Keystore2: Fix an error in auth token filtering by age. This CL fixes an error in filtering auth tokens for credstore, which is found via android.security.identity.cts.UserAuthTest#testUserAuth. Test: CtsVerifier Test: atest android.security.identity.cts Test: atest VtsHalIdentityTargetTest Change-Id: I316bc0c2fb717e9953e0bb430a025b7b053da6ae

commit: 971dbb62f5b1cb79561cd01b99c65e28033f4368 [log] [tgz]
author: Hasini Gunasinghe <hasinitg@google.com> Tue Mar 23 14:57:34 2021 +0000
committer: Hasini Gunasinghe <hasinitg@google.com> Tue Mar 23 14:57:34 2021 +0000
tree: b1e9e9b3b122183b9bd27e5c084071c34dc630cb
parent: 4b462a511a6d060c6998e2215ac0f20a44329931 [diff]
diff --git a/keystore2/src/enforcements.rs b/keystore2/src/enforcements.rs
index 06648f1..2cc704b 100644
--- a/keystore2/src/enforcements.rs
+++ b/keystore2/src/enforcements.rs

@@ -804,7 +804,7 @@
                     let token_valid = now_in_millis
                         .checked_sub(auth_token_entry.time_received().milli_seconds())
                         .map_or(false, |token_age_in_millis| {
-                            token_age_in_millis > auth_token_max_age_millis
+                            auth_token_max_age_millis > token_age_in_millis
                         });
                     token_valid && auth_token_entry.satisfies(&sids, auth_type)
                 })
commit	971dbb62f5b1cb79561cd01b99c65e28033f4368	[log] [tgz]
author	Hasini Gunasinghe <hasinitg@google.com>	Tue Mar 23 14:57:34 2021 +0000
committer	Hasini Gunasinghe <hasinitg@google.com>	Tue Mar 23 14:57:34 2021 +0000
tree	b1e9e9b3b122183b9bd27e5c084071c34dc630cb
parent	4b462a511a6d060c6998e2215ac0f20a44329931 [diff]