diff options
author | Julian Andres Klode <jak@debian.org> | 2017-10-26 17:42:58 +0200 |
---|---|---|
committer | Julian Andres Klode <jak@debian.org> | 2017-10-26 20:54:28 +0200 |
commit | b514128890d5cf96a76393e8d261d79e0be7f0e4 (patch) | |
tree | a8715febca828ad32c1b4d6f7eba602e87b7d6cb /methods | |
parent | b1989ab988cf4da47f979933e551b6dda694dcf2 (diff) |
seccomp: Allow ipc() for fakeroot, and allow sysinfo() for sort
Sorting apparently calls sysconf() which calls sysinfo() to get
free pages or whatever.
Closes: #879814, #879826
Diffstat (limited to 'methods')
-rw-r--r-- | methods/aptmethod.h | 2 |
1 files changed, 2 insertions, 0 deletions
diff --git a/methods/aptmethod.h b/methods/aptmethod.h index f88512564..e406e3c37 100644 --- a/methods/aptmethod.h +++ b/methods/aptmethod.h @@ -206,6 +206,7 @@ protected: #endif ALLOW(sync); ALLOW(syscall); + ALLOW(sysinfo); ALLOW(time); ALLOW(truncate); ALLOW(truncate64); @@ -255,6 +256,7 @@ protected: ALLOW(msgrcv); ALLOW(msgget); ALLOW(msgctl); + ALLOW(ipc); } for (auto &custom : _config->FindVector("APT::Sandbox::Seccomp::Allow")) |