Google Git
Sign in
gfiber / vendor / google / minijail / 3e954eceba13f2e7547ada506a735f084108ea12
commit3e954eceba13f2e7547ada506a735f084108ea12[log] [tgz]
authorYu-Hsi Chiang <yuhsi@google.com>Tue Jul 28 16:48:14 2015 +0800
committerSamuel Tan <samueltan@google.com>Mon Oct 05 16:32:04 2015 -0700
treef901ddcd97d319c63d411b7e7cd0ed684abcac83
parentae2aed82c60220ed73b3170a19eedb317672e1e0 [diff]
minijail: Add a new option to allow program run as pid 1.

Add a new flag that indicates whether to fork or not
when pid namespace is set, so that programs can be
run as pid 1 inside a new pid namespace.

BUG=chromium:350616
TEST=security_Minijail0 pass
TEST=`minijail -I /bin/bash` then `echo $$` and get pid 1

Change-Id: Icc959b775e5fe6368c15a834e23ce3f2c119af41
Reviewed-on: https://chromium-review.googlesource.com/289440
Reviewed-by: Jorge Lucangeli Obes <jorgelo@chromium.org>
Commit-Queue: Yu-hsi Chiang <yuhsi@google.com>
Tested-by: Yu-hsi Chiang <yuhsi@google.com>
3 files changed
tree: f901ddcd97d319c63d411b7e7cd0ed684abcac83
  1. test/
  2. Android.mk
  3. arch.h
  4. bpf.c
  5. bpf.h
  6. common.mk
  7. CPPLINT.cfg
  8. elfparse.c
  9. elfparse.h
  10. gen_syscalls.sh
  11. libminijail-private.h
  12. libminijail.c
  13. libminijail.h
  14. libminijail_unittest.c
  15. libminijailpreload.c
  16. libsyscalls.h
  17. Makefile
  18. minijail0.1
  19. minijail0.5
  20. minijail0.c
  21. MODULE_LICENSE_BSD
  22. NOTICE
  23. OWNERS
  24. PRESUBMIT.cfg
  25. signal_handler.c
  26. signal_handler.h
  27. syscall_filter.c
  28. syscall_filter.h
  29. syscall_filter_unittest.c
  30. test_harness.h
  31. util.c
  32. util.h