mirror of
https://gitlab.torproject.org/tpo/core/tor.git
synced 2024-11-28 06:13:31 +01:00
d75e7daaab
The need for casting negative syscall arguments depends on the glibc version. This affects the rules for the openat syscall which uses the constant AT_FDCWD that is defined as a negative number. This commit adds logic to only apply the cast when necessary, on glibc versions from 2.27 onwards.
7 lines
394 B
Plaintext
7 lines
394 B
Plaintext
o Minor bugfixes (linux seccomp2 sandbox):
|
|
- Fix a regression on sandboxing rules for the openat() syscall.
|
|
The fix for bug 25440 fixed the problem on systems with glibc >=
|
|
2.27 but broke tor on previous versions of glibc. We now apply
|
|
the correct seccomp rule according to the running glibc version.
|
|
Patch from Daniel Pinto. Fixes bug 27315; bugfix on 0.3.5.11.
|