)]}' { "commit": "f682d47fc474d05fd78260faeb7863d4ded5153f", "tree": "32b893a32f42c550e2f8c2e1e914f1e4ad7e0879", "parents": [ "b7901001ad665559de7e04e33d807715de727ddb" ], "author": { "name": "Dylan Reid", "email": "dgreid@chromium.org", "time": "Thu Sep 17 21:39:07 2015 -0700" }, "committer": { "name": "Dylan Reid", "email": "dgreid@google.com", "time": "Fri Oct 16 16:46:29 2015 -0700" }, "message": "minijail: Read the last valid cap value earlier.\n\nThe maximum valid capability of the kernel is read from /proc.\nHowever since the ability to change mount namespaces and pivot root were\nadded, /proc might not be available when running drop_caps. To allow\ncapabilities to be dropped even if entering a new mount namespace, cache\nthe last valid cap earlier and pass it to drop_caps.\n\nChange-Id: I7adc017f0cdaa242d9348495815bbb4e70a74463\nSigned-off-by: Dylan Reid \u003cdgreid@chromium.org\u003e\n", "tree_diff": [ { "type": "modify", "old_id": "2497115dfedfc15dd3272af5336bfa0abc56c7de", "old_mode": 33188, "old_path": "libminijail.c", "new_id": "2b055e04b5825275802e10b6374326870d201749", "new_mode": 33188, "new_path": "libminijail.c" } ] }