Gitiles
Code Review Sign In
gerrit-public.fairphone.software / platform / external / minijail / c6c8643ae97b58dbbf0c36aaaec586a764d5396f
commitc6c8643ae97b58dbbf0c36aaaec586a764d5396f[log] [tgz]
authorWill Drewry <wad@chromium.org>Sun Sep 18 14:37:22 2011 -0500
committerWill Drewry <wad@chromium.org>Fri Sep 23 12:46:23 2011 -0700
treec8cd595361c819eb66b631e80bb0d057534ab9f2
parentf89aef580a713810a788d7e5ccf2e030696b6847 [diff]
libminijail: only clear supplemental groups on user/group change

minijail should be runnable by an unprivileged user.  This change allows
that to be true.

BUG=chromium-os:19459
TEST=minijail -S somepolicy /bin/ls
     (need to test transitions still)

Change-Id: Ib540953ae2435414b3d3adbadb68238962f5c0ff
Reviewed-on: http://gerrit.chromium.org/gerrit/7912
Reviewed-by: Elly Jones <ellyjones@chromium.org>
Tested-by: Will Drewry <wad@chromium.org>
1 file changed
tree: c8cd595361c819eb66b631e80bb0d057534ab9f2
  1. env.cc
  2. env.h
  3. getpid_microbenchmark.cc
  4. inherit-review-settings-ok
  5. interface.cc
  6. interface.h
  7. libminijail-private.h
  8. libminijail.c
  9. libminijail.h
  10. libminijailpreload.c
  11. libsyscalls.h
  12. LICENSE
  13. make_tests.sh
  14. Makefile
  15. minijail.cc
  16. minijail.h
  17. minijail0.1
  18. minijail0.5
  19. minijail0.c
  20. minijail_main.cc
  21. minijail_testrunner.cc
  22. minijail_unittest.cc
  23. mock_env.h
  24. mock_interface.h
  25. mock_options.h
  26. options.cc
  27. options.h
  28. options_unittest.cc
  29. readwrite_microbenchmark.cc
  30. SConstruct
  31. WATCHLISTS