blob: ff2caed413fc9e19f9b3c3b8b8dd1d41894f2be3 (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
|
From 7e1d9d51329a0e0f3d9cd1dbc3f9509251950e81 Mon Sep 17 00:00:00 2001
From: tka <tka@kamph.org>
Date: Wed, 24 Jun 2020 11:18:45 +0200
Subject: [PATCH] Allow getcwd for Gentoo's portage sandbox
Gentoo-bug: https://bugs.gentoo.org/728978
Signed-off-by: Lars Wendler <polynomial-c@gentoo.org>
---
src/seccomp.c | 3 +++
1 file changed, 3 insertions(+)
diff --git a/src/seccomp.c b/src/seccomp.c
index 68c56485..af55918e 100644
--- a/src/seccomp.c
+++ b/src/seccomp.c
@@ -227,6 +227,9 @@ enable_sandbox_full(void)
ALLOW_RULE(unlink);
ALLOW_RULE(write);
+ // needed by Gentoo's portage sandbox
+ ALLOW_RULE(getcwd);
+
#if 0
// needed by valgrind
--
2.27.0
|
