f479b4b902
Bug: 254112961 Test: vts_treble_vintf_vendor_test Merged-In: Ib66fcbdbaadda3f32cd8423f61bd31d5f43dc44b Change-Id: Ib66fcbdbaadda3f32cd8423f61bd31d5f43dc44b
1.8 KiB
1.8 KiB
Remote Provisioning Changelog
This document provides an exact description of which changes have occurred in the
IRemotelyProvisionedComponent HAL interface in each Android release.
Releases
- Android S (12): IRemotelyProvisionedComponent v1
- Android T (13): IRemotelyProvisionedComponent v2
- Android U (14): IRemotelyProvisionedComponent v3
IRemotelyProvisionedComponent 1 -> 2
- DeviceInfo
- Most entries are no longer optional.
att_id_stateis nowfused.fusedis used to indicate if SecureBoot is enabled.versionis now2.boardhas been removed.devicehas been added.
- RpcHardwareInfo
uniqueIdString added as a field in order to differentiate IRPC instances on device.
IRemotelyProvisionedComponent 2 -> 3
- The RKP HAL now builds separately from KeyMint.
- The HAL remains under the
android.hardware.security.keymintpackage for compatibility with previous releases. ABI compatibility requires this. - Dependencies on the RKP HAL must add a dependency on
"android.hardware.security.rkp"generated code (instead of"android.hardward.security.keymint").
- The HAL remains under the
- ProtectedData has been removed.
- DeviceInfo
versionhas moved to a top-level field within the CSR generated by the HAL
- IRemotelyProvisionedComponent
- The need for an EEK has been removed. There is no longer an encrypted portion of the CSR.
- Test mode has been removed.
- The schema for the CSR itself has been significantly simplified, please see
IRemotelyProvisionedComponent.aidl for more details. Notably,
- the chain of signing, MACing, and encryption operations has been replaced with a single COSE_Sign1 object.
- CertificateType has been added to identify the type of certificate being requested.