From 75a75e87f75d5f2a2c1bf315b29b6a7a4b303de6 Mon Sep 17 00:00:00 2001
From: netblue30 <netblue30@yahoo.com>
Date: Wed, 2 Aug 2017 08:42:25 -0400
Subject: get_mempolicy syscall was temporarily removed from the default
 seccomp list. It seems to break playing youtube videos on Firefox Nightly -
 #1414

---
 src/fseccomp/seccomp.c | 10 +++++++---
 1 file changed, 7 insertions(+), 3 deletions(-)

(limited to 'src/fseccomp/seccomp.c')

diff --git a/src/fseccomp/seccomp.c b/src/fseccomp/seccomp.c
index 7d2ccbbce..a30a9e00b 100644
--- a/src/fseccomp/seccomp.c
+++ b/src/fseccomp/seccomp.c
@@ -162,9 +162,13 @@ static void add_default_list(int fd, int allow_debuggers) {
 #ifdef SYS_mbind
 	filter_add_blacklist(fd, SYS_mbind, 0);
 #endif
-#ifdef SYS_get_mempolicy
-	filter_add_blacklist(fd, SYS_get_mempolicy, 0);
-#endif
+
+// breaking Firefox nightly when playing youtube videos
+// TODO: test again when firefox sandbox is finally released
+//#ifdef SYS_get_mempolicy
+//	filter_add_blacklist(fd, SYS_get_mempolicy, 0);
+//#endif
+
 #ifdef SYS_set_mempolicy
 	filter_add_blacklist(fd, SYS_set_mempolicy, 0);
 #endif
-- 
cgit v1.2.3-54-g00ecf