am f7e7f744: am a482b046: Merge "Require IND-CPA by default for new AndroidKeyStore keys."

* commit 'f7e7f744e193e027afde5c071889bde1c5882cfd': Require IND-CPA by default for new AndroidKeyStore keys.
author: Alex Klyubin <klyubin@google.com> 2015-04-09 16:43:32 +0000
committer: Android Git Automerger <android-git-automerger@android.com> 2015-04-09 16:43:32 +0000
commit: b9a9d46c776cbdc97d28b8ad61b215a494e19061 (patch)
tree: 27e1941a94c953b44169cbd73afdc401224bd454 /keystore/java/android/security/AndroidKeyStore.java
parent: 00ff42a0ca9d17c4b7ee89d900cf86c9a25c00eb (diff)
parent: f7e7f744e193e027afde5c071889bde1c5882cfd (diff)
1 files changed, 16 insertions, 5 deletions
diff --git a/keystore/java/android/security/AndroidKeyStore.java b/keystore/java/android/security/AndroidKeyStore.java
index f72c7acd182b..55a8b4f971f3 100644
--- a/keystore/java/android/security/AndroidKeyStore.java
+++ b/keystore/java/android/security/AndroidKeyStore.java
@@ -512,12 +512,23 @@ public class AndroidKeyStore extends KeyStoreSpi {
             }
         }
 
-        int purposes = params.getPurposes();
+        @KeyStoreKeyConstraints.PurposeEnum int purposes = params.getPurposes();
+        @KeyStoreKeyConstraints.BlockModeEnum int blockModes = params.getBlockModes();
+        if (((purposes & KeyStoreKeyConstraints.Purpose.ENCRYPT) != 0)
+                && (params.isRandomizedEncryptionRequired())) {
+            @KeyStoreKeyConstraints.BlockModeEnum int incompatibleBlockModes =
+                    blockModes & ~KeyStoreKeyConstraints.BlockMode.IND_CPA_COMPATIBLE_MODES;
+            if (incompatibleBlockModes != 0) {
+                throw new KeyStoreException("Randomized encryption (IND-CPA) required but may be"
+                        + " violated by block mode(s): "
+                        + KeyStoreKeyConstraints.BlockMode.allToString(incompatibleBlockModes)
+                        + ". See KeyStoreParameter documentation.");
+            }
+        }
         for (int keymasterPurpose : KeyStoreKeyConstraints.Purpose.allToKeymaster(purposes)) {
             args.addInt(KeymasterDefs.KM_TAG_PURPOSE, keymasterPurpose);
         }
-        for (int keymasterBlockMode :
-            KeyStoreKeyConstraints.BlockMode.allToKeymaster(params.getBlockModes())) {
+        for (int keymasterBlockMode : KeyStoreKeyConstraints.BlockMode.allToKeymaster(blockModes)) {
             args.addInt(KeymasterDefs.KM_TAG_BLOCK_MODE, keymasterBlockMode);
         }
         for (int keymasterPadding :
@@ -549,8 +560,8 @@ public class AndroidKeyStore extends KeyStoreSpi {
         args.addInt(KeymasterDefs.KM_TAG_KEY_SIZE, keyMaterial.length * 8);
 
         if (((purposes & KeyStoreKeyConstraints.Purpose.ENCRYPT) != 0)
-                || ((purposes & KeyStoreKeyConstraints.Purpose.DECRYPT) != 0)) {
-            // Permit caller-specified IV. This is needed for the Cipher abstraction.
+                && (!params.isRandomizedEncryptionRequired())) {
+            // Permit caller-provided IV when encrypting with this key
             args.addBoolean(KeymasterDefs.KM_TAG_CALLER_NONCE);
         }
author	Alex Klyubin <klyubin@google.com>	2015-04-09 16:43:32 +0000
committer	Android Git Automerger <android-git-automerger@android.com>	2015-04-09 16:43:32 +0000
commit	b9a9d46c776cbdc97d28b8ad61b215a494e19061 (patch)
tree	27e1941a94c953b44169cbd73afdc401224bd454 /keystore/java/android/security/AndroidKeyStore.java
parent	00ff42a0ca9d17c4b7ee89d900cf86c9a25c00eb (diff)
parent	f7e7f744e193e027afde5c071889bde1c5882cfd (diff)