeyFactory(*this /* blob_maker */, *this /* random_source */)), + rsa_factory_(new (std::nothrow) RsaKeyFactory(*this /* blob_maker */, *this /* context */)), + ec_factory_(new (std::nothrow) EcKeyFactory(*this /* blob_maker */, *this /* context */)), + aes_factory_(new (std::nothrow) + AesKeyFactory(*this /* blob_maker */, *this /* random_source */)), + tdes_factory_(new (std::nothrow) + TripleDesKeyFactory(*this /* blob_maker */, *this /* random_source */)), + hmac_factory_(new (std::nothrow) + HmacKeyFactory(*this /* blob_maker */, *this /* random_source */)), km1_dev_(nullptr), root_of_trust_(string2Blob(root_of_trust)), os_version_(0), os_patchlevel_(0) {} @@ -67,10 +70,10 @@ keymaster_error_t SoftKeymasterContext::SetHardwareDevice(keymaster1_device_t* k km1_dev_ = keymaster1_device; - km1_engine_.reset(new Keymaster1Engine(keymaster1_device)); - rsa_factory_.reset(new RsaKeymaster1KeyFactory( + km1_engine_.reset(new (std::nothrow) Keymaster1Engine(keymaster1_device)); + rsa_factory_.reset(new (std::nothrow) RsaKeymaster1KeyFactory( *this /* blob_maker */, *this /* attestation_context */, km1_engine_.get())); - ec_factory_.reset(new EcdsaKeymaster1KeyFactory( + ec_factory_.reset(new (std::nothrow) EcdsaKeymaster1KeyFactory( *this /* blob_maker */, *this /* attestation_context */, km1_engine_.get())); // Use default HMAC and AES key factories. Higher layers will pass HMAC/AES keys/ops that are diff --git a/contexts/soft_keymaster_device.cpp b/contexts/soft_keymaster_device.cpp index 71b0dd1..45c5b2a 100644 --- a/contexts/soft_keymaster_device.cpp +++ b/contexts/soft_keymaster_device.cpp @@ -158,8 +158,9 @@ static keymaster_error_t map_digests(keymaster1_device_t* dev, SoftKeymasterDevi } SoftKeymasterDevice::SoftKeymasterDevice(KmVersion version) - : wrapped_km1_device_(nullptr), context_(new SoftKeymasterContext(version)), - impl_(new AndroidKeymaster(context_, kOperationTableSize)), configured_(false) { + : wrapped_km1_device_(nullptr), context_(new (std::nothrow) SoftKeymasterContext(version)), + impl_(new (std::nothrow) AndroidKeymaster(context_, kOperationTableSize)), + configured_(false) { LOG_I("Creating device", 0); LOG_D("Device address: %p", this); @@ -169,7 +170,8 @@ SoftKeymasterDevice::SoftKeymasterDevice(KmVersion version) SoftKeymasterDevice::SoftKeymasterDevice(SoftKeymasterContext* context) : wrapped_km1_device_(nullptr), context_(context), - impl_(new AndroidKeymaster(context_, kOperationTableSize)), configured_(false) { + impl_(new (std::nothrow) AndroidKeymaster(context_, kOperationTableSize)), + configured_(false) { LOG_I("Creating test device", 0); LOG_D("Device address: %p", this); diff --git a/include/keymaster/android_keymaster_utils.h b/include/keymaster/android_keymaster_utils.h index a23694b..324287a 100644 --- a/include/keymaster/android_keymaster_utils.h +++ b/include/keymaster/android_keymaster_utils.h @@ -326,7 +326,7 @@ struct CertificateChain : public keymaster_cert_chain_t { // Insert the provided blob at the front of the chain. CertificateChain takes ownership of the // contents of `new_entry`. bool push_front(const