Add openssh-whitelist-syscalls.patch

OBS-URL: https://build.opensuse.org/package/show/network/openssh?expand=0&rev=227
This commit is contained in:
Hans Petter Jansson 2021-02-15 10:04:25 +00:00 committed by Git OBS Bridge
parent 26f62b4c7e
commit 35f68f8c1a
3 changed files with 32 additions and 0 deletions

View File

@ -0,0 +1,24 @@
diff --git a/sandbox-seccomp-filter.c b/sandbox-seccomp-filter.c
index 797a14b..02698cc 100644
--- a/sandbox-seccomp-filter.c
+++ b/sandbox-seccomp-filter.c
@@ -204,6 +204,9 @@ static const struct sock_filter preauth_insns[] = {
#ifdef __NR_futex
SC_ALLOW(__NR_futex),
#endif
+#ifdef __NR_futex_time64
+ SC_ALLOW(__NR_futex_time64),
+#endif
#ifdef __NR_geteuid
SC_ALLOW(__NR_geteuid),
#endif
@@ -282,6 +285,9 @@ static const struct sock_filter preauth_insns[] = {
#ifdef __NR_pselect6
SC_ALLOW(__NR_pselect6),
#endif
+#ifdef __NR_pselect6_time64
+ SC_ALLOW(__NR_pselect6_time64),
+#endif
#ifdef __NR_read
SC_ALLOW(__NR_read),
#endif

View File

@ -1,3 +1,10 @@
-------------------------------------------------------------------
Mon Feb 15 10:01:33 UTC 2021 - Hans Petter Jansson <hpj@suse.com>
- Add openssh-whitelist-syscalls.patch (bsc#1182232), fixing
failure to accept connections on 32-bit platforms with
glibc 2.33+.
-------------------------------------------------------------------
Wed Jan 27 14:09:08 UTC 2021 - Thorsten Kukuk <kukuk@suse.com>

View File

@ -111,6 +111,7 @@ Patch42: openssh-link-with-sk.patch
Patch43: openssh-reenable-dh-group14-sha1-default.patch
Patch44: openssh-fix-ssh-copy-id.patch
Patch45: openssh-8.4p1-ssh_config_d.patch
Patch46: openssh-whitelist-syscalls.patch
BuildRequires: audit-devel
BuildRequires: automake
BuildRequires: groff