Gitiles
Code Review
Sign In
review.blissroms.org
/
platform_bionic
/
refs/heads/typhoon-qpr2
/
libc
/
seccomp
dbb8670
Use more inclusive language for seccomp filter
by Victor Hsieh
· 5 years ago
2b49904
Clean up syscall stub/seccomp filter generation.
by Elliott Hughes
· 5 years ago
ae03b12
Remove global seccomp list.
by Elliott Hughes
· 6 years ago
d269d9b
Add support for seccomp filter that limits setresuid/setresgid.
by Martijn Coenen
· 7 years ago
c3752be
Create APP_ZYGOTE seccomp policy.
by Martijn Coenen
· 7 years ago
0c6de75
genfunctosyscallnrs: maps bionic functions to syscall numbers.
by Martijn Coenen
· 7 years ago
fa09b3c
seccomp: Generate the policy files at compile time
by Luis Hector Chavez
· 7 years ago
ef1a34c
seccomp: Allow readlink(2) in x86_64 for UBSan's sake
by Luis Hector Chavez
· 7 years ago
a06c49c
Add recovery_available: true to libseccomp_policy
by Tom Cherry
· 7 years ago
72d60a9
Merge "Revert "Revert system seccomp filter changes""
by Treehugger Robot
· 7 years ago
1afb40c
Revert "Revert system seccomp filter changes"
by Victor Hsieh
· 7 years ago
e15233c
Allow several syscalls to app process
by Victor Hsieh
· 7 years ago
040c28a
Revert system seccomp filter changes
by Victor Hsieh
· 7 years ago
521b412
Allow system processes to use vfork
by Victor Hsieh
· 7 years ago
ed74abc
Move some syscalls in commmon whitelist to app
by Victor Hsieh
· 7 years ago
cbc80ba
Switch the rest of our internal headers to #pragma once.
by Elliott Hughes
· 7 years ago
d50a1de
Run bpfmt manually.
by Elliott Hughes
· 7 years ago
6ea8037
Merge "Block bunch of privileged syscalls to apps"
by Treehugger Robot
· 8 years ago
2f23ced
Block bunch of privileged syscalls to apps
by Victor Hsieh
· 8 years ago
0dac056
Merge "Add bpf syscall to seccomp whitelist"
by Treehugger Robot
· 8 years ago
60f3ed4
Add bpf syscall to seccomp whitelist
by Chenbo Feng
· 8 years ago
52d4c3a
Deprecate set_seccomp_filter
by Victor Hsieh
· 8 years ago
dab45ad
Do not set PR_SET_NO_NEW_PRIVS when install seccomp filter
by Victor Hsieh
· 8 years ago
4f02dd5
Split zygote's seccomp filter into two
by Victor Hsieh
· 8 years ago
84f0dcd
Use -Werror in bionic
by Chih-Hung Hsieh
· 8 years ago
9651093
Run other maintenance scripts as part of the preupload hooks.
by Elliott Hughes
· 8 years ago
0e23c87
Merge "Allow io_* syscalls."
by Treehugger Robot
· 8 years ago
aa3f96c
Create global seccomp policy.
by Steve Muckle
· 8 years ago
8dc4ef9
Allow io_* syscalls.
by Jerry Zhang
· 8 years ago
076b8d7
Expand Seccomp whitelist
by Paul Lawrence
· 8 years ago
c45b588
Whitelist __NR__newselect.
by Josh Gao
· 8 years ago
966cf62
Expand whitelist
by Paul Lawrence
· 8 years ago
dd5bd45
[MIPS64] Enable necessary mips64 syscalls in seccomp whitelist
by Lazar Trsic
· 8 years ago
22b4351
Fix MIPS seccomp definitions for PRIMARY and SECONDARY arch
by Lazar Trsic
· 8 years ago
de9262e
Add syscalls that aren't currently used to the seccomp whitelist.
by Josh Gao
· 8 years ago
3dd3d55
Add seccomp blacklist, and exclude swap functions
by Paul Lawrence
· 8 years ago
8b7a355
Expand whitelist
by Paul Lawrence
· 8 years ago
26f57b6
Expose seccomp table
by Paul Lawrence
· 8 years ago
6a6d669
Expand whitelist
by Paul Lawrence
· 8 years ago
65b47c9
Fix problem that we don't block syscalls below min value
by Paul Lawrence
· 8 years ago
822ecec
Expand whitelist
by Paul Lawrence
· 8 years ago
89fa81f
Support all architectures in seccomp
by Paul Lawrence
· 8 years ago
34ddaaf
Expand whitelist
by Paul Lawrence
· 8 years ago
cdf19c8
Merge "Generate both static and shared libseccomp_policy."
by Elliott Hughes
· 8 years ago
e6daf3f
Expand whitelist
by Paul Lawrence
· 8 years ago
926add1
Generate both static and shared libseccomp_policy.
by Elliott Hughes
· 8 years ago
7b4e7c4
Expand whitelist
by Paul Lawrence
· 8 years ago
dfe8434
Move seccomp policy to bionic
by Paul Lawrence
· 8 years ago
98a53b7
Revert "Move seccomp policy to bionic"
by Paul Lawrence
· 8 years ago
06a3220
Move seccomp policy to bionic
by Paul Lawrence
· 8 years ago
0b2486a
Expand whitelist
by Paul Lawrence
· 8 years ago
7ea4090
Autogenerate single policy from syscalls and whitelist
by Paul Lawrence
· 8 years ago
be8a2af
Create seccomp policy without TRAP for further processing
by Paul Lawrence
· 9 years ago
3d9fc69
Use trap not kill in seccomp filter
by Paul Lawrence
· 9 years ago
eabc352
Add seccomp support library
by Paul Lawrence
· 9 years ago