OpenHarmony Verified Boot (HVB) component is used to verify and authenticate system images to make sure OpenHarmony is running system images:
- from authenticated sources
- without tampering
- can not roll back to old versions with vulnerabilities
HVB is composed of three modules as shown below:
- libhvb is the verifying utility library. It will be integrated by Bootloader to verify initial images, and integrated by init to verify system images.
- hvbtool is used to sign system images, it will be integrated by Building system.
The structure of the repository directory is as follows:
base/startup/hvb/
├── libhvb # source code for libhvb module
└── tools # source code for hvbtool module