Seccomp sandbox violation: sys_listen called in content process of Firefox desktop

RESOLVED FIXED in Firefox 49

Status

()

defect
RESOLVED FIXED
3 years ago
3 years ago

People

(Reporter: tedd, Assigned: tedd)

Tracking

unspecified
mozilla49
Points:
---

Firefox Tracking Flags

(firefox49 fixed)

Details

(Whiteboard: sblc1)

Attachments

(1 attachment)

Running tests on try with seccomp enabled, hit a seccomp violation by using sys_listen().
(Assignee)

Comment 2

3 years ago
For now, in order to get seccomp enabled on nightly, I think we should whitelist this and try to figure out later how we can reduce the system calls for the socket API.
Attachment #8757322 - Flags: review?(jld) → review+
(Assignee)

Updated

3 years ago
Keywords: checkin-needed

Comment 4

3 years ago
Pushed by ryanvm@gmail.com:
https://hg.mozilla.org/integration/mozilla-inbound/rev/31b951c44b4c
Add sys_listen to seccomp whitelist. r=jld
Keywords: checkin-needed

Comment 5

3 years ago
bugherder
https://hg.mozilla.org/mozilla-central/rev/31b951c44b4c
Status: NEW → RESOLVED
Last Resolved: 3 years ago
Resolution: --- → FIXED
Target Milestone: --- → mozilla49
You need to log in before you can comment on or make changes to this bug.