init: Make SafetyNet pass on debug builds * This makes it pass on userdebug, unlocked bootloader builds * Build time conditional should mean this never gets into production builds, not that it should be a problem given that these values are being set to what they would look like anyways Co-authored-by: Michael Bestas <mkbestas@gmail.com> Change-Id: I2aafc883b9ec3d42246583c85ad1a7dc9247b5b9

commit: cac637728d7f6948350ac8f100630e9ac9dc0c19 [log] [tgz]
author: Chirayu Desai <chirayudesai1@gmail.com> Wed Apr 27 18:12:08 2022 +0530
committer: Tim Zimmermann <tim@linux4.de> Sun Mar 24 06:44:18 2024 +0100
tree: f78a167a3a4b8cec898222b60dd5781e43c67a5f
parent: 2f423b136d08061f35559bc3c475a37bdc9d3a82 [diff]
diff --git a/init/property_service.cpp b/init/property_service.cpp
index a2168bf..95df095 100644
--- a/init/property_service.cpp
+++ b/init/property_service.cpp

@@ -1408,6 +1408,16 @@
     if (isVerifiedBootYellow) {
         InitPropertySet("ro.boot.verifiedbootstate", "green");
     }
+#if ALLOW_PERMISSIVE_SELINUX == 1
+    else {
+        // Use the above as a userdebug/eng check, since we don't
+        // need this on production builds which will always be -user
+        InitPropertySet("ro.boot.flash.locked", "1");
+        InitPropertySet("ro.boot.verifiedbootstate", "green");
+        InitPropertySet("ro.boot.veritymode", "enforcing");
+        InitPropertySet("ro.boot.vbmeta.device_state", "locked");
+    }
+#endif
 }
 
 void PropertyInit() {
commit	cac637728d7f6948350ac8f100630e9ac9dc0c19	[log] [tgz]
author	Chirayu Desai <chirayudesai1@gmail.com>	Wed Apr 27 18:12:08 2022 +0530
committer	Tim Zimmermann <tim@linux4.de>	Sun Mar 24 06:44:18 2024 +0100
tree	f78a167a3a4b8cec898222b60dd5781e43c67a5f
parent	2f423b136d08061f35559bc3c475a37bdc9d3a82 [diff]