Diff - 93927dd3e90b6d91d0a33e48a92aa087f72b925e^! - android_system_security

commit	93927dd3e90b6d91d0a33e48a92aa087f72b925e	[log] [tgz]
author	Janis Danisevskis <jdanis@google.com>	Wed Dec 23 12:23:08 2020 -0800
committer	Janis Danisevskis <jdanis@google.com>	Tue Jan 12 08:41:39 2021 -0800
tree	24f84ca9e4878a842c1fff80f99eac3fce64b049
parent	0879008786003692b6cdd69587e6067222796ae9 [diff] [blame]

Keystore 2.0: Key garbage collection.

This patch introduces a key life cycle state in the keyentry table. We
use this to implement key garbage collection.
This patch:
 * Introduces the key lifecycle.
 * Database functionality for marking a key unreferenced, getting an
   unreferenced key, and purging keys from the database.
 * Implements the deleteKey API call of IKeyStoreService.
 * Implements async_task, a singke on-demand worker thread.
 * Implements a garbage collector that collects unreferenced
   keys and disposes off sensitive key material.
 * Remove security level from the blobentry table.

Bug: 159340471
Test: keystore2_test
Change-Id: I84ffd64eaae1b86c645b50f100b1b399b9e16e40

diff --git a/keystore2/src/lib.rs b/keystore2/src/lib.rs
index 3fb938c..6b1dea3 100644
--- a/keystore2/src/lib.rs
+++ b/keystore2/src/lib.rs

@@ -29,7 +29,9 @@
 pub mod service;
 pub mod utils;
 
+mod async_task;
 mod db_utils;
+mod gc;
 mod super_key;
 
 #[cfg(test)]