summaryrefslogtreecommitdiffstats
path: root/gatekeeperd
Commit message (Collapse)AuthorAgeFilesLines
* Move system/core/ off NO_ERROR.Elliott Hughes2018-10-082-7/+7
| | | | | | | | It causes trouble for Windows, and OK already exists. Bug: N/A Test: builds Change-Id: Ida22fd658b0ebb259c710ba39049b07c9e495d9c
* Merge "Fix memory leak when GateKeeperProxy.verify() returns"Kihyung Lee2018-06-261-2/+4
|\ | | | | | | | | | | am: 855a643d3a Change-Id: Ic6f852f970b60bc5b86da19ae050c78893fa8f94
| * Fix memory leak when GateKeeperProxy.verify() returnsKihyung Lee2018-06-181-2/+4
| | | | | | | | | | | | | | | | | | | | | | After verify() calls verifyChallenge(), the caller acquires the ownership of returned memory block pointed by *auth_token. However, the current implementation directly returns and lost the reference of auth_token without freeing it from heap memory. This patch solves this problem by explicitly deleting the auth_token array. Change-Id: I6cfe8427174aa36fbb208e2fff8904095f468ec6
* | Merge "Revert "Restore "Add UID parameter to authentication token"""TreeHugger Robot2018-02-231-1/+1
|\ \
| * | Revert "Restore "Add UID parameter to authentication token""Brian Young2018-02-231-1/+1
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | This reverts commit 9e62f3ee110a57d23a7c0d05af29cc6621d5ee59. Reason for revert: Regression in creating auth-bound keys Bug: 73773914 Bug: 67752510 Change-Id: Ibde9aefffbaab9b85deb95ae2fdf9e0db6d1e992
* | | Merge "Restore "Add UID parameter to authentication token""Brian Young2018-02-161-1/+1
|\| |
| * | Restore "Add UID parameter to authentication token"Brian C. Young2018-02-151-1/+1
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | The keystore/keymaster changes to prevent some keys from being used while the screen is locked require passing Android user IDs as well as keymaster secure IDs. This reverts commit 16b84349358f8b41f5b44f439b042ac68d68d254. Test: CTS tests in I8a5affd1eaed176756175158e3057e44934fffed Bug: 67752510 Change-Id: Ie09855813092a38fff80c913c9c8f8228aa4c95b
* | | Add OWNERS file to gatekeeperdShawn Willden2018-02-141-0/+2
|/ / | | | | | | | | Test: Yes, that would be nice, wouldn't it? Change-Id: I4116c2546bbc15ef5edb90867ed156637bb125c6
* | Revert "Add UID parameter to authentication token"Brian Young2018-01-301-1/+1
| | | | | | | | | | | | | | | | | | | | This reverts commit 58ce81349a95b6724677d57b71d00fcfd6b12354. Reason for revert: Build breakages on elfin, gce_x86_phone. Bug: 72679761 Bug: 67752510 Change-Id: Ia27d6a7aa0195e49d0f132e7b77c81d780248a4c
* | Add UID parameter to authentication tokenBrian C. Young2018-01-251-1/+1
| | | | | | | | | | | | | | | | | | | | | | | | The keystore/keymaster changes to prevent some keys from being used while the screen is locked require passing Android user IDs as well as keymaster secure IDs. Test: go/asym-write-test-plan Bug: 67752510 Change-Id: I07bfad82775025f8cf66004e46387d1354ef6575
* | Make libkeystore_aidl shared and export to PDK.Dmitry Dementyev2017-11-281-0/+1
| | | | | | | | | | | | | | Bug: 69539820 Test: manual Change-Id: I2616cbd10351b7ea9041ae0f0abde6634206de65
* | Get rid of manually created IKeystoreService in gatekeeper.cppDmitry Dementyev2017-11-141-5/+10
|/ | | | | | Bug:68389643 Test: manual Change-Id: I2c1404f4c6597e63bc0a360a7bf598e35585b30e
* Merge "gatekeeperd: use std::unique_ptr" into oc-mr1-devAndrew Hsieh2017-08-184-6/+6
