| Age | Commit message (Collapse) | Author |
|---|
|
|
|
Test: VtsHalRemotelyProvisionedComponentTargetTest
Change-Id: Ib623b3dcdd5a496b34314c1e0d1a310c8beeb18d
|
|
Bug: 223509807
Test: libkeymint_remote_prov_support_test
Change-Id: I45d2ee46f6fe3c8a7da55c7cc0b04fc007ddea43
|
|
Test: Run Rkp Vts tests.
Change-Id: Ic38fd2318dd8749ae125f1e78d25f2722bd367e5
|
|
This change modifies the VTS tests to validate the structure of the CBOR
Web Token (CWT) which contains the public key as one of several fields
in the map. It only validates the subset of fields expected to be seen
in the VTS tests. The ones related to the actual BCC will not be
present in test mode due to the security guarantees of the interface.
Additionally, the test will also now check that the first key in the BCC
array matches the public key that should be self-signed in the
certificate located in the second index of the BCC array.
Test: atest VtsHalRemotelyProvisionedComponentTargetTest
Change-Id: I9e7769861529b8095d77ce8fee3c78222579d38c
|
|
The KeyMint HAL will soon be updated for a new version. To make this
process easier, add a cc_defaults and rust_defaults that references
the "current" version, and use this elsewhere. This should hopefully
mean that a future version bump only needs to happen in the defaults.
Test: TreeHugger
Change-Id: If7dd0c5778acb92177e16fd4fb4a04dcb837ad06
|
|
Have a single OWNERS file for everything under
hardware/interfaces/security
Test: TreeHugger
Change-Id: I1f15296edefda447916e9a3e8211e88ed8854f90
|
|
|
|
This support function is supposed to be useable by vendor in treble.
Add "vendor_available" to reflect that.
Bug: 203481954
Test: Link by vendor successfully
Change-Id: I9709ac0ab79405c336ed8a1bc44b2ef643dd5b2d
|
|
Future addition of extra curves means that key size is not enough to
identify the particular EC curve required. Use the EcCurve enum instead.
Test: VtsHalRemotelyProvisionedComponentTargetTest
Change-Id: Ia6b7d86a387cfc06db05e4ba6ff8f331e9c6345f
|
|
The ndk_platform backend will soon be deprecated because the ndk backend
can serve the same purpose. This is to eliminate the confusion about
having two variants (ndk and ndk_platform) for the same 'ndk' backend.
Bug: 161456198
Test: m
Change-Id: Ibe8beeaf0d1b33968fb782f1f70c17ae9e9bf871
|
|
We need both the build fingerprint as well as the CSR when uploading
data to the APFE provisioning server. Add a utility function to format
the output as a JSON blob so that it may be easily collected in the
factory in a serialized data format, then later uploaded.
Test: libkeymint_remote_prov_support_test
Test: VtsAidlKeyMintTargetTest
Test: VtsHalRemotelyProvisionedComponentTargetTest
Bug: 191301285
Change-Id: I751c5461876d83251869539f1a395ba13cb5cf84
|
|
Include a unit test to verify the GEEK cert chain is valid.
Test: libkeymint_remote_prov_support_test
Bug: 191301285
Change-Id: Icf9cfa165fbccb24b36b03ff3ce729a7e9c44cfd
Merged-In: Icf9cfa165fbccb24b36b03ff3ce729a7e9c44cfd
|
|
This functionality will be used for the factory tooling, so we should
test it. Additionally, some new functionality will soon be added, and
it also needs to be tested.
Test: libkeymint_remote_prov_support_test
Bug: 191301285
Change-Id: I6a8798fc4b09fff1e829185a4b9e471921e5d2a9
Merged-In: I6a8798fc4b09fff1e829185a4b9e471921e5d2a9
|
|
This flag is never used anywhere, so just remove it. When used, it would
bypass signature checks. This is something we generally don't want to
do, even in testing. So remove the flag so there's no temptation to use
it.
Bug: 190942528
Test: VtsHalRemotelyProvisionedComponentTargetTest
Change-Id: I0433c1eedc08e9a5a5ad71347154867dba61689e
Merged-In: I0433c1eedc08e9a5a5ad71347154867dba61689e
|
|
The vendor patchlevel is YYYYMMDD not YYYYMM
Bug: 188672564
Bug: 186735514
Test: VtsAidlKeyMintTargetTest
Change-Id: Ia641f8eef84a85aec8f2a0551c192b6874301126
|
|
Get description of ASN.1 schema in HAL and the keymint support library
in sync with each other. Change code to always list tags in the same
order (by numeric tag).
Bug: 188672564
Bug: 186735514
Test: VtsAidlKeyMintTargetTest
Change-Id: I620f54ba4a265ea69d174f6f44765a8508bfe803
|
|
Add tests for:
- Too much entropy should be rejected with INVALID_INPUT_LENGTH
- All authorization lists should include a vendor and boot patchlevel.
These requirements are in both the KeyMint and the KeyMaster 4.0 AIDL
specificications, but have never been policed before.
Currently disabled with a command-line flag because CF does not have
the patchlevels and so fails lots of tests.
