commit 044ae2cd406ec389eb0d3c7d75201406e8fe2ceb
author Catherine Vlasov <cvlasov@google.com> Mon Nov 18 14:01:07 2024 +0000
committer Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com> Mon Nov 18 14:01:07 2024 +0000
tree 034d631fac6a319c0c74a13371798a93f8372c04
parent d6ed8de9a0ee08e849bf013701534927b734538c
parent 430feb2a7bdc618c42205eac62c365100d07a2e4

Merge "Specify the use of SHA-256 for the "verifiedBootHash"." into main am: 3ba252f1a2 am: 430feb2a7b

Original change: https://android-review.googlesource.com/c/platform/hardware/interfaces/+/3359913

Change-Id: Ica50ecda7b9611883f8228b37047371e5abc9d12
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>

security/keymint/aidl/android/hardware/security/keymint/KeyCreationResult.aidl

diff --git a/security/keymint/aidl/android/hardware/security/keymint/KeyCreationResult.aidl b/security/keymint/aidl/android/hardware/security/keymint/KeyCreationResult.aidl
index 294c205..da8b513 100644
--- a/security/keymint/aidl/android/hardware/security/keymint/KeyCreationResult.aidl
+++ b/security/keymint/aidl/android/hardware/security/keymint/KeyCreationResult.aidl
@@ -145,9 +145,9 @@
      *     verifiedBootKey            OCTET_STRING,
      *     deviceLocked               BOOLEAN,
      *     verifiedBootState          VerifiedBootState,
-     *     # verifiedBootHash must contain 32-byte value that represents the state of all binaries
-     *     # or other components validated by verified boot.  Updating any verified binary or
-     *     # component must cause this value to change.
+     *     # verifiedBootHash must contain a SHA-256 digest of all binaries and components validated
+     *     # by Verified Boot. Updating any verified binary or component must cause this value to
+     *     # change.
      *     verifiedBootHash           OCTET_STRING,
      * }
      *