Merge "Add on-device signing binary." am: 73dea057c2 am: f14403b878
Original change: https://android-review.googlesource.com/c/platform/system/core/+/1513029 MUST ONLY BE SUBMITTED BY AUTOMERGER Change-Id: Ia01ec222b944c159f4f0c4c1cdac00fd38e4fb9f
This commit is contained in:
Martijn Coenen
Automerger Merge Worker
commit
7475a24c04
1 changed files with 6 additions and 0 deletions
|
|
@ -738,6 +738,8 @@ on post-fs-data
|
|||
mkdir /data/misc/snapshotctl_log 0755 root root
|
||||
# create location to store pre-reboot information
|
||||
mkdir /data/misc/prereboot 0700 system system
|
||||
# directory used for on-device signing key blob
|
||||
mkdir /data/misc/odsign 0700 root root
|
||||
|
||||
mkdir /data/preloads 0775 system system encryption=None
|
||||
|
||||
|
|
@ -877,6 +879,10 @@ on post-fs-data
|
|||
# Set SELinux security contexts on upgrade or policy update.
|
||||
restorecon --recursive --skip-ce /data
|
||||
|
||||
# Start the on-device signing daemon, and wait for it to finish, to ensure
|
||||
# ART artifacts are generated if needed.
|
||||
exec_start odsign
|
||||
|
||||
# After apexes are mounted, tell keymaster early boot has ended, so it will
|
||||
# stop allowing use of early-boot keys
|
||||
exec - system system -- /system/bin/vdc keymaster earlyBootEnded
|
||||
|
|
|
|||
Loading…
Add table
Reference in a new issue