| commit | c1f359900db9d6cb0ab408df051fa715f0ba37a5 | [log] [tgz] |
|---|---|---|
| author | Wez <wez@fuchsia.infra.roller.google.com> | Thu Dec 19 12:51:37 2024 -0800 |
| committer | Copybara-Service <copybara-worker@google.com> | Thu Dec 19 12:54:15 2024 -0800 |
| tree | 64819836013ec2677cfe9942f11fbab157a6dd45 | |
| parent | 0e4291ee5981699ff075e0730c35a1b7a8d5d308 [diff] |
[roll] Roll fuchsia [sestarnix] Migrate fd:use check on exec to has_file_permission() Use the has_file_permission() helper to validate fd:use permission to each entry in the FdTable, for consistency with checks performed by file_* hooks. This will also allow audit messages to be improved to include e.g. path information in audit logs for checks on FileObjects. This change also switches the fd:use check on exec from todo-deny to enforcing. Original-Bug: 379870850 Original-Reviewed-on: https://fuchsia-review.googlesource.com/c/fuchsia/+/1172254 Original-Revision: b883ce43fde16be5f6516116c69e78a4b5322fde GitOrigin-RevId: a6b34738b17d67222ffd555d930cd4794ceabaf5 Change-Id: Ic5fbe63d8aa1dd4a36aa50f805bfdb2b1cc04f16
This repository contains Fuchsia's Global Integration manifest files.
All changes should be made to the internal version of this repository. Our infrastructure automatically updates this version when the internal one changes.
Currently all changes must be made by a Google employee. Non-Google employees wishing to make a change can ask for assistance in one of the communication channels documented at get involved.
First install Jiri.
Next run:
$ jiri init $ jiri import minimal https://fuchsia.googlesource.com/integration $ jiri update
Third party projects should have their own subdirectory in ./third_party.