platform_hardware_interfaces/keymaster/4.0
David Drysdale c6b8907a32 Alter spec text for RSA-PSS to match reality
The Key{Mint,Master} spec previously said that RSA-PSS mode should use
SHA-1 for the MGF1 digest, separately from whatever Tag::DIGEST gets
specified as the main digest.

However, both the reference implementation and the VTS/CTS tests
use BoringSSL's defaults, which is to re-use the main digest as the MGF1
digest if none is separately specified.

Given that this behaviour is embedded in many implementations over
several years (and given that there isn't a security implication),
change the spec to match this behaviour.  Also update the VTS test
code to make this clear/obvious.

Test: VtsAidlKeyMintTargetTest, VtsHalKeymasterV4_0TargetTest
Bug: 210424594
Merged-In: I4303f28d094ef4d4b9dc931d6728b1fa040de20d
Change-Id: I4303f28d094ef4d4b9dc931d6728b1fa040de20d
2022-01-13 09:13:08 +00:00
..
default [LSC] Add LOCAL_LICENSE_KINDS to hardware/interfaces 2021-02-21 20:36:55 -08:00
support [LSC] Add LOCAL_LICENSE_KINDS to hardware/interfaces 2021-09-13 17:50:14 -07:00
vts Alter spec text for RSA-PSS to match reality 2022-01-13 09:13:08 +00:00
Android.bp [LSC] Add LOCAL_LICENSE_KINDS to hardware/interfaces 2021-02-21 20:36:55 -08:00
IKeymasterDevice.hal Alter spec text for RSA-PSS to match reality 2022-01-13 09:13:08 +00:00
types.hal Minor corrections to the Keymaster4 documentation. 2018-05-30 16:20:48 -06:00