Gitiles
Code Review Sign In
gerrit.omnirom.org / android_packages_modules_Virtualization / cecb0aa3a6a020ca35bcf1c8bc586546b7f7296e
commitcecb0aa3a6a020ca35bcf1c8bc586546b7f7296e[log] [tgz]
authorPierre-Clément Tosi <ptosi@google.com>Wed Feb 08 16:57:54 2023 +0000
committerPierre-Clément Tosi <ptosi@google.com>Sat Feb 25 13:15:19 2023 +0000
treeac2e3c2192314245ea37cf56def72bb73dcc36b5
parentb2d8aa7c723456e8ca4a42880b6746f65bddd002 [diff]
microdroid_manager: Zero DICE hidden input

As we assume that instance.img entries can't be individually modified
without it being detected (thanks to the avf,new-instance flag), there
is no need to generate a random salt for DICE in microdroid_manager if
pvmfw has run (i.e. avf,strict-boot is received) so use a zero value if
one isn't found in the instance.img. This makes pvmfw the only source of
per-instance secret uniqueness, enabling end-to-end tests to validate
that functionality of pvmfw.

Bug: 268307476
Test: atest MicrodroidTestApp
Change-Id: Ia1c4f056b8106ddae4f2fd753fbc19e4c203b65a
1 file changed
tree: ac2e3c2192314245ea37cf56def72bb73dcc36b5
  1. apex/
  2. apkdmverity/
  3. authfs/
  4. avmd/
  5. compos/
  6. demo/
  7. docs/
  8. encryptedstore/
  9. javalib/
  10. launcher/
  11. libs/
  12. microdroid/
  13. microdroid_manager/
  14. pvmfw/
  15. rialto/
  16. tests/
  17. virtualizationmanager/
  18. virtualizationservice/
  19. vm/
  20. vm_payload/
  21. vmbase/
  22. vmclient/
  23. zipfuse/
  24. rustfmt.toml ⇨ ../../../build/soong/scripts/rustfmt.toml
  25. .clang-format
  26. .gitignore
  27. Android.bp
  28. OWNERS
  29. PREUPLOAD.cfg
  30. README.md
  31. TEST_MAPPING
README.md

Virtualization

This repository contains userspace services related to running virtual machines on Android, especially protected virtual machines. See the getting started documentation and Microdroid README for more information.