Google Git
Sign in
gfiber / vendor / google / minijail / ce5b55eb48f276951b6c4d1bbfc667240c1e8f2f
commitce5b55eb48f276951b6c4d1bbfc667240c1e8f2f[log] [tgz]
authorDylan Reid <dgreid@chromium.org>Wed Jan 13 11:04:16 2016 -0800
committerDylan Reid <dgreid@google.com>Wed Jan 20 11:46:48 2016 -0800
tree0154d1b200f05909670470cfcc220b07b1be344d
parent33b967df36fe2b3997ead2c139efb4775946a612 [diff]
Separate child process sync from user namespace

Syncing the child and parent was only done so that the uid/gid maps
could be setup.  Make this more general so that the next commit can add setting
of cgroups which also wants to happen after the child forks but before the
jailed process is run similar top uid/gid map setting.

BUG=b/26549867
TEST=security_Minijail0

Change-Id: I81d512f351cfe459cd7af4c55263504d22b929fa
Signed-off-by: Dylan Reid <dgreid@chromium.org>
1 file changed
tree: 0154d1b200f05909670470cfcc220b07b1be344d
  1. examples/
  2. test/
  3. .clang-format
  4. Android.mk
  5. arch.h
  6. bpf.c
  7. bpf.h
  8. common.mk
  9. CPPLINT.cfg
  10. elfparse.c
  11. elfparse.h
  12. gen_constants.sh
  13. gen_syscalls.sh
  14. libconstants.h
  15. libminijail-private.h
  16. libminijail.c
  17. libminijail.h
  18. libminijail.pc.in
  19. libminijail_unittest.c
  20. libminijailpreload.c
  21. libsyscalls.h
  22. Makefile
  23. minijail0.1
  24. minijail0.5
  25. minijail0.c
  26. MODULE_LICENSE_BSD
  27. NOTICE
  28. OWNERS
  29. platform2_preinstall.sh
  30. PRESUBMIT.cfg
  31. signal_handler.c
  32. signal_handler.h
  33. syscall_filter.c
  34. syscall_filter.h
  35. syscall_filter_unittest.c
  36. test_harness.h
  37. util.c
  38. util.h