| #
386fb802 |
| 04-Dec-2024 |
Xuhui Lin <xuhui.lin@rock-chips.com> |
common: ab: Fix partition uuid support
Change-Id: I7f8723a29b053e181134b4dade16ae7da0468ee4
Signed-off-by: Xuhui Lin <xuhui.lin@rock-chips.com>
|
| #
be9d6521 |
| 29-Apr-2024 |
Xuhui Lin <xuhui.lin@rock-chips.com> |
common: android_bootloader: Abandon preload data when boot_partition changed
1. Handle the case: "avb lock + (vbus = 0) + recovery key pressed".
2. Need to clean preload data, when boot_partition ch
common: android_bootloader: Abandon preload data when boot_partition changed
1. Handle the case: "avb lock + (vbus = 0) + recovery key pressed".
2. Need to clean preload data, when boot_partition change.
3. Saved boot_partition shouldn't have _a or _b suffix because
they should be saved in const char *slot_suffix.
Change-Id: Ia6354ef037ea0d205b1dc95e0ea8007925e652a3
Signed-off-by: Xuhui Lin <xuhui.lin@rock-chips.com>
show more ...
|
| #
36c449fe |
| 17-May-2023 |
Joseph Chen <chenjh@rock-chips.com> |
common: Add MP boot support
mp_boot build from: a5185c920.
Signed-off-by: Joseph Chen <chenjh@rock-chips.com>
Change-Id: I8f8b2fe45ee87ad0a60e1dfd6f0950f052d4f1e7
|
| #
d9e299e0 |
| 11-Apr-2023 |
Jason Zhu <jason.zhu@rock-chips.com> |
lib: avb: avb lock if pre-loader security enable
Save the operation steps of factory production.
Signed-off-by: Jason Zhu <jason.zhu@rock-chips.com>
Change-Id: Ib98b38d1b2e29161e7b2c5ef47b5c73b2fe4
lib: avb: avb lock if pre-loader security enable
Save the operation steps of factory production.
Signed-off-by: Jason Zhu <jason.zhu@rock-chips.com>
Change-Id: Ib98b38d1b2e29161e7b2c5ef47b5c73b2fe46c96
show more ...
|
| #
36e836f2 |
| 27-Feb-2023 |
Joseph Chen <chenjh@rock-chips.com> |
android: avb: Support verify resource.img for locked device
The resource.img is from android boot/recovery or
resource partition.
The fit boot/recovery.img was already supported with
fit verify mec
android: avb: Support verify resource.img for locked device
The resource.img is from android boot/recovery or
resource partition.
The fit boot/recovery.img was already supported with
fit verify mechanism.
Signed-off-by: Joseph Chen <chenjh@rock-chips.com>
Change-Id: I54243934b40325c08eefa4bacdee542ee8e81654
show more ...
|
| #
28317110 |
| 21-Oct-2022 |
Joseph Chen <chenjh@rock-chips.com> |
android: avb: Add init_boot support
== init-boot:
This new init_boot partition contains the ramdisk the used to live in
the boot partition. The boot partition will no longer contain that
ramdisk.
i
android: avb: Add init_boot support
== init-boot:
This new init_boot partition contains the ramdisk the used to live in
the boot partition. The boot partition will no longer contain that
ramdisk.
init_boot use android v4 header and is mandory from Android-13.
== avb with unlock:
Don't process hash verify.
Go pre-loaded path: Loading vendor_boot and init_boot
directly to where they should be, while loading the
boot/recovery. The boot message tells like:
···
preloaded: distribute image from 'boot_a'
preloaded: distribute image from 'init_boot_a'
preloaded: distribute image from 'vendor_boot_a'
···
== avb with lock:
Process hash verify.
Go pre-loaded path: Loading full vendor_boot, init_boot and
boot/recovery one by one to verify, and distributing them to
where they should be by memcpy at last.
The three images share a large memory buffer that allocated
by sysmem_alloc(), it locate at high memory address that
just lower than SP bottom. The boot message tells like:
···
preloaded: full image from 'boot_a' at 0xe47f90c0 - 0xe7a4b0c0
preloaded: full image from 'init_boot_a' at 0xeaff90c0 - 0xeb2950c0
preloaded: full image from 'vendor_boot_a' at 0xe87f90c0 - 0xe9f6e0c0
···
Signed-off-by: Joseph Chen <chenjh@rock-chips.com>
Change-Id: I9c8428eb9777eac81952971cfa97b783a7e71394
show more ...
|
| #
48cf108a |
| 21-Oct-2022 |
Joseph Chen <chenjh@rock-chips.com> |
lib: avb: Add AvbOpsData
Signed-off-by: Jason Zhu <jason.zhu@rock-chips.com>
Signed-off-by: Joseph Chen <chenjh@rock-chips.com>
Change-Id: Ib444dbeaab73005a13a4f6e89ca3dc8b8d6272df
|
| #
647502d6 |
| 05-Aug-2022 |
Jason Zhu <jason.zhu@rock-chips.com> |
lib: avb: use function printf() to print log
Use uboot printf() to print log but not avb library function. So that
we need not to compile libavb if enable a/b system.