Test: VtsKeyMintAidlTargetTest
Change-Id: Ic9622ef3f1b80e013a34059218e3e029f392eb72
|
|
algorithms and self sign or non-self sign certificates.
Test: atest VtsAidlKeyMintTargetTest
Change-Id: I4e9d8db7be500f165c3a9f240ea2dfe00c2a70d1
|
|
This is the change that removes the functionality that has been shifted
over to appropriate classes and contexts in system/keymaster.
Test: atest VtsHalRemotelyProvisionedComponentTargetTest
Change-Id: I491f4ef823868322ea6a804d88ca09662c099a44
|
|
This change adds the host supported flag to the libcppcose and removes
some unnecessary dependencies from the blueprint file.
Test: libcppcose builds
Change-Id: I45bca44267a50d0d401fc1964f96363e558317ff
|
|
Test: VtsRemotelyProvisionedComponentTests
Change-Id: I2f5187bfb4fd1572d10c306377e07a6d167689fa
|
|
- Test with deliberately-invalid EEK in request:
- corrupt signature
- missing initial self-signed cert
- Test with different sizes of EEK chain.
These tests will only really take effect when we have a valid GEEK to
test with.
Other changes:
- Fix encoding of KeyUsage bitset.
- Add a made-up allowed-root pubkey for prod mode. This needs to be
replaced with the real GEEK when available.
- Fix generateEek() so that the first private key isn't used for
all signing operations.
Test: VtsHalRemotelyProvisionedComponentTargetTest
Change-Id: I833894d33cd1757b7a0cfcf18f79b61e4e56a556
|
|
As per RFC 8152 section 3, the unprotected parameters in the headers
of COSE objects are just encoded as a map, not as a bstr that contains
the CBOR-encoding of a map.
Test: TreeHugger presubmit
Change-Id: Id4eeb023d3a81ad1398d78d410c8224bf941f9b1
|
|
A key with the MAX_BOOT_LEVEL tag cannot be used past a particular
stage of device boot.
Test: Treehugger
Bug: 176450483
Change-Id: I113e3101734736a8621a01ed85969a4ecbe12a68
|
|
Added SPDX-license-identifier-Apache-2.0 to:
atrace/1.0/Android.bp
atrace/1.0/default/Android.bp
atrace/1.0/vts/functional/Android.bp
audio/2.0/Android.bp
audio/2.0/config/Android.bp
audio/4.0/Android.bp
audio/4.0/config/Android.bp
audio/5.0/Android.bp
audio/5.0/config/Android.bp
audio/6.0/Android.bp
audio/6.0/config/Android.bp
audio/7.0/Android.bp
audio/7.0/config/Android.bp
audio/common/2.0/Android.bp
audio/common/4.0/Android.bp
audio/common/5.0/Android.bp
audio/common/6.0/Android.bp
audio/common/7.0/Android.bp
audio/common/7.0/example/Android.bp
audio/common/all-versions/default/Android.bp
audio/common/all-versions/default/service/Android.bp
audio/common/all-versions/test/utility/Android.bp
audio/common/all-versions/util/Android.bp
audio/core/all-versions/default/Android.bp
audio/core/all-versions/default/util/Android.bp
audio/core/all-versions/vts/functional/Android.bp
audio/effect/2.0/Android.bp
audio/effect/2.0/xml/Android.bp
audio/effect/4.0/Android.bp
audio/effect/4.0/xml/Android.bp
audio/effect/5.0/Android.bp
audio/effect/5.0/xml/Android.bp
audio/effect/6.0/Android.bp
audio/effect/6.0/xml/Android.bp
audio/effect/7.0/Android.bp
audio/effect/7.0/xml/Android.bp
audio/effect/all-versions/default/Android.bp
audio/effect/all-versions/default/util/Android.bp
audio/effect/all-versions/vts/functional/Android.bp
audio/policy/1.0/vts/functional/Android.bp
audio/policy/1.0/xml/Android.bp
audio/policy/1.0/xml/pfw_schemas/Android.bp
authsecret/1.0/Android.bp
authsecret/1.0/default/Android.bp
authsecret/1.0/vts/functional/Android.bp
authsecret/aidl/Android.bp
authsecret/aidl/default/Android.bp
authsecret/aidl/vts/Android.bp
automotive/audiocontrol/1.0/Android.bp
automotive/audiocontrol/1.0/default/Android.bp
automotive/audiocontrol/1.0/vts/functional/Android.bp
automotive/audiocontrol/2.0/Android.bp
automotive/audiocontrol/2.0/default/Android.bp
automotive/audiocontrol/2.0/vts/functional/Android.bp
automotive/can/1.0/default/libnetdevice/Android.bp
automotive/can/1.0/hidl-utils/Android.bp
automotive/can/1.0/tools/Android.bp
automotive/can/1.0/tools/configurator/Android.bp