keymaster_blob_t& new_entry) { - keymaster_blob_t* new_entries = new keymaster_blob_t[entry_count + 1]; + keymaster_blob_t* new_entries = new (std::nothrow) keymaster_blob_t[entry_count + 1]; if (!new_entries) return false; new_entries[0] = new_entry; diff --git a/legacy_support/ec_keymaster1_key.cpp b/legacy_support/ec_keymaster1_key.cpp index fa4dc07..ddb3725 100644 --- a/legacy_support/ec_keymaster1_key.cpp +++ b/legacy_support/ec_keymaster1_key.cpp @@ -31,9 +31,9 @@ EcdsaKeymaster1KeyFactory::EcdsaKeymaster1KeyFactory(const SoftwareKeyBlobMaker& const KeymasterContext& context, const Keymaster1Engine* engine) : EcKeyFactory(blob_maker, context), engine_(engine), - sign_factory_(new EcdsaKeymaster1OperationFactory(KM_PURPOSE_SIGN, engine)), + sign_factory_(new (std::nothrow) EcdsaKeymaster1OperationFactory(KM_PURPOSE_SIGN, engine)), // For pubkey ops we can use the normal operation factories. - verify_factory_(new EcdsaVerifyOperationFactory) {} + verify_factory_(new (std::nothrow) EcdsaVerifyOperationFactory) {} static bool is_supported(uint32_t digest) { return digest == KM_DIGEST_NONE || digest == KM_DIGEST_SHA_2_256; diff --git a/legacy_support/ecdsa_keymaster1_operation.cpp b/legacy_support/ecdsa_keymaster1_operation.cpp index ede1b3f..bb8b041 100644 --- a/legacy_support/ecdsa_keymaster1_operation.cpp +++ b/legacy_support/ecdsa_keymaster1_operation.cpp @@ -104,7 +104,7 @@ OperationPtr EcdsaKeymaster1OperationFactory::CreateOperation(Key&& key, switch (purpose_) { case KM_PURPOSE_SIGN: - return OperationPtr(new EcdsaKeymaster1Operation<EcdsaSignOperation>( + return OperationPtr(new (std::nothrow) EcdsaKeymaster1Operation<EcdsaSignOperation>( key.hw_enforced_move(), key.sw_enforced_move(), digest, ecdsa.release(), engine_)); default: LOG_E( diff --git a/legacy_support/keymaster1_engine.cpp b/legacy_support/keymaster1_engine.cpp index 28a64ad..4cd16e5 100644 --- a/legacy_support/keymaster1_engine.cpp +++ b/legacy_support/keymaster1_engine.cpp @@ -135,7 +135,7 @@ RSA* Keymaster1Engine::BuildRsaKey(const KeymasterKeyBlob& blob, return nullptr; } - KeyData* key_data = new KeyData(blob, additional_params); + KeyData* key_data = new (std::nothrow) KeyData(blob, additional_params); if (!RSA_set_ex_data(rsa.get(), rsa_index_, key_data)) { *error = TranslateLastOpenSslError(); delete key_data; @@ -174,7 +174,7 @@ EC_KEY* Keymaster1Engine::BuildEcKey(const KeymasterKeyBlob& blob, return nullptr; } - KeyData* key_data = new KeyData(blob, additional_params); + KeyData* key_data = new (std::nothrow) KeyData(blob, additional_params); if (!EC_KEY_set_ex_data(ec_key.get(), ec_key_index_, key_data)) { *error = TranslateLastOpenSslError(); delete key_data; @@ -238,7 +238,7 @@ int Keymaster1Engine::duplicate_key_data(CRYPTO_EX_DATA* /* to */, const CRYPTO_ if (!data) return 1; // Default copy ctor is good. - *from_d = new KeyData(*data); + *from_d = new (std::nothrow) KeyData(*data); if (*from_d) return 1; return 0; } diff --git a/legacy_support/keymaster_passthrough_engine.cpp b/legacy_support/keymaster_passthrough_engine.cpp index ed22320..d966d71 100644 --- a/legacy_support/keymaster_passthrough_engine.cpp +++ b/legacy_support/keymaster_passthrough_engine.cpp @@ -45,33 +45,35 @@ class TKeymasterPassthroughEngine : public KeymasterPassthroughEngine { explicit TKeymasterPassthroughEngine(const KeymasterDeviceType* km_device) : km_device_(km_device) { rsa_encrypt_op_factory_.reset( - new opfactory_t(KM_ALGORITHM_RSA, KM_PURPOSE_ENCRYPT, km_device_)); + new (std::nothrow) opfactory_t(KM_ALGORITHM_RSA, KM_PURPOSE_ENCRYPT, km_device_)); rsa_decrypt_op_factory_.reset( - new opfactory_t(KM_ALGORITHM_RSA, KM_PURPOSE_DECRYPT, km_device_)); - rsa_sign_op_factory_.reset(new opfactory_t(KM_ALGORITHM_RSA, KM_PURPOSE_SIGN, km_device_)); + new (std::nothrow) opfactory_t(KM_ALGORITHM_RSA, KM_PURPOSE_DECRYPT, km_device_)); + rsa_sign_op_factory_.reset(new (std::nothrow) + opfactory_t(KM_ALGORITHM_RSA, KM_PURPOSE_SIGN, km_device_)); rsa_verify_op_factory_.reset( - new opfactory_t(KM_ALGORITHM_RSA, KM_PURPOSE_VERIFY, km_device_)); + new (std::nothrow) opfactory_t(KM_ALGORITHM_RSA, KM_PURPOSE_VERIFY, km_device_)); ec_encrypt_op_factory_.reset( - new opfactory_t(KM_ALGORITHM_EC, KM_PURPOSE_ENCRYPT, km_device_)); + new (std::nothrow) opfactory_t(KM_ALGORITHM_EC, KM_PURPOSE_ENCRYPT, km_device_)); ec_decrypt_op_factory_.reset( - new opfactory_t(KM_ALGORITHM_EC, KM_PURPOSE_DECRYPT, km_device_)); - ec_sign_op_factory_.reset(new opfactory_t(KM_ALGORITHM_EC, KM_PURPOSE_SIGN, km_device_)); + new (std::nothrow) opfactory_t(KM_ALGORITHM_EC, KM_PURPOSE_DECRYPT, km_device_)); + ec_sign_op_factory_.reset(new (std::nothrow) + opfactory_t(KM_ALGORITHM_EC, KM_PURPOSE_SIGN, km_device_)); ec_verify_op_factory_.reset( - new opfactory_t(KM_ALGORITHM_EC, KM_PURPOSE_VERIFY, km_device_)); + new (std::nothrow) opfactory_t(KM_ALGORITHM_EC, KM_PURPOSE_VERIFY, km_device_)); ec_derive_op_factory_.reset( - new opfactory_t(KM_ALGORITHM_EC, KM_PURPOSE_DERIVE_KEY, km_device_)); + new (std::nothrow) opfactory_t(KM_ALGORITHM_EC, KM_PURPOSE_DERIVE_KEY, km_device_)); aes_encrypt_op_factory_.reset( - new opfactory_t(KM_ALGORITHM_AES, KM_PURPOSE_ENCRYPT, km_device_)); + new (std::nothrow) opfactory_t(KM_ALGORITHM_AES, KM_PURPOSE_ENCRYPT, km_device_)); aes_decrypt_op_factory_.reset( - new opfactory_t(KM_ALGORITHM_AES, KM_PURPOSE_DECRYPT, km_device_)); - triple_des_encrypt_op_factory_.reset( - new opfactory_t(KM_ALGORITHM_TRIPLE_DES, KM_PURPOSE_ENCRYPT, km_device_)); - triple_des_decrypt_op_factory_.reset( - new opfactory_t(KM_ALGORITHM_TRIPLE_DES, KM_PURPOSE_DECRYPT, km_device_)); + new (std::nothrow) opfactory_t(KM_ALGORITHM_AES, KM_PURPOSE_DECRYPT, km_device_)); + triple_des_encrypt_op_factory_.reset(new (std::nothrow) opfactory_t( + KM_ALGORITHM_TRIPLE_DES, KM_PURPOSE_ENCRYPT, km_device_)); + triple_des_decrypt_op_factory_.reset(new (std::nothrow) opfactory_t( + KM_ALGORITHM_TRIPLE_DES, KM_PURPOSE_DECRYPT, km_device_)); hmac_sign_op_factory_.reset( - new opfactory_t(KM_ALGORITHM_HMAC, KM_PURPOSE_SIGN, km_device_)); + new (std::nothrow) opfactory_t(KM_ALGORITHM_HMAC, KM_PURPOSE_SIGN, km_device_)); hmac_verify_op_factory_.reset( - new