diff options
| author | Alexander Færøy <ahf@torproject.org> | 2022-05-09 14:37:25 +0000 |
|---|---|---|
| committer | Alexander Færøy <ahf@torproject.org> | 2022-05-09 14:37:25 +0000 |
| commit | 621c9221346f13f3f1938883ee2456aa763bfe59 (patch) | |
| tree | c38df49b55c2cb87070d952770a1c95444667bd9 | |
| parent | 0d91cb8099b92f34e458953909a6c832df1495cd (diff) | |
| parent | c213c1b0d1616dc074779a26c8fc7b777697fe34 (diff) | |
| download | tor-621c9221346f13f3f1938883ee2456aa763bfe59.tar.gz tor-621c9221346f13f3f1938883ee2456aa763bfe59.zip | |
Merge branch 'maint-0.4.5' into release-0.4.5
| -rw-r--r-- | changes/ticket40601 | 4 | ||||
| -rw-r--r-- | src/lib/sandbox/sandbox.c | 3 |
2 files changed, 7 insertions, 0 deletions
diff --git a/changes/ticket40601 b/changes/ticket40601 new file mode 100644 index 0000000000..529e3badfe --- /dev/null +++ b/changes/ticket40601 @@ -0,0 +1,4 @@ + o Minor bugfixes (linux seccomp2 sandbox): + - Allow the rseq system call in the sandbox. This solves a crash issue with + glibc 2.35 on Linux. Patch from pmu-ipf. Fixes bug 40601; bugfix on + 0.3.5.11. diff --git a/src/lib/sandbox/sandbox.c b/src/lib/sandbox/sandbox.c index e6e556eb59..7a57554ace 100644 --- a/src/lib/sandbox/sandbox.c +++ b/src/lib/sandbox/sandbox.c @@ -227,6 +227,9 @@ static int filter_nopar_gen[] = { #endif SCMP_SYS(read), SCMP_SYS(rt_sigreturn), +#ifdef __NR_rseq + SCMP_SYS(rseq), +#endif SCMP_SYS(sched_getaffinity), #ifdef __NR_sched_yield SCMP_SYS(sched_yield), |