Closed Bug 1304788 Opened 8 years ago Closed 8 years ago

Logging for sandboxing policy violations

Categories

(Core :: Security: Process Sandboxing, defect)

Product:
Core
Component:
Security: Process Sandboxing
Platform:
All
Linux
Type:
defect
Priority:
Not set
Severity:
normal

Tracking

()

Status:
RESOLVED DUPLICATE of bug 1308564
Tracking Flags:
Tracking Status
firefox52 --- affected

People

(Reporter: gcp, Unassigned)

References

Details

(Whiteboard: sblc2)

Once filesystem policies for seccomp-bpf filtering roll out, violations of the policy will trigger silent failures in the calling code. This can cause breakage that may be hard to trace back to sandboxing. The current patches log violations in DEBUG mode by default, but we probably want at least an environmental flag to enable the logging in release mode as well.
Blocks: 1289718
Whiteboard: sblc2
Status: NEW → RESOLVED
Closed: 8 years ago
Resolution: --- → DUPLICATE
You need to log in before you can comment on or make changes to this bug.