Google Git
Sign in
android / platform / frameworks / base / 8de9051f063185839a494de99dc5c1fddbc8198e
commit8de9051f063185839a494de99dc5c1fddbc8198e[log] [tgz]
authorEric Biggers <[email protected]>Fri Sep 27 20:21:00 2024 +0000
committerEric Biggers <[email protected]>Fri Oct 18 16:45:29 2024 +0000
treebc6f4e1d618ef70101737b28f0dd0aa82ffa8ab6
parentddc65536397ba98366507894072347f1417addc3 [diff]
Support disabling Weaver on unsecured users

As a temporary workaround for devices whose Weaver HAL does not work
reliably during boot, add a config option that disables the use of
Weaver to protect the synthetic password of users with no LSKF.  Make
the option take effect when creating any new SP protector.  Also make it
take effect when upgrading, by replacing the existing SP protector if
needed.  If there is an existing SP, also ensure that the CE key is
encrypted by it and that the Keystore super keys have been initialized.

Bug: 356324437
Test: atest FrameworksServicesTests:com.android.server.locksettings
Flag: EXEMPT uses config option instead
Change-Id: Ie67f0141e61bd895c92851bdd4f1352b6c7b6776
Merged-In: Ie67f0141e61bd895c92851bdd4f1352b6c7b6776
(cherry picked from commit c5ec1dad8f8878d7107d8aea9599d393e0f7eebe)
5 files changed
tree: bc6f4e1d618ef70101737b28f0dd0aa82ffa8ab6
  1. .prebuilt_info/
  2. apct-tests/
  3. apex/
  4. api/
  5. boot/
  6. cmds/
  7. config/
  8. core/
  9. data/
  10. docs/
  11. drm/
  12. errorprone/
  13. graphics/
  14. identity/
  15. keystore/
  16. libs/
  17. location/
  18. media/
  19. mime/
  20. mms/
  21. native/
  22. nfc/
  23. nfc-extras/
  24. obex/
  25. omapi/
  26. opengl/
  27. packages/
  28. proto/
  29. ravenwood/
  30. rs/
  31. samples/
  32. sax/
  33. services/
  34. startop/
  35. telecomm/
  36. telephony/
  37. test-base/
  38. test-junit/
  39. test-legacy/
  40. test-mock/
  41. test-runner/
  42. tests/
  43. tools/
  44. wifi/
  45. .clang-format
  46. .gitignore
  47. .mailmap
  48. AconfigFlags.bp
  49. ADPF_OWNERS
  50. Android.bp
  51. BAL_OWNERS
  52. BATTERY_STATS_OWNERS
  53. BROADCASTS_OWNERS
  54. CleanSpec.mk
  55. framework-jarjar-rules.txt
  56. GAME_MANAGER_OWNERS
  57. INPUT_OWNERS
  58. INTENT_OWNERS
  59. lint-baseline.xml
  60. LSE_APP_COMPAT_OWNERS
  61. MEMORY_OWNERS
  62. METADATA
  63. MODULE_LICENSE_APACHE2
  64. MULTIUSER_OWNERS
  65. NOTICE
  66. OWNERS
  67. OWNERS.md
  68. PACKAGE_MANAGER_OWNERS
  69. pathmap.mk
  70. PERFORMANCE_OWNERS
  71. PREUPLOAD.cfg
  72. ProtoLibraries.bp
  73. Ravenwood.bp
  74. SECURITY_STATE_OWNERS
  75. SQLITE_OWNERS
  76. TEST_MAPPING
  77. TestProtoLibraries.bp
  78. THERMAL_OWNERS
  79. TRACE_OWNERS
  80. WEAR_OWNERS
  81. ZYGOTE_OWNERS