Only run VtsSecurityAvb for new launched devices
VtsSecurityAvb checks a release-signed GSI is used during VTS.
New launched devices might use either Dynamic System Update (DSU)
or adding avb_keys=/avb/q-gsi.avbpubkey for the /system entry in
the fstab file to boot a signed GSI.
To prevent additional efforts for upgrading devices, we only enforce
signed GSI for new launched devices. Upgrading devices still can use
the previous steps to boot an unsigned userdebug GSI.
Bug: 132044902
Test: run vts-security --module VtsSecurityAvb will bypass on upgrading
devices.
Change-Id: I913ff4a4b625dcd3b29e5b164522171397235fb5
Merged-In: I913ff4a4b625dcd3b29e5b164522171397235fb5
(cherry picked from commit d1001270368640e71920f81c5dbd742cc755b9ea)
1 file changed
