Protect runtime storage mount points. We have a bunch of magic that mounts the correct view of storage access based on the runtime permissions of an app, but we forgot to protect the real underlying data sources; oops. This series of changes just bumps the directory heirarchy one level to give us /mnt/runtime which we can mask off as 0700 to prevent people from jumping to the exposed internals. Also add CTS tests to verify that we're protecting access to internal mount points like this. Bug: 22964288 Change-Id: Ic585c4d4381fe51bd764902ef28c38db63b7f2cc

commit: 25725b63301d786374ef132549793d61a7015689 [log] [tgz]
author: Jeff Sharkey <jsharkey@android.com> Thu Aug 06 11:52:45 2015 -0700
committer: Jeff Sharkey <jsharkey@android.com> Thu Aug 06 11:52:51 2015 -0700
tree: 66a9d88083e02e8157661d9e46ee164025801bdc
parent: e827a8ab27020be0f266a5a6083b11308fe1a349 [diff]
diff --git a/file_contexts b/file_contexts
index 8fc29eb..d964f9b 100644
--- a/file_contexts
+++ b/file_contexts

@@ -314,7 +314,5 @@
 # external storage
 /mnt/media_rw(/.*)?         u:object_r:mnt_media_rw_file:s0
 /mnt/user(/.*)?             u:object_r:mnt_user_file:s0
-/mnt/runtime_default(/.*)?  u:object_r:storage_file:s0
-/mnt/runtime_read(/.*)?     u:object_r:storage_file:s0
-/mnt/runtime_write(/.*)?    u:object_r:storage_file:s0
+/mnt/runtime(/.*)?          u:object_r:storage_file:s0
 /storage(/.*)?              u:object_r:storage_file:s0
commit	25725b63301d786374ef132549793d61a7015689	[log] [tgz]
author	Jeff Sharkey <jsharkey@android.com>	Thu Aug 06 11:52:45 2015 -0700
committer	Jeff Sharkey <jsharkey@android.com>	Thu Aug 06 11:52:51 2015 -0700
tree	66a9d88083e02e8157661d9e46ee164025801bdc
parent	e827a8ab27020be0f266a5a6083b11308fe1a349 [diff]