tequilaOS/platform_bionic
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity
platform_bionic/libc/seccomp
History
Steve Muckle aa3f96c9c4 Create global seccomp policy. 
Enabling seccomp across all processes, rather than just zygote, is
useful for auditing the syscall usage of AOSP. Create a global seccomp
policy that can optionally be enabled by init.

Bug: 37960259
Test: confirm global seccomp by removing finit_module from policy and
      observing modprobe fail, confirm regular seccomp unchanged by
      comparing length of installed bpf
Change-Id: Iac53a42fa26a80b05126f262dd9525f4f66df558
2017-07-21 20:30:21 -07:00
..
include Create global seccomp policy. 2017-07-21 20:30:21 -07:00
Android.bp Create global seccomp policy. 2017-07-21 20:30:21 -07:00
arm64_global_policy.cpp Create global seccomp policy. 2017-07-21 20:30:21 -07:00
arm64_policy.cpp Add syscalls that aren't currently used to the seccomp whitelist. 2017-04-19 13:45:47 -07:00
arm_global_policy.cpp Create global seccomp policy. 2017-07-21 20:30:21 -07:00
arm_policy.cpp Expand Seccomp whitelist 2017-06-23 16:50:04 +00:00
mips64_global_policy.cpp Create global seccomp policy. 2017-07-21 20:30:21 -07:00
mips64_policy.cpp [MIPS64] Enable necessary mips64 syscalls in seccomp whitelist 2017-05-05 15:37:11 +02:00
mips_global_policy.cpp Create global seccomp policy. 2017-07-21 20:30:21 -07:00
mips_policy.cpp Expand Seccomp whitelist 2017-06-23 16:50:04 +00:00
seccomp_bpfs.h Create global seccomp policy. 2017-07-21 20:30:21 -07:00
seccomp_policy.cpp Create global seccomp policy. 2017-07-21 20:30:21 -07:00
x86_64_global_policy.cpp Create global seccomp policy. 2017-07-21 20:30:21 -07:00
x86_64_policy.cpp Add syscalls that aren't currently used to the seccomp whitelist. 2017-04-19 13:45:47 -07:00
x86_global_policy.cpp Create global seccomp policy. 2017-07-21 20:30:21 -07:00
x86_policy.cpp Expand Seccomp whitelist 2017-06-23 16:50:04 +00:00