Google Git
Sign in
android / platform / test / vts-testcase / security / 5b499269134f864e7590b719b163a4c9827f0793
commit5b499269134f864e7590b719b163a4c9827f0793[log] [tgz]
authorBowgo Tsai <bowgotsai@google.com>Fri Aug 13 16:23:37 2021 +0800
committerBowgo Tsai <bowgotsai@google.com>Tue Aug 17 11:35:52 2021 +0800
tree33cc60fa1b982ff0d2dc015f06cb6a2cbf55b640
parenta50b5a52c099e1c38429a46e8973d7a5c75517a7 [diff]
Allowing verification error when checking hashtree algorithm

Commit Ia4a5de7c2bbf74b241fe30dde6f57b075e17e5bc checks the
hashtree algorithm for each hashtree descriptors returned
from libavb->avb_slot_verify(). It also asserts the verify
result returned from the function should be AVB_SLOT_VERIFY_RESULT_OK.

However, in VTS, a boot-debug.img or vendor_boot-debug.img will
be used. In this case, libavb->avb_slot_verify() might return a
non-fatal error result, e.g., AVB_SLOT_VERIFY_RESULT_ERROR_VERIFICATION or
AVB_SLOT_VERIFY_RESULT_ERROR_PUBLIC_KEY_REJECTED, because a
boot-debug.img or vendor_boot-debug.img is not release key signed.

Relaxing the assert to allow non-fatal error results.

Bug: 196352535
Test: Run VtsSecurityAvbTest with --gtest_filter=*HashtreeAlgorithm

Change-Id: I31b7607aa6a5d5ea5346fc268e591d56a2791a88
Merged-In: I31b7607aa6a5d5ea5346fc268e591d56a2791a88
(cherry picked from commit d04a57189dd6317f9439fdb0e37f70679319b080)
1 file changed
tree: 33cc60fa1b982ff0d2dc015f06cb6a2cbf55b640
  1. avb/
  2. poc/
  3. selinux/
  4. system_property/
  5. .clang-format
  6. __init__.py
  7. Android.bp
  8. OWNERS
  9. PREUPLOAD.cfg