Gitiles
Code Review Sign In
gerrit.omnirom.org / android_frameworks_native / 5818c65aafcdef4feae6f57091e1083cd64247df
commit5818c65aafcdef4feae6f57091e1083cd64247df[log] [tgz]
authorEric Biggers <ebiggers@google.com>Wed Jun 14 00:53:20 2023 +0000
committerEric Biggers <ebiggers@google.com>Wed Jun 14 01:02:46 2023 +0000
treec9d361fdcfd07d55bc4b4ea04872b830042e0a08
parent2bde961aeb99fd5d1cac94f0d5eea2797949a271 [diff]
Remove write permission from file mode of top-level user dirs

https://r.android.com/2620458 and https://r.android.com/2617599 are
removing the write mode bit from the top-level user directories, in
order to make the DAC consistent with the SELinux policy.

This commit makes the corresponding change to
InstalldNativeService::tryMountDataMirror().  This method creates
/data_mirror/data_ce/$volume_uuid and bind-mounts /data/user onto it,
and similarly for several other directories.  It should not really need
to be changed, but the issue is that for adoptable storage it runs
multiple times, so the modes it uses to prepare the directories with
must match the modes of the corresponding bind-mounted directories.

Bug: 285239971
Test: sm set-virtual-disk true
      sm partition disk:7,392 private
      Verified no error message from tryMountDataMirror() in log
Change-Id: I17dfbe10909b34c2046a4d5b4ffd7764d5ae083b
1 file changed
tree: c9d361fdcfd07d55bc4b4ea04872b830042e0a08
  1. aidl/
  2. build/
  3. cmds/
  4. data/
  5. docs/
  6. headers/
  7. include/
  8. include_sensor/
  9. libs/
  10. opengl/
  11. services/
  12. vulkan/
  13. rustfmt.toml ⇨ ../../build/soong/scripts/rustfmt.toml
  14. .clang-format
  15. .gitignore
  16. Android.bp
  17. CleanSpec.mk
  18. METADATA
  19. MODULE_LICENSE_APACHE2
  20. NOTICE
  21. PREUPLOAD.cfg
  22. TEST_MAPPING