Add new IRemotelyProvisionedKeyPool service to keystore2 This service allows clients to request remotely provisioned attestation keys. These blobs are only usable by applications that have the ability to pass them to a keymint implementation for use as keys. This API is intended as a short-term solution in Android T to enable remote key provisioning for identity credential keys. In Android U, the underlying service will be updated to be more flexible allowing for IRemotelyProvisionedComponent to be implemented by things other than keymint. Test: keystore2_test Test: RemoteProvisionerUnitTests Test: VtsHalRemotelyProvisionedComponentTargetTest Bug: 194696876 Change-Id: I5ddb1bd087b606ccea88ccf170b99d5bc1b4501d

commit: 7ee79f9f71c406125a46a8a6e39357d76b20653d [log] [tgz]
author: Seth Moore <sethmo@google.com> Tue Dec 07 11:42:49 2021 -0800
committer: Seth Moore <sethmo@google.com> Mon Jan 24 15:11:21 2022 -0800
tree: 8879bdc2f933d853ed431a1a7f0ad910c495fb93
parent: c2950c8bf3ff52576e53a7419dc9e5a5a95d9d9f [diff] [blame]
diff --git a/keystore2/src/error.rs b/keystore2/src/error.rs
index f969cb6..84d741f 100644
--- a/keystore2/src/error.rs
+++ b/keystore2/src/error.rs

@@ -66,10 +66,15 @@
         Error::Rc(ResponseCode::SYSTEM_ERROR)
     }
 
-    /// Short hand for `Error::Rc(ResponseCode::PERMISSION_DENIED`
+    /// Short hand for `Error::Rc(ResponseCode::PERMISSION_DENIED)`
     pub fn perm() -> Self {
         Error::Rc(ResponseCode::PERMISSION_DENIED)
     }
+
+    /// Short hand for `Error::Rc(ResponseCode::OUT_OF_KEYS)`
+    pub fn out_of_keys() -> Self {
+        Error::Rc(ResponseCode::OUT_OF_KEYS)
+    }
 }
 
 /// Helper function to map the binder status we get from calls into KeyMint
commit	7ee79f9f71c406125a46a8a6e39357d76b20653d	[log] [tgz]
author	Seth Moore <sethmo@google.com>	Tue Dec 07 11:42:49 2021 -0800
committer	Seth Moore <sethmo@google.com>	Mon Jan 24 15:11:21 2022 -0800
tree	8879bdc2f933d853ed431a1a7f0ad910c495fb93
parent	c2950c8bf3ff52576e53a7419dc9e5a5a95d9d9f [diff] [blame]