diff options
| author | JP Abgrall <jpa@google.com> | 2013-01-04 18:12:56 -0800 |
|---|---|---|
| committer | Android Git Automerger <android-git-automerger@android.com> | 2013-01-04 18:12:56 -0800 |
| commit | a44404154730e54615d44c389b11cec9dd86c001 (patch) | |
| tree | 0c57027b36cd256f4af9360bb33f7dde8783675c | |
| parent | c2b19de2ec64dc8637bcb9afe9042e137eac1cc3 (diff) | |
| parent | ba900f2e708f0b654cdaa827804cbb21af4e4fb4 (diff) | |
| download | system_core-a44404154730e54615d44c389b11cec9dd86c001.zip system_core-a44404154730e54615d44c389b11cec9dd86c001.tar.gz system_core-a44404154730e54615d44c389b11cec9dd86c001.tar.bz2 | |
am ba900f2e: am fb69c2e2: Merge "init.rc: setup qtaguid group ownership of ctrl and stat files"
* commit 'ba900f2e708f0b654cdaa827804cbb21af4e4fb4':
init.rc: setup qtaguid group ownership of ctrl and stat files
| -rw-r--r-- | rootdir/init.rc | 6 |
1 files changed, 6 insertions, 0 deletions
diff --git a/rootdir/init.rc b/rootdir/init.rc index d4baab4..bee0729 100644 --- a/rootdir/init.rc +++ b/rootdir/init.rc @@ -120,6 +120,12 @@ loglevel 3 write /dev/cpuctl/apps/bg_non_interactive/cpu.rt_runtime_us 700000 write /dev/cpuctl/apps/bg_non_interactive/cpu.rt_period_us 1000000 +# qtaguid will limit access to specific data based on group memberships. +# net_bw_acct grants impersonation of socket owners. +# net_bw_stats grants access to other apps' detailed tagged-socket stats. + chown root net_bw_acct /proc/net/xt_qtaguid/ctrl + chown root net_bw_stats /proc/net/xt_qtaguid/stats + # Allow everybody to read the xt_qtaguid resource tracking misc dev. # This is needed by any process that uses socket tagging. chmod 0644 /dev/xt_qtaguid |