summaryrefslogtreecommitdiff
diff options
context:
space:
mode:
authorJulian Andres Klode <jak@debian.org>2017-10-25 21:38:31 +0200
committerJulian Andres Klode <jak@debian.org>2017-10-25 21:40:35 +0200
commitcf1a98baa58360a56f38cc3d5ce01905f6ebc8f4 (patch)
treecd344ea6c372d5522646c76a8d404e3f045c4956
parent43b9eb5bac15666fdc0346aca7031fab0fa5e064 (diff)
methods: Enable additional syscalls (SYSV IPC) in fakeroot
If FAKED_MODE is set, enable SYSV IPC so we don't crash when running in fakeroot. Closes: #879662
-rw-r--r--methods/aptmethod.h10
1 files changed, 10 insertions, 0 deletions
diff --git a/methods/aptmethod.h b/methods/aptmethod.h
index 5616ad824..bb24463c7 100644
--- a/methods/aptmethod.h
+++ b/methods/aptmethod.h
@@ -245,6 +245,16 @@ protected:
ALLOW(getdents64);
}
+ if (getenv("FAKED_MODE"))
+ {
+ ALLOW(semop);
+ ALLOW(semget);
+ ALLOW(msgsnd);
+ ALLOW(msgrcv);
+ ALLOW(msgget);
+ ALLOW(msgctl);
+ }
+
for (auto &custom : _config->FindVector("APT::Sandbox::Seccomp::Allow"))
{
if ((rc = seccomp_rule_add(ctx, SCMP_ACT_ALLOW, seccomp_syscall_resolve_name(custom.c_str()), 0)))