Loading core/jni/com_android_internal_os_Zygote.cpp +1 −1 Original line number Original line Diff line number Diff line Loading @@ -1331,7 +1331,7 @@ static void SpecializeCommon(JNIEnv* env, uid_t uid, gid_t gid, jintArray gids, // Isolated process / webview / app zygote should be gated by SELinux and file permission // Isolated process / webview / app zygote should be gated by SELinux and file permission // so they can't even traverse CE / DE directories. // so they can't even traverse CE / DE directories. if (pkg_data_info_list != nullptr if (pkg_data_info_list != nullptr && GetBoolProperty(ANDROID_APP_DATA_ISOLATION_ENABLED_PROPERTY, false)) { && GetBoolProperty(ANDROID_APP_DATA_ISOLATION_ENABLED_PROPERTY, true)) { isolateAppData(env, pkg_data_info_list, uid, process_name, managed_nice_name, isolateAppData(env, pkg_data_info_list, uid, process_name, managed_nice_name, fail_fn); fail_fn); } } Loading services/core/java/com/android/server/am/ProcessList.java +1 −2 Original line number Original line Diff line number Diff line Loading @@ -647,11 +647,10 @@ public final class ProcessList { // Get this after boot, and won't be changed until it's rebooted, as we don't // Get this after boot, and won't be changed until it's rebooted, as we don't // want some apps enabled while some apps disabled // want some apps enabled while some apps disabled mAppDataIsolationEnabled = mAppDataIsolationEnabled = SystemProperties.getBoolean(ANDROID_APP_DATA_ISOLATION_ENABLED_PROPERTY, false); SystemProperties.getBoolean(ANDROID_APP_DATA_ISOLATION_ENABLED_PROPERTY, true); mAppDataIsolationWhitelistedApps = new ArrayList<>( mAppDataIsolationWhitelistedApps = new ArrayList<>( SystemConfig.getInstance().getAppDataIsolationWhitelistedApps()); SystemConfig.getInstance().getAppDataIsolationWhitelistedApps()); if (sKillHandler == null) { if (sKillHandler == null) { sKillThread = new ServiceThread(TAG + ":kill", sKillThread = new ServiceThread(TAG + ":kill", THREAD_PRIORITY_BACKGROUND, true /* allowIo */); THREAD_PRIORITY_BACKGROUND, true /* allowIo */); Loading Loading
core/jni/com_android_internal_os_Zygote.cpp +1 −1 Original line number Original line Diff line number Diff line Loading @@ -1331,7 +1331,7 @@ static void SpecializeCommon(JNIEnv* env, uid_t uid, gid_t gid, jintArray gids, // Isolated process / webview / app zygote should be gated by SELinux and file permission // Isolated process / webview / app zygote should be gated by SELinux and file permission // so they can't even traverse CE / DE directories. // so they can't even traverse CE / DE directories. if (pkg_data_info_list != nullptr if (pkg_data_info_list != nullptr && GetBoolProperty(ANDROID_APP_DATA_ISOLATION_ENABLED_PROPERTY, false)) { && GetBoolProperty(ANDROID_APP_DATA_ISOLATION_ENABLED_PROPERTY, true)) { isolateAppData(env, pkg_data_info_list, uid, process_name, managed_nice_name, isolateAppData(env, pkg_data_info_list, uid, process_name, managed_nice_name, fail_fn); fail_fn); } } Loading
services/core/java/com/android/server/am/ProcessList.java +1 −2 Original line number Original line Diff line number Diff line Loading @@ -647,11 +647,10 @@ public final class ProcessList { // Get this after boot, and won't be changed until it's rebooted, as we don't // Get this after boot, and won't be changed until it's rebooted, as we don't // want some apps enabled while some apps disabled // want some apps enabled while some apps disabled mAppDataIsolationEnabled = mAppDataIsolationEnabled = SystemProperties.getBoolean(ANDROID_APP_DATA_ISOLATION_ENABLED_PROPERTY, false); SystemProperties.getBoolean(ANDROID_APP_DATA_ISOLATION_ENABLED_PROPERTY, true); mAppDataIsolationWhitelistedApps = new ArrayList<>( mAppDataIsolationWhitelistedApps = new ArrayList<>( SystemConfig.getInstance().getAppDataIsolationWhitelistedApps()); SystemConfig.getInstance().getAppDataIsolationWhitelistedApps()); if (sKillHandler == null) { if (sKillHandler == null) { sKillThread = new ServiceThread(TAG + ":kill", sKillThread = new ServiceThread(TAG + ":kill", THREAD_PRIORITY_BACKGROUND, true /* allowIo */); THREAD_PRIORITY_BACKGROUND, true /* allowIo */); Loading
