Mercurial Mercurial > hg > mozilla / comparison
summary | shortlog | changelog | graph | tags | bookmarks | branches | files | changeset | file | latest | revisions | annotate | diff | comparison | raw | help
Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
mozilla-sandbox-fips.patch
branchfirefox74
changeset 1123 7fa561e5d7c7
child 1142 c5e32127317c
equal deleted inserted replaced
1122:a9cd24eaa361 1123:7fa561e5d7c7 
       
     1 From: meissner@suse.com
 
       
     2 Subject: allow Firefox to access addtional process information
 
       
     3 Reference: http://bugzilla.suse.com/show_bug.cgi?id=1167132
 
       
     4 
       
     5 Index: firefox-74.0/security/sandbox/linux/broker/SandboxBrokerPolicyFactory.cpp
 
       
     6 ===================================================================
 
       
     7 --- firefox-74.0.orig/security/sandbox/linux/broker/SandboxBrokerPolicyFactory.cpp
 
       
     8 +++ firefox-74.0/security/sandbox/linux/broker/SandboxBrokerPolicyFactory.cpp
 
       
     9 @@ -276,6 +276,7 @@ SandboxBrokerPolicyFactory::SandboxBroke
 
       
    10  
       
    11    // Read permissions
 
       
    12    policy->AddPath(rdonly, "/dev/urandom");
 
       
    13 +  policy->AddPath(rdonly, "/proc/sys/crypto/fips_enabled");
 
       
    14    policy->AddPath(rdonly, "/proc/cpuinfo");
 
       
    15    policy->AddPath(rdonly, "/proc/meminfo");
 
       
    16    policy->AddDir(rdonly, "/sys/devices/cpu");
mozilla