| Commit message (Collapse) | Author | Age | Files | Lines |
|
|
|
| |
Change-Id: If0f3bc12380b8b65bf1e60d5d8d039eb972c8a15
|
|
|
|
|
| |
Bug: 22914603
Change-Id: I5ad9a97dd1eebb45c05eeaa4ceccfebcf4b69e03
|
|
|
|
|
|
| |
This reverts commit 0fc3ef6f2de4f2204f121e3080a17203bf847cae.
Change-Id: I658ad32b281ab74d3beeee66794b31f193e6d404
|
|
|
|
|
|
| |
This reverts commit fc3cafd487e69c84d83444e1d129d0ab131c4e3d.
Change-Id: I1fb38db044c4039be04d1f75fb89ca9a6404321f
|
|
|
|
|
| |
Bug: 22914603
Change-Id: I7650f1b691665bce3024556c2ea38e122c9cb2cf
|
|
|
|
|
|
|
| |
We no longer test the keymaster1 interface. That's okay, because it
will be gone shortly.
Change-Id: Id30c2fcda5d535165a0081a783b2252c112e5474
|
|
|
|
|
|
|
|
|
|
| |
SoftKeymasterDevice was incorrectly directly sending deletion requests
to wrapped hardware. In some cases the key blob passed in by
SoftKeymasterDevice is a hardware blob encapsulated by a wrapper, and we
need to remove the encapsulation before passing it on.
Bug: 25676862
Change-Id: Ic315c6b08d9ec15aa0be8f28f485a221bc7f1135
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
The keymaster1 specification only requires HW modules to implement
SHA256 out of the list of keymaster1 digest modes. That would force
many keys to be software only, and would break legacy scenarios. This
change uses SoftKeymasterDevice to front keymaster modules that don't
implement the full suite of digests, quietly inserting KM_DIGEST_NONE
and KM_PAD_NONE into key generation/import requests when necessary, then
performing the digesting, and sometimes padding, in software, then
delegating crypto operations to the hardware.
This is only done for RSA and EC keys. Software digesting isn't
possible for HMAC or AES-GCM keys.
Note that this is not the complete fix for the bug. Some changes in
keystore are also required, coming in another CL.
Bug: 22529223
Change-Id: I740572eb11341fb0659085309da01d5cbcd3854d
|
|
|
|
|
|
|
|
|
|
| |
HMAC and AES-GCM keys must be bound to a mininum MAC/tag length at
creation, and operations may not specify a length smaller than the
minimum, or provide a length smaller than the minimum during
verification.
Bug: 22337277
Change-Id: Id5ae2f4259045ba1418c28e9de8f4a47e67fd433
|
|
|
|
|
| |
Bug: 22008538
Change-Id: I096cd977b34e9767845aaeece2da5f04c7fc86fe
|
|
|
|
|
| |
Bug: 21998286
Change-Id: I03b21da6a71b7a7a01f3743f01925719191b0124
|
|
|
|
|
| |
Bug: 21593823
Change-Id: Id9ed06b1c6805b1cff36577910715eda7727eef4
|
|
|
|
|
| |
Bug: 19919114
Change-Id: I27efed097efbd93d587a50f5d82fad80a96e7527
|
|
|
|
|
| |
Bug: 20912868
Change-Id: If63899e3244aed45d939d0165e6d94a1caa9d220
|
|
|
|
|
| |
Bug: 20912868
Change-Id: I515a125f1247357d2cd9b4633c3b223590848093
|
|
|
|
|
|
|
|
| |
This enabled running the same test suite across different
implementations.
Bug: 20912868
Change-Id: Iaa2c4bcb38224d090aa54184a042375eb835ad60
|
|
Change-Id: I05de61353fc806b90232fab7c1d1cf76aefa35fc
|