|\ | | | | | | | | | | am: 202fedd1fe Change-Id: I72aa2745bcd5a14785fa77845f07d15ce648c933
| * gatekeeperd: use std::unique_ptrJustin Yun2017-08-174-6/+6
| | | | | | | | | | | | | | | | | | std::unique_ptr is available in this scope. Substitue the UniquePtr to std::unique_ptr. Bug: 63686260 Test: build and boot Change-Id: Ib8ea3fb5c49c0e92d962f65f1139b073168f8698
* | Merge "Stop asking for old versions of C++ in system/core." am: e61e2fcf21 ↵Elliott Hughes2017-08-031-1/+1
|\ \ | |/ |/| | | | | | | | | | | am: 0915192d8b am: 514464f4ca am: cb6e5d6ed2 Change-Id: Id7cbfd270890da3a29b10393f10bd128d219f9e5
| * Merge "Stop asking for old versions of C++ in system/core." am: e61e2fcf21 ↵Elliott Hughes2017-08-031-1/+1
| |\ | | | | | | | | | | | | | | | | | | | | | am: 0915192d8b am: 514464f4ca Change-Id: Ibbd6515b4a44105e7b965e7b36bc4c3648c7e713
| | * Merge "Stop asking for old versions of C++ in system/core."Elliott Hughes2017-08-031-1/+1
| | |\ | | | | | | | | | | | | | | | | | | | | am: e61e2fcf21 Change-Id: I9c424e8bb99c7f03baefc794e4b095b8d29db3bb
| | | * Stop asking for old versions of C++ in system/core.Elliott Hughes2017-08-021-1/+1
| | | | | | | | | | | | | | | | | | | | | | | | Bug: http://b/32019064 Test: builds Change-Id: I1befc647b581bd293f98010e816b6413caab5e6c
* | | | Merge "system/core: use proper nativehelper headers" am: 4f59afe9fa am: ↵Steven Moreland2017-07-193-3/+3
|\| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | 6208cd1322 am: 106c355688 am: 57db1511bd Change-Id: If1de13ecd84a5bf43edefd844e1b46104bddf9a0
| * | | Merge "system/core: use proper nativehelper headers" am: 4f59afe9fa am: ↵Steven Moreland2017-07-193-3/+3
| |\| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | 6208cd1322 am: 106c355688 Change-Id: I8ddfceec58ab69b6c0952ea39f3ad78802f5d7bc
| | * | Merge "system/core: use proper nativehelper headers"Steven Moreland2017-07-193-3/+3
| | |\| | | | | | | | | | | | | | | | | | | | | am: 4f59afe9fa Change-Id: I0fee29c0ad6e81b83cd0f3f774cd08f483a5df6c
| | | * system/core: use proper nativehelper headersSteven Moreland2017-07-183-3/+3
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | libnativeheader exports headers under nativeheader. These were available before incorrectly as global headers in order to give access to jni.h. Test: modules using system/core find headers Bug: 63762847 Change-Id: I86240f7857dd815100cab32ad261aa9a0a54329c
* | | | Don't look up parent user SID.Pavel Grafov2017-06-284-123/+2
|/ / / | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | This is a revert of http://ag/741442 Every user now has their own SID, so there is no need to look up profile parent anymore. Bug: 38259874 Test: manual, using ConfirmCredential sample app in work profile. Test: manual, making sure keys survive N->O-MR1 upgrade. Change-Id: Ib2f52baeb7c5bfeec95431fccfd6ddd537019954
* / / Credential FRP: keep gatekeeperd credentials after resetAdrian Roos2017-04-183-7/+47
|/ / | | | | | | | | | | | | | | | | | | Gatekeeperd now delays clearing all user credentials until the device setup is complete or we enroll a new credential (whichever comes first). Bug: 36814845 Test: Set lockscreen credential, "adb reboot-bootloader && fastboot -w", "adb shell am start -a android.app.action.CONFIRM_FRP_CREDENTIAL", verify that credential still works Change-Id: If2ad78ff5b80a6ddffd997be0949b03ed11797f4
* | gatekeeper HAL uses "default" service nameChris Phoenix2017-02-231-1/+1
