adb: Use Minijail for privilege dropping. By using Minijail we avoid writing the same priv-dropping code over and over again. This also enables future hardening opportunities. We're already using Minijail for priv-dropping on Brillo. Minijail is unit- and integration-tested on the Chrome OS CI infrastructure (pulling from the same repo, see https://wmatrix.googleplex.com/security?tests=security_Minijail0). Once CI comes to Android, it will be continuously tested there as well. Both 'adb root' and 'adb unroot' still work. Bug: 26099611 Change-Id: I52c456ea272d27bd6fbc71200f4fdd928a592158

commit: 683dc4817f1e3cb3a043a7ce6496c00d19fa27f5 [log] [tgz]
author: Jorge Lucangeli Obes <jorgelo@google.com> Mon Dec 14 13:18:57 2015 -0800
committer: Jorge Lucangeli Obes <jorgelo@google.com> Thu Dec 17 10:49:53 2015 -0800
tree: 38fda79c0e8df8b1a4c677289966f5027ea52d05
parent: 64cc0825a639bf022b052cf4fa6aa3e8d13f61b1 [diff] [blame]
diff --git a/adb/Android.mk b/adb/Android.mk
index fe3c9cc..cb6da62 100644
--- a/adb/Android.mk
+++ b/adb/Android.mk

@@ -346,6 +346,9 @@
     libsquashfs_utils \
     libcutils \
     libbase \
-    libcrypto_static
+    libcrypto_static \
+    libminijail \
+    libminijail_generated \
+    libcap
 
 include $(BUILD_EXECUTABLE)
commit	683dc4817f1e3cb3a043a7ce6496c00d19fa27f5	[log] [tgz]
author	Jorge Lucangeli Obes <jorgelo@google.com>	Mon Dec 14 13:18:57 2015 -0800
committer	Jorge Lucangeli Obes <jorgelo@google.com>	Thu Dec 17 10:49:53 2015 -0800
tree	38fda79c0e8df8b1a4c677289966f5027ea52d05
parent	64cc0825a639bf022b052cf4fa6aa3e8d13f61b1 [diff] [blame]