opfactory_t(KM_ALGORITHM_HMAC, KM_PURPOSE_VERIFY, km_device_)); + new (std::nothrow) opfactory_t(KM_ALGORITHM_HMAC, KM_PURPOSE_VERIFY, km_device_)); } virtual ~TKeymasterPassthroughEngine() { // QUIRK: we only take ownership if this is a KM2 device. @@ -294,10 +296,10 @@ keymaster_error_t TKeymasterPassthroughEngine<keymaster2_device_t>::ImportKey( typedef UniquePtr<KeymasterPassthroughEngine> engine_ptr_t; engine_ptr_t KeymasterPassthroughEngine::createInstance(const keymaster1_device_t* dev) { - return engine_ptr_t(new TKeymasterPassthroughEngine<keymaster1_device_t>(dev)); + return engine_ptr_t(new (std::nothrow) TKeymasterPassthroughEngine<keymaster1_device_t>(dev)); } engine_ptr_t KeymasterPassthroughEngine::createInstance(const keymaster2_device_t* dev) { - return engine_ptr_t(new TKeymasterPassthroughEngine<keymaster2_device_t>(dev)); + return engine_ptr_t(new (std::nothrow) TKeymasterPassthroughEngine<keymaster2_device_t>(dev)); } } // namespace keymaster diff --git a/legacy_support/rsa_keymaster1_key.cpp b/legacy_support/rsa_keymaster1_key.cpp index 5859bde..ff5576c 100644 --- a/legacy_support/rsa_keymaster1_key.cpp +++ b/legacy_support/rsa_keymaster1_key.cpp @@ -28,11 +28,12 @@ RsaKeymaster1KeyFactory::RsaKeymaster1KeyFactory(const SoftwareKeyBlobMaker& blo const KeymasterContext& context, const Keymaster1Engine* engine) : RsaKeyFactory(blob_maker, context), engine_(engine), - sign_factory_(new RsaKeymaster1OperationFactory(KM_PURPOSE_SIGN, engine)), - decrypt_factory_(new RsaKeymaster1OperationFactory(KM_PURPOSE_DECRYPT, engine)), + sign_factory_(new (std::nothrow) RsaKeymaster1OperationFactory(KM_PURPOSE_SIGN, engine)), + decrypt_factory_(new (std::nothrow) + RsaKeymaster1OperationFactory(KM_PURPOSE_DECRYPT, engine)), // For pubkey ops we can use the normal operation factories. - verify_factory_(new RsaVerificationOperationFactory), - encrypt_factory_(new RsaEncryptionOperationFactory) {} + verify_factory_(new (std::nothrow) RsaVerificationOperationFactory), + encrypt_factory_(new (std::nothrow) RsaEncryptionOperationFactory) {} static bool is_supported(uint32_t digest) { return digest == KM_DIGEST_NONE || digest == KM_DIGEST_SHA_2_256; diff --git a/legacy_support/rsa_keymaster1_operation.cpp b/legacy_support/rsa_keymaster1_operation.cpp index a32a8a6..7f4d59f 100644 --- a/legacy_support/rsa_keymaster1_operation.cpp +++ b/legacy_support/rsa_keymaster1_operation.cpp @@ -128,11 +128,11 @@ OperationPtr RsaKeymaster1OperationFactory::CreateOperation(Key&& key, switch (purpose_) { case KM_PURPOSE_SIGN: - return OperationPtr(new RsaKeymaster1Operation<RsaSignOperation>( + return OperationPtr(new (std::nothrow) RsaKeymaster1Operation<RsaSignOperation>( key.hw_enforced_move(), key.sw_enforced_move(), digest, padding, rsa.release(), engine_)); case KM_PURPOSE_DECRYPT: - return OperationPtr(new RsaKeymaster1Operation<RsaDecryptOperation>( + return OperationPtr(new (std::nothrow) RsaKeymaster1Operation<RsaDecryptOperation>( key.hw_enforced_move(), key.sw_enforced_move(), digest, padding, rsa.release(), engine_)); default: diff --git a/ng/AndroidKeyMintDevice.cpp