Permit getuid()/geteuid() syscalls.

Requested for Linux/s390; patch from Eduardo Barretto via bz#2752; ok dtucker
author: Damien Miller <djm@mindrot.org> 2018-05-25 05:36:58 +0200
committer: Damien Miller <djm@mindrot.org> 2018-05-25 05:45:01 +0200
commit: 4ef75926ef517d539f2c7aac3188b09f315c86a7 (patch)
tree: 46075b86e1f2eefdc1631fc9d4b3a18a695ab5b3 /sandbox-seccomp-filter.c
parent: upstream: support ProxyJump=none to disable ProxyJump (diff)
download: openssh-4ef75926ef517d539f2c7aac3188b09f315c86a7.tar.xz
openssh-4ef75926ef517d539f2c7aac3188b09f315c86a7.zip
1 files changed, 12 insertions, 0 deletions
diff --git a/sandbox-seccomp-filter.c b/sandbox-seccomp-filter.c
index a189b2fb5..12c4ee130 100644
--- a/sandbox-seccomp-filter.c
+++ b/sandbox-seccomp-filter.c
@@ -166,6 +166,12 @@ static const struct sock_filter preauth_insns[] = {
 #ifdef __NR_exit_group
 	SC_ALLOW(__NR_exit_group),
 #endif
+#ifdef __NR_geteuid
+	SC_ALLOW(__NR_geteuid),
+#endif
+#ifdef __NR_geteuid32
+	SC_ALLOW(__NR_geteuid32),
+#endif
 #ifdef __NR_getpgid
 	SC_ALLOW(__NR_getpgid),
 #endif
@@ -178,6 +184,12 @@ static const struct sock_filter preauth_insns[] = {
 #ifdef __NR_gettimeofday
 	SC_ALLOW(__NR_gettimeofday),
 #endif
+#ifdef __NR_getuid
+	SC_ALLOW(__NR_getuid),
+#endif
+#ifdef __NR_getuid32
+	SC_ALLOW(__NR_getuid32),
+#endif
 #ifdef __NR_madvise
 	SC_ALLOW(__NR_madvise),
 #endif
author	Damien Miller <djm@mindrot.org>	2018-05-25 05:36:58 +0200
committer	Damien Miller <djm@mindrot.org>	2018-05-25 05:45:01 +0200
commit	4ef75926ef517d539f2c7aac3188b09f315c86a7 (patch)
tree	46075b86e1f2eefdc1631fc9d4b3a18a695ab5b3 /sandbox-seccomp-filter.c
parent	upstream: support ProxyJump=none to disable ProxyJump (diff)
download	openssh-4ef75926ef517d539f2c7aac3188b09f315c86a7.tar.xz openssh-4ef75926ef517d539f2c7aac3188b09f315c86a7.zip