Merge "Add on-device signing binary." am: 73dea057c2 am: f14403b878 Original change: https://android-review.googlesource.com/c/platform/system/core/+/1513029 MUST ONLY BE SUBMITTED BY AUTOMERGER Change-Id: Ia01ec222b944c159f4f0c4c1cdac00fd38e4fb9f

commit: 7475a24c04fa817fa4f780fed3feacfb18912db5 [log] [tgz]
author: Martijn Coenen <maco@google.com> Fri Feb 19 12:15:32 2021 +0000
committer: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com> Fri Feb 19 12:15:32 2021 +0000
tree: 66f5a7c7612b9a7ac9790b022015308a4ee15020
parent: 37251d2cdb70584d9c9af17239d8f94fea96332d [diff]
parent: f14403b8786601d4ace0221648593535da3eb546 [diff]
diff --git a/rootdir/init.rc b/rootdir/init.rc
index 863cf6c..68a76f1 100644
--- a/rootdir/init.rc
+++ b/rootdir/init.rc

@@ -738,6 +738,8 @@
     mkdir /data/misc/snapshotctl_log 0755 root root
     # create location to store pre-reboot information
     mkdir /data/misc/prereboot 0700 system system
+    # directory used for on-device signing key blob
+    mkdir /data/misc/odsign 0700 root root
 
     mkdir /data/preloads 0775 system system encryption=None
 
@@ -877,6 +879,10 @@
     # Set SELinux security contexts on upgrade or policy update.
     restorecon --recursive --skip-ce /data
 
+    # Start the on-device signing daemon, and wait for it to finish, to ensure
+    # ART artifacts are generated if needed.
+    exec_start odsign
+
     # After apexes are mounted, tell keymaster early boot has ended, so it will
     # stop allowing use of early-boot keys
     exec - system system -- /system/bin/vdc keymaster earlyBootEnded
commit	7475a24c04fa817fa4f780fed3feacfb18912db5	[log] [tgz]
author	Martijn Coenen <maco@google.com>	Fri Feb 19 12:15:32 2021 +0000
committer	Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>	Fri Feb 19 12:15:32 2021 +0000
tree	66f5a7c7612b9a7ac9790b022015308a4ee15020
parent	37251d2cdb70584d9c9af17239d8f94fea96332d [diff]
parent	f14403b8786601d4ace0221648593535da3eb546 [diff]