fa0d07888f8dc9bf7e57034dbd2f68d94d596898 - platform_system_keymaster

commit	fa0d07888f8dc9bf7e57034dbd2f68d94d596898	[log] [tgz]
author	David Drysdale <drysdale@google.com>	Mon Nov 01 17:10:03 2021 +0000
committer	David Drysdale <drysdale@google.com>	Wed Nov 10 15:45:32 2021 +0000
tree	3c5fc98a958365f0a3c6c246bdfa1e50eea60f27
parent	eaad67939432456802418579e3b7cbceb1b2cbd6 [diff]

Treat ATTEST_KEY keys as signing keys

An ATTEST_KEY key is still used for signing things in certs, so
include a self-signed cert in this case too. Similarly, key
usage in the cert should include signing.

Bug: 197096139
Test: VtsAidlKeyMintTargetTes
Merged-In: Icd7af0d1bdcf98155951eb469349a7924e373f9a
Change-Id: Icd7af0d1bdcf98155951eb469349a7924e373f9a
Ignore-AOSP-First: cherry-pick from aosp/master

include/keymaster/km_openssl/openssl_utils.h[diff]
km_openssl/attestation_utils.cpp[diff]
km_openssl/certificate_utils.cpp[diff]
km_openssl/ec_key_factory.cpp[diff]
km_openssl/rsa_key_factory.cpp[diff]

5 files changed