commit | ad2f39394ce7756e14e741d04ac4370036e93f56 | [log] [tgz] |
---|---|---|
author | nagendra modadugu <ngm@google.com> | Mon Jul 23 16:53:54 2018 -0700 |
committer | nagendra modadugu <ngm@google.com> | Mon Jul 23 17:01:23 2018 -0700 |
tree | cf1d2243e2317743859f02ee5b7601d6cfab526b | |
parent | d64669a969f171e68649a7d5ad2b60468fc24297 [diff] | |
parent | c33f79118d6980b9b1bae5183067f0868cc6102d [diff] |
Merge remote-tracking branch 'goog/upstream-master' into ngm-nos-merge-upstream * goog/upstream-master: keymaster: refactor batch cert constants [keymaster] Select attestation certificate chain based on hint [keymaster] Switch to prod/dvt attestation keys Bug: 111761046 Change-Id: I231a4fb8e13de1230e42c51aabfe03eb6ada7ed4
Android communicates with Nugget apps in order to implement security related HALs. Currently, those HALs are Keymaster, Weaver and OemLock.
Apps that define a protobuf service will have an app interface class autogenerated. These classes will wrap a NuggetClient
. The generator can be found in the generator
directory.
Work in progress.
Currently, everything is synchronous and just exposes the call_application()
function from the Nugget transport API. In future, asynchronous calls may be desired. Support for this could be added in:
NuggetClient
on top of call_application()
citadel
This directory contains the components to support Citadel connected to Android.