summaryrefslogtreecommitdiff
AgeCommit message (Collapse)Author
2020-05-01{R-DP1} Support configurable AIDs for ARAMYerriswamy
1. Try to retrieve ARs from a configurable list of AIDs. If all AIDs are not accessible, then try default AID. 2. Add PKG_REF_DO/PERM_AR_DO for AR parsing. Bug:139078767 Test: Access rules could be retrieved from different AIDs.
2020-05-01{R-DP1} Make SecureElement service bootawareYerriswamy
Start SecureElement service before device unlock. Bug: 139701995 Test: SecureElement service launch normally before device unlock Change-Id: I5d8f3f78e307f3c7819bf07240747373845bd1a8
2020-05-01{R-DP1} Fix bug transmit APDU status word 6CXX follow by 61XX case.Yerriswamy
transmit method can handle 6CXX or 61XX once, and then call transmitInternal method. transmitInternal method cannot handle 6CXX or 61XX. After process 6CXX, call transmit method again to handle 61XX. Bug: 141838332 Test: CTS OmapiTest Change-Id: I4e7ff90953d7a5374b012f55c25f29a73adb586b
2020-05-01{R-DP1} Set default access permission as denied for eSEYerriswamy
According to GP spec chap 4, access permission should be ALLOWED when ARA-M is not accessible on the eSE. But on converged chip which is used by both eSIM/Felica, there is security concern when deleting ARA-M on this chip. Set ChannelAccess as DENIED before long-term solution complete. Bug: 140902609 Bug: 141203396 Test: Check ChannelAccess is DENIED after deleting ARA-M Change-Id: Ic0eee4f4b214eae8f1a94b1b0c3b9621502deff5
2020-05-01{R-DP1} Missing APDU access rule attribute shall be solved after the combinationYerriswamy
If the access rules are of different types (i.e. NFC permission, APDU permission), both rules are combined and thus both rules apply. That is the policy of the rules combination process described in the clause 3.4.1 of GP SEAC specification. Interpretation of missing APDU access rule attribute shall be done after all combination process is finished. Bug: 129524272 Test: Confirmed no error with GP SEAC Test Plan v1.0.6 and SEAC CTS TCs Change-Id: I32932b00d0cd4b8df31fb2194b8dd8766f0dd44f
2020-05-01{R-DP1} Missing NFC access rule attribute shall be solved after the combinationYerriswamy
If the access rules are of different types (i.e. NFC permission, APDU permission), both rules are combined and thus both rules apply. That is the policy of the rules combination process described in the clause 3.4.1 of GP SEAC specification. Interpretation of missing NFC access rule attribute shall be done after all combination process is finished. Bug: 129524272 Test: Confirmed no error with GP SEAC Test Plan v1.0.6 and SEAC CTS TCs Change-Id: Iea06a4496b7a09a21c10700781f8bf988405592f
2020-05-01{R-DP1} Keep the channel access flag UNDEFINED if APDU-AR-DO is missingYerriswamy
ChannelAccess.setAccess() shall not be called with DENIED until the interpretation of the access rules retrieved from ARA is finished, if 'NEVER' is not explicitly specified in APDU-AR-DO. Bug: 129509913 Test: Confirmed no error with GP SEAC Test Plan v1.0.6 and SEAC CTS TCs Change-Id: I0f20baf544f95f7c584ad4c6d752a8d43d8cc195
2020-05-01{R-DP1} Don't retry on failure for Terminals after index 1Yerriswamy
Terminals are loaded in the onCreate, which has a limited amount of time to do work without ANRing. For DSDS, its possible that although a SIM2 ese exists in a manifest, the HAL won't be loaded if DSDS is inactive on the device. Don't allow retries when trying to fetch terminals after index 1, in case they don't actually exist. Bug: 139010988 Change-Id: I250cfed507a2805abba21e2c8ebfb025431cfb0d
2020-05-01Update License in the files having coverity changesnxf48293
2020-04-22Correct carrier privilege checking am: 6b46ee4406 am: 685c72767bJack Yu
Change-Id: I1e52f57c5995839dc49d3ec73ebb1fd929598013
2020-04-22Correct carrier privilege checking am: 6b46ee4406Jack Yu
Change-Id: Id001b22aad02d88f508b262554f8057f8a0f6b11
2020-04-22OpenBasicChannel with UICC should not be allowed for non-privilege apps am: ↵Jack Yu
489369c429 am: 79c9537013 Change-Id: I5f29be6ee80264aa721db719dc2ad0ec414c772b
2020-04-22OpenBasicChannel with UICC should not be allowed for non-privilege apps am: ↵Jack Yu
489369c429 Change-Id: I4fce40dfb2180ed5621b2420cbd6086ee2749a49
2020-04-22Correct carrier privilege checkingJack Yu
Bug: 154094471 Test: check carrier privilege Merged-In: Id1a3fdb669c8e85aafcdb9623ec30b098f6c36c2 Change-Id: Id1a3fdb669c8e85aafcdb9623ec30b098f6c36c2
2020-04-22OpenBasicChannel with UICC should not be allowed for non-privilege appsJack Yu
Throw exception in setUpChannelAccess if this is not a privilege app. Bug: 153934978 Test: atest CtsOmapiTestCases Merged-In: Id39bcad679e856370b985bb77ca77aaadc84c7a0 Change-Id: Id39bcad679e856370b985bb77ca77aaadc84c7a0
2020-04-15Fix redundant codeflow in openLogicalChannel with UICC terminal am: ↵Jack Yu
054af27cab am: cbddd0c10e Change-Id: Ibe346edebde27e37d92463bb7a434627d698b84e
2020-04-15Fix redundant codeflow in openLogicalChannel with UICC terminal am: 054af27cabJack Yu
Change-Id: Iae86ee1b1d99725384774bc0f31b5ba04e34f483
2020-04-14Fix redundant codeflow in openLogicalChannel with UICC terminalJack Yu
When setup channel access for UICC terminal, carrier privileges checking add unnecessary rules loading. Bug: 152060727 Bug: 153832909 Test: atest CtsOmapiTestCases Merged-In: Ia3230a7f0165b9233196a698d9bfd0e243fa0db6 Change-Id: Ia3230a7f0165b9233196a698d9bfd0e243fa0db6
2020-03-31Do not overwrite mFullAccess setting am: 2add4761ca am: d746b735dfJack Yu
Change-Id: Ibf13042f00b0676945020d351430f42f9d00094f
2020-03-31Allow privilege app access to open channel am: f1ac0f7437 am: ed69bcb193Anil Hiranniah
Change-Id: I15badc49054b249ffa6faf4778f1ebee254e28f4
2020-03-31Do not overwrite mFullAccess setting am: 2add4761caJack Yu
Change-Id: I211e08ec99250c1079f1c7d82557ccc1b660cd30
2020-03-31Allow privilege app access to open channel am: f1ac0f7437Anil Hiranniah
Change-Id: Ia2571f107e1979cb5837a64ba5ff20616c609d7e
2020-03-31Do not overwrite mFullAccess settingJack Yu
Bug: 152817207 Test: mFullAccess could be modified in debug build by property Merged-In: I0fe3abda539d504bcf2ff314fc4bc5fa7419f614 Change-Id: I0fe3abda539d504bcf2ff314fc4bc5fa7419f614
2020-03-31Allow privilege app access to open channelAnil Hiranniah
Allow privilege app access to open channel even if AccessControlEnforcer is not available. Throw exception only for non privileged access. Bug: 149632580 Test: OpenBasicChannel from Privileged/Non privileged app Merged-In: Ie188d397f6bf641923d010ad3a9d00d21bc9351b Change-Id: Ie188d397f6bf641923d010ad3a9d00d21bc9351b
2020-03-23Include channel operation in synchronized area am: c3f935b630 am: ce9af7131e ↵Jack Yu
am: 54609b5f00 Change-Id: Ibd24b53ab09ff950ab6eb037843e06783602db11
2020-03-23Include channel operation in synchronized area am: c3f935b630 am: ce9af7131eJack Yu
Change-Id: I2328de6214102c76e70cdc59097e03808811a7e6
2020-03-23Include channel operation in synchronized area am: c3f935b630Jack Yu
Change-Id: I9873ffc144c6a3477e4e51306ff64a5a9d7ce634
2020-03-18Change naming to be more specific am: 9e1ce1906b am: e21ffb7ea8Jack Yu
Change-Id: I15371ef0386571d5230e554271bdefb72e38eb3c
2020-03-18Change naming to be more specific am: 9e1ce1906bJack Yu
Change-Id: Ifc5ad50262f20ca1b808b6bce0bbd17dd49280eb
2020-03-16Change naming to be more specificJack Yu
Change SECURE_ELEMENT_PRIVILEGED to SECURE_ELEMENT_PRIVILEGED_OPERATION. Bug: 150877612 Test: build pass Merged-In: I5c0d557f9ac43b64f2113de6c4a46f92e99b7c27 Change-Id: I5c0d557f9ac43b64f2113de6c4a46f92e99b7c27