automotive/can/1.0/tools/configurator/proto/Android.bp
automotive/can/1.0/tools/libcanhaltools/Android.bp
automotive/can/1.0/vts/functional/Android.bp
automotive/can/1.0/vts/utils/Android.bp
automotive/evs/1.0/Android.bp
automotive/evs/1.0/default/Android.bp
automotive/evs/1.0/vts/functional/Android.bp
automotive/evs/1.1/Android.bp
automotive/evs/1.1/default/Android.bp
automotive/evs/1.1/vts/functional/Android.bp
automotive/evs/1.1/vts/fuzzing/Android.bp
automotive/evs/common/utils/default/Android.bp
automotive/evs/common/utils/default/test/fuzz/Android.bp
automotive/occupant_awareness/aidl/Android.bp
automotive/occupant_awareness/aidl/default/Android.bp
automotive/occupant_awareness/aidl/mock/Android.bp
automotive/occupant_awareness/aidl/vts/functional/Android.bp
automotive/sv/1.0/Android.bp
automotive/sv/1.0/default/Android.bp
automotive/sv/1.0/vts/functional/Android.bp
automotive/vehicle/2.0/Android.bp
automotive/vehicle/2.0/default/Android.bp
automotive/vehicle/2.0/default/impl/vhal_v2_0/proto/Android.bp
automotive/vehicle/2.0/utils/Android.bp
biometrics/face/1.0/Android.bp
biometrics/face/1.0/default/Android.bp
biometrics/face/1.0/vts/functional/Android.bp
biometrics/fingerprint/2.1/Android.bp
biometrics/fingerprint/2.1/default/Android.bp
biometrics/fingerprint/2.1/vts/functional/Android.bp
biometrics/fingerprint/2.2/Android.bp
biometrics/fingerprint/2.2/vts/functional/Android.bp
bluetooth/1.0/Android.bp
bluetooth/1.0/default/Android.bp
bluetooth/1.0/vts/functional/Android.bp
bluetooth/1.1/Android.bp
bluetooth/1.1/default/Android.bp
bluetooth/1.1/vts/functional/Android.bp
bluetooth/a2dp/1.0/Android.bp
bluetooth/a2dp/1.0/default/Android.bp
bluetooth/a2dp/1.0/vts/functional/Android.bp
bluetooth/audio/2.0/Android.bp
bluetooth/audio/2.0/default/Android.bp
bluetooth/audio/2.0/vts/functional/Android.bp
bluetooth/audio/2.1/Android.bp
bluetooth/audio/2.1/default/Android.bp
bluetooth/audio/2.1/vts/functional/Android.bp
bluetooth/audio/utils/Android.bp
boot/1.0/Android.bp
boot/1.0/default/Android.bp
boot/1.0/vts/functional/Android.bp
boot/1.1/Android.bp
boot/1.1/default/Android.bp
boot/1.1/default/boot_control/Android.bp
boot/1.1/vts/functional/Android.bp
boot/1.2/Android.bp
boot/1.2/default/Android.bp
boot/1.2/vts/functional/Android.bp
broadcastradio/1.0/Android.bp
broadcastradio/1.0/default/Android.bp
broadcastradio/1.0/vts/functional/Android.bp
broadcastradio/1.1/Android.bp
broadcastradio/1.1/default/Android.bp
broadcastradio/1.1/vts/functional/Android.bp
broadcastradio/2.0/Android.bp
broadcastradio/2.0/default/Android.bp
broadcastradio/2.0/vts/functional/Android.bp
broadcastradio/common/tests/Android.bp
broadcastradio/common/utils/Android.bp
broadcastradio/common/utils1x/Android.bp
broadcastradio/common/utils2x/Android.bp
broadcastradio/common/vts/utils/Android.bp
camera/common/1.0/Android.bp
camera/common/1.0/default/Android.bp
camera/device/1.0/Android.bp
camera/device/1.0/default/Android.bp
camera/device/3.2/Android.bp
camera/device/3.2/default/Android.bp
camera/device/3.3/Android.bp
camera/device/3.3/default/Android.bp
camera/device/3.4/Android.bp
camera/device/3.4/default/Android.bp
camera/device/3.5/Android.bp
camera/device/3.5/default/Android.bp
camera/device/3.6/Android.bp
camera/device/3.6/default/Android.bp
camera/metadata/3.2/Android.bp
camera/metadata/3.3/Android.bp
camera/metadata/3.4/Android.bp
camera/metadata/3.5/Android.bp
camera/provider/2.4/Android.bp
camera/provider/2.4/default/Android.bp
camera/provider/2.4/vts/functional/Android.bp
camera/provider/2.5/Android.bp
camera/provider/2.5/default/Android.bp
camera/provider/2.6/Android.bp
cas/1.0/Android.bp
cas/1.0/default/Android.bp
cas/1.0/vts/functional/Android.bp
cas/1.1/Android.bp
cas/1.1/default/Android.bp
cas/1.1/vts/functional/Android.bp
cas/1.2/Android.bp
cas/1.2/default/Android.bp
cas/1.2/vts/functional/Android.bp
cas/native/1.0/Android.bp
common/aidl/Android.bp
common/fmq/aidl/Android.bp
common/support/Android.bp
