Add /apex tmpfs mount and mount it. APEX filesystem images will now be mounted in /apex. Also, make sure /data/apex is created with the right ACL. Bug: 112455435 Test: flash and wipe, /apex is mounted as tmpfs, /data/apex is created Change-Id: Ie27775e9f40a27b510272f212762624a04e94f1d

commit: 344a91a5f11cd904579c0ab5b179d832417ee926 [log] [tgz]
author: Martijn Coenen <maco@google.com> Tue Oct 02 16:43:16 2018 +0200
committer: Martijn Coenen <maco@google.com> Wed Oct 03 09:48:38 2018 +0200
tree: 9b1f41352e49c65ea6cdbcadd38cb31edfcfa9fb
parent: 9af3b16c72d738b67d63f5c4faa2ef6a1f703a8c [diff] [blame]
diff --git a/rootdir/init.rc b/rootdir/init.rc
index f39ea7c..826accd 100644
--- a/rootdir/init.rc
+++ b/rootdir/init.rc

@@ -269,6 +269,12 @@
     # that they can be chown'd to system:system later on boot
     write /sys/class/leds/vibrator/trigger "transient"
 
+    # Setup APEX mount point and its security context
+    mount tmpfs tmpfs /apex nodev noexec nosuid
+    chmod 0755 /apex
+    chown root root /apex
+    restorecon /apex
+
 # Healthd can trigger a full boot from charger mode by signaling this
 # property when the power button is held.
 on property:sys.boot_from_charger_mode=1
@@ -523,6 +529,8 @@
 
     mkdir /data/anr 0775 system system
 
+    mkdir /data/apex 0770 root root
+
     # NFC: create data/nfc for nv storage
     mkdir /data/nfc 0770 nfc nfc
     mkdir /data/nfc/param 0770 nfc nfc
commit	344a91a5f11cd904579c0ab5b179d832417ee926	[log] [tgz]
author	Martijn Coenen <maco@google.com>	Tue Oct 02 16:43:16 2018 +0200
committer	Martijn Coenen <maco@google.com>	Wed Oct 03 09:48:38 2018 +0200
tree	9b1f41352e49c65ea6cdbcadd38cb31edfcfa9fb
parent	9af3b16c72d738b67d63f5c4faa2ef6a1f703a8c [diff] [blame]