Google Git
Sign in
android / device / google / cuttlefish / e108d6ae343adaa0bcec81d3815159ac60be1646
commite108d6ae343adaa0bcec81d3815159ac60be1646[log] [tgz]
authorDavid Drysdale <[email protected]>Thu Jun 10 11:33:39 2021 +0100
committerDavid Drysdale <[email protected]>Wed Jun 16 09:01:29 2021 +0100
tree8dba54bdcb2ecaf93359b66b278b133590ad73ce
parent7fcb4034241d9c095c8f731c5e77e1d72f8cd265 [diff]
KeyMint: make tags keymint-enforced

Copied from reference impl in aosp/1719603

The reference KeyMint implementation happily accepts the following tags
on key creation requests:
- TAG_EARLY_BOOT_ONLY
- TAG_TRUSTED_CONFIRMATION_REQUIRED
- TAG_TRUSTED_USER_PRESENCE_REQUIRED

It should therefore include them in the keymint-enforced security level
of the returned key characteristics.

Bug: 188672564
Test: VtsAidlKeyMintTargetTest
Merged-In: I7cf490d3a1f722e9a1a9ec38744e207d70200610
Change-Id: I7cf490d3a1f722e9a1a9ec38744e207d70200610
Ignore-AOSP-First: already in aosp/master
1 file changed
tree: 8dba54bdcb2ecaf93359b66b278b133590ad73ce
  1. build/
  2. common/
  3. guest/
  4. host/
  5. recovery/
  6. shared/
  7. tests/
  8. tools/
  9. vsoc_arm64/
  10. vsoc_arm64_only/
  11. vsoc_arm_only/
  12. vsoc_x86/
  13. vsoc_x86_64/
  14. vsoc_x86_64_only/
  15. vsoc_x86_noapex/
  16. vsoc_x86_only/
  17. rustfmt.toml ⇨ ../../../build/soong/scripts/rustfmt.toml
  18. .clang-format
  19. Android.bp
  20. Android.mk
  21. AndroidProducts.mk
  22. CleanSpec.mk
  23. default-permissions.xml
  24. dtb.img
  25. fetcher.mk
  26. host_package.mk
  27. METADATA
  28. OWNERS
  29. PREUPLOAD.cfg
  30. README.md
  31. required_images
  32. TEST_MAPPING
README.md

Cuttlefish Getting Started

Try Cuttlefish

  1. Make sure virtualization with KVM is available.

     grep -c -w "vmx\|svm" /proc/cpuinfo

    This should return a non-zero value. If running on a cloud machine, this may take cloud-vendor-specific steps to enable. For Google Compute Engine specifically, see the GCE guide.

  2. Download, build, and install the host debian package:

    git clone https://github.com/google/android-cuttlefish
cd android-cuttlefish
debuild -i -us -uc -b
sudo dpkg -i ../cuttlefish-common_*_amd64.deb || sudo apt-get install -f
sudo reboot

    The reboot will trigger installing additional kernel modules and applying udev rules.

  3. Go to http://ci.android.com/

  4. Enter a branch name. Start with aosp-master if you don‘t know what you’re looking for

  5. Navigate to aosp_cf_x86_64_phone and click on userdebug for the latest build

  6. Click on Artifacts

  7. Scroll down to the OTA images. These packages look like aosp_cf_x86_64_phone-img-xxxxxx.zip -- it will always have img in the name. Download this file

  8. Scroll down to cvd-host_package.tar.gz. You should always download a host package from the same build as your images.

  9. On your local system, combine the packages:

    mkdir cf
cd cf
tar xvf /path/to/cvd-host_package.tar.gz
unzip /path/to/aosp_cf_x86_64_phone-img-xxxxxx.zip

  10. Launch cuttlefish with:

$ HOME=$PWD ./bin/launch_cvd

  1. Stop cuttlefish with:

$ HOME=$PWD ./bin/stop_cvd

Debug Cuttlefish

You can use adb to debug it, just like a physical device:

$ ./bin/adb -e shell

Launch Viewer (WebRTC)

When launching with ---start_webrtc (the default), you can see a list of all available devices at https://localhost:8443 . For more information, see the WebRTC on Cuttlefish documentation.

Launch Viewer (VNC)

When launching with --start_vnc_server=true , You can use the TightVNC JViewer. Once you have downloaded the TightVNC Java Viewer JAR in a ZIP archive, run it with

$ java -jar tightvnc-jviewer.jar -ScalingFactor=50 -Tunneling=no -host=localhost -port=6444

Click “Connect” and you should see a lock screen!