Add seccomp support library Policy library which exports an autogenerated policy from SYSCALLS.TXT blocking any other calls. Test: Generate policy, install onto Sailfish, check boots, Chrome runs, calls are blocked. Bug: 32313202 Change-Id: Ib590704e50122f077eeae26561eb9b0a70386551

commit: eabc35265141485e7a531ef67a076ef799500f4e [log] [tgz]
author: Paul Lawrence <paullawrence@google.com> Fri Nov 11 11:33:42 2016 -0800
committer: Paul Lawrence <paullawrence@google.com> Thu Jan 19 13:38:47 2017 -0800
tree: b1a9f66c3777c29c49eb1745eb666fa25dc36c8f
parent: 71952ef625b953d78547da28d7271ea71cb91c92 [diff] [blame]
diff --git a/libc/seccomp/Android.mk b/libc/seccomp/Android.mk
new file mode 100644
index 0000000..af1311c
--- /dev/null
+++ b/libc/seccomp/Android.mk

@@ -0,0 +1,12 @@
+LOCAL_PATH:= $(call my-dir)
+
+include $(CLEAR_VARS)
+
+LOCAL_ADDITIONAL_DEPENDENCIES := $(LOCAL_PATH)/Android.mk
+LOCAL_MODULE := libseccomp_policy
+LOCAL_CLANG := true
+LOCAL_SRC_FILES := arm_policy.c arm64_policy.c
+LOCAL_EXPORT_C_INCLUDE_DIRS := $(LOCAL_PATH)
+
+include $(BUILD_STATIC_LIBRARY)
+
commit	eabc35265141485e7a531ef67a076ef799500f4e	[log] [tgz]
author	Paul Lawrence <paullawrence@google.com>	Fri Nov 11 11:33:42 2016 -0800
committer	Paul Lawrence <paullawrence@google.com>	Thu Jan 19 13:38:47 2017 -0800
tree	b1a9f66c3777c29c49eb1745eb666fa25dc36c8f
parent	71952ef625b953d78547da28d7271ea71cb91c92 [diff] [blame]