| #
53e4c065 |
| 31-Mar-2023 |
Jason Zhu <jason.zhu@rock-chips.com> |
lib: avb: avb lock if pre-loader security enable
Save the operation steps of factory production.
Signed-off-by: Jason Zhu <jason.zhu@rock-chips.com>
Change-Id: Icf69fceb04ae77a05954664a8d2d5c53cfa4
lib: avb: avb lock if pre-loader security enable
Save the operation steps of factory production.
Signed-off-by: Jason Zhu <jason.zhu@rock-chips.com>
Change-Id: Icf69fceb04ae77a05954664a8d2d5c53cfa45057
show more ...
|
| #
647502d6 |
| 05-Aug-2022 |
Jason Zhu <jason.zhu@rock-chips.com> |
lib: avb: use function printf() to print log
Use uboot printf() to print log but not avb library function. So that
we need not to compile libavb if enable a/b system.
Signed-off-by: Jason Zhu <jaso
lib: avb: use function printf() to print log
Use uboot printf() to print log but not avb library function. So that
we need not to compile libavb if enable a/b system.
Signed-off-by: Jason Zhu <jason.zhu@rock-chips.com>
Change-Id: I8dbb3c18fd62858f1d8697fad1935f23f6e6b0a8
show more ...
|
| #
2d62cca0 |
| 24-Nov-2021 |
Jason Zhu <jason.zhu@rock-chips.com> |
lib: avb: add function rk_avb_update_stored_rollback_indexes_for_slot()
Signed-off-by: Jason Zhu <jason.zhu@rock-chips.com>
Change-Id: Ib6b452f6079d8ec768a46bd123fd1bd6a79d80fc
|
| #
6e2db7c2 |
| 12-May-2021 |
Wu Liangqing <wlq@rock-chips.com> |
avb: otp: support avb hash download
Change-Id: Idd07a1473d4d1bbe91e309f8db73be08b5b59dd1
Signed-off-by: Wu Liangqing <wlq@rock-chips.com>
|
| #
a2b78998 |
| 08-Apr-2021 |
Jason Zhu <jason.zhu@rock-chips.com> |
lib: avb: use CONFIG_SUPPORT_EMMC_RPMB to shield the code
Signed-off-by: Jason Zhu <jason.zhu@rock-chips.com>
Change-Id: I4d7009af0c0e3f7d26d9b283476ed623bb97dad2
|
| #
926664c9 |
| 30-Jan-2021 |
Jason Zhu <jason.zhu@rock-chips.com> |
lib: avb: reduce write rollback index operations
The optee is used to storage security data in U-Boot, and a file
which occupy 16KB is created when write a rollback index. But the
security space is
lib: avb: reduce write rollback index operations
The optee is used to storage security data in U-Boot, and a file
which occupy 16KB is created when write a rollback index. But the
security space is only 512KB, the sapce is not enough when write
too many items.
And here we write rollback index 32 times, but the avb only use
rollback_index_location 0 to verify the rollback index with vbmeta.
So just get the rollback_index_location 0 in this process.
Test:
fastboot getvar at-vboot-state
Error log:
TEEC: reference out of data: -1
TEEC: Not enough space available in secure storage!
Signed-off-by: Jason Zhu <jason.zhu@rock-chips.com>
Change-Id: Id69b852553a4ef9111dabe6f23e25038b0928bb3
show more ...
|
| #
68e2a287 |
| 15-Dec-2020 |
Jason Zhu <jason.zhu@rock-chips.com> |
lib: avb: return flash unlock status
Return flash unlock status when close CONFIG_OPTEE_CLIENT.
Signed-off-by: Jason Zhu <jason.zhu@rock-chips.com>
Change-Id: I7a7a03b8305c864d83d3d2c14b0f9aa104b2e
lib: avb: return flash unlock status
Return flash unlock status when close CONFIG_OPTEE_CLIENT.
Signed-off-by: Jason Zhu <jason.zhu@rock-chips.com>
Change-Id: I7a7a03b8305c864d83d3d2c14b0f9aa104b2ef59
show more ...
|
| #
ae205b95 |
| 09-Nov-2020 |
Joseph Chen <chenjh@rock-chips.com> |
lib: avb: independent on optee client
Signed-off-by: Joseph Chen <chenjh@rock-chips.com>
Change-Id: I1bab69baf97b5174024db25278cf30efafd3e34e
|
| #
08f7f19a |
| 03-Nov-2020 |
Jason Zhu <jason.zhu@rock-chips.com> |
lib: avb: separate the ab from the avb lib
Open CONFIG_AVB_LIBAVB_USER & CONFIG_ANDROID_AB &
CONFIG_AVB_LIBAVB_AB to enable ab.
