• Home
Name Date Size #Lines LOC

..--

doc/03-May-2024-414347

rust/03-May-2024-1,258748

Android.bpD03-May-20244.8 KiB194185

OWNERSD03-May-202485 32

README.mdD03-May-2024841 1511

composite_serialization.cppD03-May-20241.4 KiB5330

composite_serialization.hD03-May-20241.4 KiB4414

confui_sign_server.cppD03-May-20243.4 KiB9159

confui_sign_server.hD03-May-20241.1 KiB3717

device_tpm.cppD03-May-20241.8 KiB5937

device_tpm.hD03-May-20241.1 KiB4014

encrypted_serializable.cppD03-May-202411.1 KiB328288

encrypted_serializable.hD03-May-20242.5 KiB6418

encrypted_serializable_test.cppD03-May-20242.1 KiB5630

fragile_tpm_storage.cppD03-May-20247.8 KiB245212

fragile_tpm_storage.hD03-May-20242.1 KiB6527

gatekeeper_responder.cppD03-May-20242.2 KiB6645

gatekeeper_responder.hD03-May-20241 KiB3714

gatekeeper_storage.hD03-May-20241.5 KiB4716

hmac_serializable.cppD03-May-20245.1 KiB152125

hmac_serializable.hD03-May-20242.4 KiB6624

in_process_tpm.cppD03-May-20245.4 KiB190142

in_process_tpm.hD03-May-20241.4 KiB5217

insecure_fallback_storage.cppD03-May-20244.5 KiB154123

insecure_fallback_storage.hD03-May-20242.1 KiB6124

json_serializable.cppD03-May-20245.2 KiB160121

json_serializable.hD03-May-2024960 309

keymaster_responder.cppD03-May-20245.9 KiB127105

keymaster_responder.hD03-May-20241 KiB3714

oemlock.hD03-May-20241.2 KiB3812

oemlock_responder.cppD03-May-20242.2 KiB6639

oemlock_responder.hD03-May-20241.1 KiB3917

primary_key_builder.cppD03-May-20245.1 KiB145108

primary_key_builder.hD03-May-20241.4 KiB5123

proxy_keymaster_context.hD03-May-20246.6 KiB181132

secure_env_linux_main.cppD03-May-202413.9 KiB348275

secure_env_windows_lib.cppD03-May-20245.2 KiB14198

secure_env_windows_lib.hD03-May-20241.6 KiB4818

secure_env_windows_main.cppD03-May-20241.8 KiB5128

soft_gatekeeper.hD03-May-20245.8 KiB173125

soft_oemlock.hD03-May-20241.4 KiB5326

test_tpm.cppD03-May-20241.1 KiB3714

test_tpm.hD03-May-2024891 3613

tpm.hD03-May-2024812 309

tpm_attestation_record.cppD03-May-20247.2 KiB207153

tpm_attestation_record.hD03-May-20242.6 KiB7551

tpm_auth.cppD03-May-20241.3 KiB4825

tpm_auth.hD03-May-20241.3 KiB4817

tpm_commands.cppD03-May-20246 KiB152130

tpm_commands.hD03-May-2024755 276

tpm_encrypt_decrypt.cppD03-May-20243.2 KiB9568

tpm_encrypt_decrypt.hD03-May-20241.7 KiB4912

tpm_ffi.cppD03-May-20242.4 KiB7957

tpm_ffi.hD03-May-20241.3 KiB4314

tpm_gatekeeper.cppD03-May-20247.4 KiB242198

tpm_gatekeeper.hD03-May-20242.7 KiB8848

tpm_hmac.cppD03-May-20245.4 KiB176146

tpm_hmac.hD03-May-20242.1 KiB6522

tpm_key_blob_maker.cppD03-May-202410.6 KiB293223

tpm_key_blob_maker.hD03-May-20243.1 KiB8438

tpm_keymaster_context.cppD03-May-202425.4 KiB687549

tpm_keymaster_context.hD03-May-20245.6 KiB148101

tpm_keymaster_enforcement.cppD03-May-202410.8 KiB326259

tpm_keymaster_enforcement.hD03-May-20242.6 KiB7137

tpm_random_source.cppD03-May-20243.5 KiB10980

tpm_random_source.hD03-May-20241.2 KiB4315

tpm_remote_provisioning_context.cppD03-May-20248.9 KiB255208

tpm_remote_provisioning_context.hD03-May-20242.7 KiB7345

tpm_resource_manager.cppD03-May-20242.5 KiB8252

tpm_resource_manager.hD03-May-20241.9 KiB6731

tpm_serialize.cppD03-May-20242.5 KiB8958

tpm_serialize.hD03-May-20241.8 KiB5721

README.md

1Host process substituting for a TEE (Trusted Execution Environment). Used to
2run backing implementations of Android HALs that normally delegate to a TEE
3environment, specifically ConfirmationUI, Gatekeeper, and Keymint.
4
5Gatekeeper and Keymint communicate with `secure_env` through virtio-console
6channels connected to FIFO files on the host. The display part of
7ConfirmationUI is runs in the `webRTC` host process, which delegates signing
8operations only to `secure_env`.
9
10Before entering the kernel, the u-boot bootloader writes some information
11about the device image files into the keymint channel to prepare it with
12the authenticated version number of the operating system.
13
14[![linkage](./doc/linkage.png)](https://cs.android.com/android/platform/superproject/+/master:device/google/cuttlefish/host/commands/secure_env/doc/linkage.svg)
15