Explicit init .rc user.
Set the user explicitly. For boringssl self-test, changed to 'nobody' since this test doesn't require permissions. Bug: 276813155 Test: boot, check can 'nobody' can still write to kmesg. Change-Id: I32f7134e83183bd054bffbb22d412d7a2dc0ad09
This commit is contained in:
Steven Moreland
parent
b2fdbef489
commit
2fccf5ead3
2 changed files with 7 additions and 1 deletions
|
|
@ -16,9 +16,11 @@ service mte_upgrade_test_helper /system/bin/mte_upgrade_test_helper ${sys.mte_cr
|
|||
class late_start
|
||||
disabled
|
||||
seclabel u:r:su:s0
|
||||
user root
|
||||
|
||||
service mte_upgrade_test_helper_overridden /system/bin/mte_upgrade_test_helper ${sys.mte_crash_test_uuid}
|
||||
class late_start
|
||||
disabled
|
||||
seclabel u:r:su:s0
|
||||
user root
|
||||
setenv BIONIC_MEMTAG_UPGRADE_SECS 0
|
||||
|
|
|
|||
|
|
@ -475,25 +475,28 @@ service boringssl_self_test32 /system/bin/boringssl_self_test32
|
|||
stdio_to_kmsg
|
||||
# Explicitly specify that boringssl_self_test32 doesn't require any capabilities
|
||||
capabilities
|
||||
user nobody
|
||||
|
||||
service boringssl_self_test64 /system/bin/boringssl_self_test64
|
||||
reboot_on_failure reboot,boringssl-self-check-failed
|
||||
stdio_to_kmsg
|
||||
# Explicitly specify that boringssl_self_test64 doesn't require any capabilities
|
||||
capabilities
|
||||
user nobody
|
||||
|
||||
service boringssl_self_test_apex32 /apex/com.android.conscrypt/bin/boringssl_self_test32
|
||||
reboot_on_failure reboot,boringssl-self-check-failed
|
||||
stdio_to_kmsg
|
||||
# Explicitly specify that boringssl_self_test_apex32 doesn't require any capabilities
|
||||
capabilities
|
||||
user nobody
|
||||
|
||||
service boringssl_self_test_apex64 /apex/com.android.conscrypt/bin/boringssl_self_test64
|
||||
reboot_on_failure reboot,boringssl-self-check-failed
|
||||
stdio_to_kmsg
|
||||
# Explicitly specify that boringssl_self_test_apex64 doesn't require any capabilities
|
||||
capabilities
|
||||
|
||||
user nobody
|
||||
|
||||
# Healthd can trigger a full boot from charger mode by signaling this
|
||||
# property when the power button is held.
|
||||
|
|
@ -1260,6 +1263,7 @@ service ueventd /system/bin/ueventd
|
|||
class core
|
||||
critical
|
||||
seclabel u:r:ueventd:s0
|
||||
user root
|
||||
shutdown critical
|
||||
|
||||
service console /system/bin/sh
|
||||
|
|
|
|||
Loading…
Reference in a new issue