From a5439fd7a559e49976b6315366c7ad25023bfba4 Mon Sep 17 00:00:00 2001 From: Catherine Vlasov Date: Fri, 15 Nov 2024 14:38:40 +0000 Subject: [PATCH] Correct comment about Verified Boot key on devices with custom root of trust. Updating the comment to match the test expectation. The attested Verified Boot key should contain the user-set root of trust if the Verified Boot state is "SelfSigned" (i.e. "yellow"). Bug: 376832222 Test: n/a (comment update) Change-Id: Ie3c43157f05e40fa42b107768af561644ff5d30f --- security/keymint/aidl/vts/functional/KeyMintAidlTestBase.cpp | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/security/keymint/aidl/vts/functional/KeyMintAidlTestBase.cpp b/security/keymint/aidl/vts/functional/KeyMintAidlTestBase.cpp index cfe9fa7cba..24e796fd8e 100644 --- a/security/keymint/aidl/vts/functional/KeyMintAidlTestBase.cpp +++ b/security/keymint/aidl/vts/functional/KeyMintAidlTestBase.cpp @@ -1812,7 +1812,7 @@ void verify_root_of_trust(const vector& verified_boot_key, bool device_ } } - // Verified boot key should be all 0's if the boot state is not verified or self signed + // Verified Boot key should be all zeroes if the boot state is "orange". std::string empty_boot_key(32, '\0'); std::string verified_boot_key_str((const char*)verified_boot_key.data(), verified_boot_key.size());