Signed-off-by: Jason Zhu <jason.zhu@rock-chips.com>
Change-Id: I16119
lib: avb: separate the ab from the avb lib
Open CONFIG_AVB_LIBAVB_USER & CONFIG_ANDROID_AB &
CONFIG_AVB_LIBAVB_AB to enable ab.
Signed-off-by: Jason Zhu <jason.zhu@rock-chips.com>
Change-Id: I1611907b3cb82f72d5e706ed966ee98c7569d230
show more ...
|
| #
b8dc613c |
| 19-Nov-2019 |
Joseph Chen <chenjh@rock-chips.com> |
Merge branch 'next-dev' into thunder-boot
|
| #
eb89f0a8 |
| 24-Oct-2019 |
Joseph Chen <chenjh@rock-chips.com> |
lib: avb: add partition slot append interface
Dump current slot information is helpful.
Change-Id: I872c29b9a67860703951a4e88e9549be17b94eed
Signed-off-by: Joseph Chen <chenjh@rock-chips.com>
|
| #
c2bb0fd1 |
| 18-Sep-2019 |
Jason Zhu <jason.zhu@rock-chips.com> |
lib: avb: print the permanent attribute certificate is exist or not
Change-Id: I10775dd06a6fb1bfdddcfda37fe2e1178c3fde21
Signed-off-by: Jason Zhu <jason.zhu@rock-chips.com>
|
| #
3120d9d5 |
| 27-Jun-2019 |
Jason Zhu <jason.zhu@rock-chips.com> |
avb: do not use lastboot if enable CONFIG_ANDROID_AVB
The avb process have verify next level firmware to ensure its
availability. So there is no need to support lastboot in avb
process.
Change-Id:
avb: do not use lastboot if enable CONFIG_ANDROID_AVB
The avb process have verify next level firmware to ensure its
availability. So there is no need to support lastboot in avb
process.
Change-Id: I1623a2bd93c54802ce0067cad7061ade6cc56313
Signed-off-by: Jason Zhu <jason.zhu@rock-chips.com>
show more ...
|
| #
813227ad |
| 12-Apr-2019 |
Jason Zhu <jason.zhu@rock-chips.com> |
lib: avb: add init ab metadata interface
Change-Id: Ifad6c8ca70568c2dc8eea0a4ead23e3e7a2a0e74
Signed-off-by: Jason Zhu <jason.zhu@rock-chips.com>
|
| #
1f670f7c |
| 06-Mar-2019 |
Jason Zhu <jason.zhu@rock-chips.com> |
lib: avb: get public key by atags
Change-Id: I0d77229585263e81e8be4f5c67a02080c07b0e55
Signed-off-by: Jason Zhu <jason.zhu@rock-chips.com>
|
| #
9b83ce70 |
| 26-Dec-2018 |
Jason Zhu <jason.zhu@rock-chips.com> |
lib: avb: add get&set perm-attr cer
Change-Id: I89d3a30f43659ae8c9d107ede5db1590b022440d
Signed-off-by: Jason Zhu <jason.zhu@rock-chips.com>
|
| #
7cca3dd4 |
| 28-Feb-2019 |
Jason Zhu <jason.zhu@rock-chips.com> |
lib: avb: support last boot
Change-Id: I803e3deda068be34061a302c27009db5e444f290
Signed-off-by: Jason Zhu <jason.zhu@rock-chips.com>
|
| #
7c1937d6 |
| 08-Aug-2018 |
Jason Zhu <jason.zhu@rock-chips.com> |
lib: avb: change judgement value when read from rpmb
If the item is not existent, trust will return TEE_ERROR_GENERIC
TEE_ERROR_NO_DATA and TEE_ERROR_ITEM_NOT_FOUND. We initialize
the item when retu
lib: avb: change judgement value when read from rpmb
If the item is not existent, trust will return TEE_ERROR_GENERIC
TEE_ERROR_NO_DATA and TEE_ERROR_ITEM_NOT_FOUND. We initialize
the item when return these value.
