Google Git
Sign in
android/platform/system/hardware/interfaces/af29dbd21739b4651a879e44f2840d00fd53a590^!/.
commit
af29dbd21739b4651a879e44f2840d00fd53a590
[log] [tgz]
author
Karuna Wadhera <kwadhera@google.com>
Tue Jan 07 18:55:04 2025 +0000
committer
Karuna Wadhera <kwadhera@google.com>
Tue Jan 07 18:55:04 2025 +0000
tree
c92ac9d96491a97858f6bfa33a19eeb01e675124
parent
46b7669f9d85f892a4ef93193a81ec13f67f90c0 [diff]
Remind clients to verify returned module info

Bug: 369375199
Test: n/a
Change-Id: Ia7d060a728e1e007844251fb7bfc81bdd91eba2f

diff --git a/keystore2/aidl/android/system/keystore2/IKeystoreService.aidl b/keystore2/aidl/android/system/keystore2/IKeystoreService.aidl
index 666985c..886047d 100644
--- a/keystore2/aidl/android/system/keystore2/IKeystoreService.aidl
+++ b/keystore2/aidl/android/system/keystore2/IKeystoreService.aidl

@@ -255,7 +255,9 @@
      *
      * o Tag::MODULE_HASH: returns the DER-encoded structure corresponding to the `Modules` schema
      *   described in the KeyMint HAL's KeyCreationResult.aidl. The SHA-256 hash of this encoded
-     *   structure is what's included with the tag in attestations.
+     *   structure is what's included with the tag in attestations. To ensure the returned encoded
+     *   structure is the one attested to, clients should verify its SHA-256 hash matches the one
+     *   in the attestation. Note that the returned structure can vary between boots.
      *
      * ## Error conditions
      * `ResponseCode::INVALID_ARGUMENT` if `tag` is not specified in the list above.