summaryrefslogtreecommitdiff
path: root/www/chromium/files/patch-sandbox_policy_features.cc
diff options
context:
space:
mode:
authorRobert Nagy <rnagy@FreeBSD.org>2025-02-20 10:38:15 +0100
committerRobert Nagy <rnagy@FreeBSD.org>2025-02-20 10:45:43 +0100
commit0c67a387c2528b7251f75a19b0951c2db1d6c5c0 (patch)
treed5f4e97bf60ebb7ceba1fe83617462008362cfa2 /www/chromium/files/patch-sandbox_policy_features.cc
parentsecurity/vuxml: add www/*chromium < 133.0.6943.126 (diff)
www/chromium: update to 133.0.6943.126
Security: https://vuxml.freebsd.org/freebsd/2a3be628-ef6e-11ef-85f3-a8a1599412c6.html Security: https://vuxml.freebsd.org/freebsd/f572b9d1-ef6d-11ef-85f3-a8a1599412c6.html Security: https://vuxml.freebsd.org/freebsd/b09d0b3b-ef6d-11ef-85f3-a8a1599412c6.html
Diffstat (limited to 'www/chromium/files/patch-sandbox_policy_features.cc')
-rw-r--r--www/chromium/files/patch-sandbox_policy_features.cc11
1 files changed, 1 insertions, 10 deletions
diff --git a/www/chromium/files/patch-sandbox_policy_features.cc b/www/chromium/files/patch-sandbox_policy_features.cc
index c859ee3cff78..f99733e35270 100644
--- a/www/chromium/files/patch-sandbox_policy_features.cc
+++ b/www/chromium/files/patch-sandbox_policy_features.cc
@@ -1,4 +1,4 @@
---- sandbox/policy/features.cc.orig 2024-11-14 07:57:23 UTC
+--- sandbox/policy/features.cc.orig 2025-02-19 07:43:18 UTC
+++ sandbox/policy/features.cc
@@ -20,7 +20,11 @@ namespace sandbox::policy::features {
// (Only causes an effect when feature kNetworkServiceInProcess is disabled.)
@@ -12,12 +12,3 @@
#if BUILDFLAG(IS_LINUX) || BUILDFLAG(IS_CHROMEOS)
// Enables a fine-grained seccomp-BPF syscall filter for the network service.
-@@ -132,7 +136,7 @@ BASE_FEATURE(kSpectreVariant2Mitigation,
- base::FEATURE_ENABLED_BY_DEFAULT);
- #endif // BUILDFLAG(IS_CHROMEOS_ASH)
-
--#if BUILDFLAG(IS_LINUX) || BUILDFLAG(IS_CHROMEOS)
-+#if BUILDFLAG(IS_LINUX) || BUILDFLAG(IS_CHROMEOS) || BUILDFLAG(IS_BSD)
- // Enabling the kNetworkServiceSandbox feature automatically enables Spectre
- // variant 2 mitigations in the network service. This can lead to performance
- // regressions, so enabling this feature will turn off the Spectre Variant 2
generated by cgit v1.2.3 (git 2.25.1) at 2025-06-16 07:51:24 +0000