Skip to content

Add Weaver TA to secure_env#2803

Open
karunae wants to merge 4 commits into
google:mainfrom
karunae:weaver_hal
Open

Add Weaver TA to secure_env#2803
karunae wants to merge 4 commits into
google:mainfrom
karunae:weaver_hal

Conversation

@karunae

@karunae karunae commented Jul 1, 2026

Copy link
Copy Markdown

No description provided.

@karunae

karunae commented Jul 1, 2026

Copy link
Copy Markdown
Author

@jemoreira would you mind reviewing these changes?

Karuna Wadhera added 4 commits July 13, 2026 12:56
Move the main event loop for TAs into a common library
libsecure_env_common to avoid duplication. This refactoring is done in
preparation for introducing the Weaver HAL.

Bug: b/432285494
Test: bazel test //... (in base/cvd)
Move the C++ log forwarder to the common crate to enable its use by
other TAs. Also rename 'tpm_ffi' files to 'secure_env_ffi' to reflect
they are no longer strictly TPM-specific. This refactoring is done in
preparation for introducing the Weaver HAL.

Bug: 432285494
Test: bazel test //... (in base/cvd)
Implement the Weaver Trusted Application in Rust on the host side.
This TA will handle secure storage of Weaver slots.

Bug: 432285494
Test: bazel test //... (in base/cvd)
Add the necessary plumbing, HVC channels, and configuration to
enable the Weaver HAL in Cuttlefish. Make the Weaver HAL configurable
via the `secure_hals` flag, enabling it by default.

Bug: 432285494
Test: bazel test //... (in base/cvd)
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant