Commits · 03d6a34716dd0903fd439212e19bb32a485a38dc · halo / system_security

14 Aug, 2015 4 commits

am 2ac5cb65: (-s ours) Merge "Fix pessimizing move." · 03d6a347
Stephen Hines authored 9 years ago
```
* commit '2ac5cb65':
  Fix pessimizing move.
```
03d6a347
Merge "Fix pessimizing move." · 2ac5cb65
Stephen Hines authored 9 years ago

2ac5cb65

Stephen Hines authored 9 years ago

The std::move() here is unnecessary, and prohibits the compiler from
performing copy elision.

Change-Id: Ibdf515c4c0b0c07ff966c696e671a0526be1528e

c7f2a016

Fix pessimizing move. · 8533cf8d

Dan Albert authored 9 years ago

Using std::move here prevents the compiler from performing copy
elision.

Change-Id: I21ad9dfec4fe36dd935403c9fd0af5e20e131036
(cherry picked from commit 17ee05c5)

8533cf8d

13 Aug, 2015 2 commits

am : am : (-s ours) am : am : am : am... · 1ffa74c1

Chad Brubaker authored 9 years ago

am cbfdeefe: am 8a2c33b6: (-s ours) am 48d998cd: am aca71139: am 738d1e9d: am 1b8885ba: am 0d593526: Properly check for Blob max length

* commit 'cbfdeefe':
  Properly check for Blob max length

1ffa74c1

am : (-s ours) am : am : am : am : am... · cbfdeefe

Chad Brubaker authored 9 years ago

am 8a2c33b6: (-s ours) am 48d998cd: am aca71139: am 738d1e9d: am 1b8885ba: am 0d593526: Properly check for Blob max length

* commit '8a2c33b6':
  Properly check for Blob max length

cbfdeefe

12 Aug, 2015 8 commits
- am 48d998cd: am aca71139: am 738d1e9d: am 1b8885ba: am 0d593526: Properly check for Blob max length · 8a2c33b6
  Chad Brubaker authored 9 years ago
```
* commit '48d998cd':
  Properly check for Blob max length
```
  8a2c33b6
- am aca71139: am 738d1e9d: am 1b8885ba: am 0d593526: Properly check for Blob max length · 48d998cd
  Chad Brubaker authored 9 years ago
```
* commit 'aca71139':
  Properly check for Blob max length
```
  48d998cd
- am 738d1e9d: am 1b8885ba: am 0d593526: Properly check for Blob max length · aca71139
  Chad Brubaker authored 9 years ago
```
* commit '738d1e9d':
  Properly check for Blob max length
```
  aca71139
- am 1b8885ba: am 0d593526: Properly check for Blob max length · 738d1e9d
  Chad Brubaker authored 9 years ago
```
* commit '1b8885ba':
  Properly check for Blob max length
```
  738d1e9d
- am 0d593526: Properly check for Blob max length · 1b8885ba
  Chad Brubaker authored 9 years ago
```
* commit '0d593526':
  Properly check for Blob max length
```
  1b8885ba
- am 54b1e9ad: Properly check for Blob max length · b426dec9
  Chad Brubaker authored 9 years ago
```
* commit '54b1e9ad':
  Properly check for Blob max length
```
  b426dec9
- Properly check for Blob max length · 0d593526
  Chad Brubaker authored 9 years ago
```
sizeof(mBlob.value) is incorrect because writeBlob pads up to the next
AES_BLOCK_SIZE

Bug:22802399
Change-Id: I377edca2c7ea2cf4455f22f5f927fdad79893729
```
  0d593526
- Properly check for Blob max length · 54b1e9ad
  Chad Brubaker authored 9 years ago
```
sizeof(mBlob.value) is incorrect because writeBlob pads up to the next
AES_BLOCK_SIZE

Bug:22802399
Change-Id: I377edca2c7ea2cf4455f22f5f927fdad79893729
```
  54b1e9ad
05 Aug, 2015 3 commits

am : am : (-s ours) am : am : am : am... · 40ea4974

Chad Brubaker authored 9 years ago

am 4174f017: am c761a1ed: (-s ours) am 63bc525c: am 853b8d79: am fd1ad379: am 1c73457a: am b124c9e8: Fix unchecked length in Blob creation