Signed-off-by: Jason Zhu <jaso
lib: avb: use function printf() to print log
Use uboot printf() to print log but not avb library function. So that
we need not to compile libavb if enable a/b system.
Signed-off-by: Jason Zhu <jason.zhu@rock-chips.com>
Change-Id: I8dbb3c18fd62858f1d8697fad1935f23f6e6b0a8
show more ...
|
| #
1e9494b5 |
| 22-Apr-2021 |
Joseph Chen <chenjh@rock-chips.com> |
lib: avb: skip descriptor hash check if unlock
What ever there is descriptor hash or not, let's skip
descriptor hash match check if device is unlock.
We rely on ops->get_preloaded_partition() to lo
lib: avb: skip descriptor hash check if unlock
What ever there is descriptor hash or not, let's skip
descriptor hash match check if device is unlock.
We rely on ops->get_preloaded_partition() to load image
and verify hash, which is more efficient than full load.
By the way, correct the function return code.
Signed-off-by: Joseph Chen <chenjh@rock-chips.com>
Change-Id: If48d7c676fec58b9c3905ba1bcf7ab43b833b323
show more ...
|
| #
ae205b95 |
| 09-Nov-2020 |
Joseph Chen <chenjh@rock-chips.com> |
lib: avb: independent on optee client
Signed-off-by: Joseph Chen <chenjh@rock-chips.com>
Change-Id: I1bab69baf97b5174024db25278cf30efafd3e34e
|
| #
08f7f19a |
| 03-Nov-2020 |
Jason Zhu <jason.zhu@rock-chips.com> |
lib: avb: separate the ab from the avb lib
Open CONFIG_AVB_LIBAVB_USER & CONFIG_ANDROID_AB &
CONFIG_AVB_LIBAVB_AB to enable ab.
Signed-off-by: Jason Zhu <jason.zhu@rock-chips.com>
Change-Id: I16119
lib: avb: separate the ab from the avb lib
Open CONFIG_AVB_LIBAVB_USER & CONFIG_ANDROID_AB &
CONFIG_AVB_LIBAVB_AB to enable ab.
Signed-off-by: Jason Zhu <jason.zhu@rock-chips.com>
Change-Id: I1611907b3cb82f72d5e706ed966ee98c7569d230
show more ...
|
| #
16a62313 |
| 08-Sep-2020 |
Jason Zhu <jason.zhu@rock-chips.com> |
lib: avb: update ops functions
1.read_from_partition: support read vbmeta from the partition tail.
2.validate_public_key_for_partition: support this function
Signed-off-by: Jason Zhu <jason.zhu@roc
lib: avb: update ops functions
1.read_from_partition: support read vbmeta from the partition tail.
2.validate_public_key_for_partition: support this function
Signed-off-by: Jason Zhu <jason.zhu@rock-chips.com>
Change-Id: I5372848a9339b10f5b1a66e92f5217a0a3122392
show more ...
|
| #
1a4f6af8 |
| 02-Mar-2020 |
Joseph Chen <chenjh@rock-chips.com> |
Merge branch 'next-dev' into thunder-boot
|
| #
27e62cd7 |
| 17-Dec-2019 |
Joseph Chen <chenjh@rock-chips.com> |
lib: avb: implement get_preloaded_partition callback
It works only when verification error is allowed, it avoids
AVB workflow to load the full partition which wastes time.
Signed-off-by: Joseph Che
lib: avb: implement get_preloaded_partition callback
It works only when verification error is allowed, it avoids
AVB workflow to load the full partition which wastes time.
Signed-off-by: Joseph Chen <chenjh@rock-chips.com>
Change-Id: Icbcd48b7bf97d826663523099c944e269f17b709
show more ...
|
| #
74b485fb |
| 23-Jan-2019 |
Jason Zhu <jason.zhu@rock-chips.com> |
fastboot: delete write perm-attr hash if use pre-loader pub_key
Since we use the pre-loader public key to verify permanent attribute, then
we do not need to write permanent attribute hash to otp & e
fastboot: delete write perm-attr hash if use pre-loader pub_key
Since we use the pre-loader public key to verify permanent attribute, then
we do not need to write permanent attribute hash to otp & efuse.
Change-Id: Ic5e19fed2fc9405ab5bc7504dd930fd5f02d847c
Signed-off-by: Jason Zhu <jason.zhu@rock-chips.com>
show more ...
|
| #
65f0143b |
| 26-Dec-2018 |
Jason Zhu <jason.zhu@rock-chips.com> |
lib: avb: verify the perm attr by root public key
Change-Id: I7e06152a21325ffcd785223952fe8ffaff4d5f08
Signed-off-by: Jason Zhu <jason.zhu@rock-chips.com>
|
| #
ee9d3433 |
| 14-Jan-2019 |
Jason Zhu <jason.zhu@rock-chips.com> |
lib: avb: fix fail to read PIK minimum
Do not update the PIK version if it is equal to the value in the storage,
otherwise the error may occur in power failure test.
