openkylin
/
platform_system_core
mirror of https://gitee.com/openkylin/platform_system_core.git
9
0
Fork 0
Code Issues Projects Releases Wiki Activity

Merge "fs_mgr: allow disable dm-verity when the device is unlocked without metadata"

This commit is contained in:
Treehugger Robot 2017-03-06 18:57:01 +00:00 committed by Gerrit Code Review
parent 58381648b1 7ad3159db9
commit 17c84b2cca
1 changed files with 6 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
fs_mgr/fs_mgr_verity.cpp
View File

@ -30,6 +30,7 @@
#include <unistd.h>
#include <android-base/file.h>
#include <android-base/properties.h>
#include <android-base/strings.h>
#include <android-base/unique_fd.h>
#include <crypto_utils/android_pubkey.h>
@ -874,6 +875,11 @@ int fs_mgr_setup_verity(struct fstab_rec *fstab, bool wait_for_verity_dev)
// read verity metadata
if (fec_verity_get_metadata(f, &verity) < 0) {
PERROR << "Failed to get verity metadata '" << fstab->blk_device << "'";
// Allow verity disabled when the device is unlocked without metadata
if ("0" == android::base::GetProperty("ro.boot.flash.locked", "")) {
retval = FS_MGR_SETUP_VERITY_DISABLED;
LWARNING << "Allow invalid metadata when the device is unlocked";
}
goto out;
}