• Home
  • Line#
  • Scopes#
  • Navigate#
  • Raw
  • Download
1exe,euser,egroup,pidns,caps,filter
2
3# Since udev creates device nodes and changes owners/perms, it needs to run as
4# root.  TODO: We should namespace it.
5udevd,root,root,No,No,No
6
7# Frecon needs to run as root and in the original namespace because it might
8# launch new shells via login.  Would be nice if it integrated things.
9frecon,root,root,No,No,No
10
11session_manager,root,root,No,No,No
12rsyslogd,syslog,syslog,No,No,No
13dbus-daemon,messagebus,messagebus,No,No,No
14wpa_supplicant,wpa,wpa,No,No,No
15shill,root,root,No,No,No
16X,xorg,xorg,No,No,No
17chapsd,chaps,chronos-access,No,No,No
18cryptohomed,root,root,No,No,No
19powerd,power,power,No,No,No
20ModemManager,modem,modem,No,No,No
21dhcpcd,dhcp,dhcp,No,No,No
22metrics_daemon,root,root,No,No,No
23disks,root,root,No,No,No
24update_engine,root,root,No,No,No
25bluetoothd,bluetooth,bluetooth,No,Yes,No
26debugd,root,root,No,No,No
27cras,cras,cras,No,No,No
28tcsd,tss,root,No,No,No
29cromo,cromo,cromo,No,No,No
30wimax-manager,root,root,No,No,No
31mtpd,mtp,mtp,No,No,Yes
32tlsdated,tlsdate,tlsdate,No,No,No
33lid_touchpad_he,root,root,No,No,No
34thermal.sh,root,root,No,No,No
35daisydog,watchdog,watchdog,No,No,No
36permission_brok,devbroker,root,No,Yes,No
37netfilter-queue,nfqueue,nfqueue,No,Yes,Yes
38warn_collector,root,root,No,No,No
39tlsdated-setter,root,root,No,No,No
40attestationd,attestation,attestation,No,No,No
41periodic_schedu,root,root,No,No,No
42esif_ufd,root,root,No,No,No
43easy_unlock,easy-unlock,easy-unlock,No,No,No
44sslh-fork,sslh,sslh,Yes,No,No
45arc-networkd,root,root,Yes,No,No
46arc-obb-mounter,root,root,Yes,No,No
47upstart-socket-,root,root,No,No,No
48timberslide,root,root,No,No,No
49
50# We need to run as root due to caps not preserving across execs.
51# firewalld will fork+exec iptables to handle requests, and it
52# takes care of dropping root/caps for those commands.
53# TODO: We can fix this when minijail supports ambient caps.  http://b/32066154
54firewalld,root,root,No,No,No
55
56# Broadcomm bluetooth firmware patch downloader runs on some veyron boards.
57brcm_patchram_p,root,root,No,No,No
58
59# tpm_manager runs on all TPM2 boards, such as reef.
60tpm_managerd,root,root,No,No,No
61