Donate to e Foundation | Murena handsets with /e/OS | Own a part of Murena! Learn more

Commit 490c22a7 authored by Eran Messeri's avatar Eran Messeri
Browse files

Update PM documentation for Keystore 

Update the documentation about Hardware Keystore (KeyMint) in the
Package Manager.

Specifically, provide information about the new features added in
KeyMint v2 and KeyMint v3.

Bug: 304309651
Test: m docs , then manually look at the PackageManager doc
Change-Id: I9da0f94043e86749de9b654d7a19503ca6119023
parent aa68cf5b

core/java/android/content/pm/PackageManager.java

+9 −0
Original line number Diff line number Diff line
@@ -4276,6 +4276,10 @@ public abstract class PackageManager { 
     * the Android Keystore backed by an isolated execution environment. The version indicates

     * which features are implemented in the isolated execution environment:

     * <ul>

     * <li>300: Ability to include a second IMEI in the ID attestation record, see

     * {@link android.app.admin.DevicePolicyManager#ID_TYPE_IMEI}.

     * <li>200: Hardware support for Curve 25519 (including both Ed25519 signature generation and

     * X25519 key agreement).

     * <li>100: Hardware support for ECDH (see {@link javax.crypto.KeyAgreement}) and support

     * for app-generated attestation keys (see {@link

     * android.security.keystore.KeyGenParameterSpec.Builder#setAttestKeyAlias(String)}).
@@ -4305,6 +4309,11 @@ public abstract class PackageManager { 
     * StrongBox</a>. If this feature has a version, the version number indicates which features are

     * implemented in StrongBox:

     * <ul>

     * <li>300: Ability to include a second IMEI in the ID attestation record, see

     * {@link android.app.admin.DevicePolicyManager#ID_TYPE_IMEI}.

     * <li>200: No new features for StrongBox (the Android Keystore environment backed by an

     * isolated execution environment has gained support for Curve 25519 in this version, but

     * the implementation backed by a dedicated secure processor is not expected to implement it).

     * <li>100: Hardware support for ECDH (see {@link javax.crypto.KeyAgreement}) and support

     * for app-generated attestation keys (see {@link

     * android.security.keystore.KeyGenParameterSpec.Builder#setAttestKeyAlias(String)}).