| e366efd5bb89b2e7556055c5287c4e81e8820785 |
|
20-Mar-2016 |
Shawn Willden <swillden@google.com> |
Zero length in keymaster_free_param_set.
Change-Id: I0b9999e4c148d70369549cbd2fcdbbff7321a587
/hardware/libhardware/include/hardware/keymaster_defs.h
|
| aeb15d64fc331476150622fc693222e3d920b9ec |
|
19-Mar-2016 |
Shawn Willden <swillden@google.com> |
Add keymaster_security_level_t for attestation.
Change-Id: Iffa71e3c285d35c2feafd04e8153306f086a3118
/hardware/libhardware/include/hardware/keymaster_defs.h
|
| 3080276974953e4c61716a71760831f392a75986 |
|
10-Mar-2016 |
Shawn Willden <swillden@google.com> |
Remove agree_key and add configure to keymaster2.
Key agreement (ECDH) has been punted from the N release, and a
configuration method has been added to support version binding.
Change-Id: Ia4aeee1bd7ab88cda3b9faa653470e608aa55942
/hardware/libhardware/include/hardware/keymaster_defs.h
|
| 7fd11186a6731402fd5a33b26da9edf738dd750b |
|
03-Feb-2016 |
Shawn Willden <swillden@google.com> |
Add KM_TAG_ATTESTATION_CHALLENGE.
Bug: 22914603
Change-Id: Ibf1341f47ab3cecd4a8e3099b819c5cac0d81b17
/hardware/libhardware/include/hardware/keymaster_defs.h
|
| ef01d9796740b44d098ea1de355cb62af4f52cb5 |
|
29-Jan-2016 |
Shawn Willden <swillden@google.com> |
Merge "Add KM_TAG_ALLOW_WHILE_ON_BODY." am: f704e8a939
am: b9733d9bff
* commit 'b9733d9bff225ae0b16feeb64283b123225af465':
Add KM_TAG_ALLOW_WHILE_ON_BODY.
|
| 71ca0109becc23c7cfe49c57cbcb56e142667771 |
|
26-Jan-2016 |
Shawn Willden <swillden@google.com> |
Add KM_TAG_ALLOW_WHILE_ON_BODY.
Change-Id: I39ca0eee8be46a6acc65e975aad81d2f2c2aa5b8
/hardware/libhardware/include/hardware/keymaster_defs.h
|
| 1227f460cee2745a790b42611aee4dce82d2d4d6 |
|
25-Jan-2016 |
Shawn Willden <swillden@google.com> |
Merge "Add keymaster2 HAL." am: 0c5612db38
am: 7b4766882d
* commit '7b4766882d1a11a4b87570e7f0b83c5116a64f07':
Add keymaster2 HAL.
|
| cf30fe17fd6e367b43884a3091939fe6aa0ab603 |
|
22-Dec-2015 |
Shawn Willden <swillden@google.com> |
Add keymaster2 HAL.
Change-Id: Ibfcda30f33077f61e74701fa026983f9e72e140e
/hardware/libhardware/include/hardware/keymaster_defs.h
|
| 20e4f8ea3b175ee4d73ef12cbc28d00185f16fc5 |
|
23-Nov-2015 |
Shawn Willden <swillden@google.com> |
Merge "ECIES: adding ECIES-KEM" am: 3aa7935ef2 am: 7adb2d457c
am: 2eef78d355
* commit '2eef78d355c62f3e1b5ec626a080a7e3f91257c9':
ECIES: adding ECIES-KEM
|
| 40d59c8155ba3e47126993d96031ea088e45b22d |
|
03-Apr-2015 |
Thai Duong <thaidn@google.com> |
ECIES: adding ECIES-KEM
Change-Id: Iea5877eba0a9b13610d3d1b33d04b5657edc3550
/hardware/libhardware/include/hardware/keymaster_defs.h
|
| a3c0ae16ac1a9f7a8fced4b196d138cefa9462a5 |
|
12-Aug-2015 |
Chad Brubaker <cbrubaker@google.com> |
Fix benign unsigned overflow
On the last check of the conditional param_count-- causes an unsigned
wrap around. This isn't incorrect but does lead to a false positive with
fsanitize unsigned-integer-overflow
Change-Id: If3eb7a9e248d0404a434de2ead70e8c099e84ddf
/hardware/libhardware/include/hardware/keymaster_defs.h
|
| 70335f3d30cf32a6f0352b75430aa6474821399d |
|
08-Jul-2015 |
Shawn Willden <swillden@google.com> |
Correct keymaster1 documentation.
