pvmfw: Validate input BCC handover Ensure that the BCC contained in the configuration data is properly formatted as a "BCC Handover" [1] i.e. a CBOR-encoded map BccHandover = { 1 : bstr .size 32, ; CDI_Attest 2 : bstr .size 32, ; CDI_Seal 3 : Bcc, ; Certificate chain } If not, abort the pVM boot. [1]: https://pigweed.googlesource.com/open-dice/+/72ad792c4d9ffffef3412801b5da46568a6b3197/src/android/bcc.c#260 Bug: 256827715 Test: atest MicrodroidHostTests Change-Id: Ibade0ebd1e50d912a59b32c1282022aa46235501

commit: 8edf72eafa4b1f4aa5c726a0573b6c2e18b49543 [log] [tgz]
author: Pierre-Clément Tosi <ptosi@google.com> Tue Dec 06 16:02:57 2022 +0000
committer: Pierre-Clément Tosi <ptosi@google.com> Thu Dec 08 16:29:12 2022 +0000
tree: 338cb1bf33c84467294ba691851ff9c4a1b43a28
parent: db14ada78bdfceac6f1a566815881d04c5f760c3 [diff] [blame]
diff --git a/pvmfw/Android.bp b/pvmfw/Android.bp
index 0da24c7..6a01713 100644
--- a/pvmfw/Android.bp
+++ b/pvmfw/Android.bp

@@ -15,6 +15,7 @@
         "libaarch64_paging",
         "libavb_nostd",
         "libbuddy_system_allocator",
+        "libdice_nostd",
         "liblibfdt",
         "liblog_rust_nostd",
         "libpvmfw_embedded_key",
commit	8edf72eafa4b1f4aa5c726a0573b6c2e18b49543	[log] [tgz]
author	Pierre-Clément Tosi <ptosi@google.com>	Tue Dec 06 16:02:57 2022 +0000
committer	Pierre-Clément Tosi <ptosi@google.com>	Thu Dec 08 16:29:12 2022 +0000
tree	338cb1bf33c84467294ba691851ff9c4a1b43a28
parent	db14ada78bdfceac6f1a566815881d04c5f760c3 [diff] [blame]