Gitiles
Code Review Sign In
review.blissroms.org / platform_system_keymaster / 90174bd22cabb013a409fdf2f8fb537e59cab12a
commit90174bd22cabb013a409fdf2f8fb537e59cab12a[log] [tgz]
authorMatthew Maurer <mmaurer@google.com>Fri May 10 16:31:00 2019 -0700
committerMatthew Maurer <mmaurer@google.com>Fri May 10 16:39:51 2019 -0700
treea2efd6283e82b3ed98c567a76953d1bcdef25c12
parent3ae951c611b64a86f0a56718de604948cdd6bc98 [diff]
Reject no-authorization-specified when signing

GetAndValidateDigest treated no digest specified as Digest::NONE for
purposes of implementing the legacy keymaster interface. However, on new
Keymaster interface we need to return UNSUPPORTED_DIGEST in some cases
when no digest is specified (as exactly 1 is mandated).

Previously in these case, we would return INCOMPATIBLE_DIGEST. This
change brings the reference implementation in line with the spec and
VTS.

Bug: 129294086
Test: VTS 3, VTS 4 against reference
Change-Id: Ib658fb6fc3384320c90989669824e5270e025937
4 files changed
tree: a2efd6283e82b3ed98c567a76953d1bcdef25c12
  1. android_keymaster/
  2. contexts/
  3. include/
  4. key_blob_utils/
  5. km_openssl/
  6. legacy_support/
  7. ng/
  8. tests/
  9. .clang-format
  10. .gitignore
  11. Android.bp
  12. ec_privkey_pk8.der
  13. km0_sw_rsa_512.blob
  14. km1_sw_ecdsa_256.blob
  15. km1_sw_rsa_512.blob
  16. km1_sw_rsa_512_unversioned.blob
  17. Makefile
  18. MODULE_LICENSE_APACHE2
  19. NOTICE
  20. OWNERS
  21. PREUPLOAD.cfg
  22. rsa_privkey_pk8.der
  23. sw_rsa_attest_root.key.pem
  24. valgrind.supp