From: Vincent Bernat <vincent@bernat.im>
Date: Wed, 13 Sep 2017 17:07:43 +0000 (+0200)
Subject: priv: add getpid() to seccomp filter
X-Git-Tag: 0.9.9~14
X-Git-Url: http://git.ipfire.org/?a=commitdiff_plain;h=37a293d33333e38aacac4c7fc16426cccca19291;p=thirdparty%2Flldpd.git

priv: add getpid() to seccomp filter
---

diff --git a/src/daemon/priv-seccomp.c b/src/daemon/priv-seccomp.c
index 19052367..7d911bc0 100644
--- a/src/daemon/priv-seccomp.c
+++ b/src/daemon/priv-seccomp.c
@@ -161,6 +161,7 @@ priv_seccomp_init(int remote, int child)
 	    (rc = seccomp_rule_add(ctx, SCMP_ACT_ALLOW, SCMP_SYS(sendmmsg), 0)) < 0 ||
 	    (rc = seccomp_rule_add(ctx, SCMP_ACT_ALLOW, SCMP_SYS(wait4), 0)) < 0 ||
 	    (rc = seccomp_rule_add(ctx, SCMP_ACT_ALLOW, SCMP_SYS(stat), 0)) < 0 ||
+	    (rc = seccomp_rule_add(ctx, SCMP_ACT_ALLOW, SCMP_SYS(getpid), 0)) < 0 ||
 	    (rc = seccomp_rule_add(ctx, SCMP_ACT_ALLOW, SCMP_SYS(rt_sigreturn), 0)) < 0 ||
 	    (rc = seccomp_rule_add(ctx, SCMP_ACT_ALLOW, SCMP_SYS(close), 0)) < 0 ||
 	    (rc = seccomp_rule_add(ctx, SCMP_ACT_ALLOW, SCMP_SYS(sendto), 0)) < 0 ||