f77c5729a65436280fe8249abff0ba709b378d9f - platform/packages/modules/Virtualization

commit	f77c5729a65436280fe8249abff0ba709b378d9f	[log] [tgz]
author	Victor Hsieh <victorhsieh@google.com>	Fri Nov 13 14:30:05 2020 -0800
committer	Victor Hsieh <victorhsieh@google.com>	Wed Nov 18 16:00:43 2020 -0800
tree	37415e71e941c2aecb2ee096ad6599bffeaab9bc
parent	f4070234eba3213e5f3dc597fbaad881a109b0c0 [diff]

authfs: create a chunked reader with fs-verity verification

The new chunked reader uses a Merkle tree to verify each chunk read of
the corresponding backing file. The reader also accepts an
autheneticator for signature verification, though it is currently a fake
implementation due to the lack of PKCS#7 signature support in BoringSSL
(b/170494765).

Test: atest authfs_host_test_src_lib
Bug: 171310075

Change-Id: Ibf4151ab2a93f7515ad8c9c0462df6c21c10d767

authfs/src/auth.rs[Added - diff]
authfs/src/fsverity.rs[diff]
authfs/src/lib.rs[diff]
authfs/testdata/README.md[Added - diff]
authfs/testdata/cert.der[Added - diff]
authfs/testdata/cert.pem[Added - diff]
authfs/testdata/input.4k.fsv_sig[Added - diff]
authfs/testdata/input.4k1.fsv_sig[Added - diff]
authfs/testdata/input.4m.fsv_sig[Added - diff]
authfs/testdata/key.pem[Added - diff]

10 files changed

tree: 37415e71e941c2aecb2ee096ad6599bffeaab9bc

authfs/
docs/
rustfmt.toml ⇨ ../../../build/soong/scripts/rustfmt.toml
.clang-format
PREUPLOAD.cfg