| Alice Wang | d694b61 | 2024-09-02 13:03:48 +0000 | [diff] [blame] | 1 | service system.keymint.rust-trusty.nonsecure \ |
| 2 | /system_ext/bin/hw/android.hardware.security.keymint-service.rust.trusty.system.nonsecure \ |
| Armelle Laine | 2ea6ecf | 2024-09-19 07:48:33 +0000 | [diff] [blame] | 3 | --dev ${system.keymint.trusty_ipc_dev:-/dev/trusty-ipc-dev0} |
| Alice Wang | d694b61 | 2024-09-02 13:03:48 +0000 | [diff] [blame] | 4 | disabled |
| 5 | user nobody |
| 6 | group drmrpc |
| 7 | # The keymint service is not allowed to restart. |
| 8 | # If it crashes, a device restart is required. |
| 9 | oneshot |
| 10 | |
| 11 | # Only starts the non-secure KeyMint HALs when the KeyMint VM feature is enabled |
| 12 | # TODO(b/357821690): Start the KeyMint HALs when the KeyMint VM is ready once the Trusty VM |
| 13 | # has a mechanism to notify the host. |
| 14 | on late-fs && property:ro.hardware.security.keymint.trusty.system=1 && \ |
| Armelle Laine | 2ea6ecf | 2024-09-19 07:48:33 +0000 | [diff] [blame] | 15 | property:trusty_vm_system.vm_cid=* |
| 16 | setprop system.keymint.trusty_ipc_dev VSOCK:${trusty_vm_system.vm_cid}:1 |
| Alice Wang | d694b61 | 2024-09-02 13:03:48 +0000 | [diff] [blame] | 17 | start system.keymint.rust-trusty.nonsecure |