b83f96744f
- openssh-alloc_size.patch: anotate xmalloc.h with alloc_size attribute so the compiler knows these functions allocate memory so overflow or misuse can be detected sooner. - openssh-allow_getrandom.patch; allow the getrandom(2) system call in the seccomp sandbox, upstream commit 26ad18247213 - openssh-fix-b64_xx-detection.patch: configure.ac has incorrect tests for b64_ntop, b64_pton on linux/glibc. OBS-URL: https://build.opensuse.org/request/show/358392 OBS-URL: https://build.opensuse.org/package/show/network/openssh?expand=0&rev=96
13 lines
318 B
Diff
13 lines
318 B
Diff
--- openssh-7.1p2.orig/sandbox-seccomp-filter.c
|
|
+++ openssh-7.1p2/sandbox-seccomp-filter.c
|
|
@@ -153,6 +153,9 @@ static const struct sock_filter preauth_
|
|
#ifdef __NR_getuid32
|
|
SC_ALLOW(getuid32),
|
|
#endif
|
|
+#ifdef __NR_getrandom
|
|
+ SC_ALLOW(getrandom),
|
|
+#endif
|
|
#ifdef __NR_gettimeofday
|
|
SC_ALLOW(gettimeofday),
|
|
#endif
|