2020-02-18Update OWNERS file am: 9f43436747 am: 397769dff6 am: c74cb81a3cGeorge Chang
Change-Id: Ie60354f0426a31e586081315214730be34f3a022
2020-02-18Update OWNERS file am: 9f43436747 am: 397769dff6George Chang
Change-Id: I18655424661053a43efc59e2c7298c5051477c28
2020-02-18Update OWNERS file am: 9f43436747George Chang
Change-Id: I9d3834439a1b0d6a250efdadd36a201f57f14ff8
2020-02-18Update OWNERS fileGeorge Chang
Test: None Change-Id: Id2e5629b687ff92d6cf38e8b8ddb4a3b05a89d20
2020-02-12Include channel operation in synchronized area am: 38da55f2ec am: 96b22f4f87 ↵Automerger Merge Worker
am: 235b4688ef Change-Id: Id9083df806b6cceaf0f339bf998971bb90afd42c
2020-02-12Include channel operation in synchronized area am: 38da55f2ec am: 96b22f4f87Automerger Merge Worker
Change-Id: Ia88bac4a5df1a0860d44243337fbad69884d6bd6
2020-02-12Include channel operation in synchronized area am: 38da55f2ecAutomerger Merge Worker
Change-Id: I8acbc07c7305aca59cea540fef5fe63b3cd21f62
2020-02-06Include channel operation in synchronized areaJack Yu
When application try to stress OMAPI by continuously open/close channels with multi-thread, there is possibility channel management is incorrect and result to no response. Bug: 148892905 Test: OMAPI works normal after multi-thread stress tests Change-Id: I530015ff20ed143a129024d6385fae9392a00a99
2020-02-06Include channel operation in synchronized areaJack Yu
When application try to stress OMAPI by continuously open/close channels with multi-thread, there is possibility channel management is incorrect and result to no response. Bug: 148892905 Test: OMAPI works normal after multi-thread stress tests Change-Id: I530015ff20ed143a129024d6385fae9392a00a99
2020-01-31Merge "Migrate to SecureElementStatsLog from StatsLog"TreeHugger Robot
2020-01-24Migrate to SecureElementStatsLog from StatsLogMuhammad Qureshi
As part of statsd becoming a Mainline module in R, autogenerated StatsLog.write() calls are going away and replaced by *StatsLog.java that is autogenerated for each module. This CL adds autogenerated SecureElementStatsLog and replaces usages of StatsLog with SecureElementStatsLog. Bug: 145952197 Test: m SecureElement Change-Id: Ided6c27ba2be86152949dcbf430bcc3140a62b58
2020-01-24Merge "Add support for secure_element HAL 1.2" am: 138fac9fd1 am: 463b696619 ↵Automerger Merge Worker
am: 5199b8777f Change-Id: I825ebd3f5664543b774fe07090ab336e097df572
2020-01-23Merge "Add support for secure_element HAL 1.2" am: 138fac9fd1 am: 463b696619Automerger Merge Worker
Change-Id: I02c1485e57b0555352d0f53840eaf525828af819
2020-01-22Merge "Add support for secure_element HAL 1.2"Jack Yu
am: 138fac9fd1 Change-Id: I71b2faf5fbb8ad26b9aed7cbfd93691c3b2bfd37
2020-01-23Merge "Add support for secure_element HAL 1.2"Treehugger Robot
2020-01-21Add support for secure_element HAL 1.2Jack Yu
Test: manual Bug: 142495673 Change-Id: I1338a2a11cc60fa50b1c8dd8e75022af9ea1b0a1
2020-01-18Unblock some operations for privilege applications am: 50f1c9584a am: ↵Automerger Merge Worker
edcdd54ffa am: 4a7a362a87 Change-Id: I7b75545e13cfe9822b3065e99d98a8d2e41f1d2d
2020-01-18Add Carrier Privilege support am: 2b58f07680 am: aa39f5e4a1 am: ad7ee467d5Automerger Merge Worker
Change-Id: I7e2079fb7179ee76d1580d59a9b8e794aa426bd9
2020-01-18Unblock some operations for privilege applications am: 50f1c9584a am: edcdd54ffaAutomerger Merge Worker
Change-Id: I6ac56d6ab996301848f2f7727d14b868057fbacb
2020-01-18Add Carrier Privilege support am: 2b58f07680 am: aa39f5e4a1Automerger Merge Worker
Change-Id: Ifa56c3fba9cf26c0d92e58e62fe83d952b851394
generated by cgit v1.2.3 (git 2.25.1) at 2025-10-03 08:27:28 +0000