No description
Find a file
Greg Kaiser 59ad018d0b cryptfs: Use the crypt_mnt_ftr keysize
Our code has places where we were reading in the crypt_mnt_ftr
struct from disk, but then proceeding to use a hardcoded constant
for the keysize.  We plan to allow crypto with different sized
keys in the future, so we want to just trust the keysize we get
off of disk.

While doing this, we reject any crypt_mnt_ftr we read from disk
which has a keysize in excess of MAX_KEY_LEN.  This defends us
against buffer overflows in the case of corrupt disk data.

Bug: 73079191
Test: Compiled and tested in combination with other CLs.
Change-Id: Id6f192b905960e5508833e9cd3b4668d4754dc7e
2018-02-16 15:22:43 -08:00
bench Abort long-running benchmarks, report progress. 2017-11-07 09:57:12 -07:00
binder/android/os Add a mount with metadata encryption service 2018-02-01 10:08:17 -08:00
fs Add basic exFAT support. 2018-01-19 11:58:43 +09:00
model Merge "mFusePid should be cleared after waitpid successfully" am: 456483d193 am: 8be3be3167 2018-02-16 01:42:39 +00:00
tests Merge "Key upgrading for FDE." am: 997e605563 am: 2b1b72d183 2017-11-27 21:05:35 +00:00
.clang-format Get ourselves some clang-format. 2017-10-18 12:17:36 -06:00
Android.bp Support Keymaster4 2018-01-25 20:14:42 -07:00
Benchmark.cpp Abort long-running benchmarks, report progress. 2017-11-07 09:57:12 -07:00
Benchmark.h Fix task memory leaks; better path validation. 2017-10-18 11:44:57 -06:00
BenchmarkGen.h Abort long-running benchmarks, report progress. 2017-11-07 09:57:12 -07:00
CheckEncryption.cpp Test that plaintext can't be read from disk for encrypted files. 2017-10-27 15:14:56 -07:00
CheckEncryption.h Test that plaintext can't be read from disk for encrypted files. 2017-10-27 15:14:56 -07:00
CleanSpec.mk Add an empty CleanSpec.mk 2010-03-08 18:05:25 -08:00
cryptfs.cpp cryptfs: Use the crypt_mnt_ftr keysize 2018-02-16 15:22:43 -08:00
cryptfs.h Remove all references to FDE enable wipe 2017-12-22 11:17:15 -08:00
Devmapper.cpp Move to modern utility methods from android::base. 2017-10-17 12:40:51 -06:00
Devmapper.h Move to modern utility methods from android::base. 2017-10-17 12:40:51 -06:00
EncryptInplace.cpp Add a mount with metadata encryption service 2018-02-01 10:08:17 -08:00
EncryptInplace.h Add a mount with metadata encryption service 2018-02-01 10:08:17 -08:00
Ext4Crypt.cpp Fingerprint data is now stored in one of two ways depending on the 2018-01-23 14:34:55 -08:00
Ext4Crypt.h Forget keys when we forget the volume. 2017-10-26 12:19:03 -07:00
FileDeviceUtils.cpp Move functions useful for crypto test into their own file 2017-06-16 16:17:26 -07:00
FileDeviceUtils.h Move functions useful for crypto test into their own file 2017-06-16 16:17:26 -07:00
hash.h vold: Bugfixes & cleanups 2010-03-13 16:42:19 -08:00
IdleMaint.cpp Add functions to handle idle maintenance 2017-11-14 15:12:30 -08:00
IdleMaint.h Add functions to handle idle maintenance 2017-11-14 15:12:30 -08:00
KeyBuffer.cpp Zero memory used for encryuption keys. 2017-08-10 17:31:03 +01:00
KeyBuffer.h Zero memory used for encryuption keys. 2017-08-10 17:31:03 +01:00
Keymaster.cpp Support Keymaster4 2018-01-25 20:14:42 -07:00
Keymaster.h Prevent spurious call to keymaster abort(). 2018-02-07 15:07:04 -07:00
