| commit | 8b5533d7b659de7c1468c74f26cb193748063785 | [log] [tgz] |
|---|---|---|
| author | Pierre-Clément Tosi <ptosi@google.com> | Fri May 24 10:47:59 2024 +0100 |
| committer | Pierre-Clément Tosi <ptosi@google.com> | Fri May 24 11:05:17 2024 +0100 |
| tree | dd33a7c939f599db2b7a7fbd3db24377b4b41b8b | |
| parent | f20b95675ae9e63bfa8974e0a34545ea259e2017 [diff] |
pvmfw: Make pvmfw_embedded_key a proper PEM file
Allow pvmfw_embedded_key to be used for signing (e.g. Microdroid) by
making it hold the whole PEM, not just the binary pubkey, and derive the
pubkey locally from it, for embedding in libpvmfw_embedded_key.
Make it a filegroup as it should have been from the start given that
the key file is not part of the shipping images. Note that we previously
had to use a prebuilt_etc so that Make could obtain the file through
module-target-built-files but now that the pubkey is derived using a
genrule, it is seen by module-target-built-files without playing tricks.
Bug: 342549834
Test: m out/target/product/${PROD}/pvmfw_embedded.avbpubkey
Change-Id: I9a6602b727f719351292597b5b59b3e65936b800
Android Virtualization Framework (AVF) provides secure and private execution environments for executing code. AVF is ideal for security-oriented use cases that require stronger isolation assurances over those offered by Android’s app sandbox.
Visit our public doc site to learn more about what AVF is, what it is for, and how it is structured. This repository contains source code for userspace components of AVF.
If you want a quick start, see the getting started guideline and follow the steps there.
For in-depth explanations about individual topics and components, visit the following links.
AVF components:
AVF APIs:
How-Tos: