| 94ea4e4caf0c41042df288b6fcdade01c0ce3430 |
|
28-Dec-2017 |
Robert Berry <robertberry@google.com> |
Encode vault params in key sync task
Still not sure how we're getting counter_id here, though?
Test: adb shell am instrument -w -e package com.android.server.locksettings.recoverablekeystore com.android.frameworks.servicestests/android.support.test.runner.AndroidJUnitRunner
Change-Id: Ic473fff4a19c1d044a6381a1459eca0835a55697
/frameworks/base/services/core/java/com/android/server/locksettings/recoverablekeystore/SecureBox.java
|
| b9a220b9b50ef8d0e19d619721209233b3253c2c |
|
21-Dec-2017 |
Robert Berry <robertberry@google.com> |
Implement recoverKeys
This implements all of recoverKeys, except for loading keys into the
AndroidKeyStore. Also omitting re-enrolling keys into the recoverable
store for now, as it is not clear whether the user will have a lock
screen set at this point. If they do not have a lock screen set, we
cannot re-enroll keys, as the platform-decrypt key is bound to the
lock screen. Also modifies SecureBox to throw AEADBadTagException for
any issues with the encrypted payload. IllegalArgumentException is
a runtime exception, so would be unexpected, but might occur if the
encrypted payload is for some reason garbage. Also, throw NPE if the
payload is null, as that is a programmer error - not something that
should ever occur at runtime.
Test: adb shell am instrument -w -e package com.android.server.locksettings.recoverablekeystore com.android.frameworks.servicestests/android.support.test.runner.AndroidJUnitRunner
Change-Id: I4f0be412c3044f3472a6aed514f1caf54b7ee41f
/frameworks/base/services/core/java/com/android/server/locksettings/recoverablekeystore/SecureBox.java
|
| c69d8097e5fb63de6ff66f252012506bd5406c7c |
|
19-Dec-2017 |
Bo Zhu <bozhu@google.com> |
Implement the SecureBox crypto functions
SecureBox provides a set of simple interfaces for performing encryptions
and decryptions, by using a public key owned by the recipient and/or a
secret shared by the sender and the recipient.
Bug: 69056040
Change-Id: I45abd7ec5d6f1fd6f6e3ad6d84352958dd838dd7
Fixes: 69056040
Test: adb shell am instrument -w -e package com.android.server.locksettings.recoverablekeystore com.android.frameworks.servicestests/android.support.test.runner.AndroidJUnitRunner
/frameworks/base/services/core/java/com/android/server/locksettings/recoverablekeystore/SecureBox.java
|
| 235dc9da69049e9910febf664df3908363efbc42 |
|
15-Dec-2017 |
Robert Berry <robertberry@google.com> |
Add recovery flow utils to KeySyncUtils
Currently KeySyncUtils only contains methods for the backup to cloud
flow. This adds utility methods for the restore flow, also. We still
haven't merged SecureBox, so the class they defer to at the moment
throws for most of these methods, meaning we can't yet add meaningful
unit tests.
Test: adb shell am instrument -w -e package com.android.server.locksettings.recoverablekeystore com.android.frameworks.servicestests/android.support.test.runner.AndroidJUnitRunner
Change-Id: I27fe8b33dd239488b11f2863b67af4575fa82b47
/frameworks/base/services/core/java/com/android/server/locksettings/recoverablekeystore/SecureBox.java
|
| d416ed5362125619ca715e1b748a434c04322801 |
|
13-Dec-2017 |
Robert Berry <robertberry@google.com> |
Add KeySyncUtils
Static methods to help with the RecoverableKeyStoreLoader remote sync
flow.
Test: adb shell am instrument -w -e package com.android.server.locksettings.recoverablekeystore com.android.frameworks.servicestests/android.support.test.runner.AndroidJUnitRunner
Change-Id: Ibd5a8f6c9ee2d4d118a9e6be9b813e192205d6dc
/frameworks/base/services/core/java/com/android/server/locksettings/recoverablekeystore/SecureBox.java
|