78efe41174950783e39782c71ff8382f851bb487 |
|
03-Feb-2016 |
Jeff Sharkey <jsharkey@android.com> |
Add methods to get and ensure encryption policy. The ensure call will either assign an encryption policy, or verify that an existing policy matches the expected value. Uses the new logging library so that customers can pivot logs into whatever location they want: vold into logcat and init into dmesg. Also add new directories that will have user-specific encryption policy set on them so we avoid setting the default policy. Bug: 25796509 Change-Id: Ia535630092822c80cde0939d8e46e6b47d9be2d8
/system/extras/ext4_utils/ext4_crypt_init_extensions.h
|
59ffd6d9c7dd3ddaa036956d89c3e4d416769bf6 |
|
04-Feb-2016 |
Paul Lawrence <paullawrence@google.com> |
Remove unencrypted properties Change-Id: I59596be7c7df9151f4966a5051f06bcb087345dd
/system/extras/ext4_utils/ext4_crypt_init_extensions.h
|
88bebba43c3b25c6dca9190cd8d030022f4f2356 |
|
02-Feb-2016 |
Paul Lawrence <paullawrence@google.com> |
Remove e4crypt_non_default_key Change: https://googleplex-android-review.git.corp.google.com/#/c/857155 means this is no longer called since it is assumed always to be false Change-Id: I12755ca26e33b8eeafaab3b5373a2d0f1c7abf46
/system/extras/ext4_utils/ext4_crypt_init_extensions.h
|
facc16251cd66bdd229c9429818d8f0b7daa8a02 |
|
01-Feb-2016 |
Paul Crowley <paulcrowley@google.com> |
Give init the means to invoke "cryptfs init_user0" Init needs to initialize user 0 for FBE devices via a vdc command. Bug: 26704408 Change-Id: Ide6d1fdcb55e87c22820310c6d1cf9640e77d25e
/system/extras/ext4_utils/ext4_crypt_init_extensions.h
|
f50af65122389079aeb4fa68819075768a530bb4 |
|
20-Jan-2016 |
Paul Crowley <paulcrowley@google.com> |
Remove no-longer-needed crypto init builtins Changes to the way FBE works to support lifecycles mean that these commands aren't needed any more. Bug: 22358539 Change-Id: I974f32c83c344403d5117bc02b7d67771123abaa
/system/extras/ext4_utils/ext4_crypt_init_extensions.h
|
3045e27e894dd8a90faabc0177e080114b35af3b |
|
09-Dec-2015 |
Paul Lawrence <paullawrence@google.com> |
Add createuserkey Add createuserkey so we can create user0 key on first boot Change-Id: I211a5a483c416da08239341f85eaf6eb99dca797
/system/extras/ext4_utils/ext4_crypt_init_extensions.h
|
09d3fdffad0ccbed36f0ece966e85aed23c626d7 |
|
28-May-2015 |
Paul Crowley <paulcrowley@google.com> |
Add e4crypt_set_user_crypto_policies which calls vdc setusercryptopolicies Bug: 19704432 Change-Id: Ie1de2a8f5cee82814b6a617d90a1797921f3a2dd
/system/extras/ext4_utils/ext4_crypt_init_extensions.h
|
9f53fb4abca1ee3af7b537c95445161db4b81f86 |
|
10-Apr-2015 |
Paul Lawrence <paullawrence@google.com> |
New ext4enc kernel switching from xattrs to ioctl This is one of three changes to enable this functionality: https://android-review.googlesource.com/#/c/146259/ https://android-review.googlesource.com/#/c/146264/ https://android-review.googlesource.com/#/c/146265/ Bug: 18151196 Change-Id: I05b96f49b8848e82484a500e4536bdb4d2cdd635
/system/extras/ext4_utils/ext4_crypt_init_extensions.h
|
377cd1957172c19ee21baa3d6bda0840f1ce020d |
|
29-Apr-2015 |
Paul Lawrence <paullawrence@google.com> |
Securely encrypt the master key Move all key management into vold Reuse vold's existing key management through the crypto footer to manage the device wide keys. Use ro.crypto.type flag to determine crypto type, which prevents any issues when running in block encrypted mode, as well as speeding up boot in block or no encryption. This is one of four changes to enable this functionality: https://android-review.googlesource.com/#/c/148586/ https://android-review.googlesource.com/#/c/148604/ https://android-review.googlesource.com/#/c/148606/ https://android-review.googlesource.com/#/c/148607/ Bug: 18151196 Change-Id: I7a4ef3f3a937c45ff18f17c9ad1398293a8630f3
/system/extras/ext4_utils/ext4_crypt_init_extensions.h
|
ea2ec8875c9b024613d3ec5270bca6247c06d6bd |
|
28-Apr-2015 |
Paul Lawrence <paullawrence@google.com> |
Revert "Securely encrypt the master key" This reverts commit af2359fdc4a45fcf482d1a316bae1fff226c425b. Change-Id: Icd4d04adf5c0728357caa6eb225b9a08fd0ad552
/system/extras/ext4_utils/ext4_crypt_init_extensions.h
|
af2359fdc4a45fcf482d1a316bae1fff226c425b |
|
31-Mar-2015 |
Paul Lawrence <paullawrence@google.com> |
Securely encrypt the master key Move functionality from init into vold so we can use vold to manage key encryption This is one of four changes to enable this functionality: https://android-review.googlesource.com/#/c/144586/ https://android-review.googlesource.com/#/c/144663/ https://android-review.googlesource.com/#/c/144672/ https://android-review.googlesource.com/#/c/144673/ Bug: 18151196 Change-Id: I4a1c79d27f0d225a9ce4ac21653279919f75c991
/system/extras/ext4_utils/ext4_crypt_init_extensions.h
|