ea47d3f78bd6902e406f5faf84a5477112f10e3e |
|
06-Dec-2017 |
Eran Messeri <eranm@google.com> |
Keystore: Enable key attestation from the system context. When key attestation is requested by the system context, indicate, in the attestation record, that the requesting package is the system and not a user app. This is done by including a single package information with "AndroidSystem" as the package name and an empty signature. This change is needed because the package manager currently fails to provide package details for the system context (UID 1000). Even if it did, it would be too verbose and include irrelevant packages. This is necessary for supporting key attestation for keys generated directly by KeyChain. Bug: 63388672 Test: Combined with CTS tests for the attestation feature. Change-Id: I33492ad1286709fe94b11be77e94d4effdf7566f
/system/security/keystore/KeyAttestationApplicationId.cpp
|