Commit f378b7ff authored Aug 18, 2017 by Jeff Vander Stoep

configstore: Allow syscalls needed by crash_dump

Information such as tombstones and callstack are important when
debugging why a process crashed. configstore's seccomp filter
and selinux policy are currently overly strict and are blocking
the collection of crash data.

In order to keep configstore's sandbox as strict as possible, use
Crash_dump's fallback mechanism to collect crash data. This uses a
local socket to send crash data to tombstoned.

Bug: 64768925
Test: killall -ABRT android.hardware.configstore@1.1-service
    Verify that configstore callstack gets dumped to logcat.
    Verify that a crash tombstone gets recorded to /data/tombstones
Test: proto_fuzzer runs without crashing

Change-Id: I3c3e13d6aa1c1e2dda2a619dfa815375ee7ebff6
(cherry picked from commit 60ced291)

parent 1f789fc3

configstore/1.1/default/seccomp_policy/configstore@1.1-arm64.policy

+12 −2

Original line number	Diff line number	Diff line
		@@ -15,9 +15,9 @@
		futex: 1
		# ioctl: arg1 == BINDER_WRITE_READ
		ioctl: arg1 == 0xc0306201
		ioctl: 1
		# prctl: arg0 == PR_SET_NAME \|\| arg0 == PR_SET_VMA \|\| arg0 == PR_SET_TIMERSLACK
		prctl: arg0 == 15 \|\| arg0 == 0x53564d41 \|\| arg0 == 29
		# \|\| arg0 == PR_GET_NO_NEW_PRIVS # used by crash_dump
		prctl: arg0 == 15 \|\| arg0 == 0x53564d41 \|\| arg0 == 29 \|\| arg0 == 39
		openat: 1
		mmap: 1
		mprotect: 1
		@@ -38,3 +38,13 @@ exit: 1
		exit_group: 1
		rt_sigreturn: 1
		getrlimit: 1
		madvise: 1

		# used during process crash by crash_dump to dump process info
		rt_sigprocmask: 1
		rt_sigaction: 1
		# socket: arg0 == AF_LOCAL
		socket: arg0 == 1
		connect: 1
		recvmsg: 1
		rt_tgsigqueueinfo: 1