diff options
author | Julian Andres Klode <jak@debian.org> | 2017-10-25 21:38:31 +0200 |
---|---|---|
committer | Julian Andres Klode <jak@debian.org> | 2017-10-25 21:40:35 +0200 |
commit | cf1a98baa58360a56f38cc3d5ce01905f6ebc8f4 (patch) | |
tree | cd344ea6c372d5522646c76a8d404e3f045c4956 | |
parent | 43b9eb5bac15666fdc0346aca7031fab0fa5e064 (diff) |
methods: Enable additional syscalls (SYSV IPC) in fakeroot
If FAKED_MODE is set, enable SYSV IPC so we don't crash when
running in fakeroot.
Closes: #879662
-rw-r--r-- | methods/aptmethod.h | 10 |
1 files changed, 10 insertions, 0 deletions
diff --git a/methods/aptmethod.h b/methods/aptmethod.h index 5616ad824..bb24463c7 100644 --- a/methods/aptmethod.h +++ b/methods/aptmethod.h @@ -245,6 +245,16 @@ protected: ALLOW(getdents64); } + if (getenv("FAKED_MODE")) + { + ALLOW(semop); + ALLOW(semget); + ALLOW(msgsnd); + ALLOW(msgrcv); + ALLOW(msgget); + ALLOW(msgctl); + } + for (auto &custom : _config->FindVector("APT::Sandbox::Seccomp::Allow")) { if ((rc = seccomp_rule_add(ctx, SCMP_ACT_ALLOW, seccomp_syscall_resolve_name(custom.c_str()), 0))) |