Donate to e Foundation | Murena handsets with /e/OS | Own a part of Murena! Learn more

Commit c1bf5f8a authored by Catherine Vlasov's avatar Catherine Vlasov
Browse files

Read Verified Boot key from system property in default KeyMint implementation. 

Even though this (insecure) implementation technically has access to
the Verified Boot key on unlocked builds, it should only send this
value if the bootloader is locked (in order to pass the VTS-16+ test
that checks that the attested "rootOfTrust.verifiedBootKey" value is
32 bytes of zeroes on unlocked devices).

Bug: 220834466
Test: atest VtsAidlKeyMintTargetTest (uses the KeyMint I'm updating)
Change-Id: I30e82165792facef85e9d66d4e6ebe8f64e1086b
parent 584871b6
Show whitespace changes
Inline Side-by-side
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Please register or to comment