Closed Bug 1825682 Opened 2 years ago Closed 2 years ago

Process IDs are truncated in sandbox file broker thread names

Categories

(Core :: Security: Process Sandboxing, defect)

Product:
Core
Component:
Security: Process Sandboxing
Platform:
Unspecified
Linux
Type:
defect

Tracking

()

Status:
RESOLVED FIXED
Milestone:
113 Branch
Tracking Flags:
Tracking Status
firefox113 --- fixed

People

(Reporter: jld, Assigned: jld)

Details

Attachments

(1 file)

Bug 1825682 - Avoid truncating the pids in Linux sandbox broker thread names.
48 bytes, text/x-phabricator-request
Details | Review

The Linux sandbox file broker runs a separate thread for each instance (each child process), which includes the child pid in the thread name in case it's useful for debugging/troubleshooting. However, the format allows only 5 characters for the pid, which was fine when the maximum pid was usually 32767 or something, and stopped being fine a while back when systemd got into the habit of setting it to 4194304 (the maximum the kernel will currently allow).

It's a one-line patch to squeeze out the spaces and get us another 2 characters, so I might as well do that.

(Long-term it would be nice to use epoll instead of separate threads — historically on Boot2Gecko we made the broker threads' effective uid/gid match their respective client processes, but that was removed in bug 1382099 — and if/when that happens this will become a non-issue.)

Pushed by jedavis@mozilla.com: https://hg.mozilla.org/integration/autoland/rev/4fd16b23cbc0 Avoid truncating the pids in Linux sandbox broker thread names. r=gcp

https://hg.mozilla.org/mozilla-central/rev/4fd16b23cbc0

Status: NEW → RESOLVED
Closed: 2 years ago
status-firefox113: --- → fixed
Resolution: --- → FIXED
Target Milestone: --- → 113 Branch
You need to log in before you can comment on or make changes to this bug.

Attachment

General

Creator:
Created:
Updated:
Size: