diff options
| author | Chia-chi Yeh | 2009-06-30 18:06:47 -0500 |
|---|---|---|
| committer | Chia-chi Yeh | 2009-06-30 18:06:47 -0500 |
| commit | 51afbf583819f3bdfc96f3c66c9c3444803e792a (patch) | |
| tree | 51f2d528ffe88cb2da51ef9621f9a0bb36dcc3f9 | |
| parent | 383688b52fb19b9c4d98bb1a660febc880d0e268 (diff) | |
| download | platform-system-core-51afbf583819f3bdfc96f3c66c9c3444803e792a.tar.gz platform-system-core-51afbf583819f3bdfc96f3c66c9c3444803e792a.tar.xz platform-system-core-51afbf583819f3bdfc96f3c66c9c3444803e792a.zip | |
rootdir: Modify init.rc to run mtpd/racoon as a non-root user.
Note that this change requires a new prebuilt kernel for AID_NET_ADMIN.
| -rw-r--r-- | rootdir/init.rc | 6 |
1 files changed, 5 insertions, 1 deletions
diff --git a/rootdir/init.rc b/rootdir/init.rc index 23ee1c8a5..ac066fad2 100644 --- a/rootdir/init.rc +++ b/rootdir/init.rc | |||
| @@ -286,13 +286,17 @@ service installd /system/bin/installd | |||
| 286 | service flash_recovery /system/bin/flash_image recovery /system/recovery.img | 286 | service flash_recovery /system/bin/flash_image recovery /system/recovery.img |
| 287 | oneshot | 287 | oneshot |
| 288 | 288 | ||
| 289 | service racoon /system/bin/racoon -F -f /etc/racoon/racoon.conf | 289 | service racoon /system/bin/racoon |
| 290 | socket racoon stream 600 system system | 290 | socket racoon stream 600 system system |
| 291 | # racoon will setuid to vpn after getting necessary resources. | ||
| 292 | group net_admin keystore | ||
| 291 | disabled | 293 | disabled |
| 292 | oneshot | 294 | oneshot |
| 293 | 295 | ||
| 294 | service mtpd /system/bin/mtpd | 296 | service mtpd /system/bin/mtpd |
| 295 | socket mtpd stream 600 system system | 297 | socket mtpd stream 600 system system |
| 298 | user vpn | ||
| 299 | group vpn net_admin net_raw | ||
| 296 | disabled | 300 | disabled |
| 297 | oneshot | 301 | oneshot |
| 298 | 302 | ||