drgreen/android_frameworks_base
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
android_frameworks_base/cmds/app_process
History
Nick Kralevich 195c73c9b2 Set NO_NEW_PRIVS on zygote init 
When app_process/zygote starts, make sure PR_SET_NO_NEW_PRIVS is set.
This prevents zygote spawned apps from acquiring new privileges
on exec.

In particular, this allows the CTS test
android.os.cts.SecurityFeaturesTest#testNoNewPrivs() to pass if ART is set
as the default runtime.

Change-Id: I81139cda999c7b1430242561aad28f566e9b6da0
2014-04-29 15:10:58 -07:00
..
Android.mk
app_process: use LOCAL_MULTILIB := both
2014-03-27 10:20:29 -07:00
app_main.cpp
Set NO_NEW_PRIVS on zygote init
2014-04-29 15:10:58 -07:00
MODULE_LICENSE_APACHE2
NOTICE