| commit | 21ce2c5b1eefb6ab755a3b81ff159da4e381ea99 | [log] [tgz] |
|---|---|---|
| author | Jiyong Park <jiyong@google.com> | Sat Aug 28 02:32:17 2021 +0900 |
| committer | Jiyong Park <jiyong@google.com> | Wed Sep 01 01:58:22 2021 +0900 |
| tree | 465079793c30bdeae86e432f6faa5f286b5d34a5 | |
| parent | c5dad8a818c09a7d3428b49f573cc7211377e1e4 [diff] |
Store apk root hash to the instance disk The instance disk has been created, but hasn't actually been used. This CL is the first step towards actually using it. Specifically, this CL * provides routines for navigating the instance disk. The disk consists of a disk header, followed by partitions each of which consists of a header and payload. Each partition is dedicated to a program loader like pVM firmware, Android Boot Loader, and microdroid_manager. A partition is identified by UUID and this CL provides a routine to locate the partition for a given UUID. * provides routines for reading and writing on payload in a partition. The data is stored encrypted when it is written and is decrypted when read. The key is currently hard-coded but, it will eventually be derived from the sealing CDI from the previous stage. * Root hash of an apk extracted from the idsig file is stored to the disk. Note that the stored root hash is not yet used by apkdmverity. It shall be done in a follow-up change. Bug: 193504400 Test: boot microdroid twice. check that the root hash is written to the disk during the first boot, and then read during the second boot. Also check that the two root hashes are the same. Change-Id: Ia1afcda4d8444ad52a47ebcc659b2698159da816
This repository contains userspace services related to running virtual machines on Android, especially protected virtual machines. See the getting started documentation and Microdroid README for more information.