am a482b046: Merge "Require IND-CPA by default for new AndroidKeyStore keys."

* commit 'a482b0469cb98a5743603e1602aa6f37c65d1659': Require IND-CPA by default for new AndroidKeyStore keys.
author: Alex Klyubin <klyubin@google.com> 2015-04-09 16:30:50 +0000
committer: Android Git Automerger <android-git-automerger@android.com> 2015-04-09 16:30:50 +0000
commit: f7e7f744e193e027afde5c071889bde1c5882cfd (patch)
tree: aa1561836eb2f584787baba044a5b9e7c5aab2f9 /keystore/java/android/security/AndroidKeyStore.java
parent: 7f7571308d5dc973e9b1e352d56643a74e99e588 (diff)
parent: a482b0469cb98a5743603e1602aa6f37c65d1659 (diff)
1 files changed, 16 insertions, 5 deletions
diff --git a/keystore/java/android/security/AndroidKeyStore.java b/keystore/java/android/security/AndroidKeyStore.java
index f72c7acd182b..55a8b4f971f3 100644
--- a/keystore/java/android/security/AndroidKeyStore.java
+++ b/keystore/java/android/security/AndroidKeyStore.java
@@ -512,12 +512,23 @@ public class AndroidKeyStore extends KeyStoreSpi {
             }
         }
 
-        int purposes = params.getPurposes();
+        @KeyStoreKeyConstraints.PurposeEnum int purposes = params.getPurposes();
+        @KeyStoreKeyConstraints.BlockModeEnum int blockModes = params.getBlockModes();
+        if (((purposes & KeyStoreKeyConstraints.Purpose.ENCRYPT) != 0)
+                && (params.isRandomizedEncryptionRequired())) {
+            @KeyStoreKeyConstraints.BlockModeEnum int incompatibleBlockModes =
+                    blockModes & ~KeyStoreKeyConstraints.BlockMode.IND_CPA_COMPATIBLE_MODES;
+            if (incompatibleBlockModes != 0) {
+                throw new KeyStoreException("Randomized encryption (IND-CPA) required but may be"
+                        + " violated by block mode(s): "
+                        + KeyStoreKeyConstraints.BlockMode.allToString(incompatibleBlockModes)
+                        + ". See KeyStoreParameter documentation.");
+            }
+        }
         for (int keymasterPurpose : KeyStoreKeyConstraints.Purpose.allToKeymaster(purposes)) {
             args.addInt(KeymasterDefs.KM_TAG_PURPOSE, keymasterPurpose);
         }
-        for (int keymasterBlockMode :
-            KeyStoreKeyConstraints.BlockMode.allToKeymaster(params.getBlockModes())) {
+        for (int keymasterBlockMode : KeyStoreKeyConstraints.BlockMode.allToKeymaster(blockModes)) {
             args.addInt(KeymasterDefs.KM_TAG_BLOCK_MODE, keymasterBlockMode);
         }
         for (int keymasterPadding :
@@ -549,8 +560,8 @@ public class AndroidKeyStore extends KeyStoreSpi {
         args.addInt(KeymasterDefs.KM_TAG_KEY_SIZE, keyMaterial.length * 8);
 
         if (((purposes & KeyStoreKeyConstraints.Purpose.ENCRYPT) != 0)
-                || ((purposes & KeyStoreKeyConstraints.Purpose.DECRYPT) != 0)) {
-            // Permit caller-specified IV. This is needed for the Cipher abstraction.
+                && (!params.isRandomizedEncryptionRequired())) {
+            // Permit caller-provided IV when encrypting with this key
             args.addBoolean(KeymasterDefs.KM_TAG_CALLER_NONCE);
         }
author	Alex Klyubin <klyubin@google.com>	2015-04-09 16:30:50 +0000
committer	Android Git Automerger <android-git-automerger@android.com>	2015-04-09 16:30:50 +0000
commit	f7e7f744e193e027afde5c071889bde1c5882cfd (patch)
tree	aa1561836eb2f584787baba044a5b9e7c5aab2f9 /keystore/java/android/security/AndroidKeyStore.java
parent	7f7571308d5dc973e9b1e352d56643a74e99e588 (diff)
parent	a482b0469cb98a5743603e1602aa6f37c65d1659 (diff)