shill: adjust perms of runtime data dirs and /var/cache/shill
This CL is in preparation to run the shill process tree as a non-root
user.
Modify init script to allow for easy switching between running shill
process tree as root and as non-root user. chown() runtime data dirs
used by shill and VPN programs to be owned by shill:shill. These can be
accessed by VPN programs even while running under ipsec UID/GID since
ipsec user belongs to shill group and the programs will be spawned with
minijail -G flag (see CL:1087359 / CL:1086231) which allows user to
inherit supplementary groups.
CQ-DEPEND=CL:1099190
BUG=chromium:649417
TEST=tested as part of larger sandbox shill debug CL
Change-Id: Ife29b26123d9ca7ad2b7ac331954708f4c9de959
Reviewed-on: https://chromium-review.googlesource.com/1087527
Commit-Ready: Micah Morton <mortonm@chromium.org>
Tested-by: Micah Morton <mortonm@chromium.org>
Reviewed-by: Brian Norris <briannorris@chromium.org>
1 file changed