debuggerd seccomp: explain why we define PROT_READ/WRITE. Add a comment explaining why we define PROT_READ/PROT_WRITE, even though a current libminijail supports both cosntants. Bug: http://b/73273658 Test: treehugger Change-Id: I51c1be1b1b569e94dbc9045a90bc28221b7dc9c7

commit: 830092d32e3ecabe317fa7a5ad1036cc0667746e [log] [tgz]
author: Josh Gao <jmgao@google.com> Sun Feb 18 23:50:19 2018 -0800
committer: Josh Gao <jmgao@google.com> Sun Feb 18 23:50:19 2018 -0800
tree: b1549d50c4d1b26a3a72eab8f2e659a3140ca2ac
parent: d2b96b0189d3117a9daa19c87bc0dccf1102e90b [diff]
diff --git a/debuggerd/seccomp_policy/crash_dump.policy.def b/debuggerd/seccomp_policy/crash_dump.policy.def
index 9190ed7..2ef31b0 100644
--- a/debuggerd/seccomp_policy/crash_dump.policy.def
+++ b/debuggerd/seccomp_policy/crash_dump.policy.def

@@ -33,9 +33,15 @@
 rt_tgsigqueueinfo: 1
 
 #define PR_SET_VMA 0x53564d41
+prctl: arg0 == PR_GET_NO_NEW_PRIVS || arg0 == PR_SET_VMA
+
+#if 0
+libminijail on vendor partitions older than P does not have constants from <sys/mman.h>.
+Define the values of PROT_READ and PROT_WRITE ourselves to maintain backwards compatibility.
+#else
 #define PROT_READ 0x1
 #define PROT_WRITE 0x2
-prctl: arg0 == PR_GET_NO_NEW_PRIVS || arg0 == PR_SET_VMA
+#endif
 
 madvise: 1
 mprotect: arg2 in PROT_READ|PROT_WRITE
commit	830092d32e3ecabe317fa7a5ad1036cc0667746e	[log] [tgz]
author	Josh Gao <jmgao@google.com>	Sun Feb 18 23:50:19 2018 -0800
committer	Josh Gao <jmgao@google.com>	Sun Feb 18 23:50:19 2018 -0800
tree	b1549d50c4d1b26a3a72eab8f2e659a3140ca2ac
parent	d2b96b0189d3117a9daa19c87bc0dccf1102e90b [diff]