forked from pool/vsftpd
4d064f5b44
- add vsftpd-enable-dev-log-sendto.patch (bnc#812406#c1) * this enabled a sendto on /dev/log socket when syslog is enabled - provide more verbose explanation about isolate_network and seccomp_sanbox in config file template - don't install init file on openSUSE 13.1+ - drop a build support for SL 10 and older - add vsftpd-drop-newpid-from-clone.patch (bnc#786024#c38) * drop CLONE_NEWPID from clone to enable audit system - add vsftpd-enable-fcntl-f_setfl.patch (bnc#812406) * unconditionally enable F_SETFL patch - might be safe to do OBS-URL: https://build.opensuse.org/request/show/162590 OBS-URL: https://build.opensuse.org/package/show/network/vsftpd?expand=0&rev=55
34 lines
906 B
Diff
34 lines
906 B
Diff
From: mvyskocil@suse.com
|
|
Subject: enable sendto to /dev/log
|
|
|
|
vsftpd is killed once a file is downloaded and it try to log the success to
|
|
/dev/log. This patch enables a sendto on fd 4, in a case the syslog logging is
|
|
enabled.
|
|
|
|
Fixes: https://bugzilla.novell.com/show_bug.cgi?id=812406
|
|
|
|
---
|
|
seccompsandbox.c | 17 +++++++++++++++--
|
|
1 file changed, 15 insertions(+), 2 deletions(-)
|
|
|
|
Index: vsftpd-3.0.2/seccompsandbox.c
|
|
===================================================================
|
|
--- vsftpd-3.0.2.orig/seccompsandbox.c
|
|
+++ vsftpd-3.0.2/seccompsandbox.c
|
|
@@ -503,6 +501,15 @@ seccomp_sandbox_setup_postlogin(const st
|
|
allow_nr(__NR_chmod);
|
|
}
|
|
}
|
|
+
|
|
+ /*
|
|
+ * MV: this enables logging to the syslog - the vsf_log_do_log are in postlogin.c and privops.c, but hopefully this is enough
|
|
+ */
|
|
+ if (tunable_syslog_enable)
|
|
+ {
|
|
+ allow_nr_1_arg_mask(__NR_sendto, 1, 4);
|
|
+ }
|
|
+
|
|
}
|
|
|
|
void
|