Gitiles
Code Review Sign In
gerrit-public.fairphone.software / platform / frameworks / base / 6ef1680964a69d6cc83a485326be32617da8dc15
commit6ef1680964a69d6cc83a485326be32617da8dc15[log] [tgz]
authorMartijn Coenen <maco@google.com>Fri Jan 18 16:40:01 2019 +0100
committerMartijn Coenen <maco@google.com>Fri Jan 18 21:41:18 2019 +0100
tree43c0914c7349338d9c07caff13239b71010e16f2
parent86f08a5190c8a36497ff3b9848ce3e6d0ba2e951 [diff]
Install setresuid()/setresgid() seccomp filter in AppZygote.

Transition app_zygote to the slightly less restrictive app_zygote
seccomp filter; install a separate uid/gid filter to mitigate the
risk.

Bug: 111434506
Test: atest CtsSeccompHostTestCases passes

Change-Id: I8bf85ce4bbfe843d1a161ae6408c7003e729c062
1 file changed
tree: 43c0914c7349338d9c07caff13239b71010e16f2
  1. apct-tests/
  2. api/
  3. cmds/
  4. config/
  5. core/
  6. data/
  7. docs/
  8. drm/
  9. graphics/
  10. keystore/
  11. libs/
  12. location/
  13. lowpan/
  14. media/
  15. native/
  16. nfc-extras/
  17. obex/
  18. opengl/
  19. packages/
  20. proto/
  21. rs/
  22. samples/
  23. sax/
  24. services/
  25. startop/
  26. telecomm/
  27. telephony/
  28. test-base/
  29. test-legacy/
  30. test-mock/
  31. test-runner/
  32. tests/
  33. tools/
  34. wifi/
  35. .gitignore
  36. Android.bp
  37. Android.mk
  38. CleanSpec.mk
  39. MODULE_LICENSE_APACHE2
  40. NOTICE
  41. pathmap.mk
  42. PREUPLOAD.cfg