Transient SELinux domain for system_server JIT (caf42d61) · Commits · CodeLinaro / public-release-test / platform / system / sepolicy

Commit caf42d61 authored 6 years ago by Nick Kralevich

Transient SELinux domain for system_server JIT

Create a transient SELinux domain where system_server can perform
certain JIT setup. The idea is that system_server will start in the
system_server_startup domain, setup certain JIT pages, then perform a
one-way transition into the system_server domain. From that point,
further JITing operations are disallowed.

Bug: 62356545
Test: device boots, no permission errors
Change-Id: Ic55b2cc5aba420ebcf62736622e08881a4779004

parent 29db0ebf

No related branches found

No related tags found

Hide whitespace changes

Inline Side-by-side

Showing with 61 additions and 38 deletions

Please register or to comment