Add security version to config descriptor

Introduce a field to the configuration descriptor that provides a
standard semantically-defined version number rather than the
vendor-defined component version which acts more like a build ID.

Test: n/a
Bug: 282205139
Change-Id: Idb0c991ab12ae75687236f2489e639e4422a0225
This commit is contained in:
Andrew Scull 2023-05-10 22:08:04 +00:00
parent 2ba43ea9f3
commit 0d520e8e17
2 changed files with 6 additions and 0 deletions

View file

@ -324,6 +324,11 @@ the range \[-70000, -70999\] (these are reserved for future additions here).
: : : : boot stage :
| Resettable | -70004 | null | If present, key changes on factory|
: : : : reset :
| Security version | -70005 | uint | Machine-comparable, monotonically |
: : : : increasing version of the firmware:
: : : : component / boot stage where a :
: : : : greater value indicates a newer :
: : : : version :
```
Please see

View file

@ -427,6 +427,7 @@ interface IRemotelyProvisionedComponent {
* ? -70002 : tstr, ; Component name
* ? -70003 : int / tstr, ; Component version
* ? -70004 : null, ; Resettable
* ? -70005 : uint, ; Security version
* },
* -4670549 : bstr, ; Authority Hash
* ? -4670550 : bstr, ; Authority Descriptor