diff options
author | Julian Andres Klode <jak@debian.org> | 2017-10-23 00:35:15 +0200 |
---|---|---|
committer | Julian Andres Klode <jak@debian.org> | 2017-10-23 01:51:19 +0200 |
commit | f5572ef1daf21d20f4a7d261884291c0acddd947 (patch) | |
tree | 9ad91d0f511ff451867b571fb7f7e1ccd8186a2a | |
parent | 32bcbd73e0988d2d2237690ffae33b4f5cc5ff81 (diff) |
seccomp: Add missing syscalls for ppc64el, i386, and others
These are a few overlooked syscalls. Also add readv(), writev(),
renameat2(), and statx() in case libc uses them.
Gbp-Dch: ignore
-rw-r--r-- | methods/aptmethod.h | 11 |
1 files changed, 11 insertions, 0 deletions
diff --git a/methods/aptmethod.h b/methods/aptmethod.h index d5d426914..ea75f4848 100644 --- a/methods/aptmethod.h +++ b/methods/aptmethod.h @@ -160,6 +160,7 @@ protected: ALLOW(msync); ALLOW(munmap); ALLOW(newfstatat); + ALLOW(_newselect); ALLOW(oldfstat); ALLOW(oldlstat); ALLOW(oldolduname); @@ -175,8 +176,10 @@ protected: ALLOW(prlimit64); ALLOW(pselect6); ALLOW(read); + ALLOW(readv); ALLOW(rename); ALLOW(renameat); + ALLOW(renameat2); ALLOW(rt_sigaction); ALLOW(rt_sigpending); ALLOW(rt_sigprocmask); @@ -193,7 +196,10 @@ protected: ALLOW(sigreturn); ALLOW(sigsuspend); ALLOW(stat); + ALLOW(stat64); ALLOW(statfs); + ALLOW(statfs64); + ALLOW(statx); ALLOW(sync); ALLOW(syscall); ALLOW(time); @@ -208,6 +214,7 @@ protected: ALLOW(utimensat); ALLOW(utimes); ALLOW(write); + ALLOW(writev); if ((SeccompFlags & Seccomp::NETWORK) != 0) { @@ -217,12 +224,16 @@ protected: ALLOW(getsockopt); ALLOW(recv); ALLOW(recvfrom); + ALLOW(recvmmsg); ALLOW(recvmsg); ALLOW(send); + ALLOW(sendmmsg); ALLOW(sendmsg); ALLOW(sendto); ALLOW(setsockopt); + ALLOW(shutdown); ALLOW(socket); + ALLOW(socketcall); } if ((SeccompFlags & Seccomp::DIRECTORY) != 0) |