Zeroize keystore password in unlockKeystore() (8f7bd978) · Commits · e / os / android_frameworks_base

services/core/java/com/android/server/locksettings/LockSettingsService.java

+6 −1

Original line number	Diff line number	Diff line
		@@ -1514,7 +1514,12 @@ public class LockSettingsService extends ILockSettings.Stub {
		}

		private void unlockKeystore(int userId, SyntheticPassword sp) {
		mKeyStoreAuthorization.onDeviceUnlocked(userId, sp.deriveKeyStorePassword());
		final byte[] password = sp.deriveKeyStorePassword();
		try {
		mKeyStoreAuthorization.onDeviceUnlocked(userId, password);
		} finally {
		ArrayUtils.zeroize(password);
		}
		}

		@VisibleForTesting /** Note: this method is overridden in unit tests */