Bug: 22291207
Change-Id: I130d2ab2110321dc2228d41a154750da3a3f0b75
/hardware/libhardware/include/hardware/keymaster_defs.h
|
| a3f0ab55a73d4c21de9f34ec21f27a2609b568fd |
|
08-Jul-2015 |
Shawn Willden <swillden@google.com> |
Add KM_TAG_MIN_MAC_LENGTH.
This allows the binding of minimum length for MACs or tags to HMAC keys
and AEAD symmetric keys. Later attempts to use these keys with a
shorter MAC or tag specification (provided to begin() with
KM_TAG_MAC_LENGTH) will fail with KM_ERROR_INVALID_MAC_LENGTH.
Bug: 22337277
Change-Id: Ic5292ce01bdd6ecde25aad115e4b407aadc85f23
/hardware/libhardware/include/hardware/keymaster_defs.h
|
| fe6bcfa71d7f79029b5b44d5fe8d7f8a80a967b2 |
|
24-Jun-2015 |
Shawn Willden <swillden@google.com> |
Revert "Revert "Rename keymaster tag types to clarify that integers are unsigned.""
This reverts commit 1fb6c227deb04b66dc0fe947a7ebb027dde0ecda.
Change-Id: Iccc8a7ff40a694b1e4420a5de4b847e62289ff42
/hardware/libhardware/include/hardware/keymaster_defs.h
|
| 1fb6c227deb04b66dc0fe947a7ebb027dde0ecda |
|
24-Jun-2015 |
Shawn Willden <swillden@google.com> |
Revert "Rename keymaster tag types to clarify that integers are unsigned."
This reverts commit 335920edaec77b77eac09f7966c337cbed93aa17.
Change-Id: Ib65f744b93ad2b62d5848dcf743397124a08911b
/hardware/libhardware/include/hardware/keymaster_defs.h
|
| 335920edaec77b77eac09f7966c337cbed93aa17 |
|
24-Jun-2015 |
Shawn Willden <swillden@google.com> |
Rename keymaster tag types to clarify that integers are unsigned.
Bug: 22008538
Change-Id: I699a0f03aaf0f9f49a78b310763364fc2fb34c90
/hardware/libhardware/include/hardware/keymaster_defs.h
|
| 396d6cbce987deac076ac1a636d3f7282ec9338d |
|
18-Jun-2015 |
Shawn Willden <swillden@google.com> |
Add new error codes for rate-limit and max-use failures.
Bug: 21607106
Change-Id: I2e5515efe51b84200ade8c4c4cc5db3800d4b658
/hardware/libhardware/include/hardware/keymaster_defs.h
|
| 7ac0c0f5ad1a7f5cc317b8f8d356edbb7f02ed24 |
|
18-Jun-2015 |
Shawn Willden <swillden@google.com> |
Update comments on now-unsed user ID and app ID tags.
I'd just remove them but Trusty keymaster has been generating keys with
KM_TAG_ALL_USERS and KM_TAG_ALL_APPLICATIONS, so removing them without
breaking those keys is tricky. Plus I think they may come back.
Bug: 21845167
Change-Id: I3b807e3e4bee64eba72b7fa6f1ee1929c4ca9dd0
/hardware/libhardware/include/hardware/keymaster_defs.h
|
| da89dde9787dfbd8c053119ab52d9e671106b18e |
|
18-Jun-2015 |
Shawn Willden <swillden@google.com> |
Remove KM_TAG_AEAD_TAG.
Bug: 19919114
Change-Id: I06fdd0f9b8e247587d800031d3367078423baa50
/hardware/libhardware/include/hardware/keymaster_defs.h
|
| 7eaa15ffa65239e8f4f23d21ff1a6ed66ed9a13f |
|
03-Jun-2015 |
Shawn Willden <swillden@google.com> |
Fix extern "C" guards.