compatibility_matrices/Android.bp
compatibility_matrices/Android.mk
compatibility_matrices/build/Android.bp
compatibility_matrices/exclude/Android.bp
configstore/1.0/Android.bp
configstore/1.0/vts/functional/Android.bp
configstore/1.1/Android.bp
configstore/1.1/default/Android.mk
configstore/utils/Android.bp
confirmationui/1.0/Android.bp
confirmationui/1.0/default/Android.bp
confirmationui/1.0/vts/functional/Android.bp
confirmationui/support/Android.bp
contexthub/1.0/Android.bp
contexthub/1.0/default/Android.bp
contexthub/1.0/vts/functional/Android.bp
contexthub/1.1/Android.bp
contexthub/1.1/default/Android.bp
contexthub/1.1/vts/functional/Android.bp
contexthub/common/vts/Android.bp
drm/1.0/Android.bp
drm/1.0/default/Android.bp
drm/1.0/vts/functional/Android.bp
drm/1.1/Android.bp
drm/1.1/vts/functional/Android.bp
drm/1.2/Android.bp
drm/1.2/vts/functional/Android.bp
drm/1.3/Android.bp
drm/1.3/vts/functional/Android.bp
dumpstate/1.0/Android.bp
dumpstate/1.0/default/Android.bp
dumpstate/1.0/vts/functional/Android.bp
dumpstate/1.1/Android.bp
dumpstate/1.1/default/Android.bp
dumpstate/1.1/vts/functional/Android.bp
fastboot/1.0/Android.bp
fastboot/1.0/default/Android.bp
fastboot/1.1/Android.bp
fastboot/1.1/default/Android.bp
gatekeeper/1.0/Android.bp
gatekeeper/1.0/default/Android.bp
gatekeeper/1.0/software/Android.bp
gatekeeper/1.0/software/tests/Android.bp
gatekeeper/1.0/vts/functional/Android.bp
gnss/1.0/Android.bp
gnss/1.0/default/Android.bp
gnss/1.0/vts/functional/Android.bp
gnss/1.1/Android.bp
gnss/1.1/default/Android.bp
gnss/1.1/vts/functional/Android.bp
gnss/2.0/Android.bp
gnss/2.0/default/Android.bp
gnss/2.0/vts/functional/Android.bp
gnss/2.1/Android.bp
gnss/2.1/default/Android.bp
gnss/2.1/vts/functional/Android.bp
gnss/common/utils/default/Android.bp
gnss/common/utils/vts/Android.bp
gnss/measurement_corrections/1.0/Android.bp
gnss/measurement_corrections/1.1/Android.bp
gnss/visibility_control/1.0/Android.bp
graphics/allocator/2.0/Android.bp
graphics/allocator/2.0/default/Android.bp
graphics/allocator/2.0/utils/gralloc1-adapter/Android.bp
graphics/allocator/2.0/utils/hal/Android.bp
graphics/allocator/2.0/utils/passthrough/Android.bp
graphics/allocator/3.0/Android.bp
graphics/allocator/4.0/Android.bp
graphics/bufferqueue/1.0/Android.bp
graphics/bufferqueue/2.0/Android.bp
graphics/common/1.0/Android.bp
graphics/common/1.1/Android.bp
graphics/common/1.2/Android.bp
graphics/common/aidl/Android.bp
graphics/composer/2.1/Android.bp
graphics/composer/2.1/default/Android.bp
graphics/composer/2.1/utils/command-buffer/Android.bp
graphics/composer/2.1/utils/hal/Android.bp
graphics/composer/2.1/utils/hwc2on1adapter/Android.bp
graphics/composer/2.1/utils/hwc2onfbadapter/Android.bp
graphics/composer/2.1/utils/passthrough/Android.bp
graphics/composer/2.1/utils/resources/Android.bp
graphics/composer/2.1/utils/vts/Android.bp
graphics/composer/2.1/vts/functional/Android.bp
graphics/composer/2.2/Android.bp
graphics/composer/2.2/default/Android.mk
graphics/composer/2.2/utils/command-buffer/Android.bp
graphics/composer/2.2/utils/hal/Android.bp
graphics/composer/2.2/utils/passthrough/Android.bp
graphics/composer/2.2/utils/resources/Android.bp
graphics/composer/2.2/utils/vts/Android.bp
graphics/composer/2.2/vts/functional/Android.bp
graphics/composer/2.3/Android.bp
graphics/composer/2.3/default/Android.bp
graphics/composer/2.3/utils/command-buffer/Android.bp
graphics/composer/2.3/utils/hal/Android.bp
graphics/composer/2.3/utils/passthrough/Android.bp
graphics/composer/2.3/utils/vts/Android.bp
graphics/composer/2.3/vts/functional/Android.bp
graphics/composer/2.4/Android.bp
graphics/composer/2.4/default/Android.bp
graphics/composer/2.4/utils/command-buffer/Android.bp
graphics/composer/2.4/utils/hal/Android.bp
graphics/composer/2.4/utils/passthrough/Android.bp
graphics/composer/2.4/utils/vts/Android.bp
graphics/composer/2.4/vts/functional/Android.bp
graphics/mapper/2.0/Android.bp