| | | | | | | | | | | | | | | | | | | | | | | | The getService() and registerAsService() methods of interface objects now have default parameters of "default" for the service name. HALs will not have to use any service name unless they want to register more than one service. Test: builds Bug: 33844934 Change-Id: Ie49c8cea290d328b2160f6012e7c143c49d535cc
* | Adjust for small changes in the native keystore interfaceJanis Danisevskis2017-01-191-3/+3
| | | | | | | | | | | | Test: compiled and run on bullhead device Bug: 32020919 Change-Id: I8352b87be090ba756e3a6ea51cd691cd5594e8f7
* | resolve merge conflicts of a45b1d6f3 to masterMark Salyzyn2017-01-111-1/+1
|\| | | | | | | | | | | Test: compile Bug: 30465923 Change-Id: I648855539df3cfa176c6ecac19b6a562ba6feaf7
| * Merge "liblog: use log/log.h when utilizing ALOG macros" am: 01e12b4ee7 am: ↵Mark Salyzyn2017-01-111-1/+1
| |\ | | | | | | | | | | | | | | | | | | | | | c3b346ea93 am: 5482cb01b2 Change-Id: Ifaf21912d44f6ee9fda06df255ba3f7a4ca26ed7
| | * liblog: use log/log.h when utilizing ALOG macrosMark Salyzyn2017-01-111-1/+1
| | | | | | | | | | | | | | | | | | Test: compile Bug: 30465923 Change-Id: Id6d76510819ebd88c3f5003d00d73a0dbe85e943
* | | Merge "Return<*> getStatus().isOk() -> isOk()"Steven Moreland2017-01-041-2/+2
|\ \ \
| * | | Return<*> getStatus().isOk() -> isOk()Steven Moreland2017-01-031-2/+2
| | | | | | | | | | | | | | | | | | | | | | | | Bug: 31348667 Test: compiles Change-Id: I44d89e45c8bf8bcd7a47dff1f5cd4d454c95a079
* | | | gatekeeperd: protect from invalid data passed by HAL am: 8c63536dedAlexey Polyudov2017-01-041-1/+8
|\ \ \ \ | |/ / / |/| / / | |/ / | | | | | | am: 563ed1672f Change-Id: I524b468ef7d54444feaceacbcdc66861a1cada0c
| * | gatekeeperd: protect from invalid data passed by HALAlexey Polyudov2017-01-041-1/+8
| |\ \ | | |/ | |/| | | | | | | | | | am: 8c63536ded Change-Id: Ie020281e63504ea0b9f27e9e36433d3e137ae018
| | * gatekeeperd: protect from invalid data passed by HALAlexey Polyudov2016-12-211-1/+8
| | | | | | | | | | | | | | | | | | Bug: 31349112 Change-Id: I6c0656f85e44054147f8795c98baab7a98f575b9 Signed-off-by: Alexey Polyudov <apolyudov@google.com>
* | | Merge "Switch to memcpy for accessing misaligned data." am: 2bdb37190c am: ↵Stephen Hines2016-12-141-1/+1
|\| | | | | | | | | | | | | | | | | | | | | | | 87daae5505 am: 317f152365 am: 231c735043 Change-Id: I893ed58f9667744ec54510020ca18743ab10fa71
| * | Switch to memcpy for accessing misaligned data.Stephen Hines2016-12-071-1/+1
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Bug: http://b/31532493 Using misaligned pointers forces us to potentially take the address of members in a packed structure (which is now a warning/error in the latest Clang). Using memcpy() is the proper way to handle this kind of problem, as the compiler can insert the proper instructions (and usually elide the memcpy() entirely). Test: Built correctly with updated compilers. Change-Id: Ia1f6eb62cf19404ff76b71d3c6c7ffffa1403120
* | | Use HIDL-generated HAL interworking codeAlexey Polyudov2016-11-212-26/+84
|/ / | | | | | | | | Change-Id: Ide455f8e8bba8b7f403cc7a8971848c11d3b37a8 Signed-off-by: Alexey Polyudov <apolyudov@google.com>
* | system/core Replace cutils/log.h with android/log.hMark Salyzyn2016-09-301-10/+7
| | | | | | | | | | | | | | | | | | | | | | Should use android/log.h instead of cutils/log.h as a good example to all others. Adjust header order to comply with Android Coding standards. Test: Compile Bug: 26552300 Bug: 31289077 Change-Id: I2c9cbbbd64d8dccf2d44356361d9742e4a9b9031
