Bug 1409900 - Disallow quotactl in sandboxed content processes. r=gcp
☠☠ backed out by ae49d4a57622 ☠ ☠
authorJed Davis <jld@mozilla.com>
Wed, 25 Oct 2017 12:43:13 -0600
changeset 388534 072007f834314978acf0dc15efd3c3b935b2957e
parent 388533 671e6d994ecb598ad15bb3329e78d1d0135345cc
child 388535 83296a355dd49b2822a52b08d0df89e029ea56bc
push id32753
push userarchaeopteryx@coole-files.de
push dateFri, 27 Oct 2017 09:43:22 +0000
treeherdermozilla-central@d9613617f268 [default view] [failures only]
perfherder[talos] [build metrics] [platform microbench] (compared to previous push)
reviewersgcp
bugs1409900
milestone58.0a1
first release with
nightly linux32
nightly linux64
nightly mac
nightly win32
nightly win64
last release without
nightly linux32
nightly linux64
nightly mac
nightly win32
nightly win64
Bug 1409900 - Disallow quotactl in sandboxed content processes. r=gcp MozReview-Commit-ID: 3svUgLLTZKL
security/sandbox/linux/SandboxFilter.cpp
--- a/security/sandbox/linux/SandboxFilter.cpp
+++ b/security/sandbox/linux/SandboxFilter.cpp
@@ -691,17 +691,16 @@ public:
     case __NR_getppid:
       return Trap(GetPPidTrap, nullptr);
 
       // Filesystem syscalls that need more work to determine who's
       // using them, if they need to be, and what we intend to about it.
     case __NR_getcwd:
     CASES_FOR_statfs:
     CASES_FOR_fstatfs:
-    case __NR_quotactl:
     CASES_FOR_fchown:
     case __NR_fchmod:
     case __NR_flock:
       return Allow();
 
       // Bug 1354731: proprietary GL drivers try to mknod() their devices
     case __NR_mknod: {
       Arg<mode_t> mode(1);