Home Explore Help
Sign In
g
/
pax-pwn
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Branch: master
Branches Tags
pax-pwn
/
firmware
/
tree
/
startup
/
init.rc

init.rc 4.5 KB
Permalink History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170 
  1. on fs 
    2. 

  2. 

  3. sysclktz 0
    4. 

  4. 

  5. loglevel 3
    6. 

  6. 

  7. # setup the global environment
    8. 

  8. 	export PATH /bin:/sbin:/usr/sbin:/usr/bin:/base/bin:/base/sbin:/opt/bin
    9. 

  9. 	export GCONV_PATH /lib/gconv
    10. 

  10. 	export DISPLAY :0.0
    11. 

  11. 

  12. 

  13. 	symlink /startup/bin /bin
    14. 

  14. 	symlink /startup/sbin /sbin
    15. 

  15. 

  16. 	mkdir /tmp
    17. 

  17. 	mount tmpfs tmpfs /tmp
    18. 

  18. 	mkdir /tmp/run
    19. 

  19. 	mkdir /tmp/lock
    20. 

  20. 	chmod 1777 /tmp/lock
    21. 

  21. 	
    22. 

  22. 	mkdir /var
    23. 

  23. 	symlink /tmp /var/tmp
    24. 

  24. 	symlink /tmp/run /var/run
    25. 

  25. 	symlink /tmp/lock /var/lock
    26. 

  26. 	
    27. 

  27. 	mkdir /base
    28. 

  28. 	loadimg mtd@base /base
    29. 

  29. 

  30. 	mkdir /data
    31. 

  31. 	copy /proc/mtd /startup/mtd
    32. 

  32. 	chmod 0444 /startup/mtd
    33. 

  33. 

  34. 	check_and_mount_data
    35. 

  35. 

  36. 	
    37. 

  37. on early-boot
    38. 

  38. 	# create POSIX shared memory folder
    39. 

  39. 	mkdir /dev/shm
    40. 

  40. 	chmod 0777 /dev/shm
    41. 

  41. 	mount tmpfs tmpfs /dev/shm
    42. 

  42. 	
    43. 

  43. 	# restrict file permission under /usr/bin
    44. 

  44. 	chmod 750 /usr/bin/modemd
    45. 

  45. 	chmod 750 /usr/bin/pedd
    46. 

  46. 	chmod 750 /usr/bin/ipservice
    47. 

  47. 	chown root MAINAPP /usr/bin/crashd
    48. 

  48. 	chmod 750 /usr/bin/crashd
    49. 

  49. 	chown root root /usr/bin/devinfo
    50. 

  50. 	chmod 755 /usr/bin/devinfo
    51. 

  51. 	chown root MAINAPP /usr/bin/installer
    52. 

  52. 	chmod 750 /usr/bin/installer
    53. 

  53. 	chmod 750 /usr/bin/keyman
    54. 

  54. 	# logcat, let it 755
    55. 

  55. 	chown root MAINAPP /usr/bin/runapp
    56. 

  56. 	chmod 750 /usr/bin/runapp
    57. 

  57. 	chmod 750 /usr/bin/servicemanager
    58. 

  58. 	chown root MAINAPP /usr/bin/tm
    59. 

  59. 	chmod 750 /usr/bin/tm
    60. 

  60. 	chown root MAINAPP /usr/bin/systemservice
    61. 

  61. 	chmod 750 /usr/bin/systemservice
    62. 

  62. 	chown root MAINAPP /usr/bin/ts_calibrate
    63. 

  63. 	chmod 750 /usr/bin/ts_calibrate
    64. 

  64. 	chown root MAINAPP /usr/bin/xcbd
    65. 

  65. 	chmod 750 /usr/bin/xcbd
    66. 

  66. 	
    67. 

  67. 	# ./captoi sys_ptrace
    68. 

  68. 	setcap 0x00080000 /bin/gdbserver
    69. 

  69. 	# ./captoi dac_override setgid setuid setfcap chown
    70. 

  70. 	setcap 0x800000c3 /usr/bin/installer
    71. 

  71. 	# ./captoi setgid setuid
    72. 

  72. 	setcap 0x000000c0 /usr/bin/runapp
    73. 

  73. 	# ./captoi setgid setuid
    74. 

  74. 	setcap 0x000000c0 /bin/xlogin
    75. 

  75. 	# ./captoi net_admin net_raw sys_boot sys_time sys_admin
    76. 

  76. 	setcap 0x02603000 /usr/bin/tm
    77. 

  77. 	# ./captoi sys_admin sys_ptrace
    78. 

  78. 	setcap 0x00280000 /usr/bin/crashd
    79. 

  79.     # ./captoi net_admin net_raw sys_boot sys_time sys_admin
    80. 

  80. 	setcap 0x02603000 /usr/bin/systemservice
    81. 

  81.     # ./captoi sys_boot sys_time
    82. 

  82. 	setcap 0x02400000 /usr/bin/xcbd
    83. 

  83. 	
    84. 

  84. 

  85. 	mkdir /data/tombstones
    86. 

