Defer CE key fixations to checkpoint commit On the first boot after an upgrade, ensure that any Keystore key deletions triggered by fscrypt_set_user_key_protection() are deferred until the userdata filesystem checkpoint is committed, so that the system doesn't end up in a bad state if the checkpoint is rolled back. Test: see I77d30f9be57de7b7c4818680732331549ecb73c8 Bug: 232452368 Ignore-AOSP-First: depends on other changes in internal master Change-Id: I59b758bc13b7a2ae270f1a6c409affe2eb61119c

commit: b615f3beac9681f074f56234142931c66b6e8fbb [log] [tgz]
author: Eric Biggers <ebiggers@google.com> Wed Nov 09 05:48:45 2022 +0000
committer: Eric Biggers <ebiggers@google.com> Mon Nov 14 17:45:32 2022 +0000
tree: f2693e6b758a4dc127d61eef5a5832e1bb79d790
parent: f13b5d9aa2ab42363c41ff64f90a11249851f761 [diff] [blame]
diff --git a/KeyStorage.h b/KeyStorage.h
index cc2f549..22453ea 100644
--- a/KeyStorage.h
+++ b/KeyStorage.h

@@ -41,6 +41,8 @@
 bool createSecdiscardable(const std::string& path, std::string* hash);
 bool readSecdiscardable(const std::string& path, std::string* hash);
 
+void DeferredCommitKeystoreKeys();
+
 // Renames a key directory while also managing deferred commits appropriately.
 // This method should be used whenever a key directory needs to be moved/renamed.
 bool RenameKeyDir(const std::string& old_name, const std::string& new_name);
commit	b615f3beac9681f074f56234142931c66b6e8fbb	[log] [tgz]
author	Eric Biggers <ebiggers@google.com>	Wed Nov 09 05:48:45 2022 +0000
committer	Eric Biggers <ebiggers@google.com>	Mon Nov 14 17:45:32 2022 +0000
tree	f2693e6b758a4dc127d61eef5a5832e1bb79d790
parent	f13b5d9aa2ab42363c41ff64f90a11249851f761 [diff] [blame]