| commit | a77d3fa28aac20b463fcf8a1339d30acc7c27fc1 | |
| author | mseaborn@chromium.org <mseaborn@chromium.org@0039d316-1c4b-4281-b951-d872f2087c98> | |
| Tue, 20 May 2014 06:23:48 +0000 (20 06:23 +0000) | ||
| committer | mseaborn@chromium.org <mseaborn@chromium.org@0039d316-1c4b-4281-b951-d872f2087c98> | |
| Tue, 20 May 2014 06:23:48 +0000 (20 06:23 +0000) | ||
| tree | 7e9baf91ab81505361d13a1b42320a45fe1c452e | treesnapshot (tar.gz zip) |
| parent | 5575f886246827b500ef2e92947c5a18fd8dd204 | commitdiff |
NaCl: Add sanity check for number of open FDs at startup
This is primarily for Non-SFI NaCl, where leaking FDs would be a
security hole. For SFI NaCl, this is just for defence in depth.
I've put the check just before enabling the seccomp-bpf sandbox. This
guards against creation of unusual FDs, e.g. via epoll_create(), which
might happen even after enabling the SUID sandbox (which mostly disables
open()).
BUG=358719
TEST=browser_tests
Review URL: https://codereview.chromium.org/276443003
git-svn-id: svn://svn.chromium.org/chrome/trunk/src@271583 0039d316-1c4b-4281-b951-d872f2087c98
This is primarily for Non-SFI NaCl, where leaking FDs would be a
security hole. For SFI NaCl, this is just for defence in depth.
I've put the check just before enabling the seccomp-bpf sandbox. This
guards against creation of unusual FDs, e.g. via epoll_create(), which
might happen even after enabling the SUID sandbox (which mostly disables
open()).
BUG=358719
TEST=browser_tests
Review URL: https://codereview.chromium.org/276443003
git-svn-id: svn://svn.chromium.org/chrome/trunk/src@271583 0039d316-1c4b-4281-b951-d872f2087c98