Change-Id: Ibc8e023e3712903dbcbfac5fc64223e32775fe40
/hardware/libhardware/include/hardware/keymaster_defs.h
|
| 4144c64818fcb88905bc2632e3747be3681a1405 |
|
01-Jun-2015 |
Shawn Willden <swillden@google.com> |
Remove KM_TAG_CHUNK_LENGTH and add KM_TAG_AEAD_TAG
Bug: 19919114
Change-Id: I384f3d2fee2f68279c6518d9ac0a79e29bed0e52
/hardware/libhardware/include/hardware/keymaster_defs.h
|
| 4c19a3af3535eb3442ff7cc4235420baf16322b7 |
|
01-Jun-2015 |
Shawn Willden <swillden@google.com> |
Fix block mode numbering (CTR got added as 4 rather than 3)
Change-Id: I8c886c67ba081255ef18eb0f99ca1e6003fabb33
/hardware/libhardware/include/hardware/keymaster_defs.h
|
| fb769fc3125d2939683f2f5bff2cf25816e5838c |
|
11-May-2015 |
Shawn Willden <swillden@google.com> |
Add KM_TAG_BOOTLOADER_ONLY.
Change-Id: Ia507a1378487640683985dbce2e76679261900d3
(cherry picked from commit 3eed99a54b55a120c835de63b5872121b2fe98d1)
/hardware/libhardware/include/hardware/keymaster_defs.h
|
| 9b31a49c3633895d9a2bf08ddb2ea73f8e8d0c64 |
|
11-May-2015 |
Shawn Willden <swillden@google.com> |
Remove rescoping.
Rescoping was never a very good solution to the problem of supporting
multiple sets of authorizations for a given key material. For M we're
removing it and in the future a better solution will be provided.
Change-Id: I6f7585274487bd66e4d90e89014af41e9aa30411
(cherry picked from commit 7f10ab99fc63e99252d924b9e0bdfefef5374b40)
/hardware/libhardware/include/hardware/keymaster_defs.h
|
| 4bdd7cbd47c7b89f6a47c3dbba648a3d95f9a45d |
|
28-Apr-2015 |
Shawn Willden <swillden@google.com> |
Add KM_ERROR_CALLER_NONCE_PROHIBITED error code.
Bug: 20127433
Change-Id: I32eab62459003c526d3cf9ef108be7b2fd709960
/hardware/libhardware/include/hardware/keymaster_defs.h
|
| d359b044830b292f492f8a8df5471f869e358399 |
|
13-Apr-2015 |
Shawn Willden <swillden@google.com> |
Add KM_ORIGIN_UNKNOWN.
This designates keys whose origin cannot be determined because the
keymaster implementation is old and did not record it.
Change-Id: I3c366d527ed211c59f6dc04ddb48f3e9b3a07c7d
/hardware/libhardware/include/hardware/keymaster_defs.h
|
| fe895d1bf7fa366f2ca0b0fdebb1be07339cbcd2 |
|
26-Feb-2015 |
Shawn Willden <swillden@google.com> |
Make several key crypto parameters repeatable.
Note that there's a pre-requisite to landing this CL: The Nexus 9
keystore.flounder.so must be modified to translate between new and old
tag numbers when the TEE side is version 0.
Bug: 19509156
Change-Id: Ic584d8a6bf5601f9754563b67b3cc6b3ca6b5ff9
/hardware/libhardware/include/hardware/keymaster_defs.h
|
| 8d6cf2594c9524205a6f5823378d1b983a1ad073 |
|
07-Apr-2015 |
Shawn Willden <swillden@google.com> |
Simplify keymaster_key_origin_t.
Change-Id: Iaba6156f238ea3bb1ad103b88ccea17344d296af
/hardware/libhardware/include/hardware/keymaster_defs.h
|
| cd640d125f389576f15af75101dd2b372e907aca |
|
07-Apr-2015 |
Shawn Willden <swillden@google.com> |
Reduce the list of keymaster key formats to the required set.
Change-Id: I3a0830ab2066d4c16c084d19040ec98e520896d4
/hardware/libhardware/include/hardware/keymaster_defs.h
|
| 8412fdc42866b4d5c07370f06c2767a4cad5c23a |
|
07-Apr-2015 |
Shawn Willden <swillden@google.com> |
Reduce the list of keymaster padding modes to the required set.
Change-Id: If04ffc8e92678f57e2b730f77c0fab195e1096c4
/hardware/libhardware/include/hardware/keymaster_defs.h
|
| fe6c4f0633aa88c1cb84a46362cc74de1c4ddd1e |
|
07-Apr-2015 |
Shawn Willden <swillden@google.com> |
Reduce keymaster digest list to required set.