b/ng/AndroidKeyMintDevice.cpp index 9d2cc69..25ad463 100644 --- a/ng/AndroidKeyMintDevice.cpp +++ b/ng/AndroidKeyMintDevice.cpp @@ -213,9 +213,9 @@ void addClientAndAppData(const std::vector<uint8_t>& appId, const std::vector<ui constexpr size_t kOperationTableSize = 16; AndroidKeyMintDevice::AndroidKeyMintDevice(SecurityLevel securityLevel) - : impl_(new ::keymaster::AndroidKeymaster( - [&]() -> auto { - auto context = new PureSoftKeymasterContext( + : impl_(new (std::nothrow)::keymaster::AndroidKeymaster( + [&]() -> auto{ + auto context = new (std::nothrow) PureSoftKeymasterContext( KmVersion::KEYMINT_2, static_cast<keymaster_security_level_t>(securityLevel)); context->SetSystemVersion(::keymaster::GetOsVersion(), ::keymaster::GetOsPatchlevel()); diff --git a/ng/AndroidKeymaster3Device.cpp b/ng/AndroidKeymaster3Device.cpp index 5ab1739..8c17f69 100644 --- a/ng/AndroidKeymaster3Device.cpp +++ b/ng/AndroidKeymaster3Device.cpp @@ -85,7 +85,7 @@ inline keymaster_tag_type_t typeFromTag(const keymaster_tag_t tag) { class KmParamSet : public keymaster_key_param_set_t { public: explicit KmParamSet(const hidl_vec<KeyParameter>& keyParams) { - params = new keymaster_key_param_t[keyParams.size()]; + params = new (std::nothrow) keymaster_key_param_t[keyParams.size()]; length = keyParams.size(); for (size_t i = 0; i < keyParams.size(); ++i) { auto tag = legacy_enum_conversion(keyParams[i].tag); @@ -220,9 +220,9 @@ void addClientAndAppData(const hidl_vec<uint8_t>& clientId, const hidl_vec<uint8 } // anonymous namespace AndroidKeymaster3Device::AndroidKeymaster3Device() - : impl_(new ::keymaster::AndroidKeymaster( - []() -> auto { - auto context = new PureSoftKeymasterContext(KmVersion::KEYMASTER_3); + : impl_(new (std::nothrow)::keymaster::AndroidKeymaster( + []() -> auto{ + auto context = new (std::nothrow) PureSoftKeymasterContext(KmVersion::KEYMASTER_3); context->SetSystemVersion(GetOsVersion(), GetOsPatchlevel()); context->SetVendorPatchlevel(GetVendorPatchlevel()); // Software devices cannot be configured by the boot loader but they have @@ -237,7 +237,8 @@ AndroidKeymaster3Device::AndroidKeymaster3Device() AndroidKeymaster3Device::AndroidKeymaster3Device(KeymasterContext* context, KeymasterHardwareProfile profile) - : impl_(new ::keymaster::AndroidKeymaster(context, kOperationTableSize)), profile_(profile) {} + : impl_(new (std::nothrow)::keymaster::AndroidKeymaster(context, kOperationTableSize)), + profile_(profile) {} AndroidKeymaster3Device::~AndroidKeymaster3Device() {} @@ -504,20 +505,22 @@ Return<ErrorCode> AndroidKeymaster3Device::abort(uint64_t operationHandle) { } IKeymasterDevice* CreateKeymasterDevice() { - return new AndroidKeymaster3Device(); + return new (std::nothrow) AndroidKeymaster3Device(); } IKeymasterDevice* CreateKeymasterDevice(keymaster2_device_t* km2_device) { if (ConfigureDevice(km2_device) != KM_ERROR_OK) return nullptr; - auto context = new Keymaster2PassthroughContext(KmVersion::KEYMASTER_3, km2_device); + auto context = + new (std::nothrow) Keymaster2PassthroughContext(KmVersion::KEYMASTER_3, km2_device); context->SetSystemVersion(GetOsVersion(), GetOsPatchlevel()); - return