Merge "gsid: Add a command-line option for verifying image maps."
diff --git a/daemon.cpp b/daemon.cpp
index a1ee809..2123599 100644
--- a/daemon.cpp
+++ b/daemon.cpp
@@ -59,6 +59,9 @@
} else if (argv[1] == "dump-device-mapper"s) {
int rc = DumpDeviceMapper();
exit(rc);
+ } else if (argv[1] == "verify-image-maps"s) {
+ android::gsi::GsiService::VerifyImageMaps();
+ exit(0);
}
}
diff --git a/gsi_service.cpp b/gsi_service.cpp
index 4d30a69..c7b3a28 100644
--- a/gsi_service.cpp
+++ b/gsi_service.cpp
@@ -36,6 +36,7 @@
#include <android/os/IVold.h>
#include <binder/IServiceManager.h>
#include <binder/LazyServiceRegistrar.h>
+#include <cutils/android_reboot.h>
#include <ext4_utils/ext4_utils.h>
#include <fs_mgr.h>
#include <libavb/libavb.h>
@@ -1109,6 +1110,28 @@
}
}
+void GsiService::VerifyImageMaps() {
+ std::vector<std::pair<std::string, std::string>> paths = {
+ {"/metadata/gsi/remount", "/data/gsi/remount"},
+ {"/metadata/gsi/ota", "/data/gsi/ota"},
+ };
+
+ for (const auto& [metadata_dir, data_dir] : paths) {
+ auto impl = ImageManager::Open(metadata_dir, data_dir);
+ if (!impl) {
+ LOG(ERROR) << "Could not open ImageManager for " << metadata_dir << " and " << data_dir;
+ continue;
+ }
+ if (!impl->ValidateImageMaps()) {
+ LOG(ERROR) << "ImageManager for " << metadata_dir
+ << " failed validation, device data is at risk. Rebooting.";
+ android::base::SetProperty(ANDROID_RB_PROPERTY, "reboot,fastboot");
+ continue;
+ }
+ LOG(INFO) << "ImageManager verification passed for " << metadata_dir;
+ }
+}
+
static bool GetAvbPublicKeyFromFd(int fd, AvbPublicKey* dst) {
// Read the AVB footer from EOF.
int64_t total_size = get_block_device_size(fd);
diff --git a/gsi_service.h b/gsi_service.h
index 95f1537..0ec7620 100644
--- a/gsi_service.h
+++ b/gsi_service.h
@@ -80,6 +80,7 @@
bool should_abort() const { return should_abort_; }
static void RunStartupTasks();
+ static void VerifyImageMaps();
static std::string GetInstalledImageDir();
std::string GetActiveDsuSlot();
std::string GetActiveInstalledImageDir();
