android 9.0 关于如何刷入 google key box 的步骤与方法

前提 ：刷入userdebug版本，这个keybox是google释放给我们的，里面有IMEI 或者SN 号的，每台设备都需要刷入，每台设备都不一样

D:\>adb -s ee6e106 root

D:\>adb -s ee6e106 disable-verity 

D:\>adb -s ee6e106 reboot

D:\>adb -s ee6e106 remount
remount succeeded

每个SN号刷入对应的keybox文件
D:\>adb -s ee6e106 push D:\0_C\keybox\attest.keybox data
D:\0_C\keybox\attest.keybox: 1 file pushed. 0.3 MB/s (13416 bytes in 0.049s)

D:\>adb -s ee6e106 shell
P0:/ # setenforce 0
P0:/ # qseecom_sample_client -v sampleapp 14 1
Note: Command line arguments do not belong to legacy test
        -------------------------------------------------------
         WARNING!!! You are about to provision the RPMB key.
         This is a ONE time operation and CANNOT be reversed.
        -------------------------------------------------------
         0 -> Provision Production key
         1 -> Provision Test key
         2 -> Check RPMB key provision status
        -------------------------------------------------------
         Select an option to proceed: 1
RPMB key provisioning completed

SN对应的号需要替换
P0:/ #  LD_LIBRARY_PATH=/vendor/lib64/hw KmInstallKeybox data/attest.keybox HP800A1909000000 false

如果成功 有下面的 文件
P0:/mnt/vendor/persist/data/keymaster64 # ls
keymaster64     y93fUIxIk+fRKZCdBG-LYpuk2QLhU3SVZhHnOrMYW2     zbLJ5+aDXgnjXGETF6tPu-ueAuX-YY5LRSObN3BGX0
keymaster64.bak y93fUIxIk+fRKZCdBG-LYpuk2QLhU3SVZhHnOrMYW2.bak zbLJ5+aDXgnjXGETF6tPu-ueAuX-YY5LRSObN3BGX0.bak

P80:/ # reboot

D:\>adb -s ee6e106 remount
Not running as root. Try "adb root" first.

D:\>adb -s ee6e106 root

D:\>adb -s ee6e106 remount
remount succeeded

attest.keybox是 以下格式的内容，截取每个不同的devicesID 里面的内容
<?xml version="1.0"?>
<AndroidAttestation>
<NumberOfKeyboxes>100000</NumberOfKeyboxes>
<Keybox DeviceID="HP800A1909000000"><Key algorithm="ecdsa"><PrivateKey format="pem">
-----BEGIN EC PRIVATE KEY-----
.......

</AndroidAttestation>

不刷google key box的结果
无法登陆google play store.如果当前可以，又没刷，可能是因为申请了白名单，等白名单45天过期之后，就会登陆不上，一直弹窗。