Google Git
Sign in
cos / mirrors / cros / chromiumos / platform2 / d68bbf25972b519cffdffdd6305c72e2d5c7815c
commitd68bbf25972b519cffdffdd6305c72e2d5c7815c[log] [tgz]
authorReilly Grant <reillyg@chromium.org>Thu Jun 04 12:14:02 2015 -0700
committerChromeOS Commit Bot <chromeos-commit-bot@chromium.org>Wed Jun 24 03:07:11 2015 +0000
tree2465387ad9af113404bcddbda3058bcfb44f5b47
parente6c4e9b5a9ac8bedc27e2ac3b4917b1455ac3007 [diff]
permission_broker: reland "Add OpenPath method."

This new method allows a client to request that the permission
broker open the given path for them instead of just making the
path accessible. This will allow the permission broker to set
flags on the file descriptor before passing it back to the client.
Not leaving files permanently chown'd is a nice side-effect.

The permission broker must retain the DAC_OVERRIDE capability to
open device nodes.

BUG=chromium:496469
TEST=Opened a USB device from Chrome App, debugged a remote instance instance of Chrome for Android over USB and verified that webservd can open ports on the firewall.

Change-Id: I0618cd54caf8a7daac5842354c43bc4490202f66
Reviewed-on: https://chromium-review.googlesource.com/281224
Tested-by: Reilly Grant <reillyg@chromium.org>
Reviewed-by: Kees Cook <keescook@chromium.org>
Commit-Queue: Reilly Grant <reillyg@chromium.org>
Trybot-Ready: Reilly Grant <reillyg@chromium.org>
5 files changed
tree: 2465387ad9af113404bcddbda3058bcfb44f5b47
  1. apmanager/
  2. app_shell_launcher/
  3. attestation/
  4. avtest_label_detect/
  5. bidl/
  6. brdebug/
  7. buffet/
  8. chaps/
  9. chromeos-dbus-bindings/
  10. chromiumos-wide-profiling/
  11. common-mk/
  12. crash-reporter/
  13. cromo/
  14. cros-disks/
  15. crosh/
  16. cryptohome/
  17. debugd/
  18. disk_updater/
  19. easy-unlock/
  20. feedback/
  21. firewalld/
  22. fitpicker/
  23. germ/
  24. glbench/
  25. gobi-cromo-plugin/
  26. image-burner/
  27. init/
  28. installer/
  29. libchromeos/
  30. libprotobinder/
  31. login_manager/
  32. lorgnette/
  33. metrics/
  34. minijail/
  35. mist/
  36. modem-utilities/
  37. p2p/
  38. peerd/
  39. permission_broker/
  40. power_manager/
  41. psyche/
  42. psyche_demo/
  43. regions/
  44. salsa/
  45. servicemanager/
  46. settingsd/
  47. shill/
  48. smogcheck/
  49. soma/
  50. tpm_manager/
  51. trunks/
  52. update_engine/
  53. userfeedback/
  54. vpn-manager/
  55. webserver/
  56. wimax_manager/
  57. .gitignore
  58. CPPLINT.cfg
  59. LICENSE
  60. PRESUBMIT.cfg