Gitiles
Code Review Sign In
review.blissroms.org / platform_system_keymaster / 23590680da5415d29b63257e5f6b5f8bed1d1274
commit23590680da5415d29b63257e5f6b5f8bed1d1274[log] [tgz]
authorSeth Moore <sethmo@google.com>Fri Apr 30 11:42:31 2021 -0700
committerSeth Moore <sethmo@google.com>Tue May 25 07:57:01 2021 -0700
tree711cd1ef4eb4b92d5fc510c88b32bf527a29e617
parent4d2dbc87058c30b6a30424f728ef3d651eb5305c [diff]
Delegate some MAC operations to the provisioning context

The MAC key used to authenticate the public keys between the GenerateRkp
and GenerateCsr calls is supposed to be known _only_ to the secure
element. The code was passing the MAC key up from the context, which
makes the security guarantee difficult or impossible on some platforms.

Generate the MAC by delegating to the provisioning context. This required
refactoring a bit of code to use a callback for MAC calculation instead
of passing the raw MAC key around.

Bug: 182928606
Test: VtsHalRemotelyProvisionedComponentTargetTest
Test: RemoteProvisionerUnitTests
Change-Id: Id9a04ee0e0b1abc11d616ef53f41569cdaae3182
Merged-In: Id9a04ee0e0b1abc11d616ef53f41569cdaae3182
8 files changed
tree: 711cd1ef4eb4b92d5fc510c88b32bf527a29e617
  1. android_keymaster/
  2. contexts/
  3. cppcose/
  4. include/
  5. key_blob_utils/
  6. km_openssl/
  7. legacy_support/
  8. ng/
  9. tests/
  10. .clang-format
  11. .gitignore
  12. Android.bp
  13. km0_sw_rsa_512.blob
  14. km1_sw_ecdsa_256.blob
  15. km1_sw_rsa_512.blob
  16. km1_sw_rsa_512_unversioned.blob
  17. METADATA
  18. MODULE_LICENSE_APACHE2
  19. NOTICE
  20. OWNERS
  21. PREUPLOAD.cfg
  22. sw_rsa_attest_root.key.pem
  23. valgrind.supp