From 49a518aabe67f9366bc23d0142493cb6508d662d Mon Sep 17 00:00:00 2001
From: "evan@chromium.org"
 <evan@chromium.org@0039d316-1c4b-4281-b951-d872f2087c98>
Date: Wed, 3 Feb 2010 23:15:05 +0000
Subject: seccomp: allow dup/dup2

This is needed for opening the renderer<->plugin channel.

TEST=flash works in seccomp mode

Review URL: http://codereview.chromium.org/563024

git-svn-id: svn://svn.chromium.org/chrome/trunk/src@38037 0039d316-1c4b-4281-b951-d872f2087c98
---
 sandbox/linux/seccomp/syscall_table.c | 2 ++
 1 file changed, 2 insertions(+)

(limited to 'sandbox/linux')

diff --git a/sandbox/linux/seccomp/syscall_table.c b/sandbox/linux/seccomp/syscall_table.c
index 588a1b5..b306b63 100644
--- a/sandbox/linux/seccomp/syscall_table.c
+++ b/sandbox/linux/seccomp/syscall_table.c
@@ -37,6 +37,8 @@ const struct SyscallTable syscallTable[] __attribute__((
   [ __NR_clock_gettime   ] = { UNRESTRICTED_SYSCALL,     0                   },
   [ __NR_clone           ] = { (void*)&sandbox_clone,    process_clone       },
   [ __NR_close           ] = { UNRESTRICTED_SYSCALL,     0                   },
+  [ __NR_dup             ] = { UNRESTRICTED_SYSCALL,     0                   },
+  [ __NR_dup2            ] = { UNRESTRICTED_SYSCALL,     0                   },
   [ __NR_epoll_create    ] = { UNRESTRICTED_SYSCALL,     0                   },
   [ __NR_epoll_ctl       ] = { UNRESTRICTED_SYSCALL,     0                   },
   [ __NR_epoll_wait      ] = { UNRESTRICTED_SYSCALL,     0                   },
-- 
cgit v1.1