summaryrefslogtreecommitdiff
path: root/security/keymint/aidl/vts/functional/KeyMintTest.cpp
AgeCommit message (Collapse)Author
2021-04-22Align KeyMint AIDL with usageDavid Drysdale
- Make HardwareAuthToken nullable on begin() - Drop unused vestigial performOperation() entrypoint - Drop unused Tag::BLOB_USAGE_REQUIREMENTS Test: TreeHugger, VtsKeyMintAidlTargetTest (CF) Change-Id: I577ac04d843ee6d03cbfb99e56ef3e69eb034532
2021-04-20Added 12 various attestation related vts tests.Selene Huang
- Check for app id only if challenge is provided. - Verify self sign certificate works for RSA and Ecdsa. - Verified attestation is generated for encryption keys too. - Verify no attestation is generated for symetric keys. - Verify app id is always required when attestation challenge is provided to the new key generation. - Verify app id is ignored when challenge is missing. - Verify app id length is properly encoded. - Added vts tests for various attestation success and fail cases. Test: atest VtsAidlKeyMintTargetTest Change-Id: If29249b0913fd9c2f91d20188ca5cfbaa04bead8
2021-04-13Add Rsa 2048 import key test for strongbox.Selene Huang
Test: atest VtsAidlKeyMintTargetTest Change-Id: If228b11fe23d2aaaa68e8ff53f0420c5e5ae62fb
2021-04-12Check that KeyMint provides IRemotelyProvisionedComponentDavid Drysdale
Move helper utilities across into KeyMintAidlTestBase to allow re-use. Test: VtsHalRemotelyProvisionedComponentTargetTest, VtsAidlKeyMintTargetTest Change-Id: Ib9e55a7d72fd197016ae1a1f073dadedafa09c25
2021-03-01Add performOperation stub.Shawn Willden
Test: VtsAidlKeyMintTargetTest Change-Id: I3689fd2993941343c6b9ba503fbe56153742fb3e
2021-02-24Separate updateAad from update & other cleanupsShawn Willden
Test: VtsKeyMintAidlTargetTest Change-Id: Ib4ab43dbf2604a7642fb2b551646fd7f0adac615
2021-02-17Add KeyPurpose::ATTEST_KEY.Shawn Willden
This allows applications to generate their own attestation keys and then use them to attest other application-generated keys. Bug: 171845652 Test: VtsAidlKeyMintTargetTest Change-Id: I32add16dcc2d1b29665a88024610f7bef7e50200
2021-02-15Merge "Add more tests for limited use key feature."Treehugger Robot
2021-02-11Add more tests for limited use key feature.Qi Wu
Verify that when keymint implementation supports rollback resistance, it must also enforce the single use key in hardware by secure hardware. Test: atest -c VtsAidlKeyMintTargetTest Change-Id: Ib984003247906ded7266da620e2d82e826d916bc
2021-02-10Vts tests for earlyBoot and deviceLocked functionality.Chirag Pathak
Test: atest VtsAidlKeyMintTargetTest Bug: b/171287439. Change-Id: I41c0b7b6b608b26147669b007225ad6f2d3cdfed
2021-02-09Fix Keymint VTS test after adding CERTIFICATE_* tagsJanis Danisevskis
Pass required tags to generateKey and importKey. Bug: 179809936 Test: VtsAidlKeyMintTargetTest Change-Id: I762f73de50ca35c2f1ed271385d863910f53dcd2
2021-02-02Add more vts tests related to limited use key.Qi Wu
1. Fix test case for usage count limit tag = 1 case, when hardware cannot enforce it, the tag should by enforced by keystore. 2. Add test case for usage count limit tag > 1. 3. Add test case to verify the usage count limit tag appears correctly in the attestation certificate for asymmetic key. Test: atest -c VtsAidlKeyMintTargetTest Change-Id: I01df278b42a91a78c8888c13c4f81b7ec70cfa22
2021-01-26Merge "Add limited use keys related tag into KeyMint aidl. And add vts test ↵Treehugger Robot
to verify the tag appears in the key characteristics. also if the tag is enforced in the hardware, afer the usage of the key is exhausted, the key blob should be invalidated from the secure storage (such as RPMB partition)."
2021-01-26KeyMint: Add support for key agreement operation and use it for ECDH.David Zeuthen
Test: VtsAidlKeyMintTargetTest Bug: 171847641 Change-Id: Id9dc0ee3c69d9c2421ce7b0f228580a90411169e
2021-01-22Add limited use keys related tag into KeyMint aidl.Qi Wu
And add vts test to verify the tag appears in the key characteristics. also if the tag is enforced in the hardware, afer the usage of the key is exhausted, the key blob should be invalidated from the secure storage (such as RPMB partition). Bug: b/174140443 Test: atest VtsHalKeyMintV1_0TargetTest Change-Id: Ic65b855c5a8692ab8d1281dd46562ad0844ab1b0
2021-01-20Add basic testing for KeyMint certs.Shawn Willden
This is by no means complete, but it validates basic functionality. More is coming. Test: VtsAidlKeyMintTargetTest Change-Id: I0727a9f5b137b58b9a2f0aaf9935bfdc6525df8f
2021-01-12Change KeyCharacteristicsShawn Willden
Support key characteristics with three security levels, do not store unenforced authorizations with keys or bind them to keys. Bug: 163606833 Test: atest VtsAidlKeyMintTargetTest Change-Id: Idbc523f16d8ef66ec38e0d503ad579a93c49e7b4
2020-12-22Add support and VTS test for RSA OAEP MGF1.Chirag Pathak
Test: atest VtsAidlKeyMintV1_0TargetTest Bug: 160968519 Change-Id: I7093b26217b69ea36b4be8837b42cb9446887685
2020-12-18Revise keymint_tags.hJanis Danisevskis
* replace NullOr with std::optional. * Add mising tag. * Undefine helper macros so that keymint_tags.h can be used together with keymaster_tags.h * Check if KeyParameterValue variant matches KeyParameterTag in accessors. Test: VtsAidlKeyMintTargetTest Change-Id: I6c951071f30fd27c8c21a2e8cc86f421a3bc37d9
2020-12-17Keymint: Use ndk_platform.Janis Danisevskis
Test: N/A Change-Id: I7e97d9d475a639cfe92c9e6b01689c9ff80d2abc
2020-12-11Revert^2 "Move keymint to android.hardware.security."Shawn Willden
1ffcdebadd7229af65c575dc1271084b17fe42d7 Bug: 175345910 Bug: 171429297 Exempt-From-Owner-Approval: re-landing topic with no changes in this CL. Change-Id: I691cad252f188b54a8076589d9955774d74d4729
2020-12-11Revert "Move keymint to android.hardware.security."Orion Hodson
Revert "Keystore 2.0 SPI: Move keymint spec to security namespace." Revert "Keystore 2.0: Move keymint spec to security namespace." Revert "Keystore 2.0: Move keymint spec to security namespace." Revert "Move keymint to android.hardware.security." Revert "Configure CF to start KeyMint service by default." Revert "Move keymint to android.hardware.security." Revert "Move keymint to android.hardware.security." Revert submission 1522123-move_keymint Reason for revert: Build breakage Bug: 175345910 Bug: 171429297 Reverted Changes: Ief0e9884a:Keystore 2.0: Move keymint spec to security namesp... Idb54e8846:Keystore 2.0: Move keymint spec to security namesp... I9f70db0e4:Remove references to keymint1 I2b4ce3349:Keystore 2.0 SPI: Move keymint spec to security na... I2498073aa:Move keymint to android.hardware.security. I098711e7d:Move keymint to android.hardware.security. I3ec8d70fe:Configure CF to start KeyMint service by default. Icbb373c50:Move keymint to android.hardware.security. I86bccf40e:Move keymint to android.hardware.security. Change-Id: I160cae568ed6b15698bd0af0b19c6c949528762d
2020-12-09Move keymint to android.hardware.security.Shawn Willden
Test: VtsAidlKeyMintTargetTest Change-Id: I2498073aa834584229e9a4955a97f279a94d1dd5
generated by cgit v1.2.3 (git 2.25.1) at 2025-10-03 21:33:21 +0000