1. dbb8670 Use more inclusive language for seccomp filter by Victor Hsieh · 5 years ago
  2. 2b49904 Clean up syscall stub/seccomp filter generation. by Elliott Hughes · 5 years ago
  3. ae03b12 Remove global seccomp list. by Elliott Hughes · 6 years ago
  4. d269d9b Add support for seccomp filter that limits setresuid/setresgid. by Martijn Coenen · 7 years ago
  5. c3752be Create APP_ZYGOTE seccomp policy. by Martijn Coenen · 7 years ago
  6. 0c6de75 genfunctosyscallnrs: maps bionic functions to syscall numbers. by Martijn Coenen · 7 years ago
  7. fa09b3c seccomp: Generate the policy files at compile time by Luis Hector Chavez · 7 years ago
  8. ef1a34c seccomp: Allow readlink(2) in x86_64 for UBSan's sake by Luis Hector Chavez · 7 years ago
  9. a06c49c Add recovery_available: true to libseccomp_policy by Tom Cherry · 7 years ago
  10. 72d60a9 Merge "Revert "Revert system seccomp filter changes"" by Treehugger Robot · 7 years ago
  11. 1afb40c Revert "Revert system seccomp filter changes" by Victor Hsieh · 7 years ago
  12. e15233c Allow several syscalls to app process by Victor Hsieh · 7 years ago
  13. 040c28a Revert system seccomp filter changes by Victor Hsieh · 7 years ago
  14. 521b412 Allow system processes to use vfork by Victor Hsieh · 7 years ago
  15. ed74abc Move some syscalls in commmon whitelist to app by Victor Hsieh · 7 years ago
  16. cbc80ba Switch the rest of our internal headers to #pragma once. by Elliott Hughes · 7 years ago
  17. d50a1de Run bpfmt manually. by Elliott Hughes · 7 years ago
  18. 6ea8037 Merge "Block bunch of privileged syscalls to apps" by Treehugger Robot · 8 years ago
  19. 2f23ced Block bunch of privileged syscalls to apps by Victor Hsieh · 8 years ago
  20. 0dac056 Merge "Add bpf syscall to seccomp whitelist" by Treehugger Robot · 8 years ago
  21. 60f3ed4 Add bpf syscall to seccomp whitelist by Chenbo Feng · 8 years ago
  22. 52d4c3a Deprecate set_seccomp_filter by Victor Hsieh · 8 years ago
  23. dab45ad Do not set PR_SET_NO_NEW_PRIVS when install seccomp filter by Victor Hsieh · 8 years ago
  24. 4f02dd5 Split zygote's seccomp filter into two by Victor Hsieh · 8 years ago
  25. 84f0dcd Use -Werror in bionic by Chih-Hung Hsieh · 8 years ago
  26. 9651093 Run other maintenance scripts as part of the preupload hooks. by Elliott Hughes · 8 years ago
  27. 0e23c87 Merge "Allow io_* syscalls." by Treehugger Robot · 8 years ago
  28. aa3f96c Create global seccomp policy. by Steve Muckle · 8 years ago
  29. 8dc4ef9 Allow io_* syscalls. by Jerry Zhang · 8 years ago
  30. 076b8d7 Expand Seccomp whitelist by Paul Lawrence · 8 years ago
  31. c45b588 Whitelist __NR__newselect. by Josh Gao · 8 years ago
  32. 966cf62 Expand whitelist by Paul Lawrence · 8 years ago
  33. dd5bd45 [MIPS64] Enable necessary mips64 syscalls in seccomp whitelist by Lazar Trsic · 8 years ago
  34. 22b4351 Fix MIPS seccomp definitions for PRIMARY and SECONDARY arch by Lazar Trsic · 8 years ago
  35. de9262e Add syscalls that aren't currently used to the seccomp whitelist. by Josh Gao · 8 years ago
  36. 3dd3d55 Add seccomp blacklist, and exclude swap functions by Paul Lawrence · 8 years ago
  37. 8b7a355 Expand whitelist by Paul Lawrence · 8 years ago
  38. 26f57b6 Expose seccomp table by Paul Lawrence · 8 years ago
  39. 6a6d669 Expand whitelist by Paul Lawrence · 8 years ago
  40. 65b47c9 Fix problem that we don't block syscalls below min value by Paul Lawrence · 8 years ago
  41. 822ecec Expand whitelist by Paul Lawrence · 8 years ago
  42. 89fa81f Support all architectures in seccomp by Paul Lawrence · 8 years ago
  43. 34ddaaf Expand whitelist by Paul Lawrence · 8 years ago
  44. cdf19c8 Merge "Generate both static and shared libseccomp_policy." by Elliott Hughes · 8 years ago
  45. e6daf3f Expand whitelist by Paul Lawrence · 8 years ago
  46. 926add1 Generate both static and shared libseccomp_policy. by Elliott Hughes · 8 years ago
  47. 7b4e7c4 Expand whitelist by Paul Lawrence · 8 years ago
  48. dfe8434 Move seccomp policy to bionic by Paul Lawrence · 8 years ago
  49. 98a53b7 Revert "Move seccomp policy to bionic" by Paul Lawrence · 8 years ago
  50. 06a3220 Move seccomp policy to bionic by Paul Lawrence · 8 years ago
  51. 0b2486a Expand whitelist by Paul Lawrence · 8 years ago
  52. 7ea4090 Autogenerate single policy from syscalls and whitelist by Paul Lawrence · 8 years ago
  53. be8a2af Create seccomp policy without TRAP for further processing by Paul Lawrence · 9 years ago
  54. 3d9fc69 Use trap not kill in seccomp filter by Paul Lawrence · 9 years ago
  55. eabc352 Add seccomp support library by Paul Lawrence · 9 years ago