From c47dd7cf0c368d6ad2bd58f77ca4cc6d86a152a4 Mon Sep 17 00:00:00 2001
From: Paul Lawrence <paullawrence@google.com>
Date: Tue, 7 Feb 2017 08:18:03 -0800
Subject: [PATCH] Expand seccomp whitelist

Bug: 34979910
Test: System boots, app runs
Change-Id: I8b60a24ac855679251e73edcdec57eb4af4a5610
---
 core/jni/android_os_seccomp.cpp | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/core/jni/android_os_seccomp.cpp b/core/jni/android_os_seccomp.cpp
index 3f7bab2ee5112..02c0c625d469a 100644
--- a/core/jni/android_os_seccomp.cpp
+++ b/core/jni/android_os_seccomp.cpp
@@ -212,6 +212,10 @@ bool set_seccomp_filter() {
     // b/34908783
     AllowSyscall(f, 250); // __NR_epoll_create
 
+    // b/34979910
+    AllowSyscall(f, 8);   // __NR_creat
+    AllowSyscall(f, 10);  // __NR_unlink
+
     Trap(f);
 
     return install_filter(f);