diff options
Diffstat (limited to 'rootdir')
| -rw-r--r-- | rootdir/init.rc | 2 |
1 files changed, 2 insertions, 0 deletions
diff --git a/rootdir/init.rc b/rootdir/init.rc index 0e961631b..8e63a819c 100644 --- a/rootdir/init.rc +++ b/rootdir/init.rc @@ -424,6 +424,8 @@ on post-fs-data exec -- /system/bin/mini-keyctl dadd asymmetric vendor_cert /vendor/etc/security/cacerts_fsverity .fs-verity # Prevent future key links to fsverity keyring exec -- /system/bin/mini-keyctl restrict_keyring .fs-verity + # Enforce fsverity signature checking + write /proc/sys/fs/verity/require_signatures 1 # Make sure that apexd is started in the default namespace enter_default_mount_ns |