Gitiles
Code Review Sign In
gerrit.omnirom.org / android_frameworks_base / 912e35b698089b41083153e271ddef13e8e7261d^! / .
commit912e35b698089b41083153e271ddef13e8e7261d[log] [tgz]
authorEric Biggers <ebiggers@google.com>Thu Oct 19 19:47:14 2023 +0000
committerEric Biggers <ebiggers@google.com>Tue Oct 24 21:25:21 2023 +0000
treedb8ed4c58e2817bac21d0d6a25dfad272759213a
parent132300bd4304c88371ef6147e397006f6f256bed [diff]
Improve documentation for unlockUserKeyIfUnsecured()

Document more clearly what unlockUserKeyIfUnsecured() actually does.  It
probably should be renamed to something clearer (I'm thinking of just
changing "Key" to "Keys"), but this is a start.

Bug: 306204742
Flag: exempt, comment-only change
Test: presubmit
Change-Id: Ib35a62fb4627db5755fac57609b1fbb3a659492d

diff --git a/core/java/com/android/internal/widget/LockPatternUtils.java b/core/java/com/android/internal/widget/LockPatternUtils.java
index a3e2706..8d11672 100644
--- a/core/java/com/android/internal/widget/LockPatternUtils.java
+++ b/core/java/com/android/internal/widget/LockPatternUtils.java

@@ -1934,15 +1934,21 @@
     }
 
     /**
-     * Unlocks the credential-encrypted storage for the given user if the user is not secured, i.e.
-     * doesn't have an LSKF.
+     * If the user is not secured, ie doesn't have an LSKF, then decrypt the user's synthetic
+     * password and use it to unlock various cryptographic keys associated with the user.  This
+     * primarily includes unlocking the user's credential-encrypted (CE) storage.  It also includes
+     * deriving or decrypting the vendor auth secret and sending it to the AuthSecret HAL.
      * <p>
-     * Whether the storage has been unlocked can be determined by
-     * {@link StorageManager#isUserKeyUnlocked()}.
-     *
+     * These tasks would normally be done when the LSKF is verified.  This method is where these
+     * tasks are done when the user doesn't have an LSKF.  It's called when the user is started.
+     * <p>
+     * Except on permission denied, this method doesn't throw an exception on failure.  However, the
+     * last thing that it does is unlock CE storage, and whether CE storage has been successfully
+     * unlocked can be determined by {@link StorageManager#isCeStorageUnlocked()}.
+     * <p>
      * Requires the {@link android.Manifest.permission#ACCESS_KEYGUARD_SECURE_STORAGE} permission.
      *
-     * @param userId the ID of the user whose storage to unlock
+     * @param userId the ID of the user whose keys to unlock
      */
     public void unlockUserKeyIfUnsecured(@UserIdInt int userId) {
         try {