From: Cristian Toader <cristian.matei.toader@gmail.com>
Date: Wed, 21 Aug 2013 16:01:01 +0000 (+0300)
Subject: small open syscall modification (just in case)
X-Git-Tag: tor-0.2.5.1-alpha~39^2~39
X-Git-Url: http://git.ipfire.org/cgi-bin/gitweb.cgi?a=commitdiff_plain;h=b10472f92bfe6f4f6c60b70b270df71d1fb95d76;p=thirdparty%2Ftor.git

small open syscall modification (just in case)
---

diff --git a/src/common/sandbox.c b/src/common/sandbox.c
index a4a93dbfa5..e026c7ce3e 100644
--- a/src/common/sandbox.c
+++ b/src/common/sandbox.c
@@ -126,7 +126,7 @@ static int filter_nopar_gen[] = {
     SCMP_SYS(recvfrom),
     SCMP_SYS(sendto),
     SCMP_SYS(send),
-    SCMP_SYS(unlink) // ?
+    SCMP_SYS(unlink)
 };
 
 static int
@@ -264,7 +264,7 @@ sb_open(scmp_filter_ctx ctx, sandbox_cfg_t *filter)
   }
 
   // problem: required by getaddrinfo
-  rc = seccomp_rule_add(ctx, SCMP_ACT_ERRNO(1), SCMP_SYS(open), 1,
+  rc = seccomp_rule_add(ctx, SCMP_ACT_ERRNO(-1), SCMP_SYS(open), 1,
         SCMP_CMP(1, SCMP_CMP_EQ, O_RDONLY|O_CLOEXEC));
   if (rc != 0) {
     log_err(LD_BUG,"(Sandbox) failed to add open syscall, received libseccomp "