Mitigate LSKF leaks in RecoverableKeyStoreManager (562ea603) · Commits · e / os / android_frameworks_base

services/core/java/com/android/server/locksettings/recoverablekeystore/RecoverableKeyStoreManager.java

+2 −1

Original line number	Diff line number	Diff line
		@@ -1082,7 +1082,8 @@ public class RecoverableKeyStoreManager {
		int keyguardCredentialsType = lockPatternUtilsToKeyguardType(savedCredentialType);
		try (LockscreenCredential credential =
		createLockscreenCredential(keyguardCredentialsType, decryptedCredentials)) {
		// TODO(b/254335492): remove decryptedCredentials
		Arrays.fill(decryptedCredentials, (byte) 0);
		decryptedCredentials = null;
		VerifyCredentialResponse verifyResponse =
		lockSettingsService.verifyCredential(credential, userId, 0);
		return handleVerifyCredentialResponse(verifyResponse, userId);