tequilaOS/platform_system_vold
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity
No description
4287 commits 1 branch 0 tags 9.7 MiB
C++ 97.1%
AIDL 1.2%
Python 1.2%
Makefile 0.3%
C 0.2%
Find a file
Seth Moore 5a43d61e66 Add support for binding storage encryption to a seed 
With this change, vold exposes an API that may be used to bind key
storage encryption keys to a given seed value. The seed value passed to
vold must be consistent across reboots, or key storage keys will not be
derived consistently. The seed is expected to be set very early in boot,
prior to the use of any key storage encryption keys.

This feature is intended to be used for embedded applications such as
in autos, where the seed may be provided by some other component of the
system. In such systems, there is a default user that is automatically
signed in without a PIN or other credentials. By binding the file
encryption to a platform-provided seed, the default user's data gains
additional protection against removal of the Android embedded device
from the integrated system.

Bug: 157501579
Test: Set seed at startup via init.rc. Seed changes fail as expected.
Change-Id: I9b048ec5e045b84c45883724ace2356d4ef6244d
2021-01-26 21:30:19 +00:00
bench bench: Add fail-fast error path to inodeop_bench 2020-09-18 15:50:04 +00:00
binder/android/os Add support for binding storage encryption to a seed 2021-01-26 21:30:19 +00:00
fs Switch to exfatprogs compatible fsck parameter 2020-11-11 19:45:05 +01:00
model Merge "Add kVisible flag to vold::Disk" 2021-01-18 14:54:27 +00:00
tests [vold] Add argument verification to IncFS methods 2020-03-25 17:21:49 -07:00
.clang-format vold: use system-clang-format 2019-09-16 12:00:40 -07:00
Android.bp Merge changes from topic "health_storage_aidl" 2021-01-20 19:45:16 +00:00
AppFuseUtil.cpp AppFuseUtil: Call ForceUnmount before PrepareDir. 2019-04-09 18:45:32 +01:00
AppFuseUtil.h Extract AppFuse as a util 2018-11-14 07:28:06 +00:00
Benchmark.cpp vold: use RAII wake locks 2019-06-26 10:20:30 -07:00
Benchmark.h clang-format many files. 2018-09-18 15:41:22 -07:00
BenchmarkGen.h Abort long-running benchmarks, report progress. 2017-11-07 09:57:12 -07:00
Checkpoint.cpp IdleMaint: use fstab_default from VoldUtil 2020-10-15 16:54:38 -07:00
Checkpoint.h Add an isCheckpointing() binder call for adb remount. 2020-06-10 23:52:25 -07:00
CleanSpec.mk Add an empty CleanSpec.mk 2010-03-08 18:05:25 -08:00
cryptfs.cpp Refactor EncryptInplace.cpp 2020-11-03 14:16:32 -08:00
cryptfs.h Refactor key generation to handle both normal and metadata encryption. 2020-02-14 13:59:06 -08:00
CryptoType.cpp Generalize CryptoType infrastructure 2020-02-14 00:48:27 -08:00
CryptoType.h Generalize CryptoType infrastructure 2020-02-14 00:48:27 -08:00
Devmapper.cpp Replace manual dm ioctls with libdm. 2019-05-13 13:07:12 -07:00
Devmapper.h Replace manual dm ioctls with libdm. 2019-05-13 13:07:12 -07:00
EncryptInplace.cpp EncryptInplace: fsync cryptofd before reporting success 2020-11-04 19:24:19 -08:00
EncryptInplace.h Refactor EncryptInplace.cpp 2020-11-03 14:16:32 -08:00
FileDeviceUtils.cpp Remove excess logging in secdiscard 2019-03-21 19:13:51 +00:00
FileDeviceUtils.h clang-format many files. 2018-09-18 15:41:22 -07:00
FsCrypt.cpp Merge "Revert "Set a default ACL on /data/media/userId."" 2021-01-21 08:19:20 +00:00
FsCrypt.h vold: Do not cache CE keys in vold 2020-01-24 00:20:22 +00:00
IdleMaint.cpp Use AIDL HAL for Dev GC 2021-01-15 18:27:57 -08:00
IdleMaint.h Add functions to handle idle maintenance 2017-11-14 15:12:30 -08:00
KeyBuffer.cpp clang-format many files. 2018-09-18 15:41:22 -07:00
