diff options
author | paulhsia <paulhsia@chromium.org> | 2018-11-02 11:32:07 +0800 |
---|---|---|
committer | chrome-bot <chrome-bot@chromium.org> | 2018-11-02 14:50:44 -0700 |
commit | e3b0bbc1487c486e503e828d75962882a7f71d8a (patch) | |
tree | 4aca7e40214206a690111d9e28377d609da360c3 /seccomp | |
parent | 5fd5e32c111ad28da0bb860d023b281ae16c2094 (diff) | |
download | adhd-e3b0bbc1487c486e503e828d75962882a7f71d8a.tar.gz |
seccomp: Add mremap to policy file
Mremap is used when libdbus call realloc in __dbus_string_compact,
which might happen sometimes.
BUG=chromium:901225
TEST=On a broken DUT
$ restart cras
and check if syscall 25 is blocked by seccomp in dmesg
Change-Id: Iaae7dc3e541305af66175bff39fcb481f636c403
Reviewed-on: https://chromium-review.googlesource.com/1314268
Commit-Ready: ChromeOS CL Exonerator Bot <chromiumos-cl-exonerator@appspot.gserviceaccount.com>
Tested-by: Chih-Yang Hsia <paulhsia@chromium.org>
Reviewed-by: Cheng-Yi Chiang <cychiang@chromium.org>
Diffstat (limited to 'seccomp')
-rw-r--r-- | seccomp/cras-seccomp-amd64.policy | 1 | ||||
-rw-r--r-- | seccomp/cras-seccomp-arm.policy | 1 | ||||
-rw-r--r-- | seccomp/cras-seccomp-arm64.policy | 1 |
3 files changed, 3 insertions, 0 deletions
diff --git a/seccomp/cras-seccomp-amd64.policy b/seccomp/cras-seccomp-amd64.policy index d339b09a..0c1c46fa 100644 --- a/seccomp/cras-seccomp-amd64.policy +++ b/seccomp/cras-seccomp-amd64.policy @@ -84,3 +84,4 @@ ioctl: arg1 in 0xffff41ff && arg1 & 0x00004100 || arg1 in 0xffff55ff && arg1 & 0 getpid: 1 prlimit64: 1 tgkill: 1 +mremap: 1 diff --git a/seccomp/cras-seccomp-arm.policy b/seccomp/cras-seccomp-arm.policy index 6a66b462..3805b62b 100644 --- a/seccomp/cras-seccomp-arm.policy +++ b/seccomp/cras-seccomp-arm.policy @@ -90,3 +90,4 @@ ioctl: arg1 in 0xffff41ff && arg1 & 0x00004100 || arg1 in 0xffff55ff && arg1 & 0 getpid: 1 prlimit64: 1 tgkill: 1 +mremap: 1 diff --git a/seccomp/cras-seccomp-arm64.policy b/seccomp/cras-seccomp-arm64.policy index f73100c4..68eb6056 100644 --- a/seccomp/cras-seccomp-arm64.policy +++ b/seccomp/cras-seccomp-arm64.policy @@ -82,3 +82,4 @@ unlinkat: 1 getpid: 1 prlimit64: 1 tgkill: 1 +mremap: 1 |