commit 05900c1ad8bb08646bdcbb68a90904b86ebf1c45
author Brian C. Young <bcyoung@google.com> Fri Dec 08 13:29:09 2017 -0800
committer Brian C. Young <bcyoung@google.com> Thu Feb 15 11:16:38 2018 -0800
tree 24e4fd6a3d5ac51fc12a11bc1e192e71fc7b5750
parent 3bd6a51a6d49e465bcb03a43998f5bd9367fb59c

Restore "Add "Unlocked device required" parameter to keys"

Add a keymaster parameter for keys that should be inaccessible when
the device screen is locked. "Locked" here is a state where the device
can be used or accessed without any further trust factor such as a
PIN, password, fingerprint, or trusted face or voice.

This parameter is added to the Java keystore interface for key
creation and import, as well as enums specified by and for the native
keystore process.

This reverts commit 1b75929a58c32882d21d04ee1df2a60a199923bd.

Test: CTS tests in I8a5affd1eaed176756175158e3057e44934fffed

Bug: 67752510

Change-Id: I4becf698f8bc34b7a9d53ab2200480480fdd1a9c

keystore/key_store_service.h

diff --git a/keystore/key_store_service.h b/keystore/key_store_service.h
index ce809f8..b238dc4 100644
--- a/keystore/key_store_service.h
+++ b/keystore/key_store_service.h
@@ -145,7 +145,7 @@
                                     int32_t* _aidl_return) override;
     ::android::binder::Status isOperationAuthorized(const ::android::sp<::android::IBinder>& token,
                                                     bool* _aidl_return) override;
-    ::android::binder::Status addAuthToken(const ::std::vector<uint8_t>& authToken,
+    ::android::binder::Status addAuthToken(const ::std::vector<uint8_t>& authToken, int32_t userId,
                                            int32_t* _aidl_return) override;
     ::android::binder::Status onUserAdded(int32_t userId, int32_t parentId,
                                           int32_t* _aidl_return) override;