Merge changes from topic "revert-1900930-version-bump-TMGXYBHYHZ" * changes: Revert "Bump keystore2 AIDL API version 1->2" Revert "keystore2: cope with new curve25519 enum"

commit: 145169ac1e8c201c11efdc985f270ac56a1ffec5 [log] [tgz]
author: David Drysdale <drysdale@google.com> Mon Dec 13 16:14:16 2021 +0000
committer: Gerrit Code Review <noreply-gerritcodereview@google.com> Mon Dec 13 16:14:16 2021 +0000
tree: 9f12088f4516ab5dad7e532059113b7aa7e819ce
parent: 469c99c2853e1b69aeeb5fc0b0600a6b29fb4c71 [diff]
parent: 6b96760c1be3c517d549edcb96a35798788edd27 [diff]
diff --git a/keystore2/Android.bp b/keystore2/Android.bp
index 520237a..3097bae 100644
--- a/keystore2/Android.bp
+++ b/keystore2/Android.bp

@@ -39,7 +39,7 @@
         "android.security.maintenance-rust",
         "android.security.metrics-rust",
         "android.security.remoteprovisioning-rust",
-        "android.system.keystore2-V2-rust",
+        "android.system.keystore2-V1-rust",
         "libanyhow",
         "libbinder_rs",
         "libkeystore2_aaid-rust",

diff --git a/keystore2/aidl/Android.bp b/keystore2/aidl/Android.bp
index 7eb2b83..35006be 100644
--- a/keystore2/aidl/Android.bp
+++ b/keystore2/aidl/Android.bp

@@ -24,7 +24,7 @@
 aidl_interface {
     name: "android.security.attestationmanager",
     srcs: [ "android/security/attestationmanager/*.aidl", ],
-    imports: [ "android.hardware.security.keymint-V2" ],
+    imports: [ "android.hardware.security.keymint-V1" ],
     unstable: true,
     backend: {
         java: {
@@ -45,7 +45,7 @@
     name: "android.security.authorization",
     srcs: [ "android/security/authorization/*.aidl" ],
     imports: [
-        "android.hardware.security.keymint-V2",
+        "android.hardware.security.keymint-V1",
         "android.hardware.security.secureclock-V1",
     ],
     unstable: true,
@@ -86,7 +86,7 @@
     name: "android.security.compat",
     srcs: [ "android/security/compat/*.aidl" ],
     imports: [
-        "android.hardware.security.keymint-V2",
+        "android.hardware.security.keymint-V1",
         "android.hardware.security.secureclock-V1",
         "android.hardware.security.sharedsecret-V1",
     ],
@@ -110,7 +110,7 @@
     name: "android.security.remoteprovisioning",
     srcs: [ "android/security/remoteprovisioning/*.aidl" ],
     imports: [
-        "android.hardware.security.keymint-V2",
+        "android.hardware.security.keymint-V1",
     ],
     unstable: true,
     backend: {
@@ -132,7 +132,7 @@
     name: "android.security.maintenance",
     srcs: [ "android/security/maintenance/*.aidl" ],
     imports: [
-        "android.system.keystore2-V2",
+        "android.system.keystore2-V1",
     ],
     unstable: true,
     backend: {
@@ -173,7 +173,7 @@
     name: "android.security.metrics",
     srcs: [ "android/security/metrics/*.aidl" ],
     imports: [
-        "android.system.keystore2-V2",
+        "android.system.keystore2-V1",
     ],
     unstable: true,
     backend: {
@@ -197,13 +197,13 @@
 cc_defaults {
     name: "keystore2_use_latest_aidl_ndk_static",
     static_libs: [
-        "android.system.keystore2-V2-ndk",
+        "android.system.keystore2-V1-ndk",
     ],
 }
 
 cc_defaults {
     name: "keystore2_use_latest_aidl_ndk_shared",
     shared_libs: [
-        "android.system.keystore2-V2-ndk",
+        "android.system.keystore2-V1-ndk",
     ],
 }

diff --git a/keystore2/aidl/android/security/metrics/EcCurve.aidl b/keystore2/aidl/android/security/metrics/EcCurve.aidl
index 7b1a5a2..b190d83 100644
--- a/keystore2/aidl/android/security/metrics/EcCurve.aidl
+++ b/keystore2/aidl/android/security/metrics/EcCurve.aidl

