Revert "Cryptographic security for MAX_BOOT_LEVEL" Revert submission 1660531-max-boot-level-crypto Reason for revert: broken test com.android.tests.odsign.OnDeviceSigningHostTest#verifyArtUpgradeSignsFiles on aosp-master on aosp_cf_x86_64_phone-userdebug at 7261517 Reverted Changes: Ia3b968afc:Set earlyBootEnded before apex starts Ia69891291:Expose AID_KEYSTORE I12530cd13:Cryptographic security for MAX_BOOT_LEVEL Bug: 184635938 Change-Id: Ibcedeff47eb2e65307fa04093c5fd2297b76af71 Test: forrest run for the broken test

commit: 229f2c038c22ee271e06c1f919e2632fa014bc19 [log] [tgz]
author: Ulyana Trafimovich <skvadrik@google.com> Tue Apr 06 16:07:07 2021 +0000
committer: Ulyana Trafimovich <skvadrik@google.com> Tue Apr 06 16:07:07 2021 +0000
tree: fe4de8303a4bd1ee78ccee102ed5d0721ee991e5
parent: 9f7f48b9894975104315552ee873256e4b827b81 [diff] [blame]
diff --git a/keystore2/src/keystore2_main.rs b/keystore2/src/keystore2_main.rs
index a6bbb2d..e745697 100644
--- a/keystore2/src/keystore2_main.rs
+++ b/keystore2/src/keystore2_main.rs

@@ -68,6 +68,13 @@
 
     ENFORCEMENTS.install_confirmation_token_receiver(confirmation_token_receiver);
 
+    info!("Starting boot level watcher.");
+    std::thread::spawn(|| {
+        keystore2::globals::ENFORCEMENTS
+            .watch_boot_level()
+            .unwrap_or_else(|e| error!("watch_boot_level failed: {}", e));
+    });
+
     entropy::register_feeder();
     shared_secret_negotiation::perform_shared_secret_negotiation();
commit	229f2c038c22ee271e06c1f919e2632fa014bc19	[log] [tgz]
author	Ulyana Trafimovich <skvadrik@google.com>	Tue Apr 06 16:07:07 2021 +0000
committer	Ulyana Trafimovich <skvadrik@google.com>	Tue Apr 06 16:07:07 2021 +0000
tree	fe4de8303a4bd1ee78ccee102ed5d0721ee991e5
parent	9f7f48b9894975104315552ee873256e4b827b81 [diff] [blame]