KeyStorage.cpp Support Keymaster4 2018-01-25 20:14:42 -07:00
KeyStorage.h When we forget a volume, forget per-volume key 2017-10-26 12:19:09 -07:00
KeyUtil.cpp When we forget a volume, forget per-volume key 2017-10-26 12:19:09 -07:00
KeyUtil.h When we forget a volume, forget per-volume key 2017-10-26 12:19:09 -07:00
Loop.cpp Move to modern utility methods from android::base. 2017-10-17 12:40:51 -06:00
Loop.h Move to modern utility methods from android::base. 2017-10-17 12:40:51 -06:00
main.cpp Add a mount with metadata encryption service 2018-02-01 10:08:17 -08:00
MetadataCrypt.cpp Add a mount with metadata encryption service 2018-02-01 10:08:17 -08:00
MetadataCrypt.h Add a mount with metadata encryption service 2018-02-01 10:08:17 -08:00
MoveStorage.cpp FBE devices now fully support adoptable storage. 2018-01-04 18:52:07 -07:00
MoveStorage.h Fix task memory leaks; better path validation. 2017-10-18 11:44:57 -06:00
NetlinkHandler.cpp Move to modern utility methods from android::base. 2017-10-17 12:40:51 -06:00
NetlinkHandler.h Fix google-explicit-constructor warnings in system/vold. 2016-08-02 11:41:54 -07:00
NetlinkManager.cpp Move to modern utility methods from android::base. 2017-10-17 12:40:51 -06:00
NetlinkManager.h system: vold2: Initial skeleton for vold2. 2009-10-10 17:57:51 -07:00
OWNERS Add OWNERS in system/vold 2017-06-09 14:55:46 -07:00
PREUPLOAD.cfg Get ourselves some clang-format. 2017-10-18 12:17:36 -06:00
Process.cpp StartsWith now allows std::string prefixes. 2017-12-20 12:38:47 -08:00
Process.h Move to modern utility methods from android::base. 2017-10-17 12:40:51 -06:00
ScryptParameters.cpp system/vold: cleanup compiler warnings (read of uninitialized memory). 2016-10-19 17:58:32 -07:00
ScryptParameters.h Be more C++. volume UUID should always be std::string. 2017-10-09 13:36:35 -07:00
secdiscard.cpp Move functions useful for crypto test into their own file 2017-06-16 16:17:26 -07:00
secontext.cpp cryptfs: run e2fsck/fsck.f2fs in fsck domain 2016-02-01 12:59:59 -08:00
secontext.h Be more C++. volume UUID should always be std::string. 2017-10-09 13:36:35 -07:00
sehandle.h Set SELinux contexts on device nodes created by vold. 2014-09-30 15:35:28 -04:00
Utils.cpp Fingerprint data is now stored in one of two ways depending on the 2018-01-23 14:34:55 -08:00
Utils.h Fingerprint data is now stored in one of two ways depending on the 2018-01-23 14:34:55 -08:00
vdc.cpp Add a mount with metadata encryption service 2018-02-01 10:08:17 -08:00
vdc.rc Remove all references to FDE enable wipe 2017-12-22 11:17:15 -08:00
vold.rc Grant "disk_reserved" GID to critical services. 2018-01-07 19:30:19 -07:00
vold_prepare_subdirs.cpp Fingerprint data is now stored in one of two ways depending on the 2018-01-23 14:34:55 -08:00
VoldNativeService.cpp Add a mount with metadata encryption service 2018-02-01 10:08:17 -08:00
VoldNativeService.h Add a mount with metadata encryption service 2018-02-01 10:08:17 -08:00
VoldUtil.cpp Refactor of use of fstab in advance of fix. 2017-09-26 14:21:10 -07:00
VoldUtil.h Refactor of use of fstab in advance of fix. 2017-09-26 14:21:10 -07:00
VolumeManager.cpp StartsWith now allows std::string prefixes. 2017-12-20 12:38:47 -08:00
VolumeManager.h Delay touching disks when secure keyguard showing. 2017-12-15 13:44:55 -07:00