* commit '4174f017':
  Fix unchecked length in Blob creation

40ea4974

am : (-s ours) am : am : am : am : am... · 4174f017

Chad Brubaker authored 9 years ago

am c761a1ed: (-s ours) am 63bc525c: am 853b8d79: am fd1ad379: am 1c73457a: am b124c9e8: Fix unchecked length in Blob creation

* commit 'c761a1ed':
  Fix unchecked length in Blob creation

4174f017

am : am : am : am : am : Fix unchecked... · c761a1ed

Chad Brubaker authored 9 years ago

am 63bc525c: am 853b8d79: am fd1ad379: am 1c73457a: am b124c9e8: Fix unchecked length in Blob creation

* commit '63bc525c':
  Fix unchecked length in Blob creation

c761a1ed

03 Aug, 2015 4 commits
- am 853b8d79: am fd1ad379: am 1c73457a: am b124c9e8: Fix unchecked length in Blob creation · 63bc525c
  Chad Brubaker authored 9 years ago
```
* commit '853b8d79':
  Fix unchecked length in Blob creation
```
  63bc525c
- am fd1ad379: am 1c73457a: am b124c9e8: Fix unchecked length in Blob creation · 853b8d79
  Chad Brubaker authored 9 years ago
```
* commit 'fd1ad379':
  Fix unchecked length in Blob creation
```
  853b8d79
- am 1c73457a: am b124c9e8: Fix unchecked length in Blob creation · fd1ad379
  Chad Brubaker authored 9 years ago
```
* commit '1c73457a':
  Fix unchecked length in Blob creation
```
  fd1ad379
- am b124c9e8: Fix unchecked length in Blob creation · 1c73457a
  Chad Brubaker authored 9 years ago
```
* commit 'b124c9e8':
  Fix unchecked length in Blob creation
```
  1c73457a
30 Jul, 2015 1 commit
- am 803f37f5: Fix unchecked length in Blob creation · 37fe0d07
  Chad Brubaker authored 9 years ago
```
* commit '803f37f5':
  Fix unchecked length in Blob creation
```
  37fe0d07
29 Jul, 2015 3 commits

Fix unchecked length in Blob creation · b124c9e8

Chad Brubaker authored 9 years ago

Applications can specify arbitrary blobs using insert(), check their
length to prevent overflow issues.

Bug:22802399
Change-Id: I4097bd891c733914df70da5e2c58783081d913bf

b124c9e8

Fix unchecked length in Blob creation · 803f37f5

Chad Brubaker authored 9 years ago

Applications can specify arbitrary blobs using insert(), check their
length to prevent overflow issues.

Bug:22802399
Change-Id: I4097bd891c733914df70da5e2c58783081d913bf

803f37f5

am 2de8b758: Add all digests and padding modes to legacy keys · ddf0fd86
Shawn Willden authored 9 years ago
```
* commit '2de8b758':
  Add all digests and padding modes to legacy keys
```
ddf0fd86

27 Jul, 2015 1 commit
- Add all digests and padding modes to legacy keys · 2de8b758
  Shawn Willden authored 9 years ago
```
Bug: 22556114
Change-Id: I44fda03305ddd50cb4ba3c6f6b24cfd9c2af9659
```
  2de8b758
23 Jul, 2015 1 commit
- am a9a17eec: Mark 0 length files as corrupt · 26020aa2
  Chad Brubaker authored 9 years ago
```
* commit 'a9a17eec':
  Mark 0 length files as corrupt
```
  26020aa2
17 Jul, 2015 1 commit

Mark 0 length files as corrupt · a9a17eec

Chad Brubaker authored 9 years ago

Files created by keystore should never be 0 length however a vendor ran
into such a case when testing their keymaster and a side effect of how
keystore parses files leads to these keys being considered encrypted and
ulitmately undeletable.

Now mark 0 length files as corrupt in readKey and when deleting a key if
the key fails to read in because it was corrupt simply rm the file since
it is not possible to feed the key blob to keymaster's delete method.

Bug: 22561219
Change-Id: Ie8c1ffe97d1d89c202cdab7a6b4b5efc914cbbff

a9a17eec

02 Jul, 2015 1 commit
- am 06114e6a: Fix erroneous reporting of all tokens as timed out. · a56597ac
  Shawn Willden authored 9 years ago
```
* commit '06114e6a':
  Fix erroneous reporting of all tokens as timed out.
```
  a56597ac
01 Jul, 2015 1 commit
- Fix erroneous reporting of all tokens as timed out. · 06114e6a
  Shawn Willden authored 9 years ago
```
Bug: 22205545
Change-Id: I170e798b327020ff741031ec05e875c685a49e9d
```
  06114e6a
25 Jun, 2015 3 commits
- am 5f042153: Merge "Rename keymaster tag types to clarify that integers are unsigned." · ef9ea722
  Shawn Willden authored 9 years ago
```
* commit '5f042153':
  Rename keymaster tag types to clarify that integers are unsigned.
```
  ef9ea722
- Merge "Rename keymaster tag types to clarify that integers are unsigned." · 5f042153
  Shawn Willden authored 9 years ago
  
  5f042153
- Rename keymaster tag types to clarify that integers are unsigned. · 0696a53d
  Shawn Willden authored 9 years ago
```
Bug: 22008538
Change-Id: Id6e3ca5c1defc8149b7ae7de5787b3635e2a4262
```
  0696a53d
24 Jun, 2015 2 commits
- am 0ebf13db: Rename keymaster tag types to clarify that integers are unsigned. · 36cc145b
  Shawn Willden authored 9 years ago
```
* commit '0ebf13db':
  Rename keymaster tag types to clarify that integers are unsigned.
```
  36cc145b
- Rename keymaster tag types to clarify that integers are unsigned. · 0ebf13db
  Shawn Willden authored 9 years ago
```
Bug: 22008538
Change-Id: Id6e3ca5c1defc8149b7ae7de5787b3635e2a4262
```
  0ebf13db
23 Jun, 2015 5 commits

am b913aa57: Merge "Abort operation pruning only if it fails to make space." into mnc-dev · c71e6f0d
Alex Klyubin authored 9 years ago
```
* commit 'b913aa57':
  Abort operation pruning only if it fails to make space.
```
c71e6f0d
am 4e88f9be: Don\'t ignore errors from begin operation. · a9d3b157
Alex Klyubin authored 9 years ago
```
* commit '4e88f9be':
  Don't ignore errors from begin operation.
```
a9d3b157
Merge "Abort operation pruning only if it fails to make space." into mnc-dev · b913aa57
Alex Klyubin authored 9 years ago

b913aa57

Abort operation pruning only if it fails to make space. · 700c1a35

Alex Klyubin authored 9 years ago

keystore service's begin operation may sometimes encounter a situation
where the underlying device's begin operation fails because of too
many operations in progress. In that case, keystore attempts to prune
the oldest pruneable operation by invoking the underlying device's
abort operation. Regardless of whether the abort operation fails,
keystore then removes the operation from the list of in-progress
prunable operations.

The issue is that when the underlying device's abort operation fails,
keystore fails the begin operation that caused all this prunining.
This is despite the fact that keystore has managed to make space for
one more operation.

The fix is to fail the begin operation only if the pruning attempt
did not make space for a a new operation.

Bug: 22040842
Change-Id: Id98b2c6690de3cfb2a7b1d3bdd10742cc59ecbfa

700c1a35

Don't ignore errors from begin operation. · 4e88f9be

Alex Klyubin authored 9 years ago

This fixes a bug introduced by
9221bff2 which invoked authorization
checks after begin operation, while ignoring any errors returned by
that operation. This CL restrores the correct order: authorization
checks are followed by begin operation.

Bug: 22039986
Change-Id: I3516cb120c21b9659289faa5d1ca0225df35a06d

4e88f9be