Bug 1273859 - Add sys_pwrite64 to seccomp whitelist for content process. r=jld
authorGian-Carlo Pascutto <gcp@mozilla.com>
Wed, 18 May 2016 14:39:20 +0200
changeset 301177 0d08f7065337aa6f6ae5ddc9b0fe91a1f3dcbebb
parent 301176 b1f370d930d5d4347c38bb99a5def3bee6d91bd5
child 301178 e9cd625ccf89aafd0c9fa5ac292160c43587c55b
push id30328
push usercbook@mozilla.com
push dateThu, 09 Jun 2016 09:58:24 +0000
treeherdermozilla-central@cb493102af8a [default view] [failures only]
perfherder[talos] [build metrics] [platform microbench] (compared to previous push)
reviewersjld
bugs1273859
milestone50.0a1
first release with
nightly linux32
nightly linux64
nightly mac
nightly win32
nightly win64
last release without
nightly linux32
nightly linux64
nightly mac
nightly win32
nightly win64
Bug 1273859 - Add sys_pwrite64 to seccomp whitelist for content process. r=jld MozReview-Commit-ID: FsJ8ER9B9EY
security/sandbox/linux/SandboxFilter.cpp
--- a/security/sandbox/linux/SandboxFilter.cpp
+++ b/security/sandbox/linux/SandboxFilter.cpp
@@ -530,16 +530,17 @@ public:
     case __NR_pselect6:
       return Allow();
 
     CASES_FOR_getdents:
     CASES_FOR_ftruncate:
     case __NR_writev:
     case __NR_pread64:
 #ifdef DESKTOP
+    case __NR_pwrite64:
     case __NR_readahead:
 #endif
       return Allow();
 
     case __NR_ioctl:
       // ioctl() is for GL. Remove when GL proxy is implemented.
       // Additionally ioctl() might be a place where we want to have
       // argument filtering