Home
last modified time | relevance | path

Searched refs:dice (Results 1 – 25 of 55) sorted by relevance

123

/packages/modules/Virtualization/docs/
Dpvm_dice_chain.md3 A VM [DICE][open-dice] chain is a cryptographically linked
13 ![][pvm-dice-chain-built-img]
15 [pvm-dice-chain-built-img]: img/pvm-dice-built-during-boot.png
29 [CDI values][dice-cdi], in a handover to pvmfw. The pVM takes over this
33 [dice-cdi]: https://android.googlesource.com/platform/external/open-dice/+/main/docs/specification.…
34 ![][pvm-dice-handover-img]
41 maintain a valid certificate chain. Pvmfw uses [open-dice][open-dice] with the
57 [pvm-dice-handover-img]: img/pvm-dice-handover.png
58 [open-dice]: https://android.googlesource.com/platform/external/open-dice/+/main/docs/specification…
78 [Android Profile for DICE][android-open-dice].
[all …]
Dvm_remote_attestation.md35 entity responsible for verifying the [DICE chain][open-dice] of the RKP VM. This
48 [open-dice]: https://android.googlesource.com/platform/external/open-dice/+/main/docs/android.md
54 of each [pVM DICE chain][pvm-dice-chain] by comparing it against its own DICE
59 [pvm-dice-chain]: ./pvm_dice_chain.md
132 ![RKP VM DICE chain][rkpvm-dice-chain]
158 [rkpvm-dice-chain]: img/rkpvm-dice-chain.png
174 [rkpvm-marker]: https://pigweed.googlesource.com/open-dice/+/HEAD/docs/android.md#configuration-des…
/packages/modules/Virtualization/guest/pvmfw/
DREADME.md44 unique secrets for the guest through the [_DICE Chain_][android-dice] (see
45 [Open Profile for DICE][open-dice]) that can be used to prove the identity of
56 [android-dice]: https://pigweed.googlesource.com/open-dice/+/refs/heads/main/docs/android.md
58 [open-dice]: https://pigweed.googlesource.com/open-dice/+/refs/heads/main/docs/specification.md
300 [pVM DICE chain][pvm-dice-chain] required by features like
319 - **Mode Decision**: Set according to the [specification][dice-mode]. In
329 [`compatible=”google,open-dice”`][dice-dt].
332 [AndroidDiceHandover]: https://pigweed.googlesource.com/open-dice/+/42ae7760023/src/android.c#212
333 [DiceAndroidHandoverMainFlow]: https://pigweed.googlesource.com/open-dice/+/42ae7760023/src/android…
335 [dice-mode]: https://pigweed.googlesource.com/open-dice/+/refs/heads/main/docs/specification.md#Mod…
[all …]
DTEST_MAPPING15 "name" : "libpvmfw.dice.test"
/packages/modules/Virtualization/guest/derive_microdroid_vendor_dice_node/src/
Dmain.rs69 fn dice_derivation(dice: DiceDriver, vbmeta: &VbMetaImage) -> Result<OwnedDiceArtifacts> { in dice_derivation()
87 dice.derive(code_hash, &desc, authority_hash, /* debug= */ false, hidden) in dice_derivation()
99 let dice = in try_main() localVariable
103 let dice_artifacts = dice_derivation(dice, &vbmeta).context("failed to derive dice chain")?; in try_main()
/packages/modules/Virtualization/libs/dice/open_dice/src/
Dlib.rs26 mod dice; module
37 pub use dice::DiceContext;
38 pub use dice::{
Dbcc.rs17 use crate::dice::{context, Cdi, CdiValues, DiceArtifacts, InputValues, CDI_SIZE};
136 ctx: crate::dice::DiceContext, in bcc_handover_main_flow()
/packages/modules/Virtualization/libs/dice/driver/src/
Dlib.rs211 let dice = DiceDriver::from_file(test_file.as_ref())?; in test_write_bcc_to_file_read_from_file() localVariable
213 let dice_artifacts2 = dice.dice_artifacts(); in test_write_bcc_to_file_read_from_file()
233 let dice = DiceDriver::from_file(&file_path)?; in test_dice_driver_from_file_deletes_file_after_derive() localVariable
241 let _ = dice.derive(code_hash, &desc, authority_hash, false, hidden)?; in test_dice_driver_from_file_deletes_file_after_derive()
/packages/modules/Virtualization/guest/microdroid_manager/src/
Dmain.rs17 mod dice; module
34 use crate::dice::dice_derivation;
