94ea4e4caf0c41042df288b6fcdade01c0ce3430 |
|
28-Dec-2017 |
Robert Berry <robertberry@google.com> |
Encode vault params in key sync task Still not sure how we're getting counter_id here, though? Test: adb shell am instrument -w -e package com.android.server.locksettings.recoverablekeystore com.android.frameworks.servicestests/android.support.test.runner.AndroidJUnitRunner Change-Id: Ic473fff4a19c1d044a6381a1459eca0835a55697
/frameworks/base/services/core/java/com/android/server/locksettings/recoverablekeystore/SecureBox.java
|
b9a220b9b50ef8d0e19d619721209233b3253c2c |
|
21-Dec-2017 |
Robert Berry <robertberry@google.com> |
Implement recoverKeys This implements all of recoverKeys, except for loading keys into the AndroidKeyStore. Also omitting re-enrolling keys into the recoverable store for now, as it is not clear whether the user will have a lock screen set at this point. If they do not have a lock screen set, we cannot re-enroll keys, as the platform-decrypt key is bound to the lock screen. Also modifies SecureBox to throw AEADBadTagException for any issues with the encrypted payload. IllegalArgumentException is a runtime exception, so would be unexpected, but might occur if the encrypted payload is for some reason garbage. Also, throw NPE if the payload is null, as that is a programmer error - not something that should ever occur at runtime. Test: adb shell am instrument -w -e package com.android.server.locksettings.recoverablekeystore com.android.frameworks.servicestests/android.support.test.runner.AndroidJUnitRunner Change-Id: I4f0be412c3044f3472a6aed514f1caf54b7ee41f
/frameworks/base/services/core/java/com/android/server/locksettings/recoverablekeystore/SecureBox.java
|
c69d8097e5fb63de6ff66f252012506bd5406c7c |
|
19-Dec-2017 |
Bo Zhu <bozhu@google.com> |
Implement the SecureBox crypto functions SecureBox provides a set of simple interfaces for performing encryptions and decryptions, by using a public key owned by the recipient and/or a secret shared by the sender and the recipient. Bug: 69056040 Change-Id: I45abd7ec5d6f1fd6f6e3ad6d84352958dd838dd7 Fixes: 69056040 Test: adb shell am instrument -w -e package com.android.server.locksettings.recoverablekeystore com.android.frameworks.servicestests/android.support.test.runner.AndroidJUnitRunner
/frameworks/base/services/core/java/com/android/server/locksettings/recoverablekeystore/SecureBox.java
|
235dc9da69049e9910febf664df3908363efbc42 |
|
15-Dec-2017 |
Robert Berry <robertberry@google.com> |
Add recovery flow utils to KeySyncUtils Currently KeySyncUtils only contains methods for the backup to cloud flow. This adds utility methods for the restore flow, also. We still haven't merged SecureBox, so the class they defer to at the moment throws for most of these methods, meaning we can't yet add meaningful unit tests. Test: adb shell am instrument -w -e package com.android.server.locksettings.recoverablekeystore com.android.frameworks.servicestests/android.support.test.runner.AndroidJUnitRunner Change-Id: I27fe8b33dd239488b11f2863b67af4575fa82b47
/frameworks/base/services/core/java/com/android/server/locksettings/recoverablekeystore/SecureBox.java
|
d416ed5362125619ca715e1b748a434c04322801 |
|
13-Dec-2017 |
Robert Berry <robertberry@google.com> |
Add KeySyncUtils Static methods to help with the RecoverableKeyStoreLoader remote sync flow. Test: adb shell am instrument -w -e package com.android.server.locksettings.recoverablekeystore com.android.frameworks.servicestests/android.support.test.runner.AndroidJUnitRunner Change-Id: Ibd5a8f6c9ee2d4d118a9e6be9b813e192205d6dc
/frameworks/base/services/core/java/com/android/server/locksettings/recoverablekeystore/SecureBox.java
|