credstore: Never pass an empty challenge.
Bug: 156911917
Bug: 158107945
Test: atest VtsHalIdentityTargetTest
Test: atest android.security.identity.cts
Merged-In: Ia274fcbaabb0c0ec7c884070eb30737dc236c064
Change-Id: I51c450c1ac3f09ec1ce1d1e5eb43fe5c9eeb47c0
diff --git a/identity/WritableCredential.cpp b/identity/WritableCredential.cpp
index cb2d6ff..a932dcf 100644
--- a/identity/WritableCredential.cpp
+++ b/identity/WritableCredential.cpp
@@ -149,7 +149,7 @@
WritableCredential::personalize(const vector<AccessControlProfileParcel>& accessControlProfiles,
const vector<EntryNamespaceParcel>& entryNamespaces,
int64_t secureUserId, vector<uint8_t>* _aidl_return) {
- Status ensureStatus = ensureAttestationCertificateExists({});
+ Status ensureStatus = ensureAttestationCertificateExists({0x00}); // Challenge cannot be empty.
if (!ensureStatus.isOk()) {
return ensureStatus;
}