1259fa1be39c0a35ec374fe127ba49d1c5ed5eb18Utkarsh Sanghi# 2259fa1be39c0a35ec374fe127ba49d1c5ed5eb18Utkarsh Sanghi# Copyright (C) 2015 The Android Open Source Project 3259fa1be39c0a35ec374fe127ba49d1c5ed5eb18Utkarsh Sanghi# 4259fa1be39c0a35ec374fe127ba49d1c5ed5eb18Utkarsh Sanghi# Licensed under the Apache License, Version 2.0 (the "License"); 5259fa1be39c0a35ec374fe127ba49d1c5ed5eb18Utkarsh Sanghi# you may not use this file except in compliance with the License. 6259fa1be39c0a35ec374fe127ba49d1c5ed5eb18Utkarsh Sanghi# You may obtain a copy of the License at 7259fa1be39c0a35ec374fe127ba49d1c5ed5eb18Utkarsh Sanghi# 8259fa1be39c0a35ec374fe127ba49d1c5ed5eb18Utkarsh Sanghi# http://www.apache.org/licenses/LICENSE-2.0 9259fa1be39c0a35ec374fe127ba49d1c5ed5eb18Utkarsh Sanghi# 10259fa1be39c0a35ec374fe127ba49d1c5ed5eb18Utkarsh Sanghi# Unless required by applicable law or agreed to in writing, software 11259fa1be39c0a35ec374fe127ba49d1c5ed5eb18Utkarsh Sanghi# distributed under the License is distributed on an "AS IS" BASIS, 12259fa1be39c0a35ec374fe127ba49d1c5ed5eb18Utkarsh Sanghi# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. 13259fa1be39c0a35ec374fe127ba49d1c5ed5eb18Utkarsh Sanghi# See the License for the specific language governing permissions and 14259fa1be39c0a35ec374fe127ba49d1c5ed5eb18Utkarsh Sanghi# limitations under the License. 15259fa1be39c0a35ec374fe127ba49d1c5ed5eb18Utkarsh Sanghi# 162863c75955f0e50df2ad29587a29b4d5b06779bUtkarsh Sanghi 172863c75955f0e50df2ad29587a29b4d5b06779bUtkarsh Sanghidescription "Chromium OS device tpm_manager service." 182863c75955f0e50df2ad29587a29b4d5b06779bUtkarsh Sanghiauthor "chromium-os-dev@chromium.org" 192863c75955f0e50df2ad29587a29b4d5b06779bUtkarsh Sanghi 202863c75955f0e50df2ad29587a29b4d5b06779bUtkarsh Sanghistart on starting system-services 212863c75955f0e50df2ad29587a29b4d5b06779bUtkarsh Sanghistop on stopping system-services 222863c75955f0e50df2ad29587a29b4d5b06779bUtkarsh Sanghirespawn 232863c75955f0e50df2ad29587a29b4d5b06779bUtkarsh Sanghi 24642f9a8ee6942f9fa2cef7183852c5d3e3e5e494Utkarsh Sanghipre-start script 25642f9a8ee6942f9fa2cef7183852c5d3e3e5e494Utkarsh Sanghi LOCAL_DATA_DIRECTORY="/var/lib/tpm_manager" 26642f9a8ee6942f9fa2cef7183852c5d3e3e5e494Utkarsh Sanghi if [ ! -e "${LOCAL_DATA_DIRECTORY}" ]; then 27642f9a8ee6942f9fa2cef7183852c5d3e3e5e494Utkarsh Sanghi mkdir -m 0755 "${LOCAL_DATA_DIRECTORY}" 28642f9a8ee6942f9fa2cef7183852c5d3e3e5e494Utkarsh Sanghi chown -R tpm_manager:tpm_manager "${LOCAL_DATA_DIRECTORY}" 29642f9a8ee6942f9fa2cef7183852c5d3e3e5e494Utkarsh Sanghi fi 30642f9a8ee6942f9fa2cef7183852c5d3e3e5e494Utkarsh Sanghiend script 31642f9a8ee6942f9fa2cef7183852c5d3e3e5e494Utkarsh Sanghi 32e6419641bfebd76cbe5fffe3877c068af6b1c396Utkarsh Sanghi# Minijail forks off our process 33e6419641bfebd76cbe5fffe3877c068af6b1c396Utkarsh Sanghiexpect fork 34e6419641bfebd76cbe5fffe3877c068af6b1c396Utkarsh Sanghi 35e6419641bfebd76cbe5fffe3877c068af6b1c396Utkarsh Sanghiexec minijail0 -i -g tpm_manager -u tpm_manager -G -n \ 36e6419641bfebd76cbe5fffe3877c068af6b1c396Utkarsh Sanghi -S /usr/share/policy/tpm_managerd-seccomp.policy /usr/sbin/tpm_managerd 37