rootdir: Modify init.rc to run mtpd/racoon as a non-root user.
Note that this change requires a new prebuilt kernel for AID_NET_ADMIN.
This commit is contained in:
Chia-chi Yeh
parent
383688b52f
commit
51afbf5838
1 changed files with 5 additions and 1 deletions
|
|
@ -286,13 +286,17 @@ service installd /system/bin/installd
|
|||
service flash_recovery /system/bin/flash_image recovery /system/recovery.img
|
||||
oneshot
|
||||
|
||||
service racoon /system/bin/racoon -F -f /etc/racoon/racoon.conf
|
||||
service racoon /system/bin/racoon
|
||||
socket racoon stream 600 system system
|
||||
# racoon will setuid to vpn after getting necessary resources.
|
||||
group net_admin keystore
|
||||
disabled
|
||||
oneshot
|
||||
|
||||
service mtpd /system/bin/mtpd
|
||||
socket mtpd stream 600 system system
|
||||
user vpn
|
||||
group vpn net_admin net_raw
|
||||
disabled
|
||||
oneshot
|
||||
|
||||
|
|
|
|||
Loading…
Reference in a new issue