Gitiles
Code Review Sign In
LeafOS / LeafOS-Devices / android_kernel_samsung_gta4xl / 1ff120504f8c322a03fbce035d99e29e741da725
commit1ff120504f8c322a03fbce035d99e29e741da725[log] [tgz]
authorRicky Zhou <rickyz@chromium.org>Thu Oct 13 10:34:08 2016 -0700
committerKees Cook <keescook@chromium.org>Tue Nov 01 08:58:10 2016 -0700
tree08c14543552cc15c4bd918ea0bd062483b6cfeda
parent0af04ba5640dd6318f117a9fcbfde886516a0220 [diff]
samples/seccomp: Enable PR_SET_NO_NEW_PRIVS in dropper

Either CAP_SYS_ADMIN or PR_SET_NO_NEW_PRIVS is required to enable
seccomp. This allows samples/seccomp/dropper to be run without
CAP_SYS_ADMIN.

Signed-off-by: Ricky Zhou <rickyz@chromium.org>
Signed-off-by: Kees Cook <keescook@chromium.org>
1 file changed
tree: 08c14543552cc15c4bd918ea0bd062483b6cfeda
  1. arch/
  2. block/
  3. certs/
  4. crypto/
  5. Documentation/
  6. drivers/
  7. firmware/
  8. fs/
  9. include/
  10. init/
  11. ipc/
  12. kernel/
  13. lib/
  14. mm/
  15. net/
  16. samples/
  17. scripts/
  18. security/
  19. sound/
  20. tools/
  21. usr/
  22. virt/
  23. .cocciconfig
  24. .get_maintainer.ignore
  25. .gitattributes
  26. .gitignore
  27. .mailmap
  28. COPYING
  29. CREDITS
  30. Kbuild
  31. Kconfig
  32. MAINTAINERS
  33. Makefile
  34. README
  35. REPORTING-BUGS