Evolution-x/hardware_interfaces
1
0
Fork 0
mirror of https://github.com/Evolution-X/hardware_interfaces synced 2026-02-01 11:36:00 +00:00
Code Issues Packages Projects Releases Wiki Activity

InitialPayload of ExplicitKeyDiceCertChain

Browse Source 
Change the spec for DiceCertChainInitialPayload, removing the map &
directly equating it to bstr .cbor PubKey. Also mandate it to stick to
Core Deterministic Encoding Requirements. The deterministic encoding is
essential to ensure DicePolicies can be applied on the root key.

Test: Builds
Bug: 319613231
Change-Id: I5e12ecbcbae84ae608d784a12f8ae4afc49b5a9d
This commit is contained in:
Shikha Panwar
2024-01-11 14:24:14 +00:00
parent 23776d5001
commit fc0dbfee70
1 changed files with 4 additions and 5 deletions
Download Patch File Download Diff File Expand all files Collapse all files

9
security/authgraph/aidl/android/hardware/security/authgraph/ExplicitKeyDiceCertChain.cddl
View File

@@ -19,11 +19,10 @@ ExplicitKeyDiceCertChain = [
* DiceChainEntry
]
DiceCertChainInitialPayload = {
-4670552 : bstr .cbor PubKeyEd25519 /
bstr .cbor PubKeyECDSA256 /
bstr .cbor PubKeyECDSA384 ; subjectPublicKey
}
; Encoded in accordance with Core Deterministic Encoding Requirements [RFC 8949 s4.2.1]
DiceCertChainInitialPayload = bstr .cbor PubKeyEd25519
/ bstr .cbor PubKeyECDSA256
/ bstr .cbor PubKeyECDSA384 ; subjectPublicKey
; INCLUDE generateCertificateRequestV2.cddl for: PubKeyEd25519, PubKeyECDSA256, PubKeyECDSA384,
; DiceChainEntry