Fix bug in VTS attestation cert verification. Keymaster VTS is failing to verify that the last certificate in the chain is self-signed. CTS and GTS tests verify this, but it should be validated at this level as well. Bug: 79123157 Test: VtsHalKeymasterV3_0TargetTest Change-Id: I5ff33fc8186182c2cf8d43d90cd59f89ce45d416

commit: 44dc86edf848c0e311340ddab5378e76979f486f [log] [tgz]
author: Shawn Willden <swillden@google.com> Fri May 04 10:08:36 2018 -0600
committer: Shawn Willden <swillden@google.com> Fri May 04 16:15:06 2018 +0000
tree: 33778ad56676f65e03b55c8b634b66a596a5ed68
parent: 515324a7a455c15dcad7902d456e9c32bc19b13b [diff]
diff --git a/keymaster/3.0/vts/functional/keymaster_hidl_hal_test.cpp b/keymaster/3.0/vts/functional/keymaster_hidl_hal_test.cpp
index d5c006e..c90e96c 100644
--- a/keymaster/3.0/vts/functional/keymaster_hidl_hal_test.cpp
+++ b/keymaster/3.0/vts/functional/keymaster_hidl_hal_test.cpp

@@ -294,7 +294,7 @@
 }
 
 bool verify_chain(const hidl_vec<hidl_vec<uint8_t>>& chain) {
-    for (size_t i = 0; i < chain.size() - 1; ++i) {
+    for (size_t i = 0; i < chain.size(); ++i) {
         X509_Ptr key_cert(parse_cert_blob(chain[i]));
         X509_Ptr signing_cert;
         if (i < chain.size() - 1) {
commit	44dc86edf848c0e311340ddab5378e76979f486f	[log] [tgz]
author	Shawn Willden <swillden@google.com>	Fri May 04 10:08:36 2018 -0600
committer	Shawn Willden <swillden@google.com>	Fri May 04 16:15:06 2018 +0000
tree	33778ad56676f65e03b55c8b634b66a596a5ed68
parent	515324a7a455c15dcad7902d456e9c32bc19b13b [diff]