Resume-on-Reboot: Citadel implementation This is an implementation of the RebootEscrow HAL for Citadel. It escrows a key-encryption-key for the synthetic password during an OTA. Bug: 157857322 Test: atest CtsAppSecurityHostTestCases:android.appsecurity.cts.ResumeOnRebootHostTest Change-Id: Id889662a69872d00802cac303f35e89c1c18a246

commit: db16c77de3ef21e6f2ac2b38145bab1546d9db76 [log] [tgz]
author: Kenny Root <kroot@google.com> Sun May 31 17:08:20 2020 -0700
committer: Kenny Root <kroot@google.com> Tue Jun 02 09:30:18 2020 -0700
tree: f1f5250650360bb0d47fc273a99ed871e9de9f98
parent: 34eef48765a16b9ec3716b41d065f509f52d54b0 [diff]
diff --git a/device.mk b/device.mk
index 8cddaf5..4f6b4ca 100644
--- a/device.mk
+++ b/device.mk

@@ -155,7 +155,7 @@
 
 # Resume on Reboot support
 PRODUCT_PACKAGES += \
-    android.hardware.rebootescrow-service.default
+    android.hardware.rebootescrow-service.citadel
 
 # Use Sdcardfs
 PRODUCT_PRODUCT_PROPERTIES += \

diff --git a/init.hardware.rc b/init.hardware.rc
index fd0327e..9d7d5ef 100644
--- a/init.hardware.rc
+++ b/init.hardware.rc

@@ -260,6 +260,10 @@
     # Setup folder for modem fdr
     mkdir /data/vendor/modem_fdr 0700 root system
 
+    # Resume-on-Reboot after we have the data dir and keymaster
+    mkdir /data/vendor/rebootescrow 0770 hsm hsm
+    start vendor.rebootescrow-citadel
+
     # keep that at the end of on post-fs-data
     # Set indication (checked by vold) that we have finished this action
     setprop vold.post_fs_data_done 1
commit	db16c77de3ef21e6f2ac2b38145bab1546d9db76	[log] [tgz]
author	Kenny Root <kroot@google.com>	Sun May 31 17:08:20 2020 -0700
committer	Kenny Root <kroot@google.com>	Tue Jun 02 09:30:18 2020 -0700
tree	f1f5250650360bb0d47fc273a99ed871e9de9f98
parent	34eef48765a16b9ec3716b41d065f509f52d54b0 [diff]