Bug 1014299 - Add times() to seccomp whitelist. r=kang
authorJed Davis <jld@mozilla.com>
Mon, 02 Jun 2014 14:52:00 +0200
changeset 205697 89e48a42e8a560df6e083329906c5f0950e7f5b9
parent 205696 8dc53499b0c07077df186c7c6dcc62b98aa318d2
child 205698 d6c1d9adf38b4f7b09312bef01c15584d713b3b9
push id3741
push userasasaki@mozilla.com
push dateMon, 21 Jul 2014 20:25:18 +0000
treeherdermozilla-beta@4d6f46f5af68 [default view] [failures only]
perfherder[talos] [build metrics] [platform microbench] (compared to previous push)
reviewerskang
bugs1014299
milestone32.0a1
first release with
nightly linux32
nightly linux64
nightly mac
nightly win32
nightly win64
last release without
nightly linux32
nightly linux64
nightly mac
nightly win32
nightly win64
Bug 1014299 - Add times() to seccomp whitelist. r=kang This system call seems to be used by some versions of the Qualcomm Adreno graphics drivers when we run WebGL apps.
security/sandbox/linux/SandboxFilter.cpp
--- a/security/sandbox/linux/SandboxFilter.cpp
+++ b/security/sandbox/linux/SandboxFilter.cpp
@@ -147,16 +147,17 @@ SandboxFilterImpl::Build() {
   Allow(SYSCALL(brk));
 #if SYSCALL_EXISTS(set_thread_area)
   Allow(SYSCALL(set_thread_area));
 #endif
 
   Allow(SYSCALL(getpid));
   Allow(SYSCALL(gettid));
   Allow(SYSCALL(getrusage));
+  Allow(SYSCALL(times));
   Allow(SYSCALL(madvise));
   Allow(SYSCALL(dup));
   Allow(SYSCALL(nanosleep));
   Allow(SYSCALL(poll));
   // select()'s arguments used to be passed by pointer as a struct.
 #if SYSCALL_EXISTS(_newselect)
   Allow(SYSCALL(_newselect));
 #else