Bug 1284452 - Add sys_getrandom to seccomp whitelist. r=gcp
authorJulian Hector <julian.r.hector@gmail.com>
Tue, 05 Jul 2016 13:51:57 +0200
changeset 303660 bd4db3e235a49de1eaf59e67620220fc7b0ae702
parent 303659 018db940b995ba2c03799a3cc9e533bc42992865
child 303696 f08c54971dd185850d9f2abae42d604f5e820918
push id79140
push usergpascutto@mozilla.com
push dateTue, 05 Jul 2016 13:52:30 +0000
treeherdermozilla-inbound@bd4db3e235a4 [default view] [failures only]
perfherder[talos] [build metrics] [platform microbench] (compared to previous push)
reviewersgcp
bugs1284452
milestone50.0a1
first release with
nightly linux32
nightly linux64
nightly mac
nightly win32
nightly win64
last release without
nightly linux32
nightly linux64
nightly mac
nightly win32
nightly win64
Bug 1284452 - Add sys_getrandom to seccomp whitelist. r=gcp MozReview-Commit-ID: 8CW916cJsUZ
security/sandbox/linux/SandboxFilter.cpp
--- a/security/sandbox/linux/SandboxFilter.cpp
+++ b/security/sandbox/linux/SandboxFilter.cpp
@@ -630,16 +630,21 @@ public:
       Arg<pid_t> tgid(0);
       return If(tgid == getpid(), Allow())
         .Else(InvalidSyscall());
     }
 #endif
 
 #endif // DESKTOP
 
+#ifdef __NR_getrandom
+    case __NR_getrandom:
+      return Allow();
+#endif
+
       // nsSystemInfo uses uname (and we cache an instance, so
       // the info remains present even if we block the syscall)
     case __NR_uname:
 #ifdef DESKTOP
     case __NR_sysinfo:
 #endif
       return Allow();