Cherry-pick: stateful recovery: simplify and add unittests
At present stateful encryption should spend some time enabled but trivially
bypassable. This will give it additional time to bake while keeping risks
at a minimum. Once all the tooling is in place, we can renable owner and
write-protect checking in this class to enable proper enforcement of
stateful disk encryption.
It also adds reboot-to-recovery after the copy is complete. This does mean
that until the flag file is removed, the system will continously copy and
reboot to recovery.
This change also adds the missing Copy and ReadFileToString Platform mock.
TEST=new unittests pass (surprise!)
[----------] 4 tests from StatefulRecovery
[ RUN ] StatefulRecovery.ValidRequest
[ OK ] StatefulRecovery.ValidRequest (0 ms)
[ RUN ] StatefulRecovery.InvalidFlagFileContents
[0906/222329:ERROR:stateful_recovery.cc(47)] Bogus stateful recovery request file: 0 hello
[ OK ] StatefulRecovery.InvalidFlagFileContents (0 ms)
[ RUN ] StatefulRecovery.UnreadableFlagFile
[ OK ] StatefulRecovery.UnreadableFlagFile (0 ms)
[ RUN ] StatefulRecovery.UncopyableData
[ OK ] StatefulRecovery.UncopyableData (0 ms)
[----------] 4 tests from StatefulRecovery (1 ms total)
echo -n "1" > /mnt/stateful_partition/decrypt_stateful && reboot
BUG=chromium-os:34218
Reviewed-on: https://gerrit.chromium.org/gerrit/32496
Reviewed-by: Kees Cook <keescook@chromium.org>
Tested-by: Will Drewry <wad@chromium.org>
Commit-Ready: Will Drewry <wad@chromium.org>
(Cherry-picked from I4f9c22b514b711ad68dc892f759afaf27da92307)
Change-Id: I14dc0e6d88752fb30fb6b6598648b269a5096de4
Reviewed-on: https://gerrit.chromium.org/gerrit/32931
Tested-by: Kees Cook <keescook@chromium.org>
Reviewed-by: Will Drewry <wad@chromium.org>
5 files changed
