| commit | c86ffddf711cde8e354443f7184eeb7795d54cb0 | [log] [tgz] |
|---|---|---|
| author | Ambre Williams <ambre@fuchsia.infra.roller.google.com> | Wed Mar 05 06:34:48 2025 -0800 |
| committer | Copybara-Service <copybara-worker@google.com> | Wed Mar 05 06:36:34 2025 -0800 |
| tree | 0b5d4e3aef040ebadbdd538e8d8d1bb4aa27fd98 | |
| parent | d0a9d03354e4f5956015b74f22d5bb14a2d567af [diff] |
[roll] Roll fuchsia [starnix] make memfd a tmpfile on a private tmpfs This ensures that memfd is properly labeled for SEStarnix: we observed that memfd is labeled as if it was a file create on tmpfs. As supporting evidence for this change, consider the freshly-added memfd.cc test and the policy change in https://android-review.git.corp.google.com/c/platform/system/sepolicy/+/889855. To get the right name in /proc/<pid>/fd, we fix the path-returning code to add a `(deleted)` tag at the end of unreachable and deleted paths. To allow testing, I change the base composite policy to give a specific label to tmpfs. Original-Bug: 398816545 Original-Reviewed-on: https://fuchsia-review.googlesource.com/c/fuchsia/+/1214904 Original-Revision: 846b86c96d8e1ed801d4634b7d4a10882af16ee3 GitOrigin-RevId: 9c2cc759231783cfe9a67069d803c4cd2927c59a Change-Id: I6de7e0598ceb1a8dd5602d25cdee32334600869a
This repository contains Fuchsia's Global Integration manifest files.
All changes should be made to the internal version of this repository. Our infrastructure automatically updates this version when the internal one changes.
Currently all changes must be made by a Google employee. Non-Google employees wishing to make a change can ask for assistance in one of the communication channels documented at get involved.
First install Jiri.
Next run:
$ jiri init $ jiri import minimal https://fuchsia.googlesource.com/integration $ jiri update
Third party projects should have their own subdirectory in ./third_party.