Gitiles
Code Review Sign In
gerrit.omnirom.org / android_system_security / ee784bb9f63ebb381f56ff0cf21c0a5d23871a53
commitee784bb9f63ebb381f56ff0cf21c0a5d23871a53[log] [tgz]
authorDavid Drysdale <drysdale@google.com>Thu Nov 21 12:10:00 2024 +0000
committerDavid Drysdale <drysdale@google.com>Thu Nov 21 12:10:00 2024 +0000
treeda58f9e940551f4b16b8eea25545692bf9a4f3df
parent47550b3f17bc44b75d42bb2d1c1adaba8d0f704f [diff]
Skip DE-critical system keys on clearNamespace

When clearing keys for a specific uid, the C++ Keystore code included a
hack that would skip over deleting keys owned by the system uid (1000)
and which were marked with a special flag (ag/2161344).

This hack was not transplanted when Keystore was re-written from C++ to
Rust for Android S, but there are now scenarios that implicitly rely on
this behaviour being present.  So reproduce the hack in the Rust code
that handles legacy keys.

Test: 11->15 upgrade tests
Bug: 377650521
Change-Id: I9ca0f0b31670eb419870a96df93c78c1cf17b795
1 file changed
tree: da58f9e940551f4b16b8eea25545692bf9a4f3df
  1. fsverity/
  2. fsverity_init/
  3. identity/
  4. keystore/
  5. keystore-engine/
  6. keystore2/
  7. mls/
  8. ondevice-signing/
  9. prng_seeder/
  10. provisioner/
  11. rustfmt.toml ⇨ ../../build/soong/scripts/rustfmt.toml
  12. .clang-format
  13. .gitignore
  14. Android.bp
  15. METADATA
  16. MODULE_LICENSE_APACHE2
  17. NOTICE
  18. OWNERS
  19. PREUPLOAD.cfg