Call fscrypt_destroy_volume_keys() under mCryptLock Everything in FsCrypt.cpp seems to run under VolumeManager::mCryptLock, except for fscrypt_destroy_volume_keys() which uses mLock instead. This was sort of okay because fscrypt_destroy_volume_keys() didn't operate on any in-memory data structures. However, that is going to be changed. Therefore, rework VoldNativeService::forgetPartition() to call fscrypt_destroy_volume_keys() under mCryptLock. Test: see I7f11a135d8550618cd96013f834cebd54be5ef84 Change-Id: Ia27a61faf2fdd546cdbddb2a3985c7c6696f6aa6 Merged-In: Ia27a61faf2fdd546cdbddb2a3985c7c6696f6aa6 (cherry picked from commit ce86e24d233a26b68ae3655ebc3f5730322d78a4)

commit: 7862729266d4bce707c67789692109e12454f43f [log] [tgz]
author: Eric Biggers <ebiggers@google.com> Tue Aug 01 22:36:55 2023 +0000
committer: Eric Biggers <ebiggers@google.com> Fri Oct 06 15:30:13 2023 +0000
tree: 9f9d200d25eb453e7831879dab8396190d3e3929
parent: fc1df0eae05eebd2ee992185090b77766b63f2ae [diff] [blame]
diff --git a/FsCrypt.cpp b/FsCrypt.cpp
index 7ba3162..b60747a 100644
--- a/FsCrypt.cpp
+++ b/FsCrypt.cpp

@@ -1137,7 +1137,10 @@
     return res;
 }
 
+// Destroys all CE and DE keys for an adoptable storage volume that is permanently going away.
+// Requires VolumeManager::mCryptLock.
 bool fscrypt_destroy_volume_keys(const std::string& volume_uuid) {
+    if (!IsFbeEnabled()) return true;
     bool res = true;
     LOG(DEBUG) << "fscrypt_destroy_volume_keys for volume " << escape_empty(volume_uuid);
     auto secdiscardable_path = volume_secdiscardable_path(volume_uuid);
commit	7862729266d4bce707c67789692109e12454f43f	[log] [tgz]
author	Eric Biggers <ebiggers@google.com>	Tue Aug 01 22:36:55 2023 +0000
committer	Eric Biggers <ebiggers@google.com>	Fri Oct 06 15:30:13 2023 +0000
tree	9f9d200d25eb453e7831879dab8396190d3e3929
parent	fc1df0eae05eebd2ee992185090b77766b63f2ae [diff] [blame]