Add seccomp support library Policy library which exports an autogenerated policy from SYSCALLS.TXT blocking any other calls. Test: Generate policy, install onto Sailfish, check boots, Chrome runs, calls are blocked. Bug: 32313202 Change-Id: Ib590704e50122f077eeae26561eb9b0a70386551

commit: eabc35265141485e7a531ef67a076ef799500f4e [log] [tgz]
author: Paul Lawrence <paullawrence@google.com> Fri Nov 11 11:33:42 2016 -0800
committer: Paul Lawrence <paullawrence@google.com> Thu Jan 19 13:38:47 2017 -0800
tree: b1a9f66c3777c29c49eb1745eb666fa25dc36c8f
parent: 71952ef625b953d78547da28d7271ea71cb91c92 [diff] [blame]
diff --git a/libc/tools/gensyscalls.py b/libc/tools/gensyscalls.py
index b4aa06c..329184f 100755
--- a/libc/tools/gensyscalls.py
+++ b/libc/tools/gensyscalls.py

@@ -674,6 +674,7 @@
 
 logging.basicConfig(level=logging.INFO)
 
-state = State()
-state.process_file(os.path.join(bionic_libc_root, "SYSCALLS.TXT"))
-state.regenerate()
+if __name__ == "__main__":
+    state = State()
+    state.process_file(os.path.join(bionic_libc_root, "SYSCALLS.TXT"))
+    state.regenerate()
commit	eabc35265141485e7a531ef67a076ef799500f4e	[log] [tgz]
author	Paul Lawrence <paullawrence@google.com>	Fri Nov 11 11:33:42 2016 -0800
committer	Paul Lawrence <paullawrence@google.com>	Thu Jan 19 13:38:47 2017 -0800
tree	b1a9f66c3777c29c49eb1745eb666fa25dc36c8f
parent	71952ef625b953d78547da28d7271ea71cb91c92 [diff] [blame]