diff options
author | netblue30 <netblue30@yahoo.com> | 2017-08-02 08:42:25 -0400 |
---|---|---|
committer | netblue30 <netblue30@yahoo.com> | 2017-08-02 08:42:25 -0400 |
commit | 75a75e87f75d5f2a2c1bf315b29b6a7a4b303de6 (patch) | |
tree | f955efbfb5dda44f7191f2bd8f60aa791718f096 /src/fseccomp/seccomp_secondary.c | |
parent | x11/xpra support (diff) | |
download | firejail-75a75e87f75d5f2a2c1bf315b29b6a7a4b303de6.tar.gz firejail-75a75e87f75d5f2a2c1bf315b29b6a7a4b303de6.tar.zst firejail-75a75e87f75d5f2a2c1bf315b29b6a7a4b303de6.zip |
get_mempolicy syscall was temporarily removed from the default seccomp list. It seems to break
playing youtube videos on Firefox Nightly - #1414
Diffstat (limited to 'src/fseccomp/seccomp_secondary.c')
-rw-r--r-- | src/fseccomp/seccomp_secondary.c | 8 |
1 files changed, 6 insertions, 2 deletions
diff --git a/src/fseccomp/seccomp_secondary.c b/src/fseccomp/seccomp_secondary.c index 8270b7018..fceb2c3ec 100644 --- a/src/fseccomp/seccomp_secondary.c +++ b/src/fseccomp/seccomp_secondary.c | |||
@@ -67,7 +67,9 @@ void seccomp_secondary_64(const char *fname) { | |||
67 | BLACKLIST(210), // io_cancel | 67 | BLACKLIST(210), // io_cancel |
68 | BLACKLIST(216), // remap_file_pages | 68 | BLACKLIST(216), // remap_file_pages |
69 | BLACKLIST(237), // mbind | 69 | BLACKLIST(237), // mbind |
70 | BLACKLIST(239), // get_mempolicy | 70 | // breaking Firefox nightly when playing youtube videos |
71 | // TODO: test again when firefox sandbox is finally released | ||
72 | // BLACKLIST(239), // get_mempolicy | ||
71 | BLACKLIST(238), // set_mempolicy | 73 | BLACKLIST(238), // set_mempolicy |
72 | BLACKLIST(256), // migrate_pages | 74 | BLACKLIST(256), // migrate_pages |
73 | BLACKLIST(279), // move_pages | 75 | BLACKLIST(279), // move_pages |
@@ -148,7 +150,9 @@ void seccomp_secondary_32(const char *fname) { | |||
148 | BLACKLIST(249), // io_cancel | 150 | BLACKLIST(249), // io_cancel |
149 | BLACKLIST(257), // remap_file_pages | 151 | BLACKLIST(257), // remap_file_pages |
150 | BLACKLIST(274), // mbind | 152 | BLACKLIST(274), // mbind |
151 | BLACKLIST(275), // get_mempolicy | 153 | // breaking Firefox nightly when playing youtube videos |
154 | // TODO: test again when firefox sandbox is finally released | ||
155 | // BLACKLIST(275), // get_mempolicy | ||
152 | BLACKLIST(276), // set_mempolicy | 156 | BLACKLIST(276), // set_mempolicy |
153 | BLACKLIST(294), // migrate_pages | 157 | BLACKLIST(294), // migrate_pages |
154 | BLACKLIST(317), // move_pages | 158 | BLACKLIST(317), // move_pages |