Add device id attestation This adds device id attestation to KeyStoreService. The service validates that the user holds the required permissions before allowing attestation to proceed. Bug: 34597337 Test: CTS CtsKeystoreTestCases and GTS DeviceIdAttestationHostTest Change-Id: I6ff6146fad4656b8e1367650de922124b3d7f7b2

commit: a9452d92ca705108dcb61545024348f3c24a62aa [log] [tgz]
author: Bartosz Fabianowski <bartfab@google.com> Mon Jan 23 22:21:11 2017 +0100
committer: Bartosz Fabianowski <bartfab@google.com> Wed Jan 25 03:55:15 2017 +0100
tree: 399928f023b4be331a673a172c6e1a9c97a10235
parent: 25daf8b2d66c412d7a7821e947fe77c7b596c8bd [diff] [blame]
diff --git a/keystore/legacy_keymaster_device_wrapper.h b/keystore/legacy_keymaster_device_wrapper.h
index 5712178..ad26221 100644
--- a/keystore/legacy_keymaster_device_wrapper.h
+++ b/keystore/legacy_keymaster_device_wrapper.h

@@ -68,6 +68,7 @@
                             upgradeKey_cb _hidl_cb) override;
     Return<ErrorCode> deleteKey(const hidl_vec<uint8_t>& keyBlob) override;
     Return<ErrorCode> deleteAllKeys() override;
+    Return<ErrorCode> destroyAttestationIds() override;
     Return<void> begin(KeyPurpose purpose, const hidl_vec<uint8_t>& key,
                        const hidl_vec<KeyParameter>& inParams, begin_cb _hidl_cb) override;
     Return<void> update(uint64_t operationHandle, const hidl_vec<KeyParameter>& inParams,
commit	a9452d92ca705108dcb61545024348f3c24a62aa	[log] [tgz]
author	Bartosz Fabianowski <bartfab@google.com>	Mon Jan 23 22:21:11 2017 +0100
committer	Bartosz Fabianowski <bartfab@google.com>	Wed Jan 25 03:55:15 2017 +0100
tree	399928f023b4be331a673a172c6e1a9c97a10235
parent	25daf8b2d66c412d7a7821e947fe77c7b596c8bd [diff] [blame]