1*33f37583SAndroid Build Coastguard Workerservice apexd /system/bin/apexd 2*33f37583SAndroid Build Coastguard Worker interface aidl apexservice 3*33f37583SAndroid Build Coastguard Worker class core 4*33f37583SAndroid Build Coastguard Worker user root 5*33f37583SAndroid Build Coastguard Worker group system 6*33f37583SAndroid Build Coastguard Worker oneshot 7*33f37583SAndroid Build Coastguard Worker disabled # does not start with the core class 8*33f37583SAndroid Build Coastguard Worker reboot_on_failure reboot,apexd-failed 9*33f37583SAndroid Build Coastguard Worker # CAP_CHOWN, CAP_DAC_OVERRIDE, CAP_DAC_READ_SEARCH required for apexdata snapshot & restore 10*33f37583SAndroid Build Coastguard Worker # CAP_SYS_ADMIN is required to access device-mapper and to use mount syscall 11*33f37583SAndroid Build Coastguard Worker capabilities CHOWN DAC_OVERRIDE DAC_READ_SEARCH FOWNER SYS_ADMIN 12*33f37583SAndroid Build Coastguard Worker 13*33f37583SAndroid Build Coastguard Workerservice apexd-bootstrap /system/bin/apexd --bootstrap 14*33f37583SAndroid Build Coastguard Worker user root 15*33f37583SAndroid Build Coastguard Worker group system 16*33f37583SAndroid Build Coastguard Worker oneshot 17*33f37583SAndroid Build Coastguard Worker disabled 18*33f37583SAndroid Build Coastguard Worker reboot_on_failure reboot,bootloader,bootstrap-apexd-failed 19*33f37583SAndroid Build Coastguard Worker # CAP_SYS_ADMIN is required to access device-mapper and to use mount syscall 20*33f37583SAndroid Build Coastguard Worker # apexd-bootstrap doesn't manage apexdata snapshot & restore, hence no need for other capabilities. 21*33f37583SAndroid Build Coastguard Worker capabilities SYS_ADMIN 22*33f37583SAndroid Build Coastguard Worker 23*33f37583SAndroid Build Coastguard Workerservice apexd-snapshotde /system/bin/apexd --snapshotde 24*33f37583SAndroid Build Coastguard Worker user root 25*33f37583SAndroid Build Coastguard Worker group system 26*33f37583SAndroid Build Coastguard Worker oneshot 27*33f37583SAndroid Build Coastguard Worker disabled 28*33f37583SAndroid Build Coastguard Worker # CAP_CHOWN, CAP_DAC_OVERRIDE, CAP_DAC_READ_SEARCH required for apexdata snapshot & restore 29*33f37583SAndroid Build Coastguard Worker # apexd-snapshotde doesn't mount APEXes, hence no need for SYS_ADMIN capability 30*33f37583SAndroid Build Coastguard Worker capabilities CHOWN DAC_OVERRIDE DAC_READ_SEARCH FOWNER 31