commit 38208185be063cfe575f97b99b3270210fbd0a8c
parent dbb70d85bf65d33e0a1035146d71a2a610e91056
Author: George Kadianakis <desnacked@riseup.net>
Date: Wed, 1 Jul 2020 12:55:02 +0300
Merge branch 'maint-0.3.5' into maint-0.4.2
Diffstat:
2 files changed, 6 insertions(+), 0 deletions(-)
diff --git a/changes/ticket33346 b/changes/ticket33346
@@ -0,0 +1,3 @@
+ o Minor features (linux seccomp2 sandbox):
+ - Permit the unlinkat() syscall, which some Libc implementations
+ use to implement unlink(). Closes ticket 33346.
diff --git a/src/lib/sandbox/sandbox.c b/src/lib/sandbox/sandbox.c
@@ -269,6 +269,9 @@ static int filter_nopar_gen[] = {
SCMP_SYS(recvfrom),
SCMP_SYS(sendto),
SCMP_SYS(unlink),
+#ifdef __NR_unlinkat
+ SCMP_SYS(unlinkat),
+#endif
SCMP_SYS(poll)
};
