Reland "shill: start running shill process tree in a minijail"
This is a reland of aad3747780f4f81a971878773b79635e1b3dc001
The 2 known issues which caused problems the first time around have been
addressed by CL:1130017 and CL:1130474. I've done some more thorough
testing (including with elm board, which is arm processor and marvell wifi)
and haven't discovered any new issues.
Original change's description:
> shill: start running shill process tree in a minijail
> Kick off shill sandboxing (we'll see if it sticks). This simple change to
> the init script as well as the autotest change to
> security_SandboxedServices are the only 2 things that need to be
> reverted to go back to running the shill process tree as root.
> TEST=observed shill process tree running as non-root. no autotests
> Change-Id: Ice5ed2cbbc64281ba8f136e5157023ff355245d6
> Reviewed-on: https://chromium-review.googlesource.com/1087540
> Commit-Ready: Micah Morton <email@example.com>
> Tested-by: Micah Morton <firstname.lastname@example.org>
> Reviewed-by: Jorge Lucangeli Obes <email@example.com>
Commit-Ready: ChromeOS CL Exonerator Bot <firstname.lastname@example.org>
Tested-by: Micah Morton <email@example.com>
Reviewed-by: Jorge Lucangeli Obes <firstname.lastname@example.org>
Reviewed-by: Mike Frysinger <email@example.com>
1 file changed