Gitiles
Code Review Sign In
gerrit-public.fairphone.software / platform / system / security / f635cf0e311bfcc1f24aa1465af142ada57a4e64
commitf635cf0e311bfcc1f24aa1465af142ada57a4e64[log] [tgz]
authorDavid Zeuthen <zeuthen@google.com>Fri May 08 10:58:09 2020 -0400
committerDavid Zeuthen <zeuthen@google.com>Fri May 08 13:42:44 2020 -0400
tree9cafdfc6020fdce5d0af33e722b92690767313f6
parent8ac8b2af5d16629e6570b1ae4cf2721b1b5c5727 [diff]
keystore: Pass verification token to credstore along with requested auth token.

This is needed because the Secure Areas backing the Identity
Credential HAL may exist in a different environment from where the
auth token is minted. In this case, the Secure Area needs a
verification token to make sense of the timestamp in the auth token.

Getting a verification token is an asynchronous operation so change
the binder method used by credstore to be asynchronous as well.

Bug: 156076333
Test: atest VtsHalIdentityTargetTest
Test: atest android.security.identity.cts
Merged-In: Id6cb6812a31d968069b7d72bd2b39b512d38d241
Change-Id: I6d75a4fd5cf3607f08dee33da7db5f0f20923656
9 files changed
tree: 9cafdfc6020fdce5d0af33e722b92690767313f6
  1. fsverity_init/
  2. identity/
  3. keystore/
  4. keystore-engine/
  5. .clang-format
  6. Android.bp
  7. MODULE_LICENSE_APACHE2
  8. NOTICE
  9. OWNERS
  10. PREUPLOAD.cfg