246 dice: &DiceDriver, in verify_payload_with_instance_img()
250 let saved_data = instance.read_microdroid_data(dice).context("Failed to read identity data")?; in verify_payload_with_instance_img()
295 .write_microdroid_data(&extracted_data, dice) in verify_payload_with_instance_img()
319 let dice = if Path::new(DICE_CHAIN_FILE).exists() { in try_run_payload() localVariable
334 verify_payload_with_instance_img(&metadata, &dice, &mut state)? in try_run_payload()
343 let dice_artifacts = dice_derivation(dice, &instance_data, &payload_metadata)?; in try_run_payload()
Dinstance.rs116 pub fn read_microdroid_data(&mut self, dice: &DiceDriver) -> Result<Option<MicrodroidData>> { in read_microdroid_data()
146 let key = dice.get_sealing_key(INSTANCE_KEY_IDENTIFIER, cipher.key_len())?; in read_microdroid_data()
158 dice: &DiceDriver, in write_microdroid_data()
192 let key = dice.get_sealing_key(INSTANCE_KEY_IDENTIFIER, cipher.key_len())?; in write_microdroid_data()
Dvm_secret.rs234 fn sealing_policy(dice: &[u8]) -> Result<Vec<u8>, String> { in sealing_policy()
284 policy_for_dice_chain(dice, constraint_spec)? in sealing_policy()
298 dice: &OwnedDiceArtifactsWithExplicitKey, in new()
302 let session = SkSession::new(secretkeeper_proxy, dice, Some(get_secretkeeper_identity()?))?; in new()
Ddice.rs28 dice: DiceDriver, in dice_derivation()
57 dice.derive(code_hash, &config_descriptor, authority_hash, debuggable, hidden) in dice_derivation()
/packages/modules/Virtualization/libs/dice/open_dice/bindgen/android/
Drules.mk25 external/open-dice \
26 $(LOCAL_DIR)/../dice \
/packages/modules/Virtualization/libs/dice/open_dice/bindgen/dice/
Drules.mk25 external/open-dice \
55 MODULE_BINDGEN_SRC_HEADER := $(LOCAL_DIR)/dice.h
/packages/modules/Virtualization/libs/dice/open_dice/tests/
Dapi_test.rs215 let dice = TestArtifactsForSigning {}; in sign_cose_sign1_with_cdi_leaf_priv_verify() localVariable
217 let signature_res = retry_sign_cose_sign1_with_cdi_leaf_priv(b"MyMessage", b"MyAad", &dice); in sign_cose_sign1_with_cdi_leaf_priv_verify()
242 let dice = TestArtifactsForSigning {}; in sign_cose_sign1_with_cdi_leaf_priv_verify_multialg() localVariable
247 &dice, in sign_cose_sign1_with_cdi_leaf_priv_verify_multialg()
Drules.mk25 packages/modules/Virtualization/libs/dice/open_dice \
/packages/modules/Virtualization/libs/dice/sample_inputs/tests/
Dapi_test.rs22 use hwtrust::{dice, session::Session};
149 let chain = dice::Chain::from_cbor(&session, dice_artifacts.bcc().unwrap())?; in cdi_leaf_priv_corresponds_to_leaf_public_key_in_dice_chain()
/packages/modules/Virtualization/tests/testapk/src/native/
Dhwtrust_jni.rs20 use hwtrust::{dice, session::Session};
61 let _chain = dice::Chain::from_cbor(&session, &dice_chain)?; in validate_dice_chain()
/packages/modules/Virtualization/guest/pvmfw/src/
Dmain.rs26 mod dice; module
34 use crate::dice::{DiceChainInfo, PartialInputs};
187 let truncated_bytes = dice::chain::truncate(dice_handover).map_err(|e| { in parse_dice_handover()
/packages/modules/Virtualization/libs/libservice_vm_requests/src/
Dlib.rs24 mod dice; module
/packages/modules/Virtualization/libs/dice/open_dice/
Drules.mk28 $(LOCAL_DIR)/bindgen/dice \
/packages/modules/Virtualization/libs/dice/sample_inputs/
Drules.mk28 packages/modules/Virtualization/libs/dice/open_dice \
/packages/modules/Virtualization/guest/pvmfw/testdata/
Dtest_crosvm_dt_base.dtsi40 dice {
41 compatible = "google,open-dice";
/packages/modules/Virtualization/
Ddice_for_avf_guest.cddl4 ; https://pigweed.googlesource.com/open-dice/+/HEAD/docs/specification.md,
6 ; https://pigweed.googlesource.com/open-dice/+/HEAD/docs/android.md.
/packages/modules/Virtualization/tests/pvmfw/
DAndroid.bp66 "assets/dice.dat",

123