]> git.ipfire.org Git - thirdparty/lldpd.git/commitdiff
projects / thirdparty / lldpd.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: 3d916d6)
linux: add access syscall to seccomp rules
authorAntonio Quartulli <a@unstable.cc>
Sun, 9 Jan 2022 14:24:55 +0000 (15:24 +0100)
committerVincent Bernat <vincent@bernat.ch>
Sun, 9 Jan 2022 14:40:48 +0000 (15:40 +0100)
Signed-off-by: Antonio Quartulli <a@unstable.cc>
src/daemon/priv-seccomp.c patch | blob | blame | history

diff --git a/src/daemon/priv-seccomp.c b/src/daemon/priv-seccomp.c
index 5608c5f05155d5c902a40d5923b0811b8d9efc2a..32097d31914b83a2bcf851077360c58a36c6ec83 100644 (file)
--- a/src/daemon/priv-seccomp.c
+++ b/src/daemon/priv-seccomp.c
@@ -178,6 +178,7 @@ priv_seccomp_init(int remote, int child)
            (rc = seccomp_rule_add(ctx, SCMP_ACT_ALLOW, SCMP_SYS(gettimeofday), 0)) < 0 ||
            (rc = seccomp_rule_add(ctx, SCMP_ACT_ALLOW, SCMP_SYS(newfstatat), 0)) < 0 ||
            (rc = seccomp_rule_add(ctx, SCMP_ACT_ALLOW, SCMP_SYS(pread64), 0)) < 0 ||
+           (rc = seccomp_rule_add(ctx, SCMP_ACT_ALLOW, SCMP_SYS(access), 0)) < 0 ||
            /* The following are for resolving addresses */
            (rc = seccomp_rule_add(ctx, SCMP_ACT_ALLOW, SCMP_SYS(mmap), 0)) < 0 ||
            (rc = seccomp_rule_add(ctx, SCMP_ACT_ALLOW, SCMP_SYS(munmap), 0)) < 0 ||
Link Layer Discovery Protocol from http://github.com/vincentbernat/lldpd