Merge "init: Allow SETPCAP for dropping bounding set." am: 02c8383521
am: 52dd15a0c1
Change-Id: Icb50ed3ad8554069a6ac168ed03a6233c867a677
This commit is contained in:
commit
5296552bc4
1 changed files with 2 additions and 2 deletions
|
@ -246,8 +246,8 @@ allow init vold_data_file:file { getattr };
|
|||
allow init shell_data_file:dir { open create read getattr setattr search };
|
||||
allow init shell_data_file:file { getattr };
|
||||
|
||||
# Set UID and GID for services.
|
||||
allow init self:capability { setuid setgid };
|
||||
# Set UID, GID, and adjust capability bounding set for services.
|
||||
allow init self:capability { setuid setgid setpcap };
|
||||
|
||||
# For bootchart to read the /proc/$pid/cmdline file of each process,
|
||||
# we need to have following line to allow init to have access
|
||||
|
|
Loading…
Reference in a new issue