diff options
| author | AnilKumar Chimata <anilc@codeaurora.org> | 2017-08-25 22:41:49 +0530 |
|---|---|---|
| committer | Michael Bestas <mkbestas@lineageos.org> | 2017-12-20 23:31:29 +0200 |
| commit | 5d42fe57c3223c18a5ff612c7fa51876e9c5e202 (patch) | |
| tree | 2ba16a590b6f7a3297bcdcff6f81e25799ad3c63 | |
| parent | 048a8a51f3db14b86167150921e7e5d7d7d7ab7f (diff) | |
| download | android_vendor_qcom_opensource_cryptfs_hw-5d42fe57c3223c18a5ff612c7fa51876e9c5e202.tar.gz android_vendor_qcom_opensource_cryptfs_hw-5d42fe57c3223c18a5ff612c7fa51876e9c5e202.tar.bz2 android_vendor_qcom_opensource_cryptfs_hw-5d42fe57c3223c18a5ff612c7fa51876e9c5e202.zip | |
cryptfs_hw: Use HW keymaster for FDE keys
Use hardware keymsater for hardware FDE keys to increase the
key complexity to avoid attacks.
Change-Id: If4c1b84796b2f01331a3ef3f93c3a7af8af00f29
| -rwxr-xr-x | cryptfs_hw.c | 11 |
1 files changed, 2 insertions, 9 deletions
diff --git a/cryptfs_hw.c b/cryptfs_hw.c index 15c939d..576033c 100755 --- a/cryptfs_hw.c +++ b/cryptfs_hw.c @@ -431,15 +431,8 @@ static int get_keymaster_version() int should_use_keymaster() { - /* HW FDE key would be tied to keymaster only if: - * New Keymaster is available - * keymaster partition exists on the device + /* + * HW FDE key should be tied to keymaster */ - int rc = 0; - if (get_keymaster_version() != KEYMASTER_MODULE_API_VERSION_1_0) { - SLOGI("Keymaster version is not 1.0"); - return rc; - } - return 1; } |