Change-Id: Id5c660feb7e71ea76473523e3a86e1ba01f19c82
/hardware/libhardware/include/hardware/keymaster_defs.h
|
| c7deedad047c6e5833daeaa2a73f25b77ba0b9eb |
|
07-Apr-2015 |
Shawn Willden <swillden@google.com> |
Reduce keymaster block modes to the required set.
Change-Id: I8f804978208e2c8701bd52dc79b5597a307b7e7a
/hardware/libhardware/include/hardware/keymaster_defs.h
|
| e9797a740c913cff9152f89d04fd6fb360dda048 |
|
07-Apr-2015 |
Shawn Willden <swillden@google.com> |
Reduce keymaster algorithm list to the required set.
Change-Id: Ibffddc5c3a5c728182f5ca7f6a76381413fc8645
/hardware/libhardware/include/hardware/keymaster_defs.h
|
| 4719acae0218b38226b6479a400efdcbb3593f21 |
|
14-Mar-2015 |
Shawn Willden <swillden@google.com> |
Add KM_TAG_USER_SECURE_ID.
This tag identifies the user authorized to use the key. Unlike
KM_TAG_USER_ID, its value does not reference the Linux-side user ID, but
a secure-world user ID, generated and managed by secure-world
authentication apps.
Bug: 19511945
Change-Id: I629ab2c47ee6d42de20a963ef283e330364c8ee7
/hardware/libhardware/include/hardware/keymaster_defs.h
|
| c51d01ed029458e8809eeb9c16f9ed2dbe755be4 |
|
19-Mar-2015 |
Shawn Willden <swillden@google.com> |
Use extern "C" rather than BEGIN/END_DECLS.
For compatibility with Trusty. I'll probably revert this later after I
find a proper fix for Trusty.
Change-Id: I49b4ae55251398eec2a6633e09bbc468f16a4d14
/hardware/libhardware/include/hardware/keymaster_defs.h
|
| c3ab05c3c40311cdae88eed35dc8884ecb5b1fd9 |
|
14-Mar-2015 |
Shawn Willden <swillden@google.com> |
Add KM_TAG_AUTH_TOKEN and corresponding auth token structure.
We may want to put the auth token structure elsewhere; it's consumed by
keymaster but produced by other components.
Bug: 19511945
Change-Id: Id9a22ad32137f3e0380c2812f790bbecab511d11
/hardware/libhardware/include/hardware/keymaster_defs.h
|
| ed94111cce5b3b6fff9833f99ea80f4ab7b37c04 |
|
12-Mar-2015 |
Shawn Willden <swillden@google.com> |
Add error codes.
Change-Id: I78cac1887fd41dd426e7d125a5f9c54e73188983
/hardware/libhardware/include/hardware/keymaster_defs.h
|
| 67411d6f5116c52c1b82330b6cd096974636db36 |
|
04-Mar-2015 |
Shawn Willden <swillden@google.com> |
Add keymaster_key_param_compare function.
This provides a reasonable ordering for params.
Change-Id: I1e3b403070d9e7621cc55c03ff9876ea3bbc699f
/hardware/libhardware/include/hardware/keymaster_defs.h
|
| fd4b4d5a9b692bbeedc310f3bc970d849035f43d |
|
24-Feb-2015 |
Shawn Willden <swillden@google.com> |
Separate keymaster0 and keymaster1 HALs.
For now the keymaster1 HAL still includes all of the keymaster0 entry
points, and soft_keymaster_device will continue to implement them. In
the near future the keymaster0 entry points will be removed, as soon as
we can ensure that keystore no longer needs them.
Change-Id: I5c54282c12d1c4b8b22ed4929b6e6c724a94ede4
/hardware/libhardware/include/hardware/keymaster_defs.h
|
| 340d0b12c5446f1d8c38209780fb00c205289d37 |
|
21-Feb-2015 |
Alex Klyubin <klyubin@google.com> |
Clarify the meaning of KM_TAG_MAC_LENGTH.
