clarify that cachestat is already blocked for apps

2024-10-31 22:05:04 -04:00 · 2024-10-31 22:05:04 -04:00 · 28ac396b04
commit 28ac396b04
parent deb0ae0288
1 changed files with 1 additions and 1 deletions
--- a/static/releases.html
+++ b/static/releases.html
@ -565,7 +565,7 @@
                        <li>enable stamp configuration for microdroid kernel builds to set LOCALVERSION based on version control information as expected</li>
                        <li>kernel (6.6): disable unused hibernation support</li>
                        <li>kernel (6.6): disable unused TIOCSTI ioctl (already blocked via standard Android SELinux ioctl filtering)</li>
-                        <li>kernel (6.6): disable unused cachestat system call</li>
+                        <li>kernel (6.6): disable unused cachestat system call (already blocked for apps via standard Android seccomp-bpf policy)</li>
                        <li>kernel (6.6): enable random kmalloc caches for x86_64 and microdroid too, not only bare metal arm64</li>
                        <li>kernel (6.6): enable full struct randomization for x86_64 and microdroid too, not only bare metal arm64</li>
                        <li>kernel (6.6): enable DEBUG_SG for microdroid too, not only bare metal</li>