commit a6a7a1f3edd93bb3d9b328e6124e0912cdc94c7b
parent 342f2b187351f8a41fc0337499c05fb3a673610f
Author: Nick Mathewson <nickm@torproject.org>
Date: Tue, 13 Nov 2018 16:48:26 -0500
Merge branch 'maint-0.3.5'
Diffstat:
2 files changed, 6 insertions(+), 0 deletions(-)
diff --git a/changes/bug28183 b/changes/bug28183
@@ -0,0 +1,4 @@
+ o Minor bugfixes (Linux seccomp2 sandbox):
+ - Permit the "shutdown()" system call, which is apparently
+ used by OpenSSL under some circumstances. Fixes bug 28183;
+ bugfix on 0.2.5.1-alpha.
diff --git a/src/lib/sandbox/sandbox.c b/src/lib/sandbox/sandbox.c
@@ -222,6 +222,7 @@ static int filter_nopar_gen[] = {
#ifdef __NR_setrlimit
SCMP_SYS(setrlimit),
#endif
+ SCMP_SYS(shutdown),
#ifdef __NR_sigaltstack
SCMP_SYS(sigaltstack),
#endif
@@ -1803,4 +1804,5 @@ void
sandbox_disable_getaddrinfo_cache(void)
{
}
+
#endif /* !defined(USE_LIBSECCOMP) */