Change-Id: I18478923059783e955613142a8d3352f98f5d7b0
/hardware/libhardware/include/hardware/keymaster_defs.h
|
| 0e5fca1ca4777f5f5d5fa8bd0de139e42077881b |
|
18-Feb-2015 |
Shawn Willden <swillden@google.com> |
Merge changes Id4bdfdcb,Ib94f3606
* changes:
Added insecure (chunkless) AEAD option.
Add additional param lists to update and finish.
|
| 892ae44c5f805f6ac64e6e756964c79998411742 |
|
18-Feb-2015 |
Shawn Willden <swillden@google.com> |
Merge "Rename KM_TAG_ADDITIONAL_DATA to KM_TAG_ASSOCIATED_DATA"
|
| f883b988e7fa3b750c5a4b0ed8b53ce999ca3842 |
|
13-Feb-2015 |
Chad Brubaker <cbrubaker@google.com> |
Add explicit values to keymaster_key_format_t
Change-Id: I4113286396b16ca687fbd8bc38b2f16063fc1024
/hardware/libhardware/include/hardware/keymaster_defs.h
|
| 79d79346843e03e390ccc61787959ab9e59edf0f |
|
10-Feb-2015 |
Shawn Willden <swillden@google.com> |
Added insecure (chunkless) AEAD option.
Also moved chunk length specification to operation parameter rather than
keygen parameter.
Change-Id: Id4bdfdcb1c7b64b3f22b4027e037e37c2860ec39
/hardware/libhardware/include/hardware/keymaster_defs.h
|
| 67ba9e8144ba65ef6fe55bf8211530f2a55b320c |
|
07-Feb-2015 |
Shawn Willden <swillden@google.com> |
Rename KM_TAG_ADDITIONAL_DATA to KM_TAG_ASSOCIATED_DATA
Change-Id: Ieddd706ee205100719f7e2f9e18b3d9b07c37669
/hardware/libhardware/include/hardware/keymaster_defs.h
|
| e1b7636ca1c60b766a195ad20b3e2957f1edb375 |
|
03-Feb-2015 |
Shawn Willden <swillden@google.com> |
Add raw key format, for symmetric key import.
Change-Id: I38700cdafcf1f244584d6e88f8d9540c70a7de56
/hardware/libhardware/include/hardware/keymaster_defs.h
|
| f7745ac27e45cb3935f66d7b26ce46e952032893 |
|
03-Feb-2015 |
Shawn Willden <swillden@google.com> |
Remove "required" label from DSA algorithm.
Change-Id: I088e6094ec56f434356d11ab2032b1a5b1223334
/hardware/libhardware/include/hardware/keymaster_defs.h
|
| 41e91e9fa3ac011ade869238f3ce0b3f3ce1e025 |
|
30-Jan-2015 |
Shawn Willden <swillden@google.com> |
Add tag to allow caller-specified nonce.
Change-Id: I7c3c5bd5f26a4d465554c998f673e0ee2ab8b86e
/hardware/libhardware/include/hardware/keymaster_defs.h
|
| 6b424bea8074c997745b3758f8fde0ef925e3218 |
|
26-Jan-2015 |
Shawn Willden <swillden@google.com> |
Rename KM_ERROR_UNSUPPORTED_TAG_LENGTH to
KM_ERROR_UNSUPPORTED_MAC_LENGTH.
Change-Id: I514a136b5cbdb1ab1df67d44a22d68a09427a711
/hardware/libhardware/include/hardware/keymaster_defs.h
|
| dc0007bdb41f4ed49bc7a6e30908967cea503bf7 |
|
23-Jan-2015 |
Shawn Willden <swillden@google.com> |
Change per-boot tag and remove rescope auth timeout tag.
Change the boolean KM_TAG_SINGLE_USE_PER_BOOT to an integer-valued
KM_TAG_USES_PER_BOOT. This makes it more flexible without changing
implementation complexity.
Remove KM_TAG_RESCOPE_AUTH_TIMEOUT because there's no clear use case and
it seems unnecessarily complex.
Change-Id: Iad1512f5cc80f517e5ea7622288179c162bed2ad
/hardware/libhardware/include/hardware/keymaster_defs.h
|
| 9d645a003b0d77462a5f9696a238aacc32580f07 |
|
12-Jun-2014 |
Shawn Willden <swillden@google.com> |
Define keymaster HAL v0.4.
Change-Id: I040412443bbbe25bce3d44759d710b78eac36caa
/hardware/libhardware/include/hardware/keymaster_defs.h
|