new AndroidKeymaster3Device(context, KeymasterHardwareProfile::KM2); + return new (std::nothrow) AndroidKeymaster3Device(context, KeymasterHardwareProfile::KM2); } IKeymasterDevice* CreateKeymasterDevice(keymaster1_device_t* km1_device) { - auto context = new Keymaster1PassthroughContext(KmVersion::KEYMASTER_3, km1_device); + auto context = + new (std::nothrow) Keymaster1PassthroughContext(KmVersion::KEYMASTER_3, km1_device); context->SetSystemVersion(GetOsVersion(), GetOsPatchlevel()); - return new AndroidKeymaster3Device(context, KeymasterHardwareProfile::KM1); + return new (std::nothrow) AndroidKeymaster3Device(context, KeymasterHardwareProfile::KM1); } } // namespace ng diff --git a/ng/AndroidKeymaster41Device.cpp b/ng/AndroidKeymaster41Device.cpp index c360ff2..e9abb9e 100644 --- a/ng/AndroidKeymaster41Device.cpp +++ b/ng/AndroidKeymaster41Device.cpp @@ -35,7 +35,7 @@ inline V41ErrorCode legacy_enum_conversion(const keymaster_error_t value) { } // namespace IKeymasterDevice* CreateKeymasterDevice(SecurityLevel securityLevel) { - return new AndroidKeymaster41Device(securityLevel); + return new (std::nothrow) AndroidKeymaster41Device(securityLevel); } Return<V41ErrorCode> diff --git a/ng/AndroidKeymaster4Device.cpp b/ng/AndroidKeymaster4Device.cpp index 33b329f..1072418 100644 --- a/ng/AndroidKeymaster4Device.cpp +++ b/ng/AndroidKeymaster4Device.cpp @@ -175,7 +175,7 @@ void addClientAndAppData(const hidl_vec<uint8_t>& clientId, const hidl_vec<uint8 keymaster_key_param_set_t hidlKeyParams2Km(const hidl_vec<KeyParameter>& keyParams) { keymaster_key_param_set_t set; - set.params = new keymaster_key_param_t[keyParams.size()]; + set.params = new (std::nothrow) keymaster_key_param_t[keyParams.size()]; set.length = keyParams.size(); for (size_t i = 0; i < keyParams.size(); ++i) { @@ -219,9 +219,9 @@ keymaster_key_param_set_t hidlKeyParams2Km(const hidl_vec<KeyParameter>& keyPara } AndroidKeymaster4Device::AndroidKeymaster4Device(KmVersion version, SecurityLevel securityLevel) - : impl_(new ::keymaster::AndroidKeymaster( - [&]() -> auto { - auto context = new PureSoftKeymasterContext( + : impl_(new (std::nothrow)::keymaster::AndroidKeymaster( + [&]() -> auto{ + auto context = new (std::nothrow) PureSoftKeymasterContext( version, static_cast<keymaster_security_level_t>(securityLevel)); context->SetSystemVersion(GetOsVersion(), GetOsPatchlevel()); context->SetVendorPatchlevel(GetVendorPatchlevel()); @@ -259,7 +259,8 @@ Return<void> AndroidKeymaster4Device::computeSharedHmac( const hidl_vec<::android::hardware::keymaster::V4_0::HmacSharingParameters>& params, computeSharedHmac_cb _hidl_cb) { ComputeSharedHmacRequest request(impl_->message_version()); - request.params_array.params_array = new keymaster::HmacSharingParameters[params.size()]; + request.params_array.params_array = + new (std::nothrow) keymaster::HmacSharingParameters[params.size()]; request.params_array.num_params = params.size(); for (size_t i = 0; i < params.size(); ++i) { request.params_array.params_array[i].seed = {params[i].seed.data(), params[i].seed.size()}; @@ -586,7 +587,7 @@ Return<ErrorCode> AndroidKeymaster4Device::abort(uint64_t operationHandle) { } IKeymasterDevice* CreateKeymasterDevice(SecurityLevel securityLevel) { - return new AndroidKeymaster4Device(securityLevel); + return new (std::nothrow) AndroidKeymaster4Device(securityLevel); } } // namespace ng diff --git a/ng/AndroidRemotelyProvisionedComponentDevice.cpp b/ng/AndroidRemotelyProvisionedComponentDevice.cpp index e6bd40f..0c2d842 100644 --- a/ng/AndroidRemotelyProvisionedComponentDevice.cpp +++ b/ng/AndroidRemotelyProvisionedComponentDevice.cpp @@ -112,7 +112,7 @@ ScopedAStatus AndroidRemotelyProvisionedComponentDevice::generateCertificateRequ GenerateCsrRequest request(impl_->message_version()); request.test_mode = testMode; request.num_keys = keysToSign.size(); - request.keys_to_sign_array = new KeymasterBlob[keysToSign.size()]; + request.keys_to_sign_array = new (std::nothrow) KeymasterBlob[keysToSign.size()]; for (size_t i = 0; i < keysToSign.size(); i++) { request.SetKeyToSign(i, keysToSign[i].macedKey.data(), keysToSign[i].macedKey.size()); } diff --git a/ng/AndroidSharedSecret.cpp b/ng/AndroidSharedSecret.cpp index 0ae3d2d..b2cb85d 100644 --- a/ng/AndroidSharedSecret.cpp +++ b/ng/AndroidSharedSecret.cpp @@ -44,7 +44,8 @@ ScopedAStatus AndroidSharedSecret::getSharedSecretParameters(SharedSecretParamet ScopedAStatus AndroidSharedSecret::computeSharedSecret(const vector<SharedSecretParameters>& params, vector<uint8_t>* sharingCheck) { ComputeSharedHmacRequest request(impl_->message_version()); - request.params_array.params_array = new keymaster::HmacSharingParameters[params.size()]; + request.params_array.params_array = + new (std::nothrow) keymaster::HmacSharingParameters[params.size()]; request.params_array.num_params = params.size(); for (size_t i = 0; i < params.size(); ++i) { request.params_array.params_array[i].seed = {params[i].seed.data(), params[i].seed.size()}; diff --git a/ng/KeyMintAidlUtils.cpp b/ng/KeyMintAidlUtils.cpp index 17a53a5..28b5744 100644 --- a/ng/KeyMintAidlUtils.cpp +++ b/ng/KeyMintAidlUtils.cpp @@ -98,7 +98,7 @@ vector<KeyParameter> kmParamSet2Aidl(const keymaster_key_param_set_t& set) { keymaster_key_param_set_t aidlKeyParams2Km(const vector<KeyParameter>& keyParams) { keymaster_key_param_set_t set; - set.params = new keymaster_key_param_t[keyParams.size()]; + set.params = new (std::nothrow) keymaster_key_param_t[keyParams.size()]; set.length = keyParams.size(); for (size_t i = 0; i < keyParams.size(); ++i) { diff --git a/tests/key_blob_test.cpp b/tests/key_blob_test.cpp index f50d4fe..f69551b 100644 --- a/tests/key_blob_test.cpp +++ b/tests/key_blob_test.cpp @@ -228,7 +228,7 @@ TEST_P(KeyBlobTest, WrongHwEnforced) { // Find enforced serialization data and modify it. size_t hw_enforced_size = hw_enforced_.SerializedSize(); - UniquePtr<uint8_t[]> hw_enforced_data(new uint8_t[hw_enforced_size]); + UniquePtr<uint8_t[]> hw_enforced_data(new (std::nothrow) uint8_t[hw_enforced_size]); hw_enforced_.Serialize(hw_enforced_data.get(), hw_enforced_data.get() + hw_enforced_size); auto hw_enforced_ptr = |