Searched refs:jail (Results 1 – 8 of 8) sorted by relevance
| /system/connectivity/apmanager/ |
| D | main.cc | 85 struct minijail* jail = minijail->New(); in SetupLogging() local
86 minijail->DropRoot(jail, kLoggerUser, kLoggerUser); in SetupLogging()
88 if (!minijail->RunPipeAndDestroy(jail, logger_command_line, in SetupLogging()
107 struct minijail* jail = minijail->New(); in DropPrivileges() local
108 minijail->DropRoot(jail, apmanager::Daemon::kAPManagerUserName, in DropPrivileges()
112 minijail->UseCapabilities(jail, CAP_TO_MASK(CAP_NET_ADMIN) | in DropPrivileges()
115 minijail->UseSeccompFilter(jail, kSeccompFilePath); in DropPrivileges()
116 minijail_enter(jail); in DropPrivileges()
117 minijail->Destroy(jail); in DropPrivileges()
|
| /system/tpm/attestation/server/ |
| D | main.cc | 52 struct minijail* jail = minijail->New(); in InitMinijailSandbox() local
54 minijail->DropRoot(jail, kAttestationUser, kAttestationGroup); in InitMinijailSandbox()
55 minijail_inherit_usergroups(jail); in InitMinijailSandbox()
56 minijail->UseSeccompFilter(jail, kAttestationSeccompPath); in InitMinijailSandbox()
57 minijail->Enter(jail); in InitMinijailSandbox()
58 minijail->Destroy(jail); in InitMinijailSandbox()
|
| /system/core/adb/daemon/ |
| D | main.cpp | 110 std::unique_ptr<minijail, void (*)(minijail*)> jail(minijail_new(), in drop_privileges() local
127 minijail_set_supplementary_gids(jail.get(), in drop_privileges()
136 minijail_change_gid(jail.get(), AID_SHELL); in drop_privileges()
137 minijail_change_uid(jail.get(), AID_SHELL); in drop_privileges()
139 minijail_enter(jail.get()); in drop_privileges()
144 minijail_enter(jail.get()); in drop_privileges()
|
| /system/tpm/trunks/ |
| D | trunksd.cc | 61 struct minijail* jail = minijail->New(); in InitMinijailSandbox() local
62 minijail->DropRoot(jail, kTrunksUser, kTrunksGroup); in InitMinijailSandbox()
63 minijail->UseSeccompFilter(jail, kTrunksSeccompPath); in InitMinijailSandbox()
64 minijail->Enter(jail); in InitMinijailSandbox()
65 minijail->Destroy(jail); in InitMinijailSandbox()
|
| /system/webservd/webservd/ |
| D | main.cc | 148 minijail* jail = minijail_instance->New(); in main() local
149 minijail_instance->DropRoot(jail, kWebServerUserName, kWebServerGroupName); in main()
152 minijail_instance->UseCapabilities(jail, CAP_TO_MASK(CAP_NET_BIND_SERVICE)); in main()
153 minijail_enter(jail); in main()
154 minijail_instance->Destroy(jail); in main()
|
| /system/connectivity/shill/ |
| D | process_manager.cc | 149 struct minijail* jail = minijail_->New(); in StartProcessInMinijailWithPipes() local
151 if (!minijail_->DropRoot(jail, user.c_str(), group.c_str())) { in StartProcessInMinijailWithPipes()
158 minijail_->UseCapabilities(jail, capmask); in StartProcessInMinijailWithPipes()
160 minijail_->ResetSignalMask(jail); in StartProcessInMinijailWithPipes()
164 jail, args, &pid, stdin_fd, stdout_fd, stderr_fd)) { in StartProcessInMinijailWithPipes()
|
| D | shill_main.cc | 148 struct minijail* jail = minijail->New(); in SetupLogging() local
149 minijail->DropRoot(jail, kLoggerUser, kLoggerUser); in SetupLogging()
151 if (!minijail->RunPipeAndDestroy(jail, logger_command_line, nullptr, in SetupLogging()
|
| /system/firewalld/ |
| D | iptables.cc | 453 minijail* jail = m->New(); in ExecvNonRoot() local
457 m->DropRoot(jail, kUnprivilegedUser, kUnprivilegedUser); in ExecvNonRoot()
459 m->UseCapabilities(jail, capmask); in ExecvNonRoot()
468 bool ran = m->RunSyncAndDestroy(jail, args, &status); in ExecvNonRoot()
|