android_system_vold

Commit Graph

Author	SHA1	Message	Date
Automerger Merge Worker	e3609aa837	Merge "Use DM layer directly to manage private DM volumes" am: `dd12ea5bd2` am: `47aff8772d` Change-Id: Id3af32b4e83fbfc71492d9050b2215a04b7830a9	4 years ago
Automerger Merge Worker	47aff8772d	Merge "Use DM layer directly to manage private DM volumes" am: `dd12ea5bd2` Change-Id: Ifb77dd72e810e758ac3a6105e13f7ea4341dca36	4 years ago
Paul Crowley	dd12ea5bd2	Merge "Use DM layer directly to manage private DM volumes"	4 years ago
Automerger Merge Worker	aebcc399ea	Merge "Pass volume key as a KeyBuffer" am: `334a684557` am: `4d37b4f980` Change-Id: Ia5a1a2f96ba406987c60cc8fa4d94bea33b68644	4 years ago
Automerger Merge Worker	4d37b4f980	Merge "Pass volume key as a KeyBuffer" am: `334a684557` Change-Id: I017400aa3ef988435914ef2770b20bd78a0c1c10	4 years ago
Treehugger Robot	334a684557	Merge "Pass volume key as a KeyBuffer"	4 years ago
Automerger Merge Worker	54d5e5ca1e	Merge "vold: Support Storage keys for FBE" am: `8cfb530357` am: `aafbd4066a` Change-Id: I8beed2f9939aada8735df5b9c5d0deb9bb3eb5ce	4 years ago
Automerger Merge Worker	aafbd4066a	Merge "vold: Support Storage keys for FBE" am: `8cfb530357` Change-Id: I933a31eefe57b8b06513ca3e7a2ee874a1b680a1	4 years ago
Treehugger Robot	8cfb530357	Merge "vold: Support Storage keys for FBE"	4 years ago
Paul Crowley	659b63fe00	Use DM layer directly to manage private DM volumes Abolish cryptfs_revert_ext_volume, handle in caller. This allows us to use DeleteDeviceIfExists, avoiding a spurious error message. Test: create private volume on Cuttlefish, eject, check logs Bug: 147814592 Change-Id: I836d8bd11b29e32da0863aaa75144543bb9cab9c	4 years ago
Paul Crowley	3d98f5d159	Pass volume key as a KeyBuffer Not for security, but for consistency with the way we handle other keys, and to move the length check to where it belongs. Test: create private volume on Cuttlefish Bug: 147814592 Change-Id: I10fc4896183d050ce25ff174faf78f525cf62930	4 years ago
Barani Muthukumaran	3dfb094cb2	vold: Support Storage keys for FBE To prevent keys from being compromised if an attacker acquires read access to kernel memory, some inline encryption hardware supports protecting the keys in hardware without software having access to or the ability to set the plaintext keys. Instead, software only sees "wrapped keys", which may differ on every boot. 'wrappedkey_v0' fileencryption flag is used to denote that the device supports inline encryption hardware that supports this feature. On such devices keymaster is used to generate keys with STORAGE_KEY tag and export a per-boot ephemerally wrapped storage key to install it in the kernel. The wrapped key framework in the linux kernel ensures the wrapped key is provided to the inline encryption hardware where it is unwrapped and the file contents key is derived to encrypt contents without revealing the plaintext key in the clear. Test: FBE validation with Fscrypt v2 + inline crypt + wrapped key changes kernel. Bug: 147733587 Change-Id: I1f0de61b56534ec1df9baef075acb74bacd00758	4 years ago
Automerger Merge Worker	bf352873ad	Merge "Have vold inform keymaster that early boot ended" am: `68b9fb10ae` am: `fce0d92ce4` Change-Id: If58cc1911c477ac9bed03fc39952a573db71651e	4 years ago
Automerger Merge Worker	fce0d92ce4	Merge "Have vold inform keymaster that early boot ended" am: `68b9fb10ae` Change-Id: Ic113eea7d3282084f1eae308ae1b6df931bd7a8c	4 years ago
