In order to implement Identity Credential on resource-restricted
secure hardware, we need to limit the number of possible
AccessControlProfile in a credential. A limit of 32 means that such
hardware only need to devote four bytes of RAM for a bitmask with
information about which profiles are authorized.
Document this, add new VTS test, and update the default
implementation.
Bug: 155100967
Test: atest android.security.identity.cts
Test: atest VtsHalIdentityTargetTest
Merged-In: Ia4f2ee0013b330561df744e0595f298a0d156122
Change-Id: I2dd672447bedfa9407bf1044e6261af26fd137f9
am skip reason: Change-Id I2d0c5039c3b994dfe10d3b411f6d502bebe7cca0 with SHA-1 9c998c0720 is in history
Change-Id: I884f307c93dd73926d465342518fe92ca57c091c
In order to implement Identity Credential on resource-restricted
secure hardware, we need to limit the number of possible
AccessControlProfile in a credential. A limit of 32 means that such
hardware only need to devote four bytes of RAM for a bitmask with
information about which profiles are authorized.
Document this, add new VTS test, and update the default
implementation.
Bug: 155100967
Test: atest android.security.identity.cts
Test: atest VtsHalIdentityTargetTest
Change-Id: Ia4f2ee0013b330561df744e0595f298a0d156122
am skip reason: Change-Id I51902681776c6230e49589fc75a8145e79d7d1a6 with SHA-1 92b61d650f is in history
Change-Id: Ica2a5792970d0e2535a2c075172d634df8dc27e1
am skip reason: Change-Id I51902681776c6230e49589fc75a8145e79d7d1a6 with SHA-1 92b61d650f is in history
Change-Id: I714b283adbdcb693e4f3f4e43c0fdec6fd21aed6
am skip reason: Change-Id I51902681776c6230e49589fc75a8145e79d7d1a6 with SHA-1 92b61d650f is in history
Change-Id: Ie13db6ddaed7567d32cc116fb7e6e506dd3f1321
SOC manufacturers have requested that devices be allowed to ship with R
without using the IRadio 1.5 API.
Fixes: 153495340
Test: build flame
Change-Id: Iba2ac5902e69fc0af0c5f4d7cae4fed77204acd1
Fixed following bugs in WritableIdentityCredential.cpp
- Do not allow startPersonalization to be called more than once per
aidl.
- Do not preceed with beginAddEntry if addAccessControlProfile and
startPersonalization profile count mismatch.
- Verify access control profile ids are unique.
- Do not let empty name space to mess up beginAddEntry.
- Do not allow beginAddEntry to add entries interleaving namespace
groupings. Enforce all entries must be added in namespace "groups"
per aidl.
- Fix counting error that allowed one entries to be added per name
space than startPersonalization limit.
- Do not approve finishAddingEntries if there are more profiles or
entries to be added than startPersonalization set accounting.
- Add testing utilities library for identity credential.
- Refactored end to end tests.
Bug: 154909726
Test: atest VtsHalIdentityTargetTest
Test: atest android.security.identity.cts
Merged-In: I51902681776c6230e49589fc75a8145e79d7d1a6
Change-Id: Ib7c108f67c61125edba6177dcac61cfbf58da671
am skip reason: Change-Id I710c11c0cb59f04b4f162d627ca0d11135ab1437 with SHA-1 1f9aa386ba is in history
Change-Id: I0e55389985a702aa498a0e9b81423291a2f08d29
am skip reason: Change-Id I710c11c0cb59f04b4f162d627ca0d11135ab1437 with SHA-1 1f9aa386ba is in history
Change-Id: I8428c8b24ffaf0f21afcbfc2e5a78613190325c7
am skip reason: Change-Id I710c11c0cb59f04b4f162d627ca0d11135ab1437 with SHA-1 1f9aa386ba is in history
Change-Id: I6bf2570d753e1908766541a6676f2dbb25c4c45e
So it can be used by other Vehicle HAL implementations.
Test: adb shell lshal debug android.hardware.automotive.vehicle@2.0::IVehicle/default --user-hal
Test: adb shell lshal debug android.hardware.automotive.vehicle@2.0::IVehicle/default --help
Test: m -j android.hardware.automotive.vehicle@2.0-emulated-user-hal-lib
Bug: 150167241
Bug: 150409377
Merged-In: I2d0c5039c3b994dfe10d3b411f6d502bebe7cca0
Change-Id: I2d0c5039c3b994dfe10d3b411f6d502bebe7cca0
