mirror of
https://gitlab.torproject.org/tpo/core/tor.git
synced 2024-11-24 12:23:32 +01:00
Permit setrlimit, prlimit, prlimit64 calls.
We call setrlimit under some circumstances, and it can call prlimit and prlimit64 under the hood. Fixes bug 15221.
This commit is contained in:
parent
17cfdb358c
commit
725e0c76e3
4
changes/bug15221
Normal file
4
changes/bug15221
Normal file
@ -0,0 +1,4 @@
|
||||
o Minor bugfixes (sandbox):
|
||||
- Allow the setrlimit syscall, and the prlimit and prlimit64 syscalls,
|
||||
which some libc implementations
|
||||
use under the hood. Fixes bug 15221. Bugfix on 0.2.5.1-alpha.
|
@ -177,11 +177,20 @@ static int filter_nopar_gen[] = {
|
||||
SCMP_SYS(mmap),
|
||||
#endif
|
||||
SCMP_SYS(munmap),
|
||||
#ifdef __NR_prlimit
|
||||
SCMP_SYS(prlimit),
|
||||
#endif
|
||||
#ifdef __NR_prlimit64
|
||||
SCMP_SYS(prlimit64),
|
||||
#endif
|
||||
SCMP_SYS(read),
|
||||
SCMP_SYS(rt_sigreturn),
|
||||
SCMP_SYS(sched_getaffinity),
|
||||
SCMP_SYS(sendmsg),
|
||||
SCMP_SYS(set_robust_list),
|
||||
#ifdef __NR_setrlimit
|
||||
SCMP_SYS(setrlimit),
|
||||
#endif
|
||||
#ifdef __NR_sigreturn
|
||||
SCMP_SYS(sigreturn),
|
||||
#endif
|
||||
|
Loading…
Reference in New Issue
Block a user