Home Explore Help
Sign In
sengler
/
tor-parallel-relay-conn
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Browse Source

Permit the nanosleep system call in the seccomp2 callbox

Fixes bug 24969; bugfix on 0.2.5.1-alpha when the sandbox was introduced.
Nick Mathewson 6 years ago
parent
d3ff126309
commit
c4be6dfeab
2 changed files with 6 additions and 0 deletions
Split View Show Diff Stats
  1. 3 0
      changes/bug24969
  2. 3 0
      src/common/sandbox.c

+ 3 - 0
changes/bug24969
View File 

@@ -0,0 +1,3 @@
 
+  o Minor bugfixes (Linux seccomp2 sandbox):
 
+    - Allow the nanosleep() system call, which glibc uses to implement
 
+      sleep() and usleep(). Fixes bug 24969; bugfix on 0.2.5.1-alpha.

+ 3 - 0
src/common/sandbox.c
View File 

@@ -185,6 +185,9 @@ static int filter_nopar_gen[] = {
 
     SCMP_SYS(mmap),
 
 #endif
 
     SCMP_SYS(munmap),
 
+#ifdef __NR_nanosleep
 
+    SCMP_SYS(nanosleep),
 
+#endif
 
 #ifdef __NR_prlimit
 
     SCMP_SYS(prlimit),
 
 #endif