2
0
mirror of https://codeberg.org/kiss-community/repo synced 2025-01-11 21:30:09 -07:00
repo/extra/firefox/patches/musl-sandbox.patch

34 lines
1.3 KiB
Diff
Raw Normal View History

2024-05-27 13:23:04 -06:00
diff --git a/security/sandbox/linux/SandboxFilter.cpp b/security/sandbox/linux/SandboxFilter.cpp
2025-01-06 23:42:36 -07:00
index 5f14e78..1b968ea 100644
2024-05-27 13:23:04 -06:00
--- a/security/sandbox/linux/SandboxFilter.cpp
+++ b/security/sandbox/linux/SandboxFilter.cpp
2025-01-06 23:42:36 -07:00
@@ -1763,10 +1763,10 @@ class GMPSandboxPolicy : public SandboxPolicyCommon {
return Allow();
case __NR_sched_get_priority_min:
2022-12-12 12:01:56 -07:00
case __NR_sched_get_priority_max:
+ case __NR_sched_setscheduler:
return Allow();
case __NR_sched_getparam:
- case __NR_sched_getscheduler:
- case __NR_sched_setscheduler: {
+ case __NR_sched_getscheduler: {
Arg<pid_t> pid(0);
2025-01-06 23:42:36 -07:00
return If(pid == 0, Allow()).Else(Trap(SchedTrap, nullptr));
}
@@ -1956,12 +1956,14 @@ class RDDSandboxPolicy final : public SandboxPolicyCommon {
case __NR_sched_getparam:
case __NR_sched_setparam:
2024-05-27 13:23:04 -06:00
case __NR_sched_getscheduler:
- case __NR_sched_setscheduler:
case __NR_sched_getattr:
2025-01-06 23:42:36 -07:00
case __NR_sched_setattr: {
Arg<pid_t> pid(0);
return If(pid == 0, Allow()).Else(Trap(SchedTrap, nullptr));
2022-12-12 12:01:56 -07:00
}
2024-05-27 13:23:04 -06:00
+ // sched_setscheduler gets special treatment here (bug 1657849):
+ case __NR_sched_setscheduler:
+ return Allow();
2025-01-06 23:42:36 -07:00
// The priority bounds are also used, sometimes (bug 1838675):
case __NR_sched_get_priority_min: