Merge "Specify the use of SHA-256 for the "verifiedBootHash"." into main

commit: 3ba252f1a2f2ef5d33da52d87561fb57dc114d79 [log] [tgz]
author: Catherine Vlasov <cvlasov@google.com> Mon Nov 18 13:12:20 2024 +0000
committer: Gerrit Code Review <noreply-gerritcodereview@google.com> Mon Nov 18 13:12:20 2024 +0000
tree: 81496627f5b068f0272bd88d721efbb4fc9b8288
parent: 7a25e70410122e010e81677da2ef389192d2342d [diff]
parent: 501b63b0d05e2f54977e76f424e95675bf2d80d9 [diff]
diff --git a/security/keymint/aidl/android/hardware/security/keymint/KeyCreationResult.aidl b/security/keymint/aidl/android/hardware/security/keymint/KeyCreationResult.aidl
index 294c205..da8b513 100644
--- a/security/keymint/aidl/android/hardware/security/keymint/KeyCreationResult.aidl
+++ b/security/keymint/aidl/android/hardware/security/keymint/KeyCreationResult.aidl

@@ -145,9 +145,9 @@
      *     verifiedBootKey            OCTET_STRING,
      *     deviceLocked               BOOLEAN,
      *     verifiedBootState          VerifiedBootState,
-     *     # verifiedBootHash must contain 32-byte value that represents the state of all binaries
-     *     # or other components validated by verified boot.  Updating any verified binary or
-     *     # component must cause this value to change.
+     *     # verifiedBootHash must contain a SHA-256 digest of all binaries and components validated
+     *     # by Verified Boot. Updating any verified binary or component must cause this value to
+     *     # change.
      *     verifiedBootHash           OCTET_STRING,
      * }
      *
commit	3ba252f1a2f2ef5d33da52d87561fb57dc114d79	[log] [tgz]
author	Catherine Vlasov <cvlasov@google.com>	Mon Nov 18 13:12:20 2024 +0000
committer	Gerrit Code Review <noreply-gerritcodereview@google.com>	Mon Nov 18 13:12:20 2024 +0000
tree	81496627f5b068f0272bd88d721efbb4fc9b8288
parent	7a25e70410122e010e81677da2ef389192d2342d [diff]
parent	501b63b0d05e2f54977e76f424e95675bf2d80d9 [diff]