graphics/mapper/2.0/default/Android.bp
graphics/mapper/2.0/utils/hal/Android.bp
graphics/mapper/2.0/utils/passthrough/Android.bp
graphics/mapper/2.0/utils/vts/Android.bp
graphics/mapper/2.0/vts/functional/Android.bp
graphics/mapper/2.1/Android.bp
graphics/mapper/2.1/default/Android.bp
graphics/mapper/2.1/utils/hal/Android.bp
graphics/mapper/2.1/utils/passthrough/Android.bp
graphics/mapper/2.1/utils/vts/Android.bp
graphics/mapper/2.1/vts/functional/Android.bp
graphics/mapper/3.0/Android.bp
graphics/mapper/3.0/utils/vts/Android.bp
graphics/mapper/3.0/vts/functional/Android.bp
graphics/mapper/4.0/Android.bp
graphics/mapper/4.0/utils/vts/Android.bp
graphics/mapper/4.0/vts/functional/Android.bp
health/1.0/Android.bp
health/1.0/default/Android.bp
health/2.0/Android.bp
health/2.0/default/Android.bp
health/2.0/utils/libhealthhalutils/Android.bp
health/2.0/utils/libhealthservice/Android.bp
health/2.0/utils/libhealthstoragedefault/Android.bp
health/2.0/vts/functional/Android.bp
health/2.1/Android.bp
health/2.1/default/Android.bp
health/2.1/vts/functional/Android.bp
health/storage/1.0/Android.bp
health/storage/1.0/default/Android.bp
health/storage/1.0/vts/functional/Android.bp
health/storage/aidl/Android.bp
health/storage/aidl/default/Android.bp
health/storage/aidl/vts/functional/Android.bp
health/storage/impl_common/Android.bp
health/storage/test_common/Android.bp
health/utils/libhealth2impl/Android.bp
health/utils/libhealthloop/Android.bp
identity/aidl/Android.bp
identity/aidl/default/Android.bp
identity/aidl/vts/Android.bp
identity/support/Android.bp
input/classifier/1.0/Android.bp
input/classifier/1.0/default/Android.bp
input/classifier/1.0/vts/functional/Android.bp
input/common/1.0/Android.bp
ir/1.0/Android.bp
ir/1.0/default/Android.bp
ir/1.0/vts/functional/Android.bp
keymaster/3.0/Android.bp
keymaster/3.0/default/Android.mk
keymaster/3.0/vts/functional/Android.bp
keymaster/4.0/Android.bp
keymaster/4.0/default/Android.bp
keymaster/4.0/support/Android.bp
keymaster/4.0/vts/functional/Android.bp
keymaster/4.0/vts/performance/Android.bp
keymaster/4.1/Android.bp
keymaster/4.1/default/Android.bp
keymaster/4.1/support/Android.bp
keymaster/4.1/vts/functional/Android.bp
keymaster/aidl/Android.bp
light/2.0/Android.bp
light/2.0/default/Android.bp
light/2.0/vts/functional/Android.bp
light/aidl/Android.bp
light/aidl/default/Android.bp
light/aidl/vts/functional/Android.bp
light/utils/Android.bp
media/1.0/Android.bp
media/1.0/xml/Android.mk
media/Android.bp
media/bufferpool/1.0/Android.bp
media/bufferpool/2.0/Android.bp
media/c2/1.0/Android.bp
media/c2/1.1/Android.bp
media/omx/1.0/Android.bp
media/omx/1.0/vts/functional/audio/Android.bp
media/omx/1.0/vts/functional/common/Android.bp
media/omx/1.0/vts/functional/component/Android.bp
media/omx/1.0/vts/functional/store/Android.bp
media/omx/1.0/vts/functional/video/Android.bp
memtrack/1.0/Android.bp
memtrack/1.0/default/Android.bp
memtrack/1.0/vts/functional/Android.bp
memtrack/aidl/Android.bp
memtrack/aidl/default/Android.bp
memtrack/aidl/vts/Android.bp
neuralnetworks/1.0/Android.bp
neuralnetworks/1.0/utils/Android.bp
neuralnetworks/1.0/vts/functional/Android.bp
neuralnetworks/1.1/Android.bp
neuralnetworks/1.1/utils/Android.bp
neuralnetworks/1.1/vts/functional/Android.bp
neuralnetworks/1.2/Android.bp
neuralnetworks/1.2/utils/Android.bp
neuralnetworks/1.2/vts/functional/Android.bp
neuralnetworks/1.3/Android.bp
neuralnetworks/1.3/utils/Android.bp
neuralnetworks/1.3/vts/functional/Android.bp
neuralnetworks/aidl/Android.bp
neuralnetworks/aidl/utils/Android.bp
neuralnetworks/aidl/vts/functional/Android.bp
neuralnetworks/utils/common/Android.bp
neuralnetworks/utils/service/Android.bp
nfc/1.0/Android.bp
nfc/1.0/default/Android.bp
nfc/1.0/vts/functional/Android.bp
nfc/1.1/Android.bp
nfc/1.1/vts/functional/Android.bp
nfc/1.2/Android.bp
nfc/1.2/vts/functional/Android.bp
oemlock/1.0/Android.bp
oemlock/1.0/vts/functional/Android.bp
oemlock/aidl/Android.bp
