da1d160074b90eb349d058321bad5175a2f90824 - platform/system/vold

commit	da1d160074b90eb349d058321bad5175a2f90824	[log] [tgz]
author	Ellen Arteca <emarteca@google.com>	Tue Mar 12 17:38:48 2024 +0000
committer	Ellen Arteca <emarteca@google.com>	Thu Mar 21 23:12:18 2024 +0000
tree	070553bb3d778a7cecae50a6fcac8af05994b995
parent	300df5a5d843402b675a8e8ab873b1794cd332a0 [diff]

Add @SensitiveData tag to IVold

Mitigate data leak across the Binder boundary to Vold, of secrets derived from the LSKF.
Specifically: the `String secret` argument to both `setCeStorageProtection` and `unlockCeStorage` is
a secret derived from the user's synthetic password.

This CL is part of an effort to wipe instances of the LSKF and
secrets derived from it, so they are not available in a RAMdump.

Bug: 320392352
Test: launch_cvd -daemon

Change-Id: I0439f63fd4739bf5a6c957695cc9c3003ec89eb0

binder/android/os/IVold.aidl[diff]

1 file changed

tree: 070553bb3d778a7cecae50a6fcac8af05994b995

bench/
binder/
fs/
model/
tests/
.clang-format ⇨ ../../build/soong/scripts/system-clang-format
Android.bp
AppFuseUtil.cpp
AppFuseUtil.h
Benchmark.cpp
Benchmark.h
BenchmarkGen.h
Checkpoint.cpp
Checkpoint.h
CleanSpec.mk
cryptfs.cpp
cryptfs.h
CryptoType.cpp
CryptoType.h
EncryptInplace.cpp
EncryptInplace.h
FileDeviceUtils.cpp
FileDeviceUtils.h
FsCrypt.cpp
FsCrypt.h
IdleMaint.cpp
IdleMaint.h
KeyBuffer.cpp
KeyBuffer.h
KeyStorage.cpp
KeyStorage.h
Keystore.cpp
Keystore.h
KeyUtil.cpp
KeyUtil.h
Loop.cpp
Loop.h
main.cpp
MetadataCrypt.cpp
MetadataCrypt.h
MoveStorage.cpp
MoveStorage.h
NetlinkHandler.cpp
NetlinkHandler.h
NetlinkManager.cpp
NetlinkManager.h
OWNERS
PREUPLOAD.cfg
Process.cpp
Process.h
secdiscard.cpp
sehandle.h
TEST_MAPPING
Utils.cpp
Utils.h
vdc.cpp
vold.rc
vold_prepare_subdirs.cpp
VoldNativeService.cpp
VoldNativeService.h
VoldNativeServiceValidation.cpp
VoldNativeServiceValidation.h
VoldUtil.cpp
VoldUtil.h
VolumeManager.cpp
VolumeManager.h