0af25a3a98
destroyDsuMetadataKey() / destroy_dsu_metadata_key() calls
android::gsi::GetDsuMetadataKeyDir() to query the DSU metadata
encryption key dir and destroy the key.
This releases the resource and allows consecutive DSU installations to
use the same key *directory*, but not the same key *blob*.
Bug: 168571434
Test: 1. Install a DSU system.
2. Boot the DSU system and reboot back to the host system.
3. Wipe the DSU installation.
4. DSU metadata key dir /metadata/vold/metadata_encryption/dsu/dsu is
destroyed.
Change-Id: Ib851177315a5a266807f46ccfd446de1848232cf
41 lines
1.3 KiB
C++
41 lines
1.3 KiB
C++
/*
|
|
* Copyright (C) 2016 The Android Open Source Project
|
|
*
|
|
* Licensed under the Apache License, Version 2.0 (the "License");
|
|
* you may not use this file except in compliance with the License.
|
|
* You may obtain a copy of the License at
|
|
*
|
|
* http://www.apache.org/licenses/LICENSE-2.0
|
|
*
|
|
* Unless required by applicable law or agreed to in writing, software
|
|
* distributed under the License is distributed on an "AS IS" BASIS,
|
|
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
|
* See the License for the specific language governing permissions and
|
|
* limitations under the License.
|
|
*/
|
|
|
|
#ifndef _METADATA_CRYPT_H
|
|
#define _METADATA_CRYPT_H
|
|
|
|
#include <string>
|
|
|
|
#include "KeyBuffer.h"
|
|
#include "KeyUtil.h"
|
|
|
|
namespace android {
|
|
namespace vold {
|
|
|
|
bool fscrypt_mount_metadata_encrypted(const std::string& block_device,
|
|
const std::string& mount_point, bool needs_encrypt);
|
|
|
|
bool defaultkey_volume_keygen(KeyGeneration* gen);
|
|
|
|
bool defaultkey_setup_ext_volume(const std::string& label, const std::string& blk_device,
|
|
const android::vold::KeyBuffer& key,
|
|
std::string* out_crypto_blkdev);
|
|
|
|
bool destroy_dsu_metadata_key(const std::string& dsu_slot);
|
|
|
|
} // namespace vold
|
|
} // namespace android
|
|
#endif
|