Gitiles
Code Review Sign In
gerrit-public.fairphone.software / fp2-dev / platform / external / android-clat / 7045e27d4946330f3152218fdaa81b37d02b6d6c
commit7045e27d4946330f3152218fdaa81b37d02b6d6c[log] [tgz]
authorLorenzo Colitti <lorenzo@google.com>Fri Jun 13 21:36:01 2014 +0900
committerLorenzo Colitti <lorenzo@google.com>Fri Jun 13 21:44:10 2014 +0900
treecd9137751fe8cfc55f890a061bcf8f9519c1f6f5
parentb9b471e1e3788a398adeb0a04bfc52d6ba7c3cf6 [diff]
Create the tun device after dropping root privileges.

Currently, clatd creates the clat4 interface as root using
root's dac_override abilities. Instead, change the drop_root code
to acquire membership in the AID_VPN group, and use that
membership to create the interface. This removes the need for
dac_override.

Change-Id: I1f824254f52a441f21c5b7963d9993be88cea2db
1 file changed
tree: cd9137751fe8cfc55f890a061bcf8f9519c1f6f5
  1. Android.mk
  2. BUGS
  3. checksum.c
  4. checksum.h
  5. clatd.c
  6. clatd.conf
  7. clatd.h
  8. clatd_test.cpp
  9. config.c
  10. config.h
  11. debug.h
  12. dns64.c
  13. dns64.h
  14. dump.c
  15. dump.h
  16. getaddr.c
  17. getaddr.h
  18. icmp.c
  19. icmp.h
  20. ipv4.c
  21. ipv6.c
  22. LICENSE
  23. logging.c
  24. logging.h
  25. MODULE_LICENSE_APACHE2
  26. mtu.c
  27. mtu.h
  28. netlink_callbacks.c
  29. netlink_callbacks.h
  30. netlink_msg.c
  31. netlink_msg.h
  32. NOTICE
  33. setif.c
  34. setif.h
  35. translate.c
  36. translate.h