KeyBuffer.h clang-format many files. 2018-09-18 15:41:22 -07:00
Keymaster.cpp Send earlyBootEnded notice to all Keymasters 2020-04-09 15:22:43 -06:00
Keymaster.h Send earlyBootEnded notice to all Keymasters 2020-04-09 15:22:43 -06:00
KeyStorage.cpp Add support for binding storage encryption to a seed 2021-01-26 21:30:19 +00:00
KeyStorage.h Add support for binding storage encryption to a seed 2021-01-26 21:30:19 +00:00
KeyUtil.cpp KeyStorage: rework key upgrade handling 2020-11-05 19:58:26 -08:00
KeyUtil.h KeyStorage: rework key upgrade handling 2020-11-05 19:58:26 -08:00
Loop.cpp Silence useless LOOP_GET_STATUS64 warnings 2020-10-15 15:26:27 -07:00
Loop.h clang-format many files. 2018-09-18 15:41:22 -07:00
main.cpp Acknowledge the 'nofail' fs_mgr flag and skip the expected failure. 2020-05-06 16:45:23 +00:00
MetadataCrypt.cpp Let vold format the encrypted partition 2020-12-22 11:28:50 -08:00
MetadataCrypt.h Let vold format the encrypted partition 2020-12-22 11:28:50 -08:00
MoveStorage.cpp Utils: add IsDotOrDotDot() and use it in the appropriate places 2020-11-02 15:47:24 -08:00
MoveStorage.h clang-format many files. 2018-09-18 15:41:22 -07:00
NetlinkHandler.cpp vold: remove unused stop() methods 2020-09-23 10:02:25 -07:00
NetlinkHandler.h vold: remove unused stop() methods 2020-09-23 10:02:25 -07:00
NetlinkManager.cpp vold: remove unused stop() methods 2020-09-23 10:02:25 -07:00
NetlinkManager.h vold: remove unused stop() methods 2020-09-23 10:02:25 -07:00
OWNERS OWNERS: add alan and jeff, alphabetize 2020-12-10 13:08:28 +01:00
PREUPLOAD.cfg vold should be fully developed in AOSP. 2018-09-11 12:08:43 -06:00
Process.cpp Mount direct boot apps obb dir after fuse is ready. 2020-02-19 16:45:07 +00:00
Process.h Mount direct boot apps obb dir after fuse is ready. 2020-02-19 16:45:07 +00:00
ScryptParameters.cpp clang-format many files. 2018-09-18 15:41:22 -07:00
ScryptParameters.h clang-format many files. 2018-09-18 15:41:22 -07:00
secdiscard.cpp secdiscard: use F2FS_IOC_SEC_TRIM_FILE for secure discard 2020-09-14 08:43:15 +09:00
sehandle.h clang-format many files. 2018-09-18 15:41:22 -07:00
TEST_MAPPING FuseDaemonHostTest is migrated to CTS and renamed. 2020-05-28 18:43:08 +01:00
Utils.cpp Revert "Set a default ACL on /data/media/userId." 2021-01-20 15:51:44 +00:00
Utils.h Merge "Revert "Set a default ACL on /data/media/userId."" 2021-01-21 08:19:20 +00:00
vdc.cpp Let vold format the encrypted partition 2020-12-22 11:28:50 -08:00
vdc.rc Remove all references to FDE enable wipe 2017-12-22 11:17:15 -08:00
vold.rc vold: Grant root group 2018-08-08 17:08:02 -07:00
vold_prepare_subdirs.cpp Remove ro.vold.level_from_user. 2021-01-05 09:49:24 +00:00
VoldNativeService.cpp Add support for binding storage encryption to a seed 2021-01-26 21:30:19 +00:00
VoldNativeService.h Add support for binding storage encryption to a seed 2021-01-26 21:30:19 +00:00
VoldNativeServiceValidation.cpp Additional operation check when enabling read logs. 2020-04-03 18:42:04 -07:00
VoldNativeServiceValidation.h [vold] Add argument verification to IncFS methods 2020-03-25 17:21:49 -07:00
VoldUtil.cpp Move over to the C++ Fstab class 2019-01-31 12:34:39 -08:00
VoldUtil.h Remove unused code in VoldUtil.h 2020-02-18 10:48:16 -08:00
VolumeManager.cpp Call setupAppDir before EnsureDirExists 2021-01-19 11:28:05 +00:00
VolumeManager.h Add a method in vold to unmount app data and obb dir for testing 2021-01-18 13:47:44 +00:00
wait_for_keymaster.cpp add wait_for_keymaster 2018-05-09 12:59:18 -07:00
wait_for_keymaster.rc Add rc file for wait_for_keymaster 2018-05-15 16:15:21 -07:00