bugzilla.mozilla.org has resumed normal operation. Attachments prior to 2014 will be unavailable for a few days. This is tracked in Bug 1475801.
Please report any other irregularities here.

Port seccomp procfs reporting to mako/hammerhead (N4/5) lollipop kernels

RESOLVED WONTFIX

Status

()

Core
Security: Process Sandboxing
RESOLVED WONTFIX
3 years ago
a year ago

People

(Reporter: jld, Unassigned)

Tracking

Trunk
ARM
Gonk (Firefox OS)
Points:
---

Firefox Tracking Flags

(firefox42 affected)

Details

(Whiteboard: sb-)

(Reporter)

Description

3 years ago
The Nexus 4/5 ("mako" and "hammerhead", respectively) Lollipop kernels have seccomp support but not the patch to report tasks' seccomp status in procfs.  This means that b2g-ps will incorrectly report that nothing is using seccomp, which is a confusing and somewhat distressing thing to see when working on the seccomp-bpf support code.

The patch is tiny (adds 8 lines of code and 2 of documentation) and we've already forked both of those kernels, so there's no reason not to backport it.

Updated

2 years ago
Whiteboard: sb-
(Reporter)

Updated

a year ago
OS: Unspecified → Gonk (Firefox OS)
Hardware: Unspecified → ARM
(Reporter)

Comment 1

a year ago
B2G-specific sandboxing bugs are WONTFIX.  (I'm reasonably sure these bugs don't have implications for other platforms, but comment if I missed something.)
Status: NEW → RESOLVED
Last Resolved: a year ago
Resolution: --- → WONTFIX
You need to log in before you can comment on or make changes to this bug.