minijail: Support multiple range uid/gid mappings. Now minijail accept multiple ranges of contiguous uid/gid mappings that is seperated by commas. The commas are replaced by newlines before writing to map files. BUG=chromium:517387 TEST=security_Minijail0 pass Change-Id: I27d45480010b38e71b80837cc2299f180d77c4a1 Reviewed-on: https://chromium-review.googlesource.com/296270 Commit-Ready: Yu-hsi Chiang <yuhsi@google.com> Tested-by: Yu-hsi Chiang <yuhsi@google.com> Reviewed-by: Jorge Lucangeli Obes <jorgelo@chromium.org>

commit: 1912c5b5e88455e0a0c03fd375d232a498edd95d [log] [tgz]
author: Yu-Hsi Chiang <yuhsi@google.com> Mon Aug 31 18:59:49 2015 +0800
committer: Samuel Tan <samueltan@google.com> Mon Oct 05 16:39:38 2015 -0700
tree: 07cae1ec063145a4ab7619f91caaf657fbf4d252
parent: 3cc05eab4d956e9bb919ebe7a2166c987ba1d5bf [diff] [blame]
diff --git a/libminijail.c b/libminijail.c
index 0a429c9..5378d84 100644
--- a/libminijail.c
+++ b/libminijail.c

@@ -311,6 +311,11 @@
 	j->uidmap = strdup(uidmap);
 	if (!j->uidmap)
 		return -ENOMEM;
+	char *ch;
+	for (ch = j->uidmap; *ch; ch++) {
+		if (*ch == ',')
+			*ch = '\n';
+	}
 	return 0;
 }
 
@@ -319,6 +324,11 @@
 	j->gidmap = strdup(gidmap);
 	if (!j->gidmap)
 		return -ENOMEM;
+	char *ch;
+	for (ch = j->gidmap; *ch; ch++) {
+		if (*ch == ',')
+			*ch = '\n';
+	}
 	return 0;
 }
commit	1912c5b5e88455e0a0c03fd375d232a498edd95d	[log] [tgz]
author	Yu-Hsi Chiang <yuhsi@google.com>	Mon Aug 31 18:59:49 2015 +0800
committer	Samuel Tan <samueltan@google.com>	Mon Oct 05 16:39:38 2015 -0700
tree	07cae1ec063145a4ab7619f91caaf657fbf4d252
parent	3cc05eab4d956e9bb919ebe7a2166c987ba1d5bf [diff] [blame]