summaryrefslogtreecommitdiff
path: root/core/java/android/os/Seccomp.java
Commit message (Collapse)AuthorAgeFilesLines
* Reland: Move zygote's seccomp setup to post-forkVictor Hsieh2018-01-171-24/+0
| | | | | | | | | | | | | | | | | | | | | | | Before this change, seccomp filter setup is as early as in zygote's main function. To make it possible to split app and system server's filter, this postpone the setup to after fork. It also starts to call app specific and system server specific setup function. The filter setup is done in Zygote's ForkAndSpecializeCommon. This is because adding a seccomp filter must be done when either the caller has CAP_SYS_ADMIN or after the PR_SET_NO_NEW_PRIVS bit is set. Given that setting PR_SET_NO_NEW_PRIVS breaks SELinux domain transition (b/71859146), this must be done after Zygote forks but before CAP_SYS_ADMIN is droppped. Test: (cts) -m CtsSecurityTestCases -t android.security.cts.SeccompTest Test: no selinux denial flood in dmesg with selinux enforced Test: debuggerd -b `pidof com.android.phone` # logcat shows tombstoned received crash request Bug: 63944145 Bug: 71859146 Change-Id: I8215c8530d3d0de504a270488f8e29635805e8b0
* Revert "Move zygote's seccomp setup to post-fork"Victor Hsieh2018-01-101-2/+1
| | | | | | | | | | This reverts commit 6a4a3398325787f6cb1b93db17a7bf50d353e2a5. Reason for revert: caused some SELinux error Bug: 71768585 Change-Id: I0ef270ec6fed1d5d96b4257ec1a2dd6a55a816ed Merged-In: Ic1b81e146b52b68445ba634de39657f199107da3
* Move zygote's seccomp setup to post-forkVictor Hsieh2018-01-091-1/+2
| | | | | | | | | | | | | | | | | | | Before this change, seccomp filter setup is as early as in zygote's main function. To make it possible to split app and system server's filter, this postpone the setup to after fork. It also starts to call app specific and system server specific setup function. In terms of performance since this happens at fork, the measure shows the overhead is negligible. Assuming 130 instruction in the BPF, on walleye, even when running on little core with fixed low frequency, each setup took about 60.9us on average. When it runs on big core with higher frequency, it took about 39.3us. Test: (cts) -m CtsSecurityTestCases -t android.security.cts.SeccompTest Bug: 63944145 Change-Id: I748735b478405098beac1e200d911c13ea60e380 Merged-In: I748735b478405098beac1e200d911c13ea60e380
* Install seccomp into zygote not initPaul Lawrence2017-02-021-0/+24
Bug: 34710876 Test: Boots, correct size filter installed, blocks unallowed calls Change-Id: I3e66e8724ace37f7d30451b98a5e574766252ea0
generated by cgit v1.2.3 (git 2.25.1) at 2026-01-13 16:02:53 +0000