Replace Entropy with RAND_bytes /dev/urandom is not an approved random number generator for NIAP certification. Changing to use BoringSSL's RAND_bytes(), which is approved. Bug: 121272336 Test: Ran Keystore CTS tests against Walleye Change-Id: I579d140ef56c90b477b0d8989e3b02375681aee8

commit: 44d1afa2c02e782ba3023770063c057faf4687f3 [log] [tgz]
author: Branden Archer <brarcher@google.com> Fri Dec 28 09:10:49 2018 -0800
committer: Branden Archer <brarcher@google.com> Fri Dec 28 10:19:15 2018 -0800
tree: 32fd67faf63d74362f35fb734b8d59a43023fcd9
parent: fe2a27d9a92784e6ee3e3a3e18c1d89ab220f22f [diff] [blame]
diff --git a/keystore/KeyStore.h b/keystore/KeyStore.h
index d2049a4..25ff3a5 100644
--- a/keystore/KeyStore.h
+++ b/keystore/KeyStore.h

@@ -75,7 +75,7 @@
 
 class KeyStore : public ::android::IBinder::DeathRecipient {
   public:
-    KeyStore(Entropy* entropy, const KeymasterDevices& kmDevices,
+    KeyStore(const KeymasterDevices& kmDevices,
              SecurityLevel minimalAllowedSecurityLevelForNewKeys);
     ~KeyStore();
 
@@ -148,7 +148,6 @@
     static const char* kMetaDataFile;
     static const android::String16 kRsaKeyType;
     static const android::String16 kEcKeyType;
-    Entropy* mEntropy;
 
     KeymasterWorkers mKmDevices;
commit	44d1afa2c02e782ba3023770063c057faf4687f3	[log] [tgz]
author	Branden Archer <brarcher@google.com>	Fri Dec 28 09:10:49 2018 -0800
committer	Branden Archer <brarcher@google.com>	Fri Dec 28 10:19:15 2018 -0800
tree	32fd67faf63d74362f35fb734b8d59a43023fcd9
parent	fe2a27d9a92784e6ee3e3a3e18c1d89ab220f22f [diff] [blame]