diff options
| author | Alyssa Ross <hi@alyssa.is> | 2020-05-22 00:34:09 +0000 |
|---|---|---|
| committer | Alyssa Ross <hi@alyssa.is> | 2020-06-15 09:37:34 +0000 |
| commit | 54ab55f99cd593f71a9b572d23199101a48206ec (patch) | |
| tree | 633e6f29a69e27db3947fa2b8a857a9ccc2ae638 /seccomp | |
| parent | e0e035c065fdfbbea1e734d137d87a2635dbd0fa (diff) | |
| download | crosvm-54ab55f99cd593f71a9b572d23199101a48206ec.tar crosvm-54ab55f99cd593f71a9b572d23199101a48206ec.tar.gz crosvm-54ab55f99cd593f71a9b572d23199101a48206ec.tar.bz2 crosvm-54ab55f99cd593f71a9b572d23199101a48206ec.tar.lz crosvm-54ab55f99cd593f71a9b572d23199101a48206ec.tar.xz crosvm-54ab55f99cd593f71a9b572d23199101a48206ec.tar.zst crosvm-54ab55f99cd593f71a9b572d23199101a48206ec.zip | |
crosvm: add memfd server
Diffstat (limited to 'seccomp')
| -rw-r--r-- | seccomp/aarch64/memfd_server.policy | 15 | ||||
| -rw-r--r-- | seccomp/arm/memfd_server.policy | 15 | ||||
| -rw-r--r-- | seccomp/x86_64/memfd_server.policy | 15 |
3 files changed, 45 insertions, 0 deletions
diff --git a/seccomp/aarch64/memfd_server.policy b/seccomp/aarch64/memfd_server.policy new file mode 100644 index 0000000..d049d00 --- /dev/null +++ b/seccomp/aarch64/memfd_server.policy @@ -0,0 +1,15 @@ +# Copyright 2020 Alyssa Ross. All rights reserved. +# Copyright 2018 The Chromium OS Authors. All rights reserved. +# Use of this source code is governed by a BSD-style license that can be +# found in the LICENSE file. + +@include /usr/share/policy/crosvm/common_device.policy + +accept4: 1 +# F_ADD_SEALS +fcntl: arg1 == 1033 +ftruncate: 1 +memfd_create: 1 +open: return ENOENT +openat: return ENOENT +shutdown: 1 diff --git a/seccomp/arm/memfd_server.policy b/seccomp/arm/memfd_server.policy new file mode 100644 index 0000000..d049d00 --- /dev/null +++ b/seccomp/arm/memfd_server.policy @@ -0,0 +1,15 @@ +# Copyright 2020 Alyssa Ross. All rights reserved. +# Copyright 2018 The Chromium OS Authors. All rights reserved. +# Use of this source code is governed by a BSD-style license that can be +# found in the LICENSE file. + +@include /usr/share/policy/crosvm/common_device.policy + +accept4: 1 +# F_ADD_SEALS +fcntl: arg1 == 1033 +ftruncate: 1 +memfd_create: 1 +open: return ENOENT +openat: return ENOENT +shutdown: 1 diff --git a/seccomp/x86_64/memfd_server.policy b/seccomp/x86_64/memfd_server.policy new file mode 100644 index 0000000..d049d00 --- /dev/null +++ b/seccomp/x86_64/memfd_server.policy @@ -0,0 +1,15 @@ +# Copyright 2020 Alyssa Ross. All rights reserved. +# Copyright 2018 The Chromium OS Authors. All rights reserved. +# Use of this source code is governed by a BSD-style license that can be +# found in the LICENSE file. + +@include /usr/share/policy/crosvm/common_device.policy + +accept4: 1 +# F_ADD_SEALS +fcntl: arg1 == 1033 +ftruncate: 1 +memfd_create: 1 +open: return ENOENT +openat: return ENOENT +shutdown: 1 |