Gitiles
Code Review Sign In
review.blissroms.org / platform_system_keymaster / 3b61a30fd1cd5128f02d6c1319adb8ecb30366f9
commit3b61a30fd1cd5128f02d6c1319adb8ecb30366f9[log] [tgz]
authorDavid Drysdale <drysdale@google.com>Fri May 14 11:03:28 2021 +0100
committerDavid Drysdale <drysdale@google.com>Wed Jul 21 16:37:51 2021 +0100
tree9fbf71bee1f6bfe566e15540cb335f3e08f9b5d1
parentf109fc611d34496d39b55cf7f351d30f4dfac8cf [diff]
KeyMaster: support boot,vendor patchlevels

 - Add CONFIGURE_{VENDOR,BOOT}_PATCHLEVEL messages to
   android_keymaster_messages.h
 - Add AndroidKeymaster::Configure{Vendor,Boot}Patchlevel() methods
   which forwards on to KeymasterContext::Set{Vendor,Boot}Patchevel
 - Add {Set,Get}{Vendor,Boot}Patchlevel() methods to KeymasterContext,
   with default implementations that do nothing.
 - Implement {Get,Set}{Vendor,Boot}Patchlevel() methods for
   PureSoftKeymasterContext
 - Extend CheckVersionInfo() to check vendor and boot patchlevels (if
   available) for upgrade-required.
 - Add GetVendorPatchlevel() helper to retrieve property values.
 - Add keymaster::ExtendKeyBlobAuthorizations() method to add
   {vendor,boot}_patchlevel info to key.
 - Add a keymaster::FullUpgradeSoftKeyBlob() variant of
   UpgradeSoftKeyBlob() that also checks {vendor,boot}_patchlevel if
   available.

Bug: 193423844
Test: VtsAidlKeyMintTargetTest
Change-Id: Ia311da0b8176fdd7b3c820a6c6fa11db162f1209
11 files changed
tree: 9fbf71bee1f6bfe566e15540cb335f3e08f9b5d1
  1. android_keymaster/
  2. contexts/
  3. cppcose/
  4. include/
  5. key_blob_utils/
  6. km_openssl/
  7. legacy_support/
  8. ng/
  9. tests/
  10. .clang-format
  11. .gitignore
  12. Android.bp
  13. km0_sw_rsa_512.blob
  14. km1_sw_ecdsa_256.blob
  15. km1_sw_rsa_512.blob
  16. km1_sw_rsa_512_unversioned.blob
  17. METADATA
  18. MODULE_LICENSE_APACHE2
  19. NOTICE
  20. OWNERS
  21. PREUPLOAD.cfg
  22. sw_rsa_attest_root.key.pem
  23. valgrind.supp