TEST: fastboot getvar at-vboot-state
ERROR: avb-perm-attr-set=0
avb-locked=
avb-unlock-disabled=
Change-Id: Ie1b4e1ce7d1dc419a0af11e5701b0130f2f7f553
Signed-off-by: Jason Zhu <jason.zhu@rock-chips.com>
show more ...
|
| #
615e0cde |
| 08-Aug-2018 |
Jason Zhu <jason.zhu@rock-chips.com> |
lib: avb: fix bug HANG in fastboot getvar at-vboot-state
Bug: Run 'fastboot getvar at-vboot-state', then HANG
in the fastboot without any message.
Cause: The fastboot can not decide the vboot size
lib: avb: fix bug HANG in fastboot getvar at-vboot-state
Bug: Run 'fastboot getvar at-vboot-state', then HANG
in the fastboot without any message.
Cause: The fastboot can not decide the vboot size when
the return information size of vboot state is larger
than the VBOOT_STATE_SIZE. This makes the device will not
response to console.
Solution: 1. Enlarge VBOOT_STATE_SIZE. The max size of
vboot state may be 862, so define VBOOT_STATE_SIZE
to 1000.
2. Use snprintf to get the info.
Change-Id: I2d0fda76ca9034c596993ab27a02cbf2fa550977
Signed-off-by: Jason Zhu <jason.zhu@rock-chips.com>
show more ...
|
| #
ab608f80 |
| 11-Jun-2018 |
Jason Zhu <jason.zhu@rock-chips.com> |
lib: avb: update avb source code
according to google lib avb
commit id: 44e07124afb1f46af0d745d83481f49c482900b1
Change-Id: Ie59a7265699e3e6b1673bb64da6d1c7a1e7b6201
Signed-off-by: Jason Zhu <jason
lib: avb: update avb source code
according to google lib avb
commit id: 44e07124afb1f46af0d745d83481f49c482900b1
Change-Id: Ie59a7265699e3e6b1673bb64da6d1c7a1e7b6201
Signed-off-by: Jason Zhu <jason.zhu@rock-chips.com>
show more ...
|
| #
57c7f8fe |
| 11-Jun-2018 |
Jason Zhu <jason.zhu@rock-chips.com> |
lib: avb: support generate unlock challenge
Change-Id: Ia21746ec2bc729fd92ca7ea7a3320dfcbd4dd238
Signed-off-by: Jason Zhu <jason.zhu@rock-chips.com>
|
| #
83ab7b49 |
| 11-Jun-2018 |
Jason Zhu <jason.zhu@rock-chips.com> |
lib: avb: rk: add authenticated unlock interface
Change-Id: Ib2aa1ac07d25f14aa08fc759ec99b6ba64d6abef
Signed-off-by: Jason Zhu <jason.zhu@rock-chips.com>
|
| #
c3230cf0 |
| 15-Mar-2018 |
Jason Zhu <jason.zhu@rock-chips.com> |
lib: avb: add bootloader-min-versions
The bootloader include uboot and trust. The uboot slot index
number is 0. The trust slot number index is 1.
Change-Id: Ia62edbf60486fa4128756458c6312f682a83d0f
lib: avb: add bootloader-min-versions
The bootloader include uboot and trust. The uboot slot index
number is 0. The trust slot number index is 1.
Change-Id: Ia62edbf60486fa4128756458c6312f682a83d0f7
Signed-off-by: Jason Zhu <jason.zhu@rock-chips.com>
show more ...
|
| #
df50318e |
| 15-Mar-2018 |
Jason Zhu <jason.zhu@rock-chips.com> |
lib: avb: add slot number to avb-min-versions
Acording to google, the avb-min-versions includes the slot number
rather than the image rollback-index stored in the image.
PIK/PSK: use AVB_ATX_PSK_VE
lib: avb: add slot number to avb-min-versions
Acording to google, the avb-min-versions includes the slot number
rather than the image rollback-index stored in the image.
PIK/PSK: use AVB_ATX_PSK_VERSION_LOCATION and AVB_ATX_PIK_VERSION_LOCATION
as slot number.
Change-Id: I06b8d107e27f1e0f136b5e964c1287bc13f80b7c
Signed-off-by: Jason Zhu <jason.zhu@rock-chips.com>
show more ...
|
| #
da980a52 |
| 05-Mar-2018 |
Jason Zhu <jason.zhu@rock-chips.com> |
lib: avb: initialize temp_flag before next used
Change-Id: Icbc570fdb1cd1f8ff30309f5776421ee6c4a086b
Signed-off-by: Jason Zhu <jason.zhu@rock-chips.com>
|