Chromium Code Reviews
chromiumcodereview-hr@appspot.gserviceaccount.com (chromiumcodereview-hr) | Please choose your nickname with Settings | Help | Chromium Project | Gerrit Changes | Sign out
(643)

Issues Search
    My Issues | Starred     Open | Closed | All

Issue 10454110: Block ptrace (and ptrace-like) syscalls from the renderer and worker processs. (Closed)

Created:
8 years, 6 months ago by Chris Evans
Modified:
8 years, 6 months ago
CC:
chromium-reviews, joi+watch-content_chromium.org, darin-cc_chromium.org, jam, jln+watch_chromium.org, jochen+watch-content_chromium.org
Visibility:
Public.

Description

Block ptrace (and ptrace-like) syscalls from the renderer and worker processs. BUG=125225 Committed: https://src.chromium.org/viewvc/chrome?view=rev&revision=140080

Patch Set 1 #

Total comments: 2

Patch Set 2 : #

Unified diffs Side-by-side diffs Delta from patch set Stats (+52 lines, -9 lines) Patch
M content/common/sandbox_init_linux.cc View 1 7 chunks +45 lines, -8 lines 0 comments Download
M content/renderer/renderer_main_platform_delegate_linux.cc View 2 chunks +2 lines, -0 lines 0 comments Download
M content/worker/worker_main.cc View 2 chunks +5 lines, -1 line 0 comments Download

Messages

Total messages: 7 (0 generated)
Chris Evans
Defense in depth, we like. Also, a quick think to make sure I didn't forget ...
8 years, 6 months ago (2012-06-01 06:06:31 UTC) #1
Chris Evans
John, I'll probably need your OWNERS lgtm on this one, due to the 1-liners outside ...
8 years, 6 months ago (2012-06-01 06:16:12 UTC) #2
jochen (gone - plz use gerrit)
unofficial content lg
8 years, 6 months ago (2012-06-01 11:23:10 UTC) #3
jln (very slow on Chromium)
https://chromiumcodereview.appspot.com/10454110/diff/1/content/common/sandbox_init_linux.cc File content/common/sandbox_init_linux.cc (right): https://chromiumcodereview.appspot.com/10454110/diff/1/content/common/sandbox_init_linux.cc#newcode356 content/common/sandbox_init_linux.cc:356: EmitDenySyscall(__NR_process_vm_writev, program); Not a huge deal, but maybe add ...
8 years, 6 months ago (2012-06-01 18:34:37 UTC) #4
Chris Evans
On 2012/06/01 18:34:37, Julien Tinnes wrote: > https://chromiumcodereview.appspot.com/10454110/diff/1/content/common/sandbox_init_linux.cc > File content/common/sandbox_init_linux.cc (right): > > https://chromiumcodereview.appspot.com/10454110/diff/1/content/common/sandbox_init_linux.cc#newcode356 ...
8 years, 6 months ago (2012-06-01 18:55:12 UTC) #5
jln (very slow on Chromium)
lgtm
8 years, 6 months ago (2012-06-01 19:00:15 UTC) #6
jam
8 years, 6 months ago (2012-06-01 19:09:57 UTC) #7 
lgtm

Powered by Google App Engine
This is Rietveld 408576698