Gitiles
Code Review Sign In
gerrit.omnirom.org / android_system_security / 76d95baf664502e93e703fe1d76e9a7304b36d9d
commit76d95baf664502e93e703fe1d76e9a7304b36d9d[log] [tgz]
authorDavid Drysdale <drysdale@google.com>Wed Sep 25 14:00:10 2024 +0100
committerDavid Drysdale <drysdale@google.com>Wed Sep 25 14:00:10 2024 +0100
treebacc0752aa8a00254bbfb6ab202c3187f361120f
parent94b1285f47007190c767bffd65feb35480156fe8 [diff]
Remove incorrect/confusing Certificate use

The `Certificate` type from the KeyMint AIDL is intended to hold a
single DER-encoded certificate, but some of the RKP-handling code
re-uses it to hold a concatenated cert chain.

Remove as many of these incorrect/misleading uses of the AIDL
`Certificate` type as possible, and add comments for the ones remaining.

Flag: none, comments + pure refactor
Test: keystore2_client_tests
Change-Id: Id159078f31dd892d51596cc67308ced27fadd968
3 files changed
tree: bacc0752aa8a00254bbfb6ab202c3187f361120f
  1. fsverity/
  2. fsverity_init/
  3. identity/
  4. keystore/
  5. keystore-engine/
  6. keystore2/
  7. mls/
  8. ondevice-signing/
  9. prng_seeder/
  10. provisioner/
  11. rustfmt.toml ⇨ ../../build/soong/scripts/rustfmt.toml
  12. .clang-format
  13. .gitignore
  14. Android.bp
  15. METADATA
  16. MODULE_LICENSE_APACHE2
  17. NOTICE
  18. OWNERS
  19. PREUPLOAD.cfg