| Alice Wang | d694b61 | 2024-09-02 13:03:48 +0000 | [diff] [blame] | 1 | service system.keymint.rust-trusty.nonsecure \ |
| 2 | /system_ext/bin/hw/android.hardware.security.keymint-service.rust.trusty.system.nonsecure \ |
| Armelle Laine | 2ea6ecf | 2024-09-19 07:48:33 +0000 | [diff] [blame] | 3 | --dev ${system.keymint.trusty_ipc_dev:-/dev/trusty-ipc-dev0} |
| Alice Wang | d694b61 | 2024-09-02 13:03:48 +0000 | [diff] [blame] | 4 | disabled |
| 5 | user nobody |
| 6 | group drmrpc |
| 7 | # The keymint service is not allowed to restart. |
| 8 | # If it crashes, a device restart is required. |
| 9 | oneshot |
| 10 | |
| 11 | # Only starts the non-secure KeyMint HALs when the KeyMint VM feature is enabled |
| 12 | # TODO(b/357821690): Start the KeyMint HALs when the KeyMint VM is ready once the Trusty VM |
| 13 | # has a mechanism to notify the host. |
| Alice Wang | 16693fa | 2024-11-08 12:19:10 +0000 | [diff] [blame] | 14 | on late-fs && property:ro.hardware.trusty.security_vm.keymint.enabled=1 && \ |
| Alice Wang | 5d5c732 | 2024-10-30 09:44:27 +0000 | [diff] [blame] | 15 | property:trusty.security_vm.vm_cid=* |
| 16 | setprop system.keymint.trusty_ipc_dev VSOCK:${trusty.security_vm.vm_cid}:1 |
| Alice Wang | d694b61 | 2024-09-02 13:03:48 +0000 | [diff] [blame] | 17 | start system.keymint.rust-trusty.nonsecure |