diff --git a/cryptfs_hw/cryptfs_hw.c b/cryptfs_hw/cryptfs_hw.c index 76609ffe..a7164abf 100755 --- a/cryptfs_hw/cryptfs_hw.c +++ b/cryptfs_hw/cryptfs_hw.c @@ -66,6 +66,7 @@ static int loaded_library = 0; static unsigned char current_passwd[MAX_PASSWORD_LEN]; static int (*qseecom_create_key)(int, void*); static int (*qseecom_update_key)(int, void*, void*); +static int (*qseecom_wipe_key)(int); static int map_usage(int usage) { @@ -127,8 +128,16 @@ static int load_qseecom_library() if((error = dlerror()) == NULL) { SLOGD("Success loading QSEECom_create_key \n"); *(void **) (&qseecom_update_key) = dlsym(handle,"QSEECom_update_key_user_info"); - if ((error = dlerror()) == NULL) - loaded_library = 1; + if ((error = dlerror()) == NULL) { + SLOGD("Success loading QSEECom_update_key_user_info\n"); + *(void **) (&qseecom_wipe_key) = dlsym(handle,"QSEECom_wipe_key"); + if ((error = dlerror()) == NULL) { + loaded_library = 1; + SLOGD("Success loading QSEECom_wipe_key \n"); + } + else + SLOGE("Error %s loading symbols for QSEECom APIs \n", error); + } else SLOGE("Error %s loading symbols for QSEECom APIs \n", error); } @@ -212,3 +221,14 @@ int is_ice_enabled(void) } return storage_type; } + +int wipe_hw_device_encryption_key(const char* enc_mode) +{ + if (!enc_mode) + return -1; + + if (is_hw_disk_encryption(enc_mode) && load_qseecom_library()) + return qseecom_wipe_key(map_usage(QSEECOM_DISK_ENCRYPTION)); + + return 0; +} diff --git a/cryptfs_hw/cryptfs_hw.h b/cryptfs_hw/cryptfs_hw.h index 2fccd5d3..c7b17467 100755 --- a/cryptfs_hw/cryptfs_hw.h +++ b/cryptfs_hw/cryptfs_hw.h @@ -35,6 +35,7 @@ extern "C" { int set_hw_device_encryption_key(const char*, const char*); int update_hw_device_encryption_key(const char*, const char*); +int wipe_hw_device_encryption_key(const char*); unsigned int is_hw_disk_encryption(const char*); int is_ice_enabled(void);