Ignore DE retrieveKey failure for non-user-0 retrieveKey can fail in load_all_de_keys if a user is partially removed, i.e. cases where fscrypt_destroy_user_key() got interrupted. So just ignore the failure, else could reboot into recovery. Test: pm create-user foo pm remove-user 10 adb reboot && check device not enter recovery Signed-off-by: liulvping <liulvping@xiaomi.com> Change-Id: Iba9d53a0833524d00e65d0427ab03002c5d8d509

commit: 1c12c01e93cbbacab6dc842c26e97f99bc25a30c [log] [tgz]
author: liulvping <liulvping@xiaomi.com> Mon Oct 10 19:16:23 2022 +0800
committer: Alexander Martinz <amartinz@shiftphones.com> Thu Oct 05 09:46:50 2023 +0200
tree: 3c51e7c4c3d1b78361d85e1f0cf1f3a238e2b130
parent: 4b7b1ee36248ff531d0a000f1a9860668e557b99 [diff]
diff --git a/FsCrypt.cpp b/FsCrypt.cpp
index 85ffefd..481f680 100644
--- a/FsCrypt.cpp
+++ b/FsCrypt.cpp

@@ -414,7 +414,11 @@
         userid_t user_id = std::stoi(entry->d_name);
         auto key_path = de_dir + "/" + entry->d_name;
         KeyBuffer de_key;
-        if (!retrieveKey(key_path, kEmptyAuthentication, &de_key)) return false;
+        if (!retrieveKey(key_path, kEmptyAuthentication, &de_key)) {
+            // This is probably a partially removed user, so ignore
+            if (user_id != 0) continue;
+            return false;
+        }
         EncryptionPolicy de_policy;
         if (!install_storage_key(DATA_MNT_POINT, options, de_key, &de_policy)) return false;
         auto ret = s_de_policies.insert({user_id, de_policy});
commit	1c12c01e93cbbacab6dc842c26e97f99bc25a30c	[log] [tgz]
author	liulvping <liulvping@xiaomi.com>	Mon Oct 10 19:16:23 2022 +0800
committer	Alexander Martinz <amartinz@shiftphones.com>	Thu Oct 05 09:46:50 2023 +0200
tree	3c51e7c4c3d1b78361d85e1f0cf1f3a238e2b130
parent	4b7b1ee36248ff531d0a000f1a9860668e557b99 [diff]