Fix insider attack resistance on headless devices - platform/frameworks/base

diff options

author	Paul Crowley <paulcrowley@google.com>	2022-12-06 12:36:01 -0800
committer	Paul Crowley <paulcrowley@google.com>	2023-02-02 13:43:46 -0800
commit	2b3177074449d0e990e19183017b223abf670692 (patch)
tree	e0b000ed02d3680637319dab678cff773f5f3f68 /libs/androidfw/ApkParsing.cpp
parent	738650d918a13b8a333f7a67569b99bc9d253527 (diff)

Fix insider attack resistance on headless devices

On HSUM devices where the main user is a permanent admin, we want to entrust the vendor auth secret only to full users. We generate the secret when the main user is created, and store it on disk encrypted using their SP. We also store it in memory so that when each user is created they can get their own encrypted copy on disk. Bug: 258560859 Test: atest com.android.server.locksettings Test: boot without hsum, check that only user 0 writes auth secret Test: boot with hsum, check that user 0 does not write auth secret Test: boot with hsum, check user 10 writes auth secret Test: boot with hsum, create user 11, check that user writes auth secret Change-Id: I2b3141a573a4457ade0edd0eb989ec7929be006d

Diffstat (limited to 'libs/androidfw/ApkParsing.cpp')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: