commit | eb21380f1df6769935ffa80aa6a6300d9ce0054d | [log] [tgz] |
---|---|---|
author | Utkarsh Sanghi <[email protected]> | Tue May 26 14:05:09 2015 -0700 |
committer | ChromeOS Commit Bot <[email protected]> | Mon Jun 01 23:47:09 2015 +0000 |
tree | ec290ef97895a9521c5430bf3d0a51aa3bb9b3a3 | |
parent | 2863c75955f0e50df2ad29587a29b4d5b06779b9 [diff] |
tpm_manager: enable minijail sandboxing This CL makes tpm_manager daemon run inside a minijail sandbox. tpm_managerd now runs as tpm_manager user. This CL also defines the seccomp policy file for amd64 architecture. BUG=brillo:1039 TEST=run tpm_managerd on a DUT CQ-DEPEND=CL:273273 Change-Id: Icb8dbf967a05c0bd26c624ff79127504f21aad19 Reviewed-on: https://chromium-review.googlesource.com/273340 Reviewed-by: Utkarsh Sanghi <[email protected]> Commit-Queue: Utkarsh Sanghi <[email protected]> Tested-by: Utkarsh Sanghi <[email protected]>