Treehugger Robot	68b9fb10ae	Merge "Have vold inform keymaster that early boot ended"	4 years ago
Automerger Merge Worker	3660bf983c	Merge "Update vold to use KM4.1" am: `6c5f302a90` am: `53f8e2df82` Change-Id: I808df576abeec8ce2dd5fc8ea9d4784f4c8b6b0d	4 years ago
Automerger Merge Worker	53f8e2df82	Merge "Update vold to use KM4.1" am: `6c5f302a90` Change-Id: I5393adf2503586c87414a302fa24d381863bccbf	4 years ago
Treehugger Robot	6c5f302a90	Merge "Update vold to use KM4.1"	4 years ago
Shawn Willden	2b1ff5aaab	Have vold inform keymaster that early boot ended Just before mounting partition(s) not verified by verified boot, vold should notify keymaster that early boot has ended so it won't allow EARLY_BOOT_ONLY keys to be created or used. Test: VtsHalKeymasterV4_1TargetTest Change-Id: I74ffec8d5b33f01e62f845a8fc824b3a3cad50f3 Merged-In: I74ffec8d5b33f01e62f845a8fc824b3a3cad50f3	4 years ago
Shawn Willden	35f0f22c9b	Update vold to use KM4.1 This CL updates vold to use the Keymaster 4.1 interface, but does not yet call any of the new methods. Test: Boot the device Change-Id: I4574a2f6eead3b71d1e89488b496b734694620c7 Merged-In: I4574a2f6eead3b71d1e89488b496b734694620c7	4 years ago
Automerger Merge Worker	1541f9f32b	Merge "Use std::string to return crypto device, not char *" am: `80731b0975` am: `2381810b99` Change-Id: Ic7683749f4974ccdf251b7351110a1e3663536b7	4 years ago
Automerger Merge Worker	2381810b99	Merge "Use std::string to return crypto device, not char *" am: `80731b0975` Change-Id: I4cdc6e59713a945f9fc7b6e9d8c765e78c44b9cb	4 years ago
Paul Crowley	80731b0975	Merge "Use std::string to return crypto device, not char *"	4 years ago
Automerger Merge Worker	ebbabdc8fb	Merge "Refactor: make cryptfs.h smaller" am: `98c501d28e` am: `645c2f40a0` Change-Id: I5fb7f528186b6a678a02febd9e866ca4ae467dd4	4 years ago
Automerger Merge Worker	645c2f40a0	Merge "Refactor: make cryptfs.h smaller" am: `98c501d28e` Change-Id: I85d5bacfc08245397cb4f8aa71406bfeed961c19	4 years ago
Treehugger Robot	98c501d28e	Merge "Refactor: make cryptfs.h smaller"	4 years ago
Paul Crowley	81796e9dce	Use std::string to return crypto device, not char * Bug: 147814592 Test: can create private volume on Cuttlefish Change-Id: Ic2bca81c0f0319e1b988e9204a2f4e91af57d157	4 years ago
Paul Crowley	73be12dcd5	Refactor: make cryptfs.h smaller Move most of it into cryptfs.cpp, and include cryptfs.h in fewer files. Bug: 147814592 Test: Treehugger Change-Id: Ia3592d73e7abc1f07a60538e0978a3033bdea7de	4 years ago
Automerger Merge Worker	5aac6ab55f	Merge changes from topics "dm-default-key-v2", "metadata_cipher" am: `f60e947438` am: `0560c27092` Change-Id: I0c34298e89be72caf597c964ceeb7f3396abe20b	4 years ago
Automerger Merge Worker	0560c27092	Merge changes from topics "dm-default-key-v2", "metadata_cipher" am: `f60e947438` Change-Id: I3e27ed3481542e5e6fe0db2c872d745151e50765	4 years ago
Treehugger Robot	f60e947438	Merge changes from topics "dm-default-key-v2", "metadata_cipher" * changes: Set metadata cipher in fstab Add support for v2 of dm-default-key	4 years ago
Automerger Merge Worker	48c403b820	Merge "Rename key_dir to metadata_key_dir and refactor" am: `a7463139cd` am: `8cf1eda025` Change-Id: I0933c434c9c63e15f8af648aa99250eea95aa3bd	4 years ago
Automerger Merge Worker	8cf1eda025	Merge "Rename key_dir to metadata_key_dir and refactor" am: `a7463139cd` Change-Id: I14535278f6e2b0ffe6c322a2e9bd7e2ae608105f	4 years ago
