root@emulator:/userdata# echo This is the message! > /log/enc/message root@emulator:/userdata# mkdir /log/enc/testdir root@emulator:/userdata# cat /log/enc/message This is the message! root@emulator:/userdata# ls /log/enc message testdir
5.2. 测试加密效果
1. 删除密钥,测试文件的加密效果
# 删除密钥 root@emulator:/userdata# ./fscryptctl remove_key a290ce05e9566ad81acda348a2b906ab /log warning: some files using this key are still in-use
# 读取文件内容 root@emulator:/userdata# cat /log/enc/message cat: can't open '/log/enc/message': Required key not available
# 查看目录内容 root@emulator:/userdata# ls /log/enc message testdir
# 创建新目录 root@emulator:/userdata# mkdir /log/enc/test mkdir: can't create directory '/log/enc/test': Required key not available
2. 提取块设备重新挂载,测试加密效果
# 提取log分区 root@emulator:/userdata# dd if=/dev/mmcblk0p36 of=/ota/logdev 8388608+0 records in 8388608+0 records out
# ubuntu上重新挂载 dev@dev-bluesky:~/sambashare$ sudo mount logdev log [sudo] password for dev: dev@dev-bluesky:~/sambashare$ cd log dev@dev-bluesky:~/sambashare/log$ cd enc
# 文件名、目录名均为密文状态 dev@dev-bluesky:~/sambashare/log/enc$ ls qTheaAXRLsb6DbHDVfXjgFj64qvDXbBehm6d9DQjFNb1DYQdtfUG0B wqQqMnICWHOGFmyU1jnUkYWvNQgh2xp98yKUBmdu1D,mRECmxlMqAD
# 无法查看文件内容 dev@dev-bluesky:~/sambashare/log/enc$ cat qTheaAXRLsb6DbHDVfXjgFj64qvDXbBehm6d9DQjFNb1DYQdtfUG0B cat: qTheaAXRLsb6DbHDVfXjgFj64qvDXbBehm6d9DQjFNb1DYQdtfUG0B: Required key not available dev@dev-lixiang:~/sambashare/log/enc$ ls wqQqMnICWHOGFmyU1jnUkYWvNQgh2xp98yKUBmdu1D,mRECmxlMqAD