Gitiles
Code Review Sign In
review.blissroms.org / platform_system_keymaster / 5a44a2f8391c58cbe32e4c18c1f1ee16f0a6a534
commit5a44a2f8391c58cbe32e4c18c1f1ee16f0a6a534[log] [tgz]
authorJanis Danisevskis <jdanis@google.com>Fri Aug 03 13:46:37 2018 -0700
committerJanis Danisevskis <jdanis@google.com>Mon Aug 06 20:57:51 2018 +0000
treea4668b0c7cf5060ceedd6d4ceacea1a9febee8e7
parent62a94ada3bfee168824fe649750ecace37819b2d [diff]
Allow no digest given to imply KM_DIGEST_NONE if it was authorized

The KM1 legacy support wrapper was to strict in requiring a digest to be
specified whey the requested purpose and padding combination did not
require a digest.

This patch allows no digest given to imply KM_DIGEST_NONE if
KM_DIGEST_NONE was authorized.

Also fixes a bug where key data was not correctly initialized in the
rsa_keymaster1_operation when KM_PAD_NONE was requested.

Bug: 77228204
Test: atest android.keystore.cts.KeyPairGeneratorTest#testGenerate_RSA_ModernSpec_UsableForTLSPeerAuth
Change-Id: Ia3278a5afb751d5be191b73c4bb04e3fe1f5586a
(cherry picked from commit f73092fa0228f4efabca948c7c7ce92579384424)
2 files changed
tree: a4668b0c7cf5060ceedd6d4ceacea1a9febee8e7
  1. android_keymaster/
  2. contexts/
  3. include/
  4. key_blob_utils/
  5. km_openssl/
  6. legacy_support/
  7. ng/
  8. tests/
  9. .clang-format
  10. .gitignore
  11. Android.bp
  12. ec_privkey_pk8.der
  13. km0_sw_rsa_512.blob
  14. km1_sw_ecdsa_256.blob
  15. km1_sw_rsa_512.blob
  16. km1_sw_rsa_512_unversioned.blob
  17. Makefile
  18. MODULE_LICENSE_APACHE2
  19. NOTICE
  20. OWNERS
  21. PREUPLOAD.cfg
  22. rsa_privkey_pk8.der
  23. sw_rsa_attest_root.key.pem
  24. valgrind.supp