Gitiles
Code Review Sign In
review.blissroms.org / platform_system_netd / acf3811db19d6b281d79839b75597d86fe573ecb
commitacf3811db19d6b281d79839b75597d86fe573ecb[log] [tgz]
authorLorenzo Colitti <lorenzo@google.com>Mon Aug 28 18:17:56 2017 +0900
committerLorenzo Colitti <lorenzo@google.com>Tue Sep 05 11:55:10 2017 +0900
tree9285faa975cf9680133d0baadc1c610338c5ff41
parentc486e622c8389e56603ca05b612e2ad1e72bdf02 [diff]
Open iptables-restore pipes with O_CLOEXEC.

This improves security and reliability, and also avoids keeping
superflous fds open in iptables-restore processes: the pipe fds
that are dup2()d are never closed.

Bug: 28362720
Test: bullhead builds, boots
Test: netd_{unit,integration}_test pass

(cherry picked from commit cd0fa850d8cd05310be9b49750455dfd2e1802b0)

Change-Id: I1ec6953327d889eb1948b2a10e532304b308e516
1 file changed
tree: 9285faa975cf9680133d0baadc1c610338c5ff41
  1. client/
  2. include/
  3. libnetdutils/
  4. netutils_wrappers/
  5. server/
  6. tests/
  7. Android.bp
  8. Android.mk
  9. MODULE_LICENSE_APACHE2
  10. NOTICE
  11. OWNERS