summaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorDavid Anderson2018-04-11 14:29:54 -0500
committerDavid Anderson2018-04-11 14:33:02 -0500
commite54ca5fa0ef7b4d8b07823faaeb50f3632f27534 (patch)
treed19bd3a62021693da90c768ab583e73202bf0ff6 /storaged
parent1d2bf45b55c07bb54454790642281defb8b149a5 (diff)
downloadplatform-system-core-e54ca5fa0ef7b4d8b07823faaeb50f3632f27534.tar.gz
platform-system-core-e54ca5fa0ef7b4d8b07823faaeb50f3632f27534.tar.xz
platform-system-core-e54ca5fa0ef7b4d8b07823faaeb50f3632f27534.zip
storaged: lower capabilities in init
Lower storaged's capabilities to DAC_READ_SEARCH as an initial step toward running it non-root. Bug: 77634061 Test: storaged still runs and its /proc/pid/status has lower CapPrms Change-Id: Ibfe0349fc059e2f37efba33f587176e8ce6be9fe
Diffstat (limited to 'storaged')
-rw-r--r--storaged/storaged.rc1
1 files changed, 1 insertions, 0 deletions
diff --git a/storaged/storaged.rc b/storaged/storaged.rc
index a24c7fba8..ed2cf145a 100644
--- a/storaged/storaged.rc
+++ b/storaged/storaged.rc
@@ -1,5 +1,6 @@
1service storaged /system/bin/storaged 1service storaged /system/bin/storaged
2 class main 2 class main
3 capabilities DAC_READ_SEARCH
3 priority 10 4 priority 10
4 file /d/mmc0/mmc0:0001/ext_csd r 5 file /d/mmc0/mmc0:0001/ext_csd r
5 writepid /dev/cpuset/system-background/tasks 6 writepid /dev/cpuset/system-background/tasks