diff options
Diffstat (limited to 'chromium/sandbox/linux/seccomp-bpf-helpers/baseline_policy.cc')
| -rw-r--r-- | chromium/sandbox/linux/seccomp-bpf-helpers/baseline_policy.cc | 4 |
1 files changed, 4 insertions, 0 deletions
diff --git a/chromium/sandbox/linux/seccomp-bpf-helpers/baseline_policy.cc b/chromium/sandbox/linux/seccomp-bpf-helpers/baseline_policy.cc index 2bf572c0b3c..af472695e0c 100644 --- a/chromium/sandbox/linux/seccomp-bpf-helpers/baseline_policy.cc +++ b/chromium/sandbox/linux/seccomp-bpf-helpers/baseline_policy.cc @@ -169,6 +169,10 @@ ResultExpr EvaluateSyscallImpl(int fs_denied_errno, if (sysno == __NR_getpriority || sysno ==__NR_setpriority) return RestrictGetSetpriority(current_pid); + if (sysno == __NR_getrandom) { + return RestrictGetRandom(); + } + if (sysno == __NR_madvise) { // Only allow MADV_DONTNEED (aka MADV_FREE). const Arg<int> advice(2); |