| commit | 0d51135defebfe9bf0d790216ee4668c96041224 | [log] [tgz] |
|---|---|---|
| author | Treehugger Robot <treehugger-gerrit@google.com> | Fri Sep 29 04:06:10 2017 +0000 |
| committer | Gerrit Code Review <noreply-gerritcodereview@google.com> | Fri Sep 29 04:06:10 2017 +0000 |
| tree | cf0be80e6d657bebfd07943514314ffd24c99a3b | |
| parent | 6b1c64d32a871ad34dd6df6bf3357060254e11fa [diff] | |
| parent | 2dde5ecefdf2691bdced553e4dfc276da1d9c17e [diff] |
Merge "whitelist getrandom for arc4random usage"
diff --git a/services/mediacodec/seccomp_policy/mediacodec-arm.policy b/services/mediacodec/seccomp_policy/mediacodec-arm.policy index 73857f8..8e1fc77 100644 --- a/services/mediacodec/seccomp_policy/mediacodec-arm.policy +++ b/services/mediacodec/seccomp_policy/mediacodec-arm.policy
@@ -52,6 +52,7 @@ fstatat64: 1 ugetrlimit: 1 getdents64: 1 +getrandom: 1 # for attaching to debuggerd on process crash sigaction: 1
diff --git a/services/mediaextractor/seccomp_policy/mediaextractor-arm.policy b/services/mediaextractor/seccomp_policy/mediaextractor-arm.policy index e06ac8c..4fa69d7 100644 --- a/services/mediaextractor/seccomp_policy/mediaextractor-arm.policy +++ b/services/mediaextractor/seccomp_policy/mediaextractor-arm.policy
@@ -39,6 +39,7 @@ getegid32: 1 getgroups32: 1 nanosleep: 1 +getrandom: 1 # for FileSource readlinkat: 1
diff --git a/services/mediaextractor/seccomp_policy/mediaextractor-arm64.policy b/services/mediaextractor/seccomp_policy/mediaextractor-arm64.policy index 7c2a790..d1278a9 100644 --- a/services/mediaextractor/seccomp_policy/mediaextractor-arm64.policy +++ b/services/mediaextractor/seccomp_policy/mediaextractor-arm64.policy
@@ -28,6 +28,7 @@ rt_sigreturn: 1 getrlimit: 1 nanosleep: 1 +getrandom: 1 # for FileSource readlinkat: 1
diff --git a/services/mediaextractor/seccomp_policy/mediaextractor-x86.policy b/services/mediaextractor/seccomp_policy/mediaextractor-x86.policy index cdff4db..3b37f92 100644 --- a/services/mediaextractor/seccomp_policy/mediaextractor-x86.policy +++ b/services/mediaextractor/seccomp_policy/mediaextractor-x86.policy
@@ -37,6 +37,7 @@ getegid32: 1 getgroups32: 1 nanosleep: 1 +getrandom: 1 # for FileSource readlinkat: 1