Use the new verified_boot_android command The command is much safer. It prevents attackers from switching the payload data right after the verification is done. Bug: 198632602 Test: run MicrodroidHostTestCases Change-Id: I23df11c8d3d8879fe7c36ccb5d96f3f63b4b6944

commit: 855e6f9a2a25a6bd88b701c37b1c56cd1e67d62f [log] [tgz]
author: Jiyong Park <jiyong@google.com> Sat Sep 04 01:45:22 2021 +0900
committer: Jiyong Park <jiyong@google.com> Sat Sep 04 01:46:41 2021 +0900
tree: c6dcc2b82d8d31fb87b31c82535d2bcf5e6297e2
parent: 3f7728e61e6460e376b3b1008f725b37571d1d4e [diff] [blame]
diff --git a/microdroid/uboot-env.txt b/microdroid/uboot-env.txt
index 2c5bee7..b5f3968 100644
--- a/microdroid/uboot-env.txt
+++ b/microdroid/uboot-env.txt

@@ -3,7 +3,7 @@
 # Boot the device following the Android boot procedure
 # `0` is the disk number of os_composite.img
 # `a` and `_a` are the slot index for A/B
-bootcmd=avb init virtio 0 && avb verify _a && env set bootargs "$bootargs $avb_bootargs" && boot_android virtio 0 a
+bootcmd=verified_boot_android virtio 0 a
 
 bootdelay=0
 fdtaddr=0x80000000
commit	855e6f9a2a25a6bd88b701c37b1c56cd1e67d62f	[log] [tgz]
author	Jiyong Park <jiyong@google.com>	Sat Sep 04 01:45:22 2021 +0900
committer	Jiyong Park <jiyong@google.com>	Sat Sep 04 01:46:41 2021 +0900
tree	c6dcc2b82d8d31fb87b31c82535d2bcf5e6297e2
parent	3f7728e61e6460e376b3b1008f725b37571d1d4e [diff] [blame]