From 36594490fd0d3ce1af796dfaaade2d5c086d1238 Mon Sep 17 00:00:00 2001 From: Eran Messeri Date: Sun, 15 Jan 2023 10:39:22 +0000 Subject: [PATCH] 2nd IMEI attestation: Clarify tag usage. Clarify that the tag for the 2nd IMEI must denote an IMEI different to the tag used for the first IMEI, and may be used independently of it. Bug: 264979486 Test: N/A Change-Id: I45a46d1052e45a965c8be391d11157cc4481545b --- .../keymint/aidl/android/hardware/security/keymint/Tag.aidl | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/security/keymint/aidl/android/hardware/security/keymint/Tag.aidl b/security/keymint/aidl/android/hardware/security/keymint/Tag.aidl index 837fc814a9..d401247407 100644 --- a/security/keymint/aidl/android/hardware/security/keymint/Tag.aidl +++ b/security/keymint/aidl/android/hardware/security/keymint/Tag.aidl @@ -885,9 +885,9 @@ enum Tag { /** * Tag::ATTESTATION_ID_SECOND_IMEI provides an additional IMEI of one of the radios on the - * device to attested key generation/import operations. This field MUST be accompanied by - * the Tag::ATTESTATION_ID_IMEI tag. It would only be used to convery a second IMEI the device - * has, after Tag::ATTESTATION_ID_SECOND_IMEI has been used to convery the first IMEI. + * device to attested key generation/import operations. It should be used to convey an + * IMEI different to the one conveyed by the Tag::ATTESTATION_ID_IMEI tag. Like all other + * ID attestation flags, it may be included independently of other tags. * * If the device does not support ID attestation (or destroyAttestationIds() was previously * called and the device can no longer attest its IDs), any key attestation request that