Gitiles
Code Review Sign In
gerrit.omnirom.org / android_packages_modules_Virtualization / 16fb8555e8a8e39a7339f7a29f2e3c4aea918d7d
commit16fb8555e8a8e39a7339f7a29f2e3c4aea918d7d[log] [tgz]
authorAlan Stokes <alanstokes@google.com>Thu Feb 10 15:07:27 2022 +0000
committerAlan Stokes <alanstokes@google.com>Thu Feb 17 16:58:32 2022 +0000
treebb85000ec0f7df1fe64b933a211c77952ae82240
parentdcff1e7e2330ec7f83ad5e620aaa8c41d0663499 [diff]
Rewrite key management & signing

Extend compos_helper to support signing, use it from CompOS.

Expose the public key from the VM. Rename compos_verify_key to
compos_verify and get it to verify the signature against the current
instance's public key.

Also move DICE access to compos_key_main. There's no use having it in
the library - neither the tests nor compos_verify can use it - and it
complicates the build rules.

There's a lot more that can be deleted, but I'll do that in a
follow-up; this is big enough already.

Bug: 218494522
Test: atest CompOsSigningHostTest CompOsDenialHostTest
Change-Id: I2d71f68a595d5ddadb2e7b16937fa6855f5db0ab
26 files changed
tree: bb85000ec0f7df1fe64b933a211c77952ae82240
  1. .prebuilt_info/
  2. apex/
  3. apkdmverity/
  4. apkverify/
  5. authfs/
  6. binder_common/
  7. compos/
  8. demo/
  9. docs/
  10. idsig/
  11. javalib/
  12. launcher/
  13. libs/
  14. microdroid/
  15. microdroid_manager/
  16. pvmfw/
  17. statslog_virtualization/
  18. tests/
  19. virtualizationservice/
  20. vm/
  21. vmconfig/
  22. zipfuse/
  23. rustfmt.toml ⇨ ../../../build/soong/scripts/rustfmt.toml
  24. .clang-format
  25. .gitignore
  26. Android.bp
  27. OWNERS
  28. PREUPLOAD.cfg
  29. README.md
  30. TEST_MAPPING
README.md

Virtualization

This repository contains userspace services related to running virtual machines on Android, especially protected virtual machines. See the getting started documentation and Microdroid README for more information.