oemlock/aidl/default/Android.bp
oemlock/aidl/vts/Android.bp
power/1.0/Android.bp
power/1.0/default/Android.bp
power/1.0/vts/functional/Android.bp
power/1.1/Android.bp
power/1.1/vts/functional/Android.bp
power/1.2/Android.bp
power/1.2/vts/functional/Android.bp
power/1.3/Android.bp
power/1.3/vts/functional/Android.bp
power/aidl/Android.bp
power/aidl/default/Android.bp
power/aidl/vts/Android.bp
power/stats/1.0/Android.bp
power/stats/1.0/default/Android.bp
power/stats/1.0/vts/functional/Android.bp
power/stats/aidl/Android.bp
power/stats/aidl/default/Android.bp
power/stats/aidl/vts/Android.bp
radio/1.0/Android.bp
radio/1.0/vts/functional/Android.bp
radio/1.1/Android.bp
radio/1.1/vts/functional/Android.bp
radio/1.2/Android.bp
radio/1.2/default/Android.bp
radio/1.2/vts/functional/Android.bp
radio/1.3/Android.bp
radio/1.3/vts/functional/Android.bp
radio/1.4/Android.bp
radio/1.4/vts/functional/Android.bp
radio/1.5/Android.bp
radio/1.5/vts/functional/Android.bp
radio/1.6/Android.bp
radio/1.6/vts/functional/Android.bp
radio/config/1.0/Android.bp
radio/config/1.0/default/Android.bp
radio/config/1.0/vts/functional/Android.bp
radio/config/1.1/Android.bp
radio/config/1.1/vts/functional/Android.bp
radio/config/1.2/Android.bp
radio/config/1.2/vts/functional/Android.bp
radio/config/1.3/Android.bp
radio/config/1.3/vts/functional/Android.bp
radio/deprecated/1.0/Android.bp
rebootescrow/aidl/Android.bp
rebootescrow/aidl/default/Android.bp
rebootescrow/aidl/vts/functional/Android.bp
renderscript/1.0/Android.bp
renderscript/1.0/default/Android.bp
renderscript/1.0/vts/functional/Android.bp
secure_element/1.0/Android.bp
secure_element/1.0/vts/functional/Android.bp
secure_element/1.1/Android.bp
secure_element/1.1/vts/functional/Android.bp
secure_element/1.2/Android.bp
secure_element/1.2/vts/functional/Android.bp
security/keymint/aidl/Android.bp
security/keymint/aidl/default/Android.bp
security/keymint/aidl/vts/functional/Android.bp
security/keymint/support/Android.bp
security/secureclock/aidl/Android.bp
security/secureclock/aidl/vts/functional/Android.bp
security/sharedsecret/aidl/Android.bp
security/sharedsecret/aidl/vts/functional/Android.bp
sensors/1.0/Android.bp
sensors/1.0/default/Android.bp
sensors/1.0/vts/functional/Android.bp
sensors/2.0/Android.bp
sensors/2.0/default/Android.bp
sensors/2.0/multihal/Android.bp
sensors/2.0/vts/functional/Android.bp
sensors/2.1/Android.bp
sensors/2.1/default/Android.bp
sensors/2.1/multihal/Android.bp
sensors/2.1/vts/functional/Android.bp
sensors/common/default/2.X/Android.bp
sensors/common/default/2.X/multihal/Android.bp
sensors/common/default/2.X/multihal/tests/Android.bp
sensors/common/utils/Android.bp
sensors/common/vts/2_X/Android.bp
sensors/common/vts/utils/Android.bp
soundtrigger/2.0/Android.bp
soundtrigger/2.0/default/Android.bp
soundtrigger/2.0/default/Android.mk
soundtrigger/2.0/vts/functional/Android.bp
soundtrigger/2.1/Android.bp
soundtrigger/2.1/default/Android.mk
soundtrigger/2.1/vts/functional/Android.bp
soundtrigger/2.2/Android.bp
soundtrigger/2.2/default/Android.bp
soundtrigger/2.2/vts/functional/Android.bp
soundtrigger/2.3/Android.bp
soundtrigger/2.3/default/Android.bp
soundtrigger/2.3/vts/functional/Android.bp
tests/bar/1.0/Android.bp
tests/bar/1.0/default/Android.bp
tests/baz/1.0/Android.bp
tests/baz/1.0/default/Android.bp
tests/expression/1.0/Android.bp
tests/extension/light/2.0/Android.bp
tests/extension/light/2.0/default/Android.bp
tests/extension/vibrator/aidl/Android.bp
tests/extension/vibrator/aidl/client/Android.bp
tests/extension/vibrator/aidl/default/Android.bp
tests/foo/1.0/Android.bp
tests/foo/1.0/default/Android.bp
tests/foo/1.0/default/lib/Android.bp
tests/hash/1.0/Android.bp
tests/hash/1.0/default/Android.bp
tests/inheritance/1.0/Android.bp
tests/inheritance/1.0/default/Android.bp
tests/lazy/1.0/Android.bp
tests/lazy/1.1/Android.bp
tests/libhwbinder/1.0/Android.bp
tests/libhwbinder/1.0/default/Android.bp
tests/libhwbinder/aidl/Android.bp
tests/memory/1.0/Android.bp
tests/memory/1.0/default/Android.bp
tests/memory/2.0/Android.bp
tests/msgq/1.0/Android.bp
tests/msgq/1.0/default/Android.bp
tests/multithread/1.0/Android.bp
tests/multithread/1.0/default/Android.bp
tests/safeunion/1.0/Android.bp
tests/safeunion/1.0/default/Android.bp
tests/safeunion/cpp/1.0/Android.bp
tests/safeunion/cpp/1.0/default/Android.bp
tests/trie/1.0/Android.bp
tests/trie/1.0/default/Android.bp
tetheroffload/config/1.0/Android.bp
tetheroffload/config/1.0/vts/functional/Android.bp
tetheroffload/control/1.0/Android.bp
tetheroffload/control/1.0/vts/functional/Android.bp
tetheroffload/control/1.1/Android.bp
tetheroffload/control/1.1/vts/functional/Android.bp
thermal/1.0/Android.bp
thermal/1.0/default/Android.bp
thermal/1.0/vts/functional/Android.bp
thermal/1.1/Android.bp
thermal/1.1/vts/functional/Android.bp
thermal/2.0/Android.bp
thermal/2.0/default/Android.bp
thermal/2.0/vts/functional/Android.bp
tv/cec/1.0/Android.bp
tv/cec/1.0/default/Android.bp
tv/input/1.0/Android.bp
tv/input/1.0/default/Android.bp
tv/input/1.0/vts/functional/Android.bp
tv/tuner/1.0/Android.bp
tv/tuner/1.0/default/Android.bp
tv/tuner/1.0/vts/functional/Android.bp
usb/1.0/Android.bp
usb/1.0/default/Android.bp
usb/1.0/vts/functional/Android.bp
usb/1.1/Android.bp
usb/1.1/vts/functional/Android.bp
usb/1.2/Android.bp
usb/1.2/vts/functional/Android.bp
usb/gadget/1.0/Android.bp
usb/gadget/1.1/Android.bp
usb/gadget/1.1/default/Android.bp
usb/gadget/1.1/default/lib/Android.bp
vibrator/1.0/Android.bp
vibrator/1.0/default/Android.bp
vibrator/1.0/vts/functional/Android.bp
vibrator/1.1/Android.bp
vibrator/1.1/vts/functional/Android.bp
vibrator/1.2/Android.bp
vibrator/1.2/vts/functional/Android.bp
vibrator/1.3/Android.bp
vibrator/1.3/example/Android.bp
vibrator/1.3/vts/functional/Android.bp
vibrator/aidl/Android.bp
vibrator/aidl/default/Android.bp
vibrator/aidl/vts/Android.bp
vr/1.0/Android.bp
vr/1.0/default/Android.bp
vr/1.0/vts/functional/Android.bp
weaver/1.0/Android.bp
weaver/1.0/vts/functional/Android.bp
weaver/aidl/Android.bp
weaver/aidl/default/Android.bp
weaver/aidl/vts/Android.bp
wifi/1.0/Android.bp
wifi/1.0/vts/functional/Android.bp
wifi/1.1/Android.bp
wifi/1.1/vts/functional/Android.bp
wifi/1.2/Android.bp
wifi/1.2/vts/functional/Android.bp
wifi/1.3/Android.bp
wifi/1.3/vts/functional/Android.bp
wifi/1.4/Android.bp
wifi/1.4/default/Android.mk
wifi/1.4/vts/functional/Android.bp
wifi/hostapd/1.0/Android.bp
wifi/hostapd/1.0/vts/functional/Android.bp
wifi/hostapd/1.1/Android.bp
wifi/hostapd/1.1/vts/functional/Android.bp
wifi/hostapd/1.2/Android.bp
wifi/hostapd/1.2/vts/functional/Android.bp
wifi/offload/1.0/Android.bp
wifi/offload/1.0/vts/functional/Android.bp
wifi/supplicant/1.0/Android.bp
wifi/supplicant/1.0/vts/functional/Android.bp
wifi/supplicant/1.1/Android.bp
wifi/supplicant/1.1/vts/functional/Android.bp
wifi/supplicant/1.2/Android.bp
wifi/supplicant/1.2/vts/functional/Android.bp
wifi/supplicant/1.3/Android.bp
wifi/supplicant/1.3/vts/functional/Android.bp
Added SPDX-license-identifier-Apache-2.0 SPDX-license-identifier-NCSA to:
Android.bp
automotive/can/1.0/Android.bp
automotive/can/1.0/default/Android.bp
Added SPDX-license-identifier-NCSA to:
automotive/can/1.0/default/libc++fs/Android.bp
Bug: 68860345
Bug: 151177513
Bug: 151953481
Test: m all
Exempt-From-Owner-Approval: janitorial work
Change-Id: I602b072f77ff41e9eb8d3c36b6b5315d63664006
Merged-in: I602b072f77ff41e9eb8d3c36b6b5315d63664006
|
|
|
|
This allows applications to generate their own attestation keys and
then use them to attest other application-generated keys.
Bug: 171845652
Test: VtsAidlKeyMintTargetTest
Change-Id: I32add16dcc2d1b29665a88024610f7bef7e50200
|
|
Bug: 150578172
Test: m
Change-Id: I8ccf9c8d08ad7131c77d316bf36fb515421d3ae1
|
|
Test: VtsHalRemotelyProvisionedComponentTargetTest
Change-Id: I51fb01f4c52949c81f3ad2d694a4afdf0fa67788
|
|
Pass required tags to generateKey and importKey.
