On Mon, Dec 1, 2014 at 2:35 PM, William Roberts <[email protected]> wrote:
> Where and how is service_contexts used? I grep'd libselinux, cts and > frameworks/base but came up empty handed. > > So I see that SELinux has typebounds, which can be used to enforce that some new domain, has less privelges then its parent thus building some type of hierachy. It also, says if you have some kernel version greater than 2.6.39 you can control thread contexts (http://selinuxproject.org/page/TypeRules). However, setcon also allows the changing of thread contexts. Also, setcon states that: A multi-threaded application can perform a setcon() prior to creating any child threads, in which case all of the child threads will inherit the new context. However, setcon() will fail if there are any other threads running in the same process. So is their some use of these types of technologies to control threads in system server to help overcome its limitation of one gigantic process? If no one can comment to this, can someone perhaps clarify the use of setcon in multiple threaded environment, can you use it to get the main thread, and child threads in all different domains? Bill
_______________________________________________ Seandroid-list mailing list [email protected] To unsubscribe, send email to [email protected]. To get help, send an email containing "help" to [email protected].
