Gitiles
Code Review Sign In
review.shift-gmbh.com / SHIFTPHONES / android_frameworks_base / a9fae14c3345aa91721dfbb54dee8d7572a81ba8
commita9fae14c3345aa91721dfbb54dee8d7572a81ba8[log] [tgz]
authorRobert Berry <robertberry@google.com>Mon Dec 11 14:34:29 2017 +0000
committerRobert Berry <robertberry@google.com>Mon Dec 18 23:25:33 2017 +0000
treeb429eaa763c6c788bec02db5988e97f823085c3a
parent112d5f09ce2c72262f5fc6ea4563f6495f2fb56c [diff]
Add PlatformKeyManager helper for RecoverableKeyStoreLoader

Manages generating the platform key and then loading it into AndroidKeyStore
with different permissions for 'decrypt' and 'encrypt'. Encrypt should be always
available, so as to enable us to generate application keys at any time, and be
able to sync them wrapped with the platform key to disk. Decrypt should only be
available shortly after a screen unlock - i.e., so that we can unwrap the keys
persisted to disk, then rewrap them with the recovery key and sync them to the
remote storage.

Test: adb shell am instrument -w -e package com.android.server.locksettings.recoverablekeystore com.android.frameworks.servicestests/android.support.test.runner.AndroidJUnitRunner
Change-Id: I7575ea1c3c78d5544ef763324ac47dffb3993b55
5 files changed
tree: b429eaa763c6c788bec02db5988e97f823085c3a
  1. apct-tests/
  2. api/
  3. cmds/
  4. config/
  5. core/
  6. data/
  7. docs/
  8. drm/
  9. graphics/
  10. keystore/
  11. libs/
  12. location/
  13. lowpan/
  14. media/
  15. native/
  16. nfc-extras/
  17. obex/
  18. opengl/
  19. packages/
  20. proto/
  21. rs/
  22. samples/
  23. sax/
  24. services/
  25. telecomm/
  26. telephony/
  27. test-base/
  28. test-mock/
  29. test-runner/
  30. tests/
  31. tools/
  32. vr/
  33. wifi/
  34. Android.bp
  35. Android.mk
  36. CleanSpec.mk
  37. MODULE_LICENSE_APACHE2
  38. NOTICE
  39. pathmap.mk
  40. PREUPLOAD.cfg