From f8f5a1983e4fbf49ab8b57509987a19ed38aa69e Mon Sep 17 00:00:00 2001
From: Jeff Sharkey <jsharkey@android.com>
Date: Mon, 9 Apr 2012 17:23:35 -0700
Subject: Organize external storage to enforce sdcard_r.

Create /storage/ to require that users have sdcard_r GID, and place
both emulated and real SD card mount points inside it.  Also reduce
visibility of /data/media.

Bug: 6131916
Change-Id: I088218e7df131dc206356f33174abc0702d9b271
---
 init.herring.rc | 8 +++++---
 1 file changed, 5 insertions(+), 3 deletions(-)

(limited to 'init.herring.rc')

diff --git a/init.herring.rc b/init.herring.rc
index 40d7b3a..13a6b2e 100755
--- a/init.herring.rc
+++ b/init.herring.rc
@@ -40,9 +40,11 @@ on fs
     mount ext4 /dev/block/platform/s3c-sdhci.0/by-name/system /system wait ro
     mount ext4 /dev/block/platform/s3c-sdhci.0/by-name/userdata /data wait noatime nosuid nodev nomblk_io_submit
 
-    export EXTERNAL_STORAGE /mnt/sdcard
-    mkdir /mnt/sdcard 0000 system system
-    symlink /mnt/sdcard /sdcard
+    export EXTERNAL_STORAGE /storage/sdcard0
+    mkdir /storage 0550 system sdcard_r
+    mkdir /storage/sdcard0 0000 system system
+    symlink /storage/sdcard0 /sdcard
+    symlink /storage/sdcard0 /mnt/sdcard
 
 # permissions for bluetooth.
     chown bluetooth bluetooth /efs/bluetooth
-- 
cgit v1.1