[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]
[tor-commits] [tor/master] removed open flags (postponed), added mmap2 flags
commit 5baea851892bcc2734c0e62e96b8d2d6e2626c51
Author: Cristian Toader <cristian.matei.toader@xxxxxxxxx>
Date: Tue Jul 30 19:37:28 2013 +0300
removed open flags (postponed), added mmap2 flags
---
src/common/sandbox.c | 11 +++++++----
1 file changed, 7 insertions(+), 4 deletions(-)
diff --git a/src/common/sandbox.c b/src/common/sandbox.c
index 8e7796b..b55586b 100644
--- a/src/common/sandbox.c
+++ b/src/common/sandbox.c
@@ -58,7 +58,13 @@ static sandbox_static_cfg_t filter_static[] = {
{SCMP_SYS(socketcall), PARAM_NUM, 0, 18, 0},
#endif
- {SCMP_SYS(open), PARAM_NUM, 1, O_RDONLY | O_CLOEXEC, 0}
+#ifdef __NR_mmap2
+ {SCMP_SYS(mmap2), PARAM_NUM, 2, PROT_READ, 0},
+ {SCMP_SYS(mmap2), PARAM_NUM, 2, PROT_READ|PROT_WRITE, 0},
+ {SCMP_SYS(mmap2), PARAM_NUM, 3, MAP_PRIVATE|MAP_ANONYMOUS, 0},
+ {SCMP_SYS(mmap2), PARAM_NUM, 3, MAP_PRIVATE, 0},
+#endif
+
};
/** Variable used for storing all syscall numbers that will be allowed with the
@@ -111,9 +117,6 @@ static int filter_nopar_gen[] = {
SCMP_SYS(mkdir),
SCMP_SYS(mlockall),
SCMP_SYS(mmap),
-#ifdef __NR_mmap2
- SCMP_SYS(mmap2),
-#endif
SCMP_SYS(mprotect),
SCMP_SYS(mremap),
SCMP_SYS(munmap),
_______________________________________________
tor-commits mailing list
tor-commits@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-commits