Add openssh-whitelist-syscalls.patch
OBS-URL: https://build.opensuse.org/package/show/network/openssh?expand=0&rev=227
This commit is contained in:
parent
26f62b4c7e
commit
35f68f8c1a
24
openssh-whitelist-syscalls.patch
Normal file
24
openssh-whitelist-syscalls.patch
Normal file
@ -0,0 +1,24 @@
|
|||||||
|
diff --git a/sandbox-seccomp-filter.c b/sandbox-seccomp-filter.c
|
||||||
|
index 797a14b..02698cc 100644
|
||||||
|
--- a/sandbox-seccomp-filter.c
|
||||||
|
+++ b/sandbox-seccomp-filter.c
|
||||||
|
@@ -204,6 +204,9 @@ static const struct sock_filter preauth_insns[] = {
|
||||||
|
#ifdef __NR_futex
|
||||||
|
SC_ALLOW(__NR_futex),
|
||||||
|
#endif
|
||||||
|
+#ifdef __NR_futex_time64
|
||||||
|
+ SC_ALLOW(__NR_futex_time64),
|
||||||
|
+#endif
|
||||||
|
#ifdef __NR_geteuid
|
||||||
|
SC_ALLOW(__NR_geteuid),
|
||||||
|
#endif
|
||||||
|
@@ -282,6 +285,9 @@ static const struct sock_filter preauth_insns[] = {
|
||||||
|
#ifdef __NR_pselect6
|
||||||
|
SC_ALLOW(__NR_pselect6),
|
||||||
|
#endif
|
||||||
|
+#ifdef __NR_pselect6_time64
|
||||||
|
+ SC_ALLOW(__NR_pselect6_time64),
|
||||||
|
+#endif
|
||||||
|
#ifdef __NR_read
|
||||||
|
SC_ALLOW(__NR_read),
|
||||||
|
#endif
|
@ -1,3 +1,10 @@
|
|||||||
|
-------------------------------------------------------------------
|
||||||
|
Mon Feb 15 10:01:33 UTC 2021 - Hans Petter Jansson <hpj@suse.com>
|
||||||
|
|
||||||
|
- Add openssh-whitelist-syscalls.patch (bsc#1182232), fixing
|
||||||
|
failure to accept connections on 32-bit platforms with
|
||||||
|
glibc 2.33+.
|
||||||
|
|
||||||
-------------------------------------------------------------------
|
-------------------------------------------------------------------
|
||||||
Wed Jan 27 14:09:08 UTC 2021 - Thorsten Kukuk <kukuk@suse.com>
|
Wed Jan 27 14:09:08 UTC 2021 - Thorsten Kukuk <kukuk@suse.com>
|
||||||
|
|
||||||
|
@ -111,6 +111,7 @@ Patch42: openssh-link-with-sk.patch
|
|||||||
Patch43: openssh-reenable-dh-group14-sha1-default.patch
|
Patch43: openssh-reenable-dh-group14-sha1-default.patch
|
||||||
Patch44: openssh-fix-ssh-copy-id.patch
|
Patch44: openssh-fix-ssh-copy-id.patch
|
||||||
Patch45: openssh-8.4p1-ssh_config_d.patch
|
Patch45: openssh-8.4p1-ssh_config_d.patch
|
||||||
|
Patch46: openssh-whitelist-syscalls.patch
|
||||||
BuildRequires: audit-devel
|
BuildRequires: audit-devel
|
||||||
BuildRequires: automake
|
BuildRequires: automake
|
||||||
BuildRequires: groff
|
BuildRequires: groff
|
||||||
|
Loading…
Reference in New Issue
Block a user