-
James Forshaw authored
This CL adds support to the sandbox to define a random restricted SID for a single process. This combined with modifications to the DACL allows a process to access itself but no other process defined using the same lockdown type. This CL does not currently enable it for any sandbox type. Bug: 1057218 Change-Id: Iadd98cdc7331f5fe0c9ae8f414be8af64c5eeb1c Reviewed-on: https://chromium-review.googlesource.com/c/chromium/src/+/2085751Reviewed-by:
Will Harris <wfh@chromium.org> Commit-Queue: James Forshaw <forshaw@chromium.org> Cr-Commit-Position: refs/heads/master@{#747008}
c1ce57ea
