diff options
author | Mike Frysinger <vapier@gentoo.org> | 2021-04-18 14:28:17 -0400 |
---|---|---|
committer | Mike Frysinger <vapier@gentoo.org> | 2021-04-18 14:28:17 -0400 |
commit | 9a5ca4976b17d1ef8210ca6323020d5050b4d374 (patch) | |
tree | fd7e870e65c260008329c011d7b01b3c870c9b06 /seccomp-bpf.c | |
parent | security: pregen seccomp bpf programs (diff) | |
download | pax-utils-9a5ca4976b17d1ef8210ca6323020d5050b4d374.tar.gz pax-utils-9a5ca4976b17d1ef8210ca6323020d5050b4d374.tar.bz2 pax-utils-9a5ca4976b17d1ef8210ca6323020d5050b4d374.zip |
security: restore syscalls accidentally droppedv1.3.1
The original precompile work was done against an old version of
pax-utils and I forgot to resync the list before finalizing.
Restore all the syscalls that were in here before.
Bug: https://bugs.gentoo.org/783459
Signed-off-by: Mike Frysinger <vapier@gentoo.org>
Diffstat (limited to 'seccomp-bpf.c')
-rw-r--r-- | seccomp-bpf.c | 13 |
1 files changed, 13 insertions, 0 deletions
diff --git a/seccomp-bpf.c b/seccomp-bpf.c index d7246b1..f69e5ce 100644 --- a/seccomp-bpf.c +++ b/seccomp-bpf.c @@ -105,6 +105,9 @@ int main(void) int base_syscalls[] = { /* We write the most w/scanelf. */ SCMP_SYS(write), + SCMP_SYS(writev), + SCMP_SYS(pwrite64), + SCMP_SYS(pwritev), /* Then the stat family of functions. */ SCMP_SYS(newfstatat), @@ -136,6 +139,8 @@ int main(void) /* Then the file reading functions. */ SCMP_SYS(pread64), SCMP_SYS(read), + SCMP_SYS(readv), + SCMP_SYS(preadv), /* Then the fd manipulation functions. */ SCMP_SYS(fcntl), @@ -146,6 +151,9 @@ int main(void) SCMP_SYS(brk), SCMP_SYS(capget), SCMP_SYS(chdir), + SCMP_SYS(dup), + SCMP_SYS(dup2), + SCMP_SYS(dup3), SCMP_SYS(exit), SCMP_SYS(exit_group), SCMP_SYS(faccessat), @@ -162,8 +170,13 @@ int main(void) SCMP_SYS(_llseek), SCMP_SYS(mprotect), + /* Syscalls listed because of compiler settings. */ + SCMP_SYS(futex), + /* Syscalls listed because of sandbox. */ SCMP_SYS(readlink), + SCMP_SYS(readlinkat), + SCMP_SYS(getcwd), /* Syscalls listed because of fakeroot. */ SCMP_SYS(msgget), |