logd: Move the capabilities from file based to ambient This change moves logd's capabilities from being file based to being set by init through ambient capabilities. Bug: 62845925 Test: sailfish:/ # grep Cap /proc/`pidof logd`/status CapInh: 0000000000000000 CapPrm: 0000000440000000 CapEff: 0000000440000000 CapBnd: 0000000440000040 CapAmb: 0000000000000000 $ capsh --decode=0x440000040 0x440000040=cap_setgid,cap_audit_control,cap_syslog Test: liblog-unit-tests, logd-unit-tests, logcat-unit-tests Change-Id: I28c7c4ad37ad5eafd399aef78c303ce31298a9ef

commit: d32c36c961da82fa0b0e70a80d9a6e62a0551d2a [log] [tgz]
author: Luis Hector Chavez <lhchavez@google.com> Fri Jun 08 15:00:40 2018 -0700
committer: Luis Hector Chavez <lhchavez@google.com> Mon Jun 11 10:04:11 2018 -0700
tree: faf001db69be602989469edb915180b228c7a11e
parent: 59112043262a03877234b2ffc75fee273e39d9bd [diff] [blame]
diff --git a/logd/logd.rc b/logd/logd.rc
index bd303b7..c740ecf 100644
--- a/logd/logd.rc
+++ b/logd/logd.rc

@@ -6,6 +6,7 @@
     file /dev/kmsg w
     user logd
     group logd system package_info readproc
+    capabilities SYSLOG AUDIT_CONTROL SETGID
     writepid /dev/cpuset/system-background/tasks
 
 service logd-reinit /system/bin/logd --reinit
commit	d32c36c961da82fa0b0e70a80d9a6e62a0551d2a	[log] [tgz]
author	Luis Hector Chavez <lhchavez@google.com>	Fri Jun 08 15:00:40 2018 -0700
committer	Luis Hector Chavez <lhchavez@google.com>	Mon Jun 11 10:04:11 2018 -0700
tree	faf001db69be602989469edb915180b228c7a11e
parent	59112043262a03877234b2ffc75fee273e39d9bd [diff] [blame]