Gitiles
Code Review Sign In
review.blissroms.org / platform_bionic / 861b42a2d83f72f11b4271b5b8431595a097c7c2
commit861b42a2d83f72f11b4271b5b8431595a097c7c2[log] [tgz]
authorStephen Smalley <sds@tycho.nsa.gov>Fri Jan 13 07:48:11 2012 -0500
committerStephen Smalley <sds@tycho.nsa.gov>Fri Jan 20 13:35:57 2012 -0500
treecde9712f4d6e19dcc2a81f140845567bdba3b53d
parenteae1f1fba33cb105302227b044a14e5abcbe55e7 [diff]
Use the AT_SECURE auxv flag to determine whether to enable secure mode.

The Linux kernel provides an AT_SECURE auxv flag to inform userspace
whether or not a security transition has occurred.  This is more reliable
than directly checking the uid/gid against the euid/egid, because it covers
not only setuid/setgid but also file capabilities, SELinux, and AppArmor
security transitions.  It is also a more efficient test since it does
not require any additional system calls.

Change-Id: I9752a4f6da452273258d2876d13b05e402fb0409
1 file changed
tree: cde9712f4d6e19dcc2a81f140845567bdba3b53d
  1. libc/
  2. libdl/
  3. libm/
  4. libstdc++/
  5. libthread_db/
  6. linker/
  7. .gitignore
  8. Android.mk
  9. CleanSpec.mk
  10. MAINTAINERS
  11. ThirdPartyProject.prop