Cross Reference: /external/avb/libavb/avb

History log of /external/avb/libavb/avb_footer.c
Revision	Date	Author	Comments (<<< Hide modified files) (Show modified files >>>)
e3cadcacd798effe83b1593dba1ee0e3d84cf6e4	23-Feb-2017	David Zeuthen <zeuthen@google.com>	Rework how versioning work. Instead of listing the version of avbtool that generated the struct (which is not very useful), convey the minimum required libavb version needed to parse the structure. This is a lot more useful as it can be used at runtime to reject updates requiring a newer libavb than what is on the device (conveyed via androidboot.vbmeta.avb_version). Also add a human-readable release-string field that describes what tool (typically avbtool) was used to generate the data. Emphasize that one cannot make assumptions about the format and it's only there to aid in debugging. Also make it possible to easily append build-specific information to this string. Add a third version number field that can be bumped when doing bug-fix releases that don't add any new features. This is groundwork needed for a release process. Document all this in the README file. Also rename androidboot.vbmeta.version to androidboot.vbmeta.avb_version since it conveys the version of libavb used in the bootloader. Add avb_version_string() and suggest that this should be used in bootloaders to convey what version of libavb is being used on the device in debug/diagnostics output. Update examples/uefi to use this. Bug: 35322304 Bug: 32414650 Test: New unit tests and all unit tests pass. Test: Manually tested on UEFI based bootloader. Change-Id: Iae52a751c84fe4ea4473803d6f4e978720737511 /external/avb/libavb/avb_footer.c
c612e2e353444f6ad714e43702c2afd057516254	16-Sep-2016	David Zeuthen <zeuthen@google.com>	Switch to MIT license. BUG=31508897 TEST=Unit tests pass. Change-Id: I790afce2889e3dfaf6a53c02ccaaec3544229a9c /external/avb/libavb/avb_footer.c
21e95266704e572ced1c633bbc4aea9f42afa0a5	27-Jul-2016	David Zeuthen <zeuthen@google.com>	Add common verified boot tools and library. This code is originally from the Brillo project but has been adapted for use in all of Android. It consists of a tool - avbtool - for working with images (e.g. boot.img, system.img). See the README file for how it's integrated into the Android build system and how to enable it. The main job of avbtool is to create vbmeta.img which is the top-level object for verified boot. This image is designed to go into the vbmeta partition (or, if using A/B, the slot in question e.g. vbmeta_a or vbmeta_b) and be of minimal size (for out-of-band updates). The vbmeta image is cryptographically signed and contains verification data (e.g. cryptographic digests) for verifying boot.img, system.img, and other partitions/images. The vbmeta image can also contain references to other partitions where verification data is stored as well as a public key indicating who should sign the verification data. This indirection provides delegation, that is, it allows a 3rd party to control content on a given partition by including the public key said 3rd party is using to sign the data with, in vbmeta.img. By design, this authority can be easily revoked by simply updating vbmeta.img with new descriptors for the partition in question. Storing signed verification data on other images - for example boot.img and system.img - is also done with avbtool. In addition to avbtool, a library - libavb - is provided. This library performs all verification on the device side e.g. it starts by loading the vbmeta partition, checks the signature, and then goes on to load the boot partition for verification. The libavb library is intended to be used in both boot loaders and inside Android. It has a simple abstraction for system dependencies (see libavb/avb_sysdeps.h) as well as operations that the boot loader or OS is expected to implement (see libavb/avb_ops.h). In addition to handling verified boot, libavb will in the future be extended to handle A/B selection in a way that can be used in the device's fastboot implementation, its boot loader, and its boot_control HAL implementation. This will be implemented in a future CL. BUG=29414516 TEST=Unit tests for avbtool and libavb + unit tests pass. Change-Id: I69ee86878e21fa718faccfc56eb0b1f40707d847 /external/avb/libavb/avb_footer.c