| commit | bfb1d0ee610d623f71a0a34005e561fe0bbfd7f2 | [log] [tgz] |
|---|---|---|
| author | Neeraj Soni <neersoni@codeaurora.org> | Fri Dec 14 15:18:15 2018 +0530 |
| committer | Michael Bestas <mkbestas@lineageos.org> | Sun Aug 21 18:02:01 2022 +0300 |
| tree | 0f7115b8874d25b36a3a5f460ee0daf4aedff3db | |
| parent | d7dbfc92eae82ee0f664e43eb17575de4120e966 [diff] [blame] |
system: vold: Use wrapped key for metadata encryption Wrapped key feature is needed for better security of encryption keys and to ensure data integrity when crypto key cache is cleared during reset operation of storage/crypto hardware. Original patch: https://source.codeaurora.org/quic/la/platform/system/vold/commit/?h=LA.QSSI.11.0.r1-05600-qssi.0&id=c480f913e6abc2757c0d79afba5a3df1c4adc731 [Pig]: Clean up all deprecated codes that were removed during latter merge. CRs-Fixed: 2367150 Change-Id: I83d14861bf81e102151fa3417d84008c214a9ac0
diff --git a/FsCrypt.cpp b/FsCrypt.cpp index 6c08177..4f94a4c 100644 --- a/FsCrypt.cpp +++ b/FsCrypt.cpp
@@ -293,6 +293,10 @@ return true; } +bool is_metadata_wrapped_key_supported() { + return GetEntryForMountPoint(&fstab_default, METADATA_MNT_POINT)->fs_mgr_flags.wrapped_key; +} + static bool read_and_install_user_ce_key(userid_t user_id, const android::vold::KeyAuthentication& auth) { if (s_ce_policies.count(user_id) != 0) return true;