• Home
  • Line#
  • Scopes#
  • Navigate#
  • Raw
  • Download
1service storageproxyd_system /system_ext/bin/storageproxyd.system \
2        -d ${storageproxyd_system.trusty_ipc_dev:-/dev/trusty-ipc-dev0} \
3        -r /dev/socket/rpmb_mock_system \
4        -p /data/secure_storage_system \
5        -t sock
6    disabled
7    user system
8    group system
9
10service rpmb_mock_init_system /system_ext/bin/rpmb_dev.system \
11        --dev /mnt/secure_storage_rpmb_system/persist/RPMB_DATA --init --size 2048
12    disabled
13    user system
14    group system
15    oneshot
16
17service rpmb_mock_system /system_ext/bin/rpmb_dev.system \
18        --dev /mnt/secure_storage_rpmb_system/persist/RPMB_DATA \
19        --sock rpmb_mock_system
20    disabled
21    user system
22    group system
23    socket rpmb_mock_system stream 660 system system
24
25# storageproxyd
26on late-fs && \
27    property:trusty.security_vm.nonsecure_vm_ready=1 && \
28    property:storageproxyd_system.trusty_ipc_dev=*
29    wait /dev/socket/rpmb_mock_system
30    start storageproxyd_system
31
32
33# RPMB Mock
34on post-fs && \
35    property:trusty.security_vm.nonsecure_vm_ready=1 && \
36    property:trusty.security_vm.vm_cid=*
37    # Create a persistent location for the RPMB data
38    # (work around lack of RPMb block device on CF).
39    # file contexts secure_storage_rpmb_system_file
40    # (only used on Cuttlefish as this is non secure)
41    mkdir /metadata/secure_storage_rpmb_system 0770 system system
42    mkdir /mnt/secure_storage_rpmb_system 0770 system system
43    symlink /metadata/secure_storage_rpmb_system \
44            /mnt/secure_storage_rpmb_system/persist
45    # Create a system persist directory in /metadata
46    # (work around lack of dedicated system persist partition).
47    # file contexts secure_storage_persist_system_file
48    mkdir /metadata/secure_storage_persist_system 0770 system system
49    mkdir /mnt/secure_storage_persist_system 0770 system system
50    symlink /metadata/secure_storage_persist_system \
51            /mnt/secure_storage_persist_system/persist
52    setprop storageproxyd_system.trusty_ipc_dev VSOCK:${trusty.security_vm.vm_cid}:1
53    exec_start rpmb_mock_init_system
54    start rpmb_mock_system
55
56on post-fs-data && \
57    property:trusty.security_vm.nonsecure_vm_ready=1 && \
58    property:storageproxyd_system.trusty_ipc_dev=*
59    # file contexts secure_storage_system_file
60    mkdir /data/secure_storage_system 0770 root system
61    symlink /mnt/secure_storage_persist_system/persist \
62            /data/secure_storage_system/persist
63    chown root system /data/secure_storage_system/persist
64    restart storageproxyd_system
65