1.. title:: clang-tidy - android-cloexec-pipe2 2 3android-cloexec-pipe2 4===================== 5 6This checks ensures that pipe2() is called with the O_CLOEXEC flag. The check also 7adds the O_CLOEXEC flag that marks the file descriptor to be closed in child processes. 8Without this flag a sensitive file descriptor can be leaked to a child process, 9potentially into a lower-privileged SELinux domain. 10 11Examples: 12 13.. code-block:: c++ 14 15 pipe2(pipefd, O_NONBLOCK); 16 17Suggested replacement: 18 19.. code-block:: c++ 20 21 pipe2(pipefd, O_NONBLOCK | O_CLOEXEC); 22