NIAP: Log key integrity failure to audit log. Logs key integrity violation in two cases: 1. software-detected corruption of key blob. 2. keymaster operation returning INVALID_KEY_BLOB Changed AES_gcm_decrypt to return VALUE_CORRUPTED on decryption errors to be consistent with digest check for older version blob. Bug: 70886042 Test: manual, by patching some bytes in the blob. Test: cts-tradefed run cts -m CtsKeystoreTestCases Change-Id: Ic8f6b7a2a49aee01253b429644af409e568d7deb

commit: cef39477f9d5f52f716165be8fadcf94cab19b1e [log] [tgz]
author: Pavel Grafov <pgrafov@google.com> Mon Feb 12 18:45:02 2018 +0000
committer: Pavel Grafov <pgrafov@google.com> Thu Feb 15 18:20:28 2018 +0000
tree: b157374fb2b68cb0028d05bb176063c692bf0e64
parent: 3bd6a51a6d49e465bcb03a43998f5bd9367fb59c [diff] [blame]
diff --git a/keystore/blob.cpp b/keystore/blob.cpp
index aa1ae37..d21c691 100644
--- a/keystore/blob.cpp
+++ b/keystore/blob.cpp

@@ -114,13 +114,13 @@
     out_pos += out_len;
     if (!EVP_DecryptFinal_ex(ctx.get(), out_pos, &out_len)) {
         ALOGD("Failed to decrypt blob; ciphertext or tag is likely corrupted");
-        return ResponseCode::SYSTEM_ERROR;
+        return ResponseCode::VALUE_CORRUPTED;
     }
     out_pos += out_len;
     if (out_pos - out_tmp.get() != static_cast<ssize_t>(len)) {
         ALOGD("Encrypted plaintext is the wrong size, expected %zu, got %zd", len,
               out_pos - out_tmp.get());
-        return ResponseCode::SYSTEM_ERROR;
+        return ResponseCode::VALUE_CORRUPTED;
     }
 
     std::copy(out_tmp.get(), out_pos, out);
commit	cef39477f9d5f52f716165be8fadcf94cab19b1e	[log] [tgz]
author	Pavel Grafov <pgrafov@google.com>	Mon Feb 12 18:45:02 2018 +0000
committer	Pavel Grafov <pgrafov@google.com>	Thu Feb 15 18:20:28 2018 +0000
tree	b157374fb2b68cb0028d05bb176063c692bf0e64
parent	3bd6a51a6d49e465bcb03a43998f5bd9367fb59c [diff] [blame]