From: Lion Yang <lion@aosc.io>
Date: Mon, 2 Jul 2018 20:58:01 +0000 (+0800)
Subject: seccomp: add swapcontext into @process for ppc32
X-Git-Tag: v240~1008
X-Git-Url: http://git.ipfire.org/gitweb.cgi?a=commitdiff_plain;h=a9518dc36925ddca4d13ee46f3e78c46f0f4851a;p=thirdparty%2Fsystemd.git

seccomp: add swapcontext into @process for ppc32

There are some modern programming languages use userspace context switches
to implement coroutine features. PowerPC (32-bit) needs syscall "swapcontext" to get
contexts or switch between contexts, which is special.

Adding this rule should fix #9485.
---

diff --git a/src/shared/seccomp-util.c b/src/shared/seccomp-util.c
index c433cb90dce..ade3c656af6 100644
--- a/src/shared/seccomp-util.c
+++ b/src/shared/seccomp-util.c
@@ -651,6 +651,7 @@ const SyscallFilterSet syscall_filter_sets[_SYSCALL_FILTER_SET_MAX] = {
                 "rt_sigqueueinfo\0"
                 "rt_tgsigqueueinfo\0"
                 "setns\0"
+                "swapcontext\0" /* Some archs e.g. powerpc32 are using it to do userspace context switches */
                 "tgkill\0"
                 "times\0"
                 "tkill\0"