Gitiles
Code Review Sign In
gerrit.omnirom.org / android_system_security / ba1c9dc8a432050e13e8bbd90b51cad1cd982752
commitba1c9dc8a432050e13e8bbd90b51cad1cd982752[log] [tgz]
authorMartijn Coenen <maco@google.com>Thu Feb 04 13:18:29 2021 +0100
committerMartijn Coenen <maco@google.com>Mon Mar 08 16:31:53 2021 +0100
tree51a2cbd300d206f1b69e3a07424f98dd35037c5b
parent5588e4958bfda09dcbe4b441af262ebbbd48b1af [diff]
On-device signing: Support keystore2 for keys.

Add code to support Keystore2. Keystore2 will offer a feature similar to
EARLY_BOOT_KEYS in Keymaster 4.1, but it will also be hardware-enforced
in older Keymaster versions. For now, have the code support both paths,
and stick with Keymaster 4.1 until Keystore2 is merged.

Bug: 165630556
Test: Local
Change-Id: If62837bf6fb1398bd30ce9422cbf3082a5cbf1e2
12 files changed
tree: 51a2cbd300d206f1b69e3a07424f98dd35037c5b
  1. fsverity_init/
  2. identity/
  3. keystore/
  4. keystore-engine/
  5. keystore2/
  6. ondevice-signing/
  7. provisioner/
  8. rustfmt.toml ⇨ ../../build/soong/scripts/rustfmt.toml
  9. .clang-format
  10. .gitignore
  11. Android.bp
  12. METADATA
  13. MODULE_LICENSE_APACHE2
  14. NOTICE
  15. OWNERS
  16. PREUPLOAD.cfg