On Thu, Oct 07, 2021 at 01:57:30PM -0400, Vivien Didelot wrote: > Now that qtbase-conf disables the seccomp filter sandbox via an > environment variable, the hack patch against qtwebengine can be > dropped. > > Signed-off-by: Vivien Didelot <[email protected]>
Acked-by: Denys Dmytriyenko <[email protected]> > --- > ...-disable-SECCOMP-BPF-Sandbox-at-star.patch | 32 ------------------- > .../recipes-qt/qt5/qtwebengine_git.bbappend | 4 --- > 2 files changed, 36 deletions(-) > delete mode 100644 > meta-arago-distro/recipes-qt/qt5/qtwebengine/0003-qtwebengine-HACK-disable-SECCOMP-BPF-Sandbox-at-star.patch > > diff --git > a/meta-arago-distro/recipes-qt/qt5/qtwebengine/0003-qtwebengine-HACK-disable-SECCOMP-BPF-Sandbox-at-star.patch > > b/meta-arago-distro/recipes-qt/qt5/qtwebengine/0003-qtwebengine-HACK-disable-SECCOMP-BPF-Sandbox-at-star.patch > deleted file mode 100644 > index 09f1870d..00000000 > --- > a/meta-arago-distro/recipes-qt/qt5/qtwebengine/0003-qtwebengine-HACK-disable-SECCOMP-BPF-Sandbox-at-star.patch > +++ /dev/null > @@ -1,32 +0,0 @@ > -From 77fc6e4391562a1f84d82b58319a73de08242797 Mon Sep 17 00:00:00 2001 > -From: Eric Ruei <[email protected]> > -Date: Fri, 8 Mar 2019 18:17:06 -0500 > -Subject: [PATCH 3/3] qtwebengine: HACK: disable SECCOMP-BPF Sandbox at > startup > - > -SECCOMP-BPF Sandbox does not work due to unexpected FUTEX_UNLOCK_PI call > -from the pthread implementation > -Disable this feature temporarily until those issues are resolved. > - > -Upstream-Status: Inappropriate [HACK] > - > -Signed-off-by: Eric Ruei <[email protected]> > ---- > - src/core/web_engine_context.cpp | 2 ++ > - 1 file changed, 2 insertions(+) > - > -diff --git a/src/core/web_engine_context.cpp > b/src/core/web_engine_context.cpp > -index 48e5bc4..9ba3fa4 100644 > ---- a/src/core/web_engine_context.cpp > -+++ b/src/core/web_engine_context.cpp > -@@ -347,6 +347,8 @@ WebEngineContext::WebEngineContext() > - parsedCommandLine->AppendSwitch(switches::kNoSandbox); > - #elif defined(Q_OS_LINUX) > - > parsedCommandLine->AppendSwitch(service_manager::switches::kDisableSetuidSandbox); > -+ // HACK: disable seccomp filter sandbox for now because it does not > work > -+ > parsedCommandLine->AppendSwitch(service_manager::switches::kDisableSeccompFilterSandbox); > - #endif > - } else { > - parsedCommandLine->AppendSwitch(switches::kNoSandbox); > --- > -1.9.1 > - > diff --git a/meta-arago-distro/recipes-qt/qt5/qtwebengine_git.bbappend > b/meta-arago-distro/recipes-qt/qt5/qtwebengine_git.bbappend > index c50b020f..6459bbf7 100644 > --- a/meta-arago-distro/recipes-qt/qt5/qtwebengine_git.bbappend > +++ b/meta-arago-distro/recipes-qt/qt5/qtwebengine_git.bbappend > @@ -1,8 +1,4 @@ > FILESEXTRAPATHS_prepend := "${THISDIR}/${PN}:" > PR_append = ".arago1" > > -SRC_URI += " \ > - file://0003-qtwebengine-HACK-disable-SECCOMP-BPF-Sandbox-at-star.patch \ > -" > - > DEPENDS += "bison-native" > -- > 2.33.0 _______________________________________________ meta-arago mailing list [email protected] http://arago-project.org/cgi-bin/mailman/listinfo/meta-arago
