From ce6f7160969e67c9caa486a6f249ab3e997c5f4c Mon Sep 17 00:00:00 2001 From: Paul Crowley Date: Wed, 6 May 2015 16:32:31 +0100 Subject: [PATCH] Set up crypto for user directories in init. Depends on https://android-review.googlesource.com/#/c/147911/ Bug: 19704432 Change-Id: Ie59c6b67f73c1cadd86e69d3c9673ddaddb49a7e --- rootdir/init.rc | 4 ++++ 1 file changed, 4 insertions(+) diff --git a/rootdir/init.rc b/rootdir/init.rc index 9fe1b4f1f..436465afe 100644 --- a/rootdir/init.rc +++ b/rootdir/init.rc @@ -265,6 +265,7 @@ on post-fs-data chmod 0660 /data/misc/wifi/wpa_supplicant.conf mkdir /data/local 0751 root root mkdir /data/misc/media 0700 media media + mkdir /data/misc/vold 0700 root root # For security reasons, /data/local/tmp should always be empty. # Do not place files or directories in /data/local/tmp @@ -314,6 +315,9 @@ on post-fs-data mkdir /data/system/heapdump 0700 system system mkdir /data/user 0711 system system + # Set up the crypto policies on /data/user + exec -- /system/bin/vdc cryptfs setusercryptopolicies /data/user + # Reload policy from /data/security if present. setprop selinux.reload_policy 1