Skip to content

GitLab

Switch branch/tag
  1. 01 Sep, 2011 1 commit
    • Ken Sumrall's avatar
      Add the ability to revert a crypto mapping when unmounting a volume · 0b8b5971
      Ken Sumrall authored 
      Add the force_and_revert option to the unmount command which will force
the unmount, and revert a crypto mapping.  This is used during factory
reset so that when the internal sdcard volume is formatted, it formats
the raw device, not the encrypted mapping.

Change-Id: I36b6ff9bb54863b121de635472a303bf4a2334a9
      0b8b5971
  3. 11 Jul, 2011 1 commit
  5. 27 Jun, 2011 1 commit
  7. 18 Jun, 2011 1 commit
  9. 14 Jun, 2011 1 commit
  11. 07 Jun, 2011 1 commit
  13. 02 Jun, 2011 1 commit
    • Ken Sumrall's avatar
      vold: allow to store key in a file on another partition · 29d8da8c
      Ken Sumrall authored 
      Add support for keeping the keys in a separate file on another partition,
for devices with no space reserved for a footer after the userdata filesystem.

Add support for encrypting the volumes managed by vold, if they meet certain
criteria, namely being marked as nonremovable and encryptable in vold.fstab.
A bit of trickiness is required to keep vold happy.

Change-Id: Idf0611f74b56c1026c45742ca82e0c26e58828fe
      29d8da8c
  15. 10 Dec, 2010 1 commit
  17. 28 Oct, 2010 1 commit
  19. 01 Oct, 2010 1 commit
  21. 26 Sep, 2010 1 commit
    • Kenny Root's avatar
      Track type of container mounted · cbacf78e
      Kenny Root authored 
      OBB and ASEC are tracked in the same active container list, but when it
comes time to unmount everything, it was trying to unmount the OBBs
according to ASEC rules. This led to the OBB not being unmounted and the
volume unmount failing.

Change-Id: I12c1d4d387b8022185d552b63edd61a50b9c0fc3
      cbacf78e
  23. 17 Sep, 2010 1 commit
  25. 02 Sep, 2010 1 commit
  27. 23 Jul, 2010 1 commit
  29. 15 Jul, 2010 1 commit
    • Kenny Root's avatar
      Additional Obb functionality · 508c0e16
      Kenny Root authored 
      * Rename all functions dealing with OBB files to mention Obb

* Add 'path' and 'list' functionality to OBB commands

* Store hashed filename in loop's lo_crypt_name and keep lo_file_name
  for the real source filename. That way we can recover it later with an
  ioctl call.

Change-Id: I29e468265988bfb931d981532d86d7be7b3adfc8
      508c0e16
  31. 07 Jul, 2010 1 commit
    • Kenny Root's avatar
      Add image mounting commands for OBB files · fb7c4d5a
      Kenny Root authored 
      Allow the mounting of OBB filesystem images if they're encrypted with
twofish and in FAT filesystem format.

Change-Id: I54804e598f46b1f3a784ffe517ebd9d7626de7aa
      fb7c4d5a
  33. 28 Jun, 2010 1 commit
  35. 21 Jun, 2010 1 commit
  37. 15 Apr, 2010 1 commit
  39. 25 Mar, 2010 1 commit
  41. 23 Mar, 2010 1 commit
  43. 17 Mar, 2010 1 commit
  45. 15 Mar, 2010 2 commits
  47. 14 Mar, 2010 1 commit
    • San Mehat's avatar
      vold: Bugfixes & cleanups · d9a4e358
      San Mehat authored 
      
  - Fix issue where container-names > 64 bytes were getting truncated in the
    kernel. lo_name is only 64 bytes in length, so we now hash the container
    id via md5
  - Add 'dump' command to dump loop and devicemapper status
  - Add 'debug' command to enable more detailed logging at runtime
  - Log vold IPC arguments (minus encryption keys)
  - Fix premature return from Loop::lookupActive() and friends

Change-Id: I0e833261a445ce9dc1a8187e5501d27daba1ca76
Signed-off-by: default avatarSan Mehat <san@google.com>
      d9a4e358
  49. 03 Mar, 2010 1 commit
    • San Mehat's avatar
      vold: Add a versioned superblock to secure containers. · fcf24fe6
      San Mehat authored 
      
Add an un-encrypted superblock to the end of a secure container to
help identify the crypto cipher used. This is required in order to
provide some semblence of versioning, in case we have cause to
change the crypto type on an update - say for example switching
from software to hardware encryption, or from 128 -> a zillion
bit keys.

NOTE: This format is incompatible with previous secure containers.
After this change they will no longer be mountable.
Signed-off-by: default avatarSan Mehat <san@google.com>
      fcf24fe6
  51. 01 Mar, 2010 1 commit
  53. 24 Feb, 2010 4 commits
  55. 20 Feb, 2010 1 commit
    • San Mehat's avatar
      vold: Stage the mounting of media to hide the ASEC imagefile directory · 3bb6020e
      San Mehat authored 
      
  In order to protect the '/android_secure' directory on VFAT removable media
from being mucked with by 3rd party applications on the device, we hide the
directory with a read-only, zero-sized tmpfs mounted on-top. A reference to the
hidden directory is kept by a bind-mount which is mounted at a location which
only root can access.

Staging consists of:
  1. Mount checked media at a secure location (/mnt/secure/staging)
  2. Ensure /android_secure exists on the media, (creating if it doesnt)
  3. Bind-mount /mnt/secure/staging/android_secure -> /mnt/secure/asec
     (where only root can access it)
  4. Mount an RDONLY zero-sized tmpfs over /mnt/secure/staging/android_secure
  5. Atomically move /mnt/secure/staging to the publicly accessable storage
     directory (/mnt/sdcard)
Signed-off-by: default avatarSan Mehat <san@google.com>
      3bb6020e
  57. 18 Feb, 2010 2 commits
  59. 17 Feb, 2010 1 commit
  61. 14 Feb, 2010 1 commit
  63. 04 Feb, 2010 1 commit
    • San Mehat's avatar
      vold: Fix a few bugs · b9aed74b
      San Mehat authored 
      
 - share command was taking wrong arguments
 - shared command was returning two termination codes
 - Force FAT32 cluster size to 4k when formatting
Signed-off-by: default avatarSan Mehat <san@google.com>
      b9aed74b
  65. 03 Feb, 2010 1 commit
  67. 02 Feb, 2010 1 commit
  69. 23 Jan, 2010 1 commit