Change-Id: Ia478d9b404de3982b4d
lib: avb: fix fail to read PIK minimum
Do not update the PIK version if it is equal to the value in the storage,
otherwise the error may occur in power failure test.
Change-Id: Ia478d9b404de3982b4de5b185e15d181b37f5fd9
Signed-off-by: Jason Zhu <jason.zhu@rock-chips.com>
show more ...
|
| #
caed6b4f |
| 11-Dec-2018 |
Joseph Chen <chenjh@rock-chips.com> |
rockchip: make avb boot flow uninterruptable
- only allow "boot_android" as bootcmd;
- enter rockusb or fastboot when boot failed;
- don't allow ctrl+c to enter hush;
Change-Id: I7a67f4b738ed78370f
rockchip: make avb boot flow uninterruptable
- only allow "boot_android" as bootcmd;
- enter rockusb or fastboot when boot failed;
- don't allow ctrl+c to enter hush;
Change-Id: I7a67f4b738ed78370f19fe2c8c920a5abc104b4b
Signed-off-by: Joseph Chen <chenjh@rock-chips.com>
show more ...
|
| #
7c1937d6 |
| 08-Aug-2018 |
Jason Zhu <jason.zhu@rock-chips.com> |
lib: avb: change judgement value when read from rpmb
If the item is not existent, trust will return TEE_ERROR_GENERIC
TEE_ERROR_NO_DATA and TEE_ERROR_ITEM_NOT_FOUND. We initialize
the item when retu
lib: avb: change judgement value when read from rpmb
If the item is not existent, trust will return TEE_ERROR_GENERIC
TEE_ERROR_NO_DATA and TEE_ERROR_ITEM_NOT_FOUND. We initialize
the item when return these value.
TEST: fastboot getvar at-vboot-state
ERROR: avb-perm-attr-set=0
avb-locked=
avb-unlock-disabled=
Change-Id: Ie1b4e1ce7d1dc419a0af11e5701b0130f2f7f553
Signed-off-by: Jason Zhu <jason.zhu@rock-chips.com>
show more ...
|
| #
8d0db1d9 |
| 11-Jun-2018 |
Jason Zhu <jason.zhu@rock-chips.com> |
lib: avb: implement the function get_random()
Use the function get_timer to get the random
seed. Then the seed is used by function srand
to initialize the random data.
Change-Id: Iaae6a17d22b8e85fb
lib: avb: implement the function get_random()
Use the function get_timer to get the random
seed. Then the seed is used by function srand
to initialize the random data.
Change-Id: Iaae6a17d22b8e85fb4d4b6c6247cd11003b64eea
Signed-off-by: Jason Zhu <jason.zhu@rock-chips.com>
show more ...
|
| #
ab608f80 |
| 11-Jun-2018 |
Jason Zhu <jason.zhu@rock-chips.com> |
lib: avb: update avb source code
according to google lib avb
commit id: 44e07124afb1f46af0d745d83481f49c482900b1
Change-Id: Ie59a7265699e3e6b1673bb64da6d1c7a1e7b6201
Signed-off-by: Jason Zhu <jason
lib: avb: update avb source code
according to google lib avb
commit id: 44e07124afb1f46af0d745d83481f49c482900b1
Change-Id: Ie59a7265699e3e6b1673bb64da6d1c7a1e7b6201
Signed-off-by: Jason Zhu <jason.zhu@rock-chips.com>
show more ...
|
| #
82e713e1 |
| 07-Mar-2018 |
Jason Zhu <jason.zhu@rock-chips.com> |
lib: avb: support set_key_version
the lib avb use this function to set key version
Change-Id: Id0903b3326a0d6a0eadebd1ce23a19f92102908c
Signed-off-by: Jason Zhu <jason.zhu@rock-chips.com>
|
| #
90ed034f |
| 25-Feb-2018 |
Jason Zhu <jason.zhu@rock-chips.com> |
lib: avb: change the return value if the item is not found
Change-Id: Ie6d29a59323789c594b4c6e9167c3bbe58e25e9f
Signed-off-by: Jason Zhu <jason.zhu@rock-chips.com>
|
| #
459bc933 |
| 26-Jan-2018 |
Jason Zhu <jason.zhu@rock-chips.com> |
lib: avb: get the dev_desc by function rockchip_get_bootdev
Change-Id: I62211b54b0efc11e232d9473a9f566c9fa82b3d8
Signed-off-by: Jason Zhu <jason.zhu@rock-chips.com>
|
| #
37a7bc39 |
| 26-Jan-2018 |
Jason Zhu <jason.zhu@rock-chips.com> |
lib: avb: update and modify the avb library
The commit point is updated to google external/avb/
which commit point is cf8c56208d2d9643804a7f123b196c7ebc9af276.
Change-Id: I5a10a8a45d3e9e2c9d20d9b3d
lib: avb: update and modify the avb library
The commit point is updated to google external/avb/
which commit point is cf8c56208d2d9643804a7f123b196c7ebc9af276.
Change-Id: I5a10a8a45d3e9e2c9d20d9b3d44946073c9a49ff
Signed-off-by: Jason Zhu <jason.zhu@rock-chips.com>
show more ...
|