Bug: 179809936
Test: VtsAidlKeyMintTargetTest
Change-Id: I762f73de50ca35c2f1ed271385d863910f53dcd2
|
|
|
|
1. Fix test case for usage count limit tag = 1 case, when
hardware cannot enforce it, the tag should by enforced by keystore.
2. Add test case for usage count limit tag > 1.
3. Add test case to verify the usage count limit tag appears
correctly in the attestation certificate for asymmetic key.
Test: atest -c VtsAidlKeyMintTargetTest
Change-Id: I01df278b42a91a78c8888c13c4f81b7ec70cfa22
|
|
Also fixes some formatting.
Test: N/A
Change-Id: I27e9dcfa638b544ab49befa208b294e55a04f2c1
|
|
authorizationValue checked the uion value tag twice instead of checking
the actual tag value.
Test: N/A
Change-Id: I348b5ac06801a04ca7243088d758374148910d39
|
|
|
|
Bug: 150578172
Test: m
Change-Id: Ie7605c203c0f0eaf2c40f1e64ea45634b3aa54a5
Merged-In: I141de8ed6958fe42f727a0fa41473de4c1fb38de
|
|
to verify the tag appears in the key characteristics. also if the tag is enforced in the hardware, afer the usage of the key is exhausted, the key blob should be invalidated from the secure storage (such as RPMB partition)."
|
|
Test: VtsAidlKeyMintTargetTest
Bug: 171847641
Change-Id: Id9dc0ee3c69d9c2421ce7b0f228580a90411169e
|
|
And add vts test to verify the tag appears in the key characteristics.
also if the tag is enforced in the hardware, afer the usage of the key
is exhausted, the key blob should be invalidated from the secure storage
(such as RPMB partition).
Bug: b/174140443
Test: atest VtsHalKeyMintV1_0TargetTest
Change-Id: Ic65b855c5a8692ab8d1281dd46562ad0844ab1b0
|
|
This is by no means complete, but it validates basic functionality.
More is coming.
Test: VtsAidlKeyMintTargetTest
Change-Id: I0727a9f5b137b58b9a2f0aaf9935bfdc6525df8f
|
|
Support key characteristics with three security levels, do not store
unenforced authorizations with keys or bind them to keys.
Bug: 163606833
Test: atest VtsAidlKeyMintTargetTest
Change-Id: Idbc523f16d8ef66ec38e0d503ad579a93c49e7b4
|
|
Test: atest VtsAidlKeyMintV1_0TargetTest
Bug: 160968519
Change-Id: I7093b26217b69ea36b4be8837b42cb9446887685
|
|
* replace NullOr with std::optional.
* Add mising tag.
* Undefine helper macros so that keymint_tags.h can be used together
with keymaster_tags.h
* Check if KeyParameterValue variant matches KeyParameterTag in
accessors.
Test: VtsAidlKeyMintTargetTest
Change-Id: I6c951071f30fd27c8c21a2e8cc86f421a3bc37d9
|
|
AIDL now supports union types. This CL changes KeyParameter to use
one.
Test: VtsAidlKeyMintTargetTest
Change-Id: I5112611b161e3de1ea86105ea3c7ed0912036a7b
|
|
Test: N/A
Change-Id: I7e97d9d475a639cfe92c9e6b01689c9ff80d2abc
|
|
This is no longer needed in KeyMint. Keystore2 implements similar
functionality in Rust.
Test: Build
Change-Id: Ia43716449756935619fb22ef5aba113e420c2687
|
|
Mostly just removal of old-style #include guards in favor of #pragm
once, reorganization of header includes, correction of copyright
years, etc.
Test: VtsAidlKeyMintTargetTest
Change-Id: I070584ecec550a2f133b1c19f36f99e7b5544e7c
|
|
1ffcdebadd7229af65c575dc1271084b17fe42d7
Bug: 175345910
Bug: 171429297
Exempt-From-Owner-Approval: re-landing topic with no changes in this CL.
Change-Id: I691cad252f188b54a8076589d9955774d74d4729
|
|
Revert "Keystore 2.0 SPI: Move keymint spec to security namespace."
Revert "Keystore 2.0: Move keymint spec to security namespace."
Revert "Keystore 2.0: Move keymint spec to security namespace."
Revert "Move keymint to android.hardware.security."
Revert "Configure CF to start KeyMint service by default."
Revert "Move keymint to android.hardware.security."
Revert "Move keymint to android.hardware.security."
Revert submission 1522123-move_keymint
Reason for revert: Build breakage
Bug: 175345910
Bug: 171429297
Reverted Changes:
Ief0e9884a:Keystore 2.0: Move keymint spec to security namesp...
Idb54e8846:Keystore 2.0: Move keymint spec to security namesp...
I9f70db0e4:Remove references to keymint1
I2b4ce3349:Keystore 2.0 SPI: Move keymint spec to security na...
I2498073aa:Move keymint to android.hardware.security.
I098711e7d:Move keymint to android.hardware.security.
I3ec8d70fe:Configure CF to start KeyMint service by default.
Icbb373c50:Move keymint to android.hardware.security.
I86bccf40e:Move keymint to android.hardware.security.
Change-Id: I160cae568ed6b15698bd0af0b19c6c949528762d
|
