[tor-commits] [tor-browser/tor-browser-52.4.0esr-7.0-1] Bug 1358647 - Disallow bind/listen/accept for Linux content processes. r=gcp

gk at torproject.org gk at torproject.org
Tue Oct 17 12:12:39 UTC 2017


commit 6f946f9a53add44040dde190498c39d14922ec6e
Author: Jed Davis <jld at mozilla.com>
Date:   Tue Apr 25 19:29:32 2017 -0600

    Bug 1358647 - Disallow bind/listen/accept for Linux content processes. r=gcp
    
    MozReview-Commit-ID: Cz9MKxOJnsS
    
    --HG--
    extra : rebase_source : d3ab7ff9020066d5fe9ac3121c88c85b9fde6224
---
 security/sandbox/linux/SandboxFilter.cpp | 4 ----
 1 file changed, 4 deletions(-)

diff --git a/security/sandbox/linux/SandboxFilter.cpp b/security/sandbox/linux/SandboxFilter.cpp
index 018e9c64446c..f1520aa29e15 100644
--- a/security/sandbox/linux/SandboxFilter.cpp
+++ b/security/sandbox/linux/SandboxFilter.cpp
@@ -531,10 +531,6 @@ public:
     case SYS_SEND:
     case SYS_SOCKET: // DANGEROUS
     case SYS_CONNECT: // DANGEROUS
-    case SYS_ACCEPT:
-    case SYS_ACCEPT4:
-    case SYS_BIND:
-    case SYS_LISTEN:
     case SYS_GETSOCKOPT:
     case SYS_SETSOCKOPT:
     case SYS_GETSOCKNAME:





More information about the tor-commits mailing list