tequilaOS/platform_system_sepolicy
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity

Merge "init: Allow SETPCAP for dropping bounding set." am: 02c8383521 am: 52dd15a0c1

Browse source 
am: 5296552bc4

Change-Id: I03974037aaf0152b3ebfdff20b76c8999cd5382e
This commit is contained in:
Jorge Lucangeli Obes 2016-11-01 20:32:46 +00:00 committed by android-build-merger
commit 368519e10e
1 changed files with 2 additions and 2 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

4
public/init.te
View file

@ -246,8 +246,8 @@ allow init vold_data_file:file { getattr };
allow init shell_data_file:dir { open create read getattr setattr search }; allow init shell_data_file:dir { open create read getattr setattr search };
allow init shell_data_file:file { getattr }; allow init shell_data_file:file { getattr };
# Set UID and GID for services. # Set UID, GID, and adjust capability bounding set for services.
allow init self:capability { setuid setgid }; allow init self:capability { setuid setgid setpcap };
# For bootchart to read the /proc/$pid/cmdline file of each process, # For bootchart to read the /proc/$pid/cmdline file of each process,
# we need to have following line to allow init to have access # we need to have following line to allow init to have access