Symmetric keyguard-bound superencryption Bug: 163866361 Test: keystore2_test Test: atest android.keystore.cts.CipherTest#testEmptyPlaintextEncryptsAndDecryptsWhenUnlockedRequired Change-Id: I8b6136dce9ae93ffbeea04f41eaf468f82c67a91

commit: 7a65839abae7d6f425735b83602573e43824152a [log] [tgz]
author: Paul Crowley <paulcrowley@google.com> Thu Mar 18 17:08:20 2021 -0700
committer: Paul Crowley <paulcrowley@google.com> Wed Mar 24 13:13:04 2021 -0700
tree: a492d2e59498cd45e54a80626f34e673ee42b040
parent: 7bb5eddbeb72b18404c6a3b69d9a3ad4180b0258 [diff] [blame]
diff --git a/keystore2/src/legacy_blob.rs b/keystore2/src/legacy_blob.rs
index 5f40ece..b15abfa 100644
--- a/keystore2/src/legacy_blob.rs
+++ b/keystore2/src/legacy_blob.rs

@@ -965,8 +965,7 @@
                             let decrypted = match key_manager
                                 .get_per_boot_key_by_user_id(uid_to_android_user(uid))
                             {
-                                Some(key) => aes_gcm_decrypt(data, iv, tag, &(key.get_key()))
-                                    .context(
+                                Some(key) => key.aes_gcm_decrypt(data, iv, tag).context(
                                     "In load_by_uid_alias: while trying to decrypt legacy blob.",
                                 )?,
                                 None => {
commit	7a65839abae7d6f425735b83602573e43824152a	[log] [tgz]
author	Paul Crowley <paulcrowley@google.com>	Thu Mar 18 17:08:20 2021 -0700
committer	Paul Crowley <paulcrowley@google.com>	Wed Mar 24 13:13:04 2021 -0700
tree	a492d2e59498cd45e54a80626f34e673ee42b040
parent	7bb5eddbeb72b18404c6a3b69d9a3ad4180b0258 [diff] [blame]