projects / platform / core / security / key-manager.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: e575e8a)
Not to set DKEK value to DEK struct salt attribute 18/56818/3 accepted/tizen/mobile/20160114.011900 accepted/tizen/tv/20160114.011913 accepted/tizen/wearable/20160114.011935 submit/tizen/20160113.071851
authorKyungwook Tak <k.tak@samsung.com>
Wed, 13 Jan 2016 01:14:48 +0000 (10:14 +0900)
committerkyungwook tak <k.tak@samsung.com>
Wed, 13 Jan 2016 04:57:03 +0000 (20:57 -0800)
DEK struct salt value is derived from DKEK. It's not
clear to be stored on multiple data which is security-sensitive.

Change-Id: Ie3684e350d12dce132cb9425de3b075e25dbb63e
Signed-off-by: Kyungwook Tak <k.tak@samsung.com>
src/manager/service/key-provider.cpp patch | blob | history

diff --git a/src/manager/service/key-provider.cpp b/src/manager/service/key-provider.cpp
index eddc472..7abba87 100644 (file)
--- a/src/manager/service/key-provider.cpp
+++ b/src/manager/service/key-provider.cpp
@@ -343,7 +343,6 @@ RawBuffer KeyProvider::generateDEK(const std::string &smackLabel)
         ThrowErr(Exc::InternalError, "GenerateDEK Failed in KeyProvider::generateDEK");
 
     wkmcDEK.setKeyInfoKeyLength((unsigned int)wrappedKeyLength);
-    wkmcDEK.setKeyInfoSalt(m_kmcDKEK->getKeyAndInfo().key, MAX_SALT_SIZE);
     wkmcDEK.setKeyInfoLabel(resized_smackLabel);
 
     LogDebug("GenerateDEK Success");
Domain: Security / Utilities;