@@ -29,5 +29,4 @@
     P_256 = 2,
     P_384 = 3,
     P_521 = 4,
-    CURVE_25519 = 5,
 }
\ No newline at end of file

diff --git a/keystore2/android.system.keystore2-service.xml b/keystore2/android.system.keystore2-service.xml
index 20c2fba..6b8d0cb 100644
--- a/keystore2/android.system.keystore2-service.xml
+++ b/keystore2/android.system.keystore2-service.xml

@@ -1,7 +1,6 @@
 <manifest version="1.0" type="framework">
     <hal format="aidl">
         <name>android.system.keystore2</name>
-        <version>2</version>
         <interface>
             <name>IKeystoreService</name>
             <instance>default</instance>

diff --git a/keystore2/src/km_compat/km_compat_type_conversion.h b/keystore2/src/km_compat/km_compat_type_conversion.h
index 33248a4..de09477 100644
--- a/keystore2/src/km_compat/km_compat_type_conversion.h
+++ b/keystore2/src/km_compat/km_compat_type_conversion.h

@@ -16,9 +16,6 @@
 
 #pragma once
 
-#include <optional>
-
-#include <aidl/android/hardware/security/keymint/EcCurve.h>
 #include <aidl/android/hardware/security/keymint/ErrorCode.h>
 #include <keymasterV4_1/keymaster_tags.h>
 #include <keymint_support/keymint_tags.h>
@@ -281,7 +278,7 @@
     }
 }
 
-static std::optional<V4_0::EcCurve> convert(KMV1::EcCurve e) {
+static V4_0::EcCurve convert(KMV1::EcCurve e) {
     switch (e) {
     case KMV1::EcCurve::P_224:
         return V4_0::EcCurve::P_224;
@@ -291,11 +288,7 @@
         return V4_0::EcCurve::P_384;
     case KMV1::EcCurve::P_521:
         return V4_0::EcCurve::P_521;
-    case KMV1::EcCurve::CURVE_25519:
-        // KeyMaster did not support curve 25519
-        return std::nullopt;
     }
-    return std::nullopt;
 }
 
 static KMV1::EcCurve convert(V4_0::EcCurve e) {
@@ -497,9 +490,7 @@
         break;
     case KMV1::Tag::EC_CURVE:
         if (auto v = KMV1::authorizationValue(KMV1::TAG_EC_CURVE, kp)) {
-            if (auto curve = convert(v->get())) {
-                return V4_0::makeKeyParameter(V4_0::TAG_EC_CURVE, curve.value());
-            }
+            return V4_0::makeKeyParameter(V4_0::TAG_EC_CURVE, convert(v->get()));
         }
         break;
     case KMV1::Tag::RSA_PUBLIC_EXPONENT:

diff --git a/keystore2/src/metrics_store.rs b/keystore2/src/metrics_store.rs
index 0b29b25..741d65e 100644
--- a/keystore2/src/metrics_store.rs
+++ b/keystore2/src/metrics_store.rs

@@ -287,7 +287,6 @@
                     EcCurve::P_256 => MetricsEcCurve::P_256,
                     EcCurve::P_384 => MetricsEcCurve::P_384,
                     EcCurve::P_521 => MetricsEcCurve::P_521,
-                    EcCurve::CURVE_25519 => MetricsEcCurve::CURVE_25519,
                     _ => MetricsEcCurve::EC_CURVE_UNSPECIFIED,
                 }
             }
commit	145169ac1e8c201c11efdc985f270ac56a1ffec5	[log] [tgz]
author	David Drysdale <drysdale@google.com>	Mon Dec 13 16:14:16 2021 +0000
committer	Gerrit Code Review <noreply-gerritcodereview@google.com>	Mon Dec 13 16:14:16 2021 +0000
tree	9f12088f4516ab5dad7e532059113b7aa7e819ce
parent	469c99c2853e1b69aeeb5fc0b0600a6b29fb4c71 [diff]
parent	6b96760c1be3c517d549edcb96a35798788edd27 [diff]