[tracker-miners/wip/carlosg/better-stable-ids: 1/2] libtracker-miners-common: Allow getcwd/getgid syscalls in seccomp

From: Carlos Garnacho <carlosg src gnome org>
To: commits-list gnome org
Cc:
Subject: [tracker-miners/wip/carlosg/better-stable-ids: 1/2] libtracker-miners-common: Allow getcwd/getgid syscalls in seccomp
Date: Sat, 15 Jan 2022 10:06:12 +0000 (UTC)


commit e81bcf754985e78472ef8e787faec94eb105139c
Author: Carlos Garnacho <carlosg gnome org>
Date:   Sat Jan 15 10:37:51 2022 +0100

    libtracker-miners-common: Allow getcwd/getgid syscalls in seccomp
    
    Handling these syscalls is necessary in our shenanigans to get a stable
    URN, since this is harmless allow them.

 src/libtracker-miners-common/tracker-seccomp.c | 2 ++
 1 file changed, 2 insertions(+)
---
diff --git a/src/libtracker-miners-common/tracker-seccomp.c b/src/libtracker-miners-common/tracker-seccomp.c
index 1768ef1a1..88fbbe197 100644
--- a/src/libtracker-miners-common/tracker-seccomp.c
+++ b/src/libtracker-miners-common/tracker-seccomp.c
@@ -117,6 +117,7 @@ tracker_seccomp_init (void)
        /* Process management */
        ALLOW_RULE (exit_group);
        ALLOW_RULE (getuid);
+       ALLOW_RULE (getgid);
        ALLOW_RULE (getuid32);
        ALLOW_RULE (getegid);
        ALLOW_RULE (getegid32);
@@ -145,6 +146,7 @@ tracker_seccomp_init (void)
        ALLOW_RULE (faccessat2);
        ALLOW_RULE (getdents);
        ALLOW_RULE (getdents64);
+       ALLOW_RULE (getcwd);
        ALLOW_RULE (readlink);
        ALLOW_RULE (readlinkat);
        ALLOW_RULE (utime);

[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]