  86. 	chmod 770 /data/tombstones
    87. 

  87. 	chown MAINAPP MAINAPP /data/tombstones
    88. 

  88. 	
    89. 

  89. 	mkdir /data/security
    90. 

  90. 	chmod 600 /data/security
    91. 

  91. 	chown root root /data/security
    92. 

  92. 

  93. 	symlink /base/lib /lib
    94. 

  94. 	symlink /data/etc /etc
    95. 

  95. 	symlink /data/opt /opt
    96. 

  96. 	symlink /lib/gconv /usr/lib/gconv
    97. 

  97. 	write /proc/sys/kernel/randomize_va_space 2
    98. 

  98. 

  99. 	write /proc/sys/net/ipv4/tcp_keepalive_time 30
    100. 

  100. 	write /proc/sys/net/ipv4/tcp_keepalive_intvl 15
    101. 

  101. 	write /proc/sys/net/ipv4/tcp_keepalive_probes 5
    102. 

  102. 

  103. 	setprop ro.pukmode 2
    104. 

  104. 

  105. on boot
    106. 

  106. # basic network init
    107. 

  107.     ifup lo
    108. 

  108.     hostname localhost
    109. 

  109.     domainname localdomain
    110. 

  110. 

  111. #   mount usbfs
    112. 

  112. 	mkdir /dev/bus/usb
    113. 

  113. 	mount usbfs none /dev/bus/usb devmode=0666
    114. 

  114. 

  115. #u disk mount
    116. 

  116. 	mkdir /mnt
    117. 

  117. 	mount tmpfs tmpfs /mnt noatime noexec nosuid size=16k
    118. 

  118. 	chown MAINAPP MAINAPP /mnt
    119. 

  119. 

  120. # set RLIMIT_NICE to allow priorities from 19 to -20
    121. 

  121. 	# RLIMIT_NICE 13
    122. 

  122.     setrlimit 13 40 40
    123. 

  123. 	# RLIMIT_STACK 3
    124. 

  124. 	setrlimit 3 2097152 2097152
    125. 

  125. 	class_start core
    126. 

  126. 	if property:ro.fac.prolin_debug_level=0 rm /startup/bin/*
    127. 

  127. 	if property:ro.fac.prolin_debug_level=0 rm /startup/sbin/*
    128. 

  128. 	if property:ro.fac.prolin_debug_level=0 umount /proc
    129. 

  129. 	if property:ro.fac.prolin_debug_level=0 rm /startup/modules/*
    130. 

  130. 	if property:ro.fac.prolin_debug_level=0 rmdir /startup/modules/
    131. 

  131. 	if property:ro.fac.prolin_debug_level=0 rm /startup/*.rc
    132. 

  132. 	if property:ro.fac.prolin_debug_level=0 rm /startup/*.sh
    133. 

  133. 	if property:ro.fac.prolin_debug_level=0 rm /startup/*.prop
    134. 

  134. 	if property:ro.fac.prolin_debug_level=0 rm /startup/firmware/lcd_*.rle
    135. 

  135. 	if property:ro.fac.prolin_debug_level=0 rm startup/firmware/lcd.watermark	
    136. 

  136. 	if property:ro.fac.prolin_debug_level=0 rm startup/firmware/lcd_readme.txt 
    137. 

  137. 	if property:ro.fac.prolin_debug_level=1 rm /startup/modules/*
    138. 

  138. 	if property:ro.fac.prolin_debug_level=1 rmdir /startup/modules/
    139. 

  139. 	if property:ro.fac.prolin_debug_level=1 rm /startup/*.rc
    140. 

  140. 	if property:ro.fac.prolin_debug_level=1 rm /startup/*.sh
    141. 

  141. 	if property:ro.fac.prolin_debug_level=1 rm /startup/*.prop
    142. 

  142. 	wait /tmp/.BINDER_SERVICE_MANAGER_DONE
    143. 

  143. 	rm   /tmp/.BINDER_SERVICE_MANAGER_DONE
    144. 

  144. 	class_start default
    145. 

  145. 

  146. ## Daemon processes to be run by init.
    147. 

  147. 

  148. service ueventd /startup/ueventd
    149. 

  149.     critical
    150. 

  150. 

  151. service console-root /bin/sh
    152. 

  152.     console
    153. 

  153.     disabled
    154. 

  154.     user root
    155. 

  155.     group root
    156. 

  156. 

  157. service console-MAINAPP /bin/sh
    158. 

  158.     console
    159. 

  159.     disabled
    160. 

  160.     user MAINAPP
    161. 

  161.     group MAINAPP
    162. 

  162. 

  163. on property:persist.sys.console.enable=1
    164. 

  164.   if property:ro.console=1 start console-MAINAPP
    165. 

  165.   if property:ro.console=2 start console-root
    166. 

  166. 

  167. on property:persist.sys.console.enable=0
    168. 

  168.   if property:ro.console=1 stop console-MAINAPP
    169. 

  169.   if property:ro.console=2 stop console-root
    170. 

  170.