Paul Crowley	a7463139cd	Merge "Rename key_dir to metadata_key_dir and refactor"	4 years ago
Paul Crowley	84e84c5f33	Set metadata cipher in fstab Bug: 147814592 Test: Cuttlefish can use adiantum Change-Id: I6805ae4acff4dd1ff7cecff9153dbf29e0274165	4 years ago
Paul Crowley	92a14b6b16	Add support for v2 of dm-default-key Version 2 of dm-default-key has an extra parameter and always sets the DUN. Bug: 147814592 Test: Cuttlefish boots with keydirectory flag Test: Crosshatch formatted before this change boots after it Change-Id: I59081e385324d2e34a5f252286a97938d6ffb79b	4 years ago
Paul Crowley	c9b92f0c17	Rename key_dir to metadata_key_dir and refactor Bug: 147814592 Test: Crosshatch boots Change-Id: I9fce0ea5da9c81c2e4e9cf97b75c1cba821adf9e	4 years ago
Automerger Merge Worker	23fdbc7937	Merge "Refactor to use EncryptionPolicy everywhere we used to use raw_ref" am: `fda79ddd82` am: `7c3b0af05e` Change-Id: Id0b36a8bd1d7db487eb61823f27c5349581bf781	4 years ago
Paul Crowley	7c3b0af05e	Merge "Refactor to use EncryptionPolicy everywhere we used to use raw_ref" am: `fda79ddd82` Change-Id: I0d1599b8a2baa141e1d08029f75e5e54f486cb14	4 years ago
Paul Crowley	fda79ddd82	Merge "Refactor to use EncryptionPolicy everywhere we used to use raw_ref"	4 years ago
Paul Crowley	77df7f207d	Refactor to use EncryptionPolicy everywhere we used to use raw_ref Test: Boots, no bad log messages: Cuttlefish with v2 policies, Taimen Bug: 147733587 Change-Id: Ice4acac3236b6b7d90e60a2f57b46814aa1949f5	4 years ago
Automerger Merge Worker	d88fba70c7	Merge "vold: Do not cache CE keys in vold" am: `432ca5af06` am: `8427b24fc5` Change-Id: I52ee506f94ccab65fd3cc26a5fb0366e49e3d178	4 years ago
Automerger Merge Worker	8427b24fc5	Merge "vold: Do not cache CE keys in vold" am: `432ca5af06` Change-Id: I2ca8cd6aec19e5f736d4a796ed882ce5d704ded9	4 years ago
Paul Crowley	432ca5af06	Merge "vold: Do not cache CE keys in vold"	4 years ago
Automerger Merge Worker	b9d3f62a36	Merge "Add support for casefolding and project quotas" am: `f66ed18972` am: `37d8af2621` Change-Id: Ie233ba8045f5d294aa52476410e56335da2d8a52	5 years ago
Automerger Merge Worker	37d8af2621	Merge "Add support for casefolding and project quotas" am: `f66ed18972` Change-Id: I5cba75000bcdbbc3bd3c6778994fea09d135aa2b	5 years ago
Daniel Rosenberg	f66ed18972	Merge "Add support for casefolding and project quotas"	5 years ago
Barani Muthukumaran	b1927c2a0a	vold: Do not cache CE keys in vold CE keys were cached in vold to support untrusted reset by a device admin, this is now supported by Locksettingservice using synthetic password. This change requires a secret to be provided to retrieve the CE key and re-wrap without the secret when user removes the credential. Test: Set credential, remove credential, swipe to none and vice-versa. Bug: 26948053 Merged-In: I4cb1c035a472477e70c1ff5bf0b2c3fcfad495e5 Change-Id: I4cb1c035a472477e70c1ff5bf0b2c3fcfad495e5	5 years ago
Automerger Merge Worker	3c78c789d6	Merge "Fixed a wrong AIDL import path" am: `aa038e2f4d` am: `b35ead2c3a` Change-Id: Ib43192a85298925ad4b7220a79930c2baaac5361	5 years ago
Jiyong Park	b35ead2c3a	Merge "Fixed a wrong AIDL import path" am: `aa038e2f4d` Change-Id: I8f3bf6b512ac1a0509ceb17cfa35efd0af6581b8	5 years ago

1 2 3 4 5 ...

3230 Commits (e3609aa8370858d047e49fa7fc9188eb4bf01800) All Branches Search

3230 Commits (e3609aa8370858d047e49fa7fc9188eb4bf01800)

All Branches