mirrors/crosvm
1
0
Fork 0
mirror of https://chromium.googlesource.com/crosvm/crosvm synced 2025-02-06 10:32:10 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions
crosvm/seccomp/aarch64
History
Adrian Ratiu a0320d286d crosvm: seccomp: allow faccessat2 syscall if it exists 
Starting with glibc 2.33 the faccessat2 syscall is used and
only if it doesn't exist (eg kernel older than 5.8) glibc will
default to the older faccessat syscall, so we need to allow it.

Previously this syscall has been enabled on a per-component
basis after testing, but this one does a bulk enable when
faccessat is used on all architectures.

See glibc commit 3d3ab573a5 ("Linux: Use faccessat2 to implement
faccessat (bug 18683")

BUG=b:187795855
TEST=Local builds; CQ.

Change-Id: I1f17e82e8c416b0fa2c43342731e9ea8394c47fa
Reviewed-on: https://chromium-review.googlesource.com/c/chromiumos/platform/crosvm/+/3097212
Reviewed-by: Keiichi Watanabe <keiichiw@chromium.org>
Reviewed-by: Manoj Gupta <manojgupta@chromium.org>
Tested-by: kokoro <noreply+kokoro@google.com>
Commit-Queue: Manoj Gupta <manojgupta@chromium.org>
2021-08-19 19:07:35 +00:00
..
9p_device.policy Specify prctl's policy only once per device 2021-04-20 22:50:20 +00:00
balloon_device.policy Specify prctl's policy only once per device 2021-04-20 22:50:20 +00:00
battery.policy Specify prctl's policy only once per device 2021-04-20 22:50:20 +00:00
block_device.policy Specify prctl's policy only once per device 2021-04-20 22:50:20 +00:00
common_device.policy cros_async: Don't use io_uring on kernels < 5.10 2021-07-14 09:42:39 +00:00
cras_audio_device.policy ac97: Add timerfd operations to accepted list 2021-07-23 18:43:21 +00:00
fs_device.policy Specify prctl's policy only once per device 2021-04-20 22:50:20 +00:00
gpu_device.policy seccomp: Update seccomp filters for glibc 2021-07-22 17:08:20 +00:00
input_device.policy Specify prctl's policy only once per device 2021-04-20 22:50:20 +00:00
net_device.policy Specify prctl's policy only once per device 2021-04-20 22:50:20 +00:00
null_audio_device.policy Specify prctl's policy only once per device 2021-04-20 22:50:20 +00:00
pmem_device.policy Specify prctl's policy only once per device 2021-04-20 22:50:20 +00:00
rng_device.policy Specify prctl's policy only once per device 2021-04-20 22:50:20 +00:00
serial.policy Specify prctl's policy only once per device 2021-04-20 22:50:20 +00:00
tpm_device.policy tree-wide: seccomp: allow clock_nanosleep syscalls 2021-03-07 01:53:10 +00:00
vhost_net_device.policy Specify prctl's policy only once per device 2021-04-20 22:50:20 +00:00
vhost_vsock_device.policy Specify prctl's policy only once per device 2021-04-20 22:50:20 +00:00
vios_audio_device.policy Specify prctl's policy only once per device 2021-04-20 22:50:20 +00:00
wl_device.policy Specify prctl's policy only once per device 2021-04-20 22:50:20 +00:00
xhci.policy crosvm: seccomp: allow faccessat2 syscall if it exists 2021-08-19 19:07:35 +00:00