mirror of
https://gitlab.torproject.org/tpo/core/tor.git
synced 2024-11-14 07:03:44 +01:00
Permit setrlimit, prlimit, prlimit64 calls.
We call setrlimit under some circumstances, and it can call prlimit and prlimit64 under the hood. Fixes bug 15221.
This commit is contained in:
Nick Mathewson
parent
17cfdb358c
commit
725e0c76e3
4
changes/bug15221
Normal file
4
changes/bug15221
Normal file
@ -0,0 +1,4 @@
|
|||||||
|
o Minor bugfixes (sandbox):
|
||||||
|
- Allow the setrlimit syscall, and the prlimit and prlimit64 syscalls,
|
||||||
|
which some libc implementations
|
||||||
|
use under the hood. Fixes bug 15221. Bugfix on 0.2.5.1-alpha.
|
||||||
@ -177,11 +177,20 @@ static int filter_nopar_gen[] = {
|
|||||||
SCMP_SYS(mmap),
|
SCMP_SYS(mmap),
|
||||||
#endif
|
#endif
|
||||||
SCMP_SYS(munmap),
|
SCMP_SYS(munmap),
|
||||||
|
#ifdef __NR_prlimit
|
||||||
|
SCMP_SYS(prlimit),
|
||||||
|
#endif
|
||||||
|
#ifdef __NR_prlimit64
|
||||||
|
SCMP_SYS(prlimit64),
|
||||||
|
#endif
|
||||||
SCMP_SYS(read),
|
SCMP_SYS(read),
|
||||||
SCMP_SYS(rt_sigreturn),
|
SCMP_SYS(rt_sigreturn),
|
||||||
SCMP_SYS(sched_getaffinity),
|
SCMP_SYS(sched_getaffinity),
|
||||||
SCMP_SYS(sendmsg),
|
SCMP_SYS(sendmsg),
|
||||||
SCMP_SYS(set_robust_list),
|
SCMP_SYS(set_robust_list),
|
||||||
|
#ifdef __NR_setrlimit
|
||||||
|
SCMP_SYS(setrlimit),
|
||||||
|
#endif
|
||||||
#ifdef __NR_sigreturn
|
#ifdef __NR_sigreturn
|
||||||
SCMP_SYS(sigreturn),
|
SCMP_SYS(sigreturn),
|
||||||
#endif
|
#endif
|
||||||
|
|||||||
Loading…
Reference in New Issue
Block a user