tequilaOS/platform_bionic

Fork 0

Commit graph

Author	SHA1	Message	Date
Martijn Coenen	e17fce1a47	Blacklist setregid(32) for apps. Given that it's friends setgid/setresgid already are, I don't see why setregid(32) should be allowed. Test: (Fixed up) CtsSeccompHostTestcases passes Change-Id: I31bb429da26baa18ec63b6bfc62628a937fdab0c	2019-01-22 17:22:54 +01:00
Victor Hsieh	e15233cc6b	Allow several syscalls to app process Several privileged syscalls are still needed before a zygote-fork hangs over the execution to the apps. Test: system starts, different apps run Bug: 63944145 Bug: 76461821 Change-Id: I78da54dac509eb073bc2aa7b820a1f6b0c39a775	2018-03-28 16:30:20 -07:00
Victor Hsieh	2f23ceda44	Block bunch of privileged syscalls to apps Test: build, run some app Bug: 63944145 Change-Id: I13eb56f923732e110851dec02eaa11f6cb44535c	2018-01-22 22:30:17 -08:00

Author

SHA1

Message

Date

Martijn Coenen

e17fce1a47

Blacklist setregid(32) for apps.

Given that it's friends setgid/setresgid already are, I don't see why
setregid(32) should be allowed.

Test: (Fixed up) CtsSeccompHostTestcases passes
Change-Id: I31bb429da26baa18ec63b6bfc62628a937fdab0c

2019-01-22 17:22:54 +01:00

Victor Hsieh

e15233cc6b

Allow several syscalls to app process

Several privileged syscalls are still needed before a zygote-fork hangs
over the execution to the apps.

Test: system starts, different apps run
Bug: 63944145
Bug: 76461821
Change-Id: I78da54dac509eb073bc2aa7b820a1f6b0c39a775

2018-03-28 16:30:20 -07:00

Victor Hsieh

2f23ceda44

Block bunch of privileged syscalls to apps

Test: build, run some app
Bug: 63944145
Change-Id: I13eb56f923732e110851dec02eaa11f6cb44535c

2018-01-22 22:30:17 -08:00

3 commits