Resume-on-Reboot: Citadel implementation This is an implementation of the RebootEscrow HAL for Citadel. It escrows a key-encryption-key for the synthetic password during an OTA. Bug: 157857322 Test: atest CtsAppSecurityHostTestCases:android.appsecurity.cts.ResumeOnRebootHostTest Change-Id: If116b8874c07d93a19600c581f3846cf6ec04753

commit: b1ea88851b29aaae7fc202706654d6fad186f3a9 [log] [tgz]
author: Kenny Root <kroot@google.com> Mon Jun 01 19:33:03 2020 -0700
committer: Kenny Root <kroot@google.com> Mon Jun 01 19:49:12 2020 -0700
tree: ea4a7adf5fefcf0742d348946648bf3673bfbf6a
parent: 986dda1c01a28a9a119d2ab940dbaaecf51503cc [diff]
diff --git a/device.mk b/device.mk
index 12b3d05..a0f8f82 100644
--- a/device.mk
+++ b/device.mk

@@ -143,7 +143,7 @@
 
 # Resume on Reboot support
 PRODUCT_PACKAGES += \
-    android.hardware.rebootescrow-service.default
+    android.hardware.rebootescrow-service.citadel
 
 # Use Sdcardfs
 PRODUCT_PRODUCT_PROPERTIES += \

diff --git a/init.hardware.rc b/init.hardware.rc
index 4058693..48d5668 100644
--- a/init.hardware.rc
+++ b/init.hardware.rc

@@ -238,6 +238,10 @@
     # Setup folder for modem fdr
     mkdir /data/vendor/modem_fdr 0700 root system
 
+    # Resume-on-Reboot after we have the data dir and keymaster
+    mkdir /data/vendor/rebootescrow 0770 hsm hsm
+    start vendor.rebootescrow-citadel
+
     # keep that at the end of on post-fs-data
     # Set indication (checked by vold) that we have finished this action
     setprop vold.post_fs_data_done 1
commit	b1ea88851b29aaae7fc202706654d6fad186f3a9	[log] [tgz]
author	Kenny Root <kroot@google.com>	Mon Jun 01 19:33:03 2020 -0700
committer	Kenny Root <kroot@google.com>	Mon Jun 01 19:49:12 2020 -0700
tree	ea4a7adf5fefcf0742d348946648bf3673bfbf6a
parent	986dda1c01a28a9a119d2ab940dbaaecf51503cc [diff]