Make transition to "postinstall" domain explicit. When running the postinstall program, we were relying on the automatic transition between update_engine domain and postinstall, which required postinstall_file to be an entrypoint for such domain. This patch makes the transition explicit by calling setexeccon(3). Bug: 28008031 TEST=make dist; Deployed an update to edison-eng: postinstall runs as "postinstall" domain. Change-Id: I27d404886841e0bd39589f0274eaaf98929eeac9

commit: 20e3960e245f6dfa57fa5c9124b0fd33e679f723 [log] [tgz]
author: Alex Deymo <deymo@google.com> Mon Apr 04 19:09:22 2016 -0700
committer: Alex Deymo <deymo@google.com> Tue Apr 05 08:32:58 2016 -0700
tree: 1e76cf3bc9913502f4a71a1fb6d0e810c963e8ac
parent: 0d29854cf5bb05a22cf161b50052539aa420a36e [diff] [blame]
diff --git a/common/subprocess.h b/common/subprocess.h
index b655fb7..6c99c8d 100644
--- a/common/subprocess.h
+++ b/common/subprocess.h

@@ -73,6 +73,7 @@
   pid_t ExecFlags(const std::vector<std::string>& cmd,
                   uint32_t flags,
                   const std::vector<int>& output_pipes,
+                  const char* se_domain,
                   const ExecCallback& callback);
 
   // Kills the running process with SIGTERM and ignores the callback.
commit	20e3960e245f6dfa57fa5c9124b0fd33e679f723	[log] [tgz]
author	Alex Deymo <deymo@google.com>	Mon Apr 04 19:09:22 2016 -0700
committer	Alex Deymo <deymo@google.com>	Tue Apr 05 08:32:58 2016 -0700
tree	1e76cf3bc9913502f4a71a1fb6d0e810c963e8ac
parent	0d29854cf5bb05a22cf161b50052539aa420a36e [diff] [blame]