Secretkeeper/VTS: Per-connection replay protection Add test coverage for replay protection in Secretkeeper. Test that: 1. Sk implementation encrypts/decrypts messages using correct sequence_numbers. 2. Out of order messages are not accepted. 3. The sequence numbers are per-connection ie, new SeqNum is used for a fresh connection. Also, refactor code. SeqNumbers are maintained by libsecretkeeper_client. Have sk_client use a handle to SkSession for SecretManagement requests. Replay protection tests however require more fine grained control of SeqNums. For these we have introduced `secret_management_request_custom_aad()` method. Bug: 316126411 Test: atest VtsSecretkeeperTargetTest Change-Id: I385856c04e185d2b300d59a1b54cb8f09cbf836f

commit: 3d33a135ad54c2b0ed23ea51d2dd2232f0efb66d [log] [tgz]
author: Shikha Panwar <shikhapanwar@google.com> Wed Dec 20 01:01:04 2023 +0000
committer: Shikha Panwar <shikhapanwar@google.com> Wed Dec 20 14:41:09 2023 +0000
tree: ea3bc29222d9e2ead621ed513dc4e4ce487e2507
parent: 73f66600e961718a80e82743a925a27f25c505ea [diff] [blame]
diff --git a/security/secretkeeper/aidl/vts/Android.bp b/security/secretkeeper/aidl/vts/Android.bp
index 7fc7a70..7de9d6a 100644
--- a/security/secretkeeper/aidl/vts/Android.bp
+++ b/security/secretkeeper/aidl/vts/Android.bp

@@ -27,6 +27,7 @@
     ],
     test_config: "AndroidTest.xml",
     rustlibs: [
+        "libsecretkeeper_client",
         "libsecretkeeper_comm_nostd",
         "libsecretkeeper_core_nostd",
         "android.hardware.security.secretkeeper-V1-rust",
commit	3d33a135ad54c2b0ed23ea51d2dd2232f0efb66d	[log] [tgz]
author	Shikha Panwar <shikhapanwar@google.com>	Wed Dec 20 01:01:04 2023 +0000
committer	Shikha Panwar <shikhapanwar@google.com>	Wed Dec 20 14:41:09 2023 +0000
tree	ea3bc29222d9e2ead621ed513dc4e4ce487e2507
parent	73f66600e961718a80e82743a925a27f25c505ea [diff] [blame]