| Michael Ryleev | 826c2d2 | 2016-02-18 12:50:08 -0800 | [diff] [blame] | 1 | # |
| 2 | # Copyright (C) 2016 The Android Open-Source Project |
| 3 | # |
| 4 | # Licensed under the Apache License, Version 2.0 (the "License"); |
| 5 | # you may not use this file except in compliance with the License. |
| 6 | # You may obtain a copy of the License at |
| 7 | # |
| 8 | # http://www.apache.org/licenses/LICENSE-2.0 |
| 9 | # |
| 10 | # Unless required by applicable law or agreed to in writing, software |
| 11 | # distributed under the License is distributed on an "AS IS" BASIS, |
| 12 | # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. |
| 13 | # See the License for the specific language governing permissions and |
| 14 | # limitations under the License. |
| 15 | # |
| 16 | |
| 17 | # |
| 18 | # This makefile should be included by devices that use Trusty TEE |
| 19 | # to pull in the baseline set of Trusty specific modules. |
| 20 | # |
| 21 | |
| Matthew Maurer | b0a8c95 | 2019-03-07 17:03:29 -0800 | [diff] [blame] | 22 | # For gatekeeper, we include the generic -service and -impl to use legacy |
| 23 | # HAL loading of gatekeeper.trusty. |
| 24 | |
| David Drysdale | 719d4a8 | 2022-12-05 10:24:51 +0000 | [diff] [blame] | 25 | # Allow the KeyMint HAL service implementation to be selected at build time. This needs to be |
| 26 | # done in sync with the TA implementation included in Trusty. Possible values are: |
| 27 | # |
| 28 | # - Rust implementation: export TRUSTY_KEYMINT_IMPL=rust |
| 29 | # - C++ implementation: (any other value of TRUSTY_KEYMINT_IMPL) |
| 30 | |
| 31 | ifeq ($(TRUSTY_KEYMINT_IMPL),rust) |
| 32 | LOCAL_KEYMINT_PRODUCT_PACKAGE := android.hardware.security.keymint-service.rust.trusty |
| 33 | else |
| 34 | # Default to the C++ implementation |
| 35 | LOCAL_KEYMINT_PRODUCT_PACKAGE := android.hardware.security.keymint-service.trusty |
| 36 | endif |
| 37 | |
| Michael Ryleev | 826c2d2 | 2016-02-18 12:50:08 -0800 | [diff] [blame] | 38 | PRODUCT_PACKAGES += \ |
| David Drysdale | 719d4a8 | 2022-12-05 10:24:51 +0000 | [diff] [blame] | 39 | $(LOCAL_KEYMINT_PRODUCT_PACKAGE) \ |
| David Drysdale | d0149e8 | 2023-02-03 18:25:03 +0000 | [diff] [blame^] | 40 | android.hardware.gatekeeper-service.trusty \ |
| Inseob Kim | ed67349 | 2022-09-16 20:54:03 +0900 | [diff] [blame] | 41 | trusty_apploader \ |
| 42 | RemoteProvisioner |
| Michael Ryleev | 826c2d2 | 2016-02-18 12:50:08 -0800 | [diff] [blame] | 43 | |
| 44 | PRODUCT_PROPERTY_OVERRIDES += \ |
| Armelle Laine | bd1dbe2 | 2021-07-19 16:14:10 +0000 | [diff] [blame] | 45 | ro.hardware.keystore_desede=true \ |
| Michael Ryleev | 826c2d2 | 2016-02-18 12:50:08 -0800 | [diff] [blame] | 46 | ro.hardware.keystore=trusty \ |
| 47 | ro.hardware.gatekeeper=trusty |
| Shawn Willden | b440e0c | 2021-10-29 09:44:01 -0600 | [diff] [blame] | 48 | |
| 49 | PRODUCT_COPY_FILES += \ |
| 50 | frameworks/native/data/etc/android.hardware.keystore.app_attest_key.xml:$(TARGET_COPY_OUT_VENDOR)/etc/permissions/android.hardware.keystore.app_attest_key.xml |