Get apexd to verify manifest data Send the name and version we read from the manifest to apexd to make sure it doesn't change. Remove image hash since we have no use for it. Put the manifest extraction & verification behind a flag since it now has the potential to change behavior. Expand on the comment for verify(), to make it clearer what it does and doesn't verify. Bug: 313042092 Test: atest ApexTestCases Test: atest MicrodroidTests Test: atest libapexutil_rust.test Change-Id: Ida6d9e11b3bce5676b744dc945eadb09aa9a822f

commit: 185e34cdfe20645a4cf84b72142d15a2dad4f47f [log] [tgz]
author: Alan Stokes <alanstokes@google.com> Fri Nov 24 12:28:39 2023 +0000
committer: Alan Stokes <alanstokes@google.com> Tue Nov 28 15:54:26 2023 +0000
tree: 059b02e447b56616b57b50e6d59f02cb61a12228
parent: a5fc4d4acab1ed16e62a30371019a596abc50c5a [diff] [blame]
diff --git a/microdroid_manager/src/instance.rs b/microdroid_manager/src/instance.rs
index 6c9e245..b0fc03d 100644
--- a/microdroid_manager/src/instance.rs
+++ b/microdroid_manager/src/instance.rs

@@ -304,6 +304,8 @@
 #[derive(Debug, Serialize, Deserialize, PartialEq, Eq)]
 pub struct ApexData {
     pub name: String,
+    pub manifest_name: Option<String>,
+    pub manifest_version: Option<i64>,
     pub public_key: Vec<u8>,
     pub root_digest: Vec<u8>,
     pub last_update_seconds: u64,
commit	185e34cdfe20645a4cf84b72142d15a2dad4f47f	[log] [tgz]
author	Alan Stokes <alanstokes@google.com>	Fri Nov 24 12:28:39 2023 +0000
committer	Alan Stokes <alanstokes@google.com>	Tue Nov 28 15:54:26 2023 +0000
tree	059b02e447b56616b57b50e6d59f02cb61a12228
parent	a5fc4d4acab1ed16e62a30371019a596abc50c5a [diff] [blame]