Mercurial Mercurial > hg > mozilla / annotate
summary | shortlog | changelog | graph | tags | bookmarks | branches | files | changeset | file | latest | revisions | annotate | diff | comparison | raw | help
Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
mozilla-sandbox-fips.patch
author Wolfgang Rosenauer <wr@rosenauer.org>
Wed, 27 May 2020 09:13:22 +0200
branchfirefox76
changeset 1126 6b7cd9ae087d
parent 1123 7fa561e5d7c7
child 1142 c5e32127317c
permissions -rw-r--r--
76.0.1 + build changes
Ignore whitespace changes - Everywhere: Within whitespace: At end of lines:
1123
7fa561e5d7c7 Firefox 74.0
Wolfgang Rosenauer <wr@rosenauer.org>
parents:
diff changeset 
     1
 
From: meissner@suse.com
7fa561e5d7c7 Firefox 74.0
Wolfgang Rosenauer <wr@rosenauer.org>
parents:
diff changeset 
     2
 
Subject: allow Firefox to access addtional process information
7fa561e5d7c7 Firefox 74.0
Wolfgang Rosenauer <wr@rosenauer.org>
parents:
diff changeset 
     3
 
Reference: http://bugzilla.suse.com/show_bug.cgi?id=1167132
7fa561e5d7c7 Firefox 74.0
Wolfgang Rosenauer <wr@rosenauer.org>
parents:
diff changeset 
     4
 












7fa561e5d7c7
Firefox 74.0



Wolfgang Rosenauer <wr@rosenauer.org>


parents: 

diff
changeset




     5


Index: firefox-74.0/security/sandbox/linux/broker/SandboxBrokerPolicyFactory.cpp













7fa561e5d7c7
Firefox 74.0



Wolfgang Rosenauer <wr@rosenauer.org>


parents: 

diff
changeset




     6


===================================================================













7fa561e5d7c7
Firefox 74.0



Wolfgang Rosenauer <wr@rosenauer.org>


parents: 

diff
changeset




     7


--- firefox-74.0.orig/security/sandbox/linux/broker/SandboxBrokerPolicyFactory.cpp













7fa561e5d7c7
Firefox 74.0



Wolfgang Rosenauer <wr@rosenauer.org>


parents: 

diff
changeset




     8


+++ firefox-74.0/security/sandbox/linux/broker/SandboxBrokerPolicyFactory.cpp













7fa561e5d7c7
Firefox 74.0



Wolfgang Rosenauer <wr@rosenauer.org>


parents: 

diff
changeset




     9


@@ -276,6 +276,7 @@ SandboxBrokerPolicyFactory::SandboxBroke













7fa561e5d7c7
Firefox 74.0



Wolfgang Rosenauer <wr@rosenauer.org>


parents: 

diff
changeset




    10


 













7fa561e5d7c7
Firefox 74.0



Wolfgang Rosenauer <wr@rosenauer.org>


parents: 

diff
changeset




    11


   // Read permissions













7fa561e5d7c7
Firefox 74.0



Wolfgang Rosenauer <wr@rosenauer.org>


parents: 

diff
changeset




    12


   policy->AddPath(rdonly, "/dev/urandom");













7fa561e5d7c7
Firefox 74.0



Wolfgang Rosenauer <wr@rosenauer.org>


parents: 

diff
changeset




    13


+  policy->AddPath(rdonly, "/proc/sys/crypto/fips_enabled");













7fa561e5d7c7
Firefox 74.0



Wolfgang Rosenauer <wr@rosenauer.org>


parents: 

diff
changeset




    14


   policy->AddPath(rdonly, "/proc/cpuinfo");













7fa561e5d7c7
Firefox 74.0



Wolfgang Rosenauer <wr@rosenauer.org>


parents: 

diff
changeset




    15


   policy->AddPath(rdonly, "/proc/meminfo");













7fa561e5d7c7
Firefox 74.0



Wolfgang Rosenauer <wr@rosenauer.org>


parents: 

diff
changeset




    16


   policy->AddDir(rdonly, "/sys/devices/cpu");















mozilla