cd0fa850d8cd05310be9b49750455dfd2e1802b0 - platform_system_netd

commit	cd0fa850d8cd05310be9b49750455dfd2e1802b0	[log] [tgz]
author	Lorenzo Colitti <lorenzo@google.com>	Mon Aug 28 18:17:56 2017 +0900
committer	Lorenzo Colitti <lorenzo@google.com>	Mon Aug 28 18:23:22 2017 +0900
tree	c5b2fbcc327c526e6336833ecb5ef967efd7f519
parent	f9bae84e5faa86ce0cb6ffdfbeb04aec0c09631e [diff]

Open iptables-restore pipes with O_CLOEXEC.

This improves security and reliability, and also avoids keeping
superflous fds open in iptables-restore processes: the pipe fds
that are dup2()d are never closed.

Bug: 28362720
Test: bullhead builds, boots
Test: netd_{unit,integration}_test pass
Change-Id: Ifb57082a6c711f0684fc37a254076e84ad097b6e

server/IptablesRestoreController.cpp[diff]

1 file changed

tree: c5b2fbcc327c526e6336833ecb5ef967efd7f519

client/
include/
libnetdutils/
netutils_wrappers/
server/
tests/
Android.bp
Android.mk
MODULE_LICENSE_APACHE2
NOTICE
OWNERS