diff options
author | Andres Morales <anmorales@google.com> | 2015-05-21 11:11:57 -0700 |
---|---|---|
committer | Andres Morales <anmorales@google.com> | 2015-05-21 11:11:57 -0700 |
commit | 1cab2bf7e8046815c6ca887aafef185af22348e1 (patch) | |
tree | 110e0b200e683ac0b5e17edd6afd8f14c3760c63 /include/hardware/gatekeeper.h | |
parent | c32baff996726ba75c16f5bd4b49e9fd1e428548 (diff) | |
download | hardware_libhardware-1cab2bf7e8046815c6ca887aafef185af22348e1.zip hardware_libhardware-1cab2bf7e8046815c6ca887aafef185af22348e1.tar.gz hardware_libhardware-1cab2bf7e8046815c6ca887aafef185af22348e1.tar.bz2 |
add request re-enroll to HAL API
devices may want to request an upgrade to a newer pasword
handle version
Change-Id: I34c731c81406e29961cff1fcccdefad02cff1237
Diffstat (limited to 'include/hardware/gatekeeper.h')
-rw-r--r-- | include/hardware/gatekeeper.h | 9 |
1 files changed, 6 insertions, 3 deletions
diff --git a/include/hardware/gatekeeper.h b/include/hardware/gatekeeper.h index ebe79b8..6d2fb0b 100644 --- a/include/hardware/gatekeeper.h +++ b/include/hardware/gatekeeper.h @@ -76,7 +76,7 @@ struct gatekeeper_device { * - enrolled_password_handle: on success, a buffer will be allocated with the * new password handle referencing the password provided in desired_password. * This buffer can be used on subsequent calls to enroll or verify. - * The caller is responsible for deallocating this buffer via a call to free() + * The caller is responsible for deallocating this buffer via a call to delete[] * - enrolled_password_handle_length: pointer to the length in bytes of the buffer allocated * by this function and pointed to by *enrolled_password_handle_length. * @@ -124,10 +124,13 @@ struct gatekeeper_device { * * - auth_token: on success, a buffer containing the authentication token * resulting from this verification is assigned to *auth_token. The caller - * is responsible for deallocating this memory via a call to free() + * is responsible for deallocating this memory via a call to delete[] * - auth_token_length: on success, the length in bytes of the authentication * token assigned to *auth_token will be assigned to *auth_token_length * + * - request_reenroll: a request to the upper layers to re-enroll the verified + * password due to a version change. Not set if verification fails. + * * Returns: * - 0 on success * - An error code < 0 on failure, or @@ -138,7 +141,7 @@ struct gatekeeper_device { int (*verify)(const struct gatekeeper_device *dev, uint32_t uid, uint64_t challenge, const uint8_t *enrolled_password_handle, uint32_t enrolled_password_handle_length, const uint8_t *provided_password, uint32_t provided_password_length, - uint8_t **auth_token, uint32_t *auth_token_length); + uint8_t **auth_token, uint32_t *auth_token_length, bool *request_reenroll); }; typedef struct gatekeeper_device gatekeeper_device_t; |