On 02/17/2016 11:50 PM, YongQin Liu wrote:
Hi, Stephen
Thanks for the information.
After I commented out that NO_NEW_PRIVS lines in
frameworks/base/cmds/app_process/app_main.cpp,
I can see the euid is changed to 0 now.
but I still get the Operation not permitted error for setgid.
shell@flounder:/ $ su
current_uid=2000, current_euid=0, current_gid=2000, current_egid=2000
su: setgid failed: Operation not permitted
1|shell@flounder:/ $
I set to Permissive mode, and can not see any avc denial message from
dmesg and logcat.
Any idea where makes the guard now?
What do the following commands show?
$ grep Cap /proc/self/status
$ id -Z
_______________________________________________
Seandroid-list mailing list
[email protected]
To unsubscribe, send email to [email protected].
To get help, send an email containing "help" to
[email protected].