* | Merge "Fix google-explicit-constructor warnings." am: 7bdd6a8b5aChih-hung Hsieh2016-04-301-1/+1
|\ \ | | | | | | | | | | | | | | | | | | | | | | | | am: 427d8d840f * commit '427d8d840f6ec5ce5767b2ee521e4ac5b7ebd619': Fix google-explicit-constructor warnings. Change-Id: I26dc45aca83f991aa7993f6d4233e0439dd44a22
| * | Fix google-explicit-constructor warnings.Chih-Hung Hsieh2016-04-291-1/+1
| | | | | | | | | | | | | | | Bug: 28341362 Change-Id: I4504e98a8db31e0edcbe63c23f9af43eb13e9d86
* | | Merge "Move gatekeeperd to system-background cpuset." into nyc-devMartijn Coenen2016-04-251-0/+1
|\ \ \ | | |/ | |/| | | | | | | | | | | | | | | | | | | am: 0e54903 * commit '0e54903c737aa71590d222828cd31944bd2be4cb': Move gatekeeperd to system-background cpuset. Change-Id: I4cb18f78f65baa727c777d0f98ecead1d060e7e5
| * | Move gatekeeperd to system-background cpuset.Martijn Coenen2016-04-151-0/+1
| | | | | | | | | | | | | | | Bug: 24949295 Change-Id: I3c68bf1c604f0e8eb8155a4615802847a9a8604d
* | | Merge "Cleanup uses of sprintf so we can deprecate it." am: 2c5b89a64aGeorge Burgess IV2016-03-081-4/+4
|\ \ \ | |/ / |/| / | |/ | | | | | | am: 3368bdebba * commit '3368bdebba02316710bafc5bce120eec388365fb': Cleanup uses of sprintf so we can deprecate it.
| * Cleanup uses of sprintf so we can deprecate it.George Burgess IV2016-03-071-4/+4
| | | | | | | | | | | | | | | | Also cleans up two instances of open() with useless mode params, and changes a few uses of snprintf to use sizeof(buffer) instead of hardcoded buffer sizes. Change-Id: If11591003d910c995e72ad8f75afd072c255a3c5
* | Merge "Track rename of base/ to android-base/." am: 912ed3d8ca am: e2a9563be1Elliott Hughes2015-12-071-2/+1
|\| | | | | | | | | | | | | am: 3608ee5e90 * commit '3608ee5e903689ea7c433587be664649689816e1': Track rename of base/ to android-base/.
| * Track rename of base/ to android-base/.Elliott Hughes2015-12-041-2/+1
| | | | | | | | Change-Id: Idf9444fece4aa89c93e15640de59a91f6e758ccf
| * [gatekeeperd] copy uid to local before passing to u_mapAndres Morales2015-11-052-3/+6
| | | | | | | | | | | | | | | | | | | | | | | | | | | | The compiler will issue the unaligned access instuctions when reading from a packed struct. Since 'find' takes a reference, if we pass the field directly it is removed from its packed context and may be unreadable. Read the field out directly from the packed struct and pass in aligned to u_map to fix. Bug: 22367550 Change-Id: Ia3b639c7518154ff5a2b7c233b752e154eab9aad (cherry picked from commit 6e83dc4d325d68b568c841d3e88fda2a93e00663)
| * update bundled rc files to their contents from rootdir/init.rcTom Cherry2015-08-212-0/+4
| | | | | | | | | | | | | | Bug 23186545 Change-Id: Ieb03ba89db2dee0365ae346295207ddfd29bd2b7 (cherry picked from commit 297991b3248f1e15ccc6c775b9a12e62925095f3)
* | update bundled rc files to their contents from rootdir/init.rcTom Cherry2015-08-212-0/+4
| | | | | | | | | | | | Bug 23186545 Change-Id: Ieb03ba89db2dee0365ae346295207ddfd29bd2b7
* | am dec7201e: am fe1b4627: am 19f223f3: Merge "[gatekeeperd] Check parent ↵Andres Morales2015-08-064-2/+125
|\| | | | | | | | | | | | | profile for SID lookups" into mnc-dev * commit 'dec7201e59f7eec1dae5ca5b3c6fae11d3e22242': [gatekeeperd] Check parent profile for SID lookups
generated by cgit v1.2.3 (git 2.25.1) at 2024-06-20 06:42:55 +0000