Identity Credential changes for Android 12

- Add IIdentityCredential.deleteCredentialWithChallenge() - Deprecate IIdentityCredential.deleteCredential() - Add IIdentityCredential.proveOwership() - Add IIdentityCredential.updateCredential() - Add ProofOfBinding CBOR to AuthenticationKey X.509 certificate - Document which API versions new methods/features appeared in. - Mention need to declare android.hardware.identity_credential system feature (w/ feature version number) and do this for the default implementation. Bug: 170146643 Test: atest VtsHalIdentityTargetTest Change-Id: Ib47c7caa5f3d6fff6919f019eee44a735dba9cf8
author: David Zeuthen <zeuthen@google.com> 2020-10-16 11:27:24 -0400
committer: David Zeuthen <zeuthen@google.com> 2021-01-23 13:35:57 -0500
commit: 49f2d2558ac417d090dfae9c78ab372d71e5140c (patch)
tree: be240ccdfb0fa1e45aa03648cb385ff7ce82d84f /identity/aidl/default/common/SecureHardwareProxy.h
parent: eafa06164d1e1bafbe20562d540ab5420bb0f825 (diff)
1 files changed, 9 insertions, 0 deletions
diff --git a/identity/aidl/default/common/SecureHardwareProxy.h b/identity/aidl/default/common/SecureHardwareProxy.h
index b89ad8781f..a1ed1ef03b 100644
--- a/identity/aidl/default/common/SecureHardwareProxy.h
+++ b/identity/aidl/default/common/SecureHardwareProxy.h
@@ -64,6 +64,9 @@ class SecureHardwareProvisioningProxy : public RefBase {
 
     virtual bool initialize(bool testCredential) = 0;
 
+    virtual bool initializeForUpdate(bool testCredential, string docType,
+                                     vector<uint8_t> encryptedCredentialKeys) = 0;
+
     // Returns public key certificate chain with attestation.
     //
     // This must return an entire certificate chain and its implementation must
@@ -164,8 +167,14 @@ class SecureHardwarePresentationProxy : public RefBase {
     virtual optional<vector<uint8_t>> finishRetrieval();
 
     virtual optional<vector<uint8_t>> deleteCredential(const string& docType,
+                                                       const vector<uint8_t>& challenge,
+                                                       bool includeChallenge,
                                                        size_t proofOfDeletionCborSize) = 0;
 
+    virtual optional<vector<uint8_t>> proveOwnership(const string& docType, bool testCredential,
+                                                     const vector<uint8_t>& challenge,
+                                                     size_t proofOfOwnershipCborSize) = 0;
+
     virtual bool shutdown() = 0;
 };
author	David Zeuthen <zeuthen@google.com>	2020-10-16 11:27:24 -0400
committer	David Zeuthen <zeuthen@google.com>	2021-01-23 13:35:57 -0500
commit	49f2d2558ac417d090dfae9c78ab372d71e5140c (patch)
tree	be240ccdfb0fa1e45aa03648cb385ff7ce82d84f /identity/aidl/default/common/SecureHardwareProxy.h
parent	eafa06164d1e1bafbe20562d540ab5420bb0f825 (diff)