Gitiles
Code Review Sign In
gerrit.omnirom.org / android_system_security / 60d7ed1fdb4b2934a28b022f310f8744f5721b67
commit60d7ed1fdb4b2934a28b022f310f8744f5721b67[log] [tgz]
authorMax Bires <jbires@google.com>Fri Mar 05 15:59:22 2021 -0800
committerMax Bires <jbires@google.com>Tue Mar 09 20:53:12 2021 -0800
tree3f3943a9560c4eb08f0864873e81bbcd139fc8ce
parent1811cad968c962a85dba20f9202b9b28108bab60 [diff]
Adding the ability to delete all attestation keys

This feature primarily supports better testing, by making sure the
system is completely cleaned up after running tests. There are potential
other use cases for this, such as deleting attestation keys that haven't
yet been included in a certificate signing request, if there are
compatibility issues in CBOR formats during an upgrade of the KM HAL. It
would be simpler and more robust to simply delete and regenerate keys on
the upgraded instance than attempt to upgrade the CBOR formats.

Test: keystore2_test

Change-Id: I8a636a47f54dc9265f5f503ac59546aa717ea61b
3 files changed
tree: 3f3943a9560c4eb08f0864873e81bbcd139fc8ce
  1. fsverity_init/
  2. identity/
  3. keystore/
  4. keystore-engine/
  5. keystore2/
  6. ondevice-signing/
  7. provisioner/
  8. rustfmt.toml ⇨ ../../build/soong/scripts/rustfmt.toml
  9. .clang-format
  10. .gitignore
  11. Android.bp
  12. METADATA
  13. MODULE_LICENSE_APACHE2
  14. NOTICE
  15. OWNERS
  16. PREUPLOAD.cfg