summaryrefslogtreecommitdiff
path: root/methods/aptmethod.h
diff options
context:
space:
mode:
authorJulian Andres Klode <jak@debian.org>2017-10-26 17:42:58 +0200
committerJulian Andres Klode <jak@debian.org>2017-10-26 20:54:28 +0200
commitb514128890d5cf96a76393e8d261d79e0be7f0e4 (patch)
treea8715febca828ad32c1b4d6f7eba602e87b7d6cb /methods/aptmethod.h
parentb1989ab988cf4da47f979933e551b6dda694dcf2 (diff)
seccomp: Allow ipc() for fakeroot, and allow sysinfo() for sort
Sorting apparently calls sysconf() which calls sysinfo() to get free pages or whatever. Closes: #879814, #879826
Diffstat (limited to 'methods/aptmethod.h')
-rw-r--r--methods/aptmethod.h2
1 files changed, 2 insertions, 0 deletions
diff --git a/methods/aptmethod.h b/methods/aptmethod.h
index f88512564..e406e3c37 100644
--- a/methods/aptmethod.h
+++ b/methods/aptmethod.h
@@ -206,6 +206,7 @@ protected:
#endif
ALLOW(sync);
ALLOW(syscall);
+ ALLOW(sysinfo);
ALLOW(time);
ALLOW(truncate);
ALLOW(truncate64);
@@ -255,6 +256,7 @@ protected:
ALLOW(msgrcv);
ALLOW(msgget);
ALLOW(msgctl);
+ ALLOW(ipc);
}
for (auto &custom : _config->FindVector("APT::Sandbox::Seccomp::Allow"))