sandbox: permit listen(2)

Fix for 12115; bugfix on 0.2.5.1-alpha
author: Nick Mathewson <nickm@torproject.org> 2014-05-27 19:28:12 -0400
committer: Nick Mathewson <nickm@torproject.org> 2014-05-27 19:28:12 -0400
commit: a056ffabbbdc76598830331c6550740a24fadeb8 (patch)
tree: 4d5a6374789e17f8e3f981329df68f8cf73d15b8
parent: 14842de9a731b6bbb348583645a31a3f3ab68af8 (diff)
download: tor-a056ffabbbdc76598830331c6550740a24fadeb8.tar
tor-a056ffabbbdc76598830331c6550740a24fadeb8.tar.gz
2 files changed, 4 insertions, 0 deletions
diff --git a/changes/bug12115 b/changes/bug12115
new file mode 100644
index 000000000..7b846492f
--- /dev/null
+++ b/changes/bug12115
@@ -0,0 +1,3 @@
+  o Minor bugfixes (linux seccomp sandbox):
+    - Avoid crashing when re-opening listener ports with the seccomp
+      sandbox active. Fixes bug 12115; bugfix on 0.2.5.1-alpha.
diff --git a/src/common/sandbox.c b/src/common/sandbox.c
index 7586c0cb3..ba1956b14 100644
--- a/src/common/sandbox.c
+++ b/src/common/sandbox.c
@@ -186,6 +186,7 @@ static int filter_nopar_gen[] = {
 
     // socket syscalls
     SCMP_SYS(bind),
+    SCMP_SYS(listen),
     SCMP_SYS(connect),
     SCMP_SYS(getsockname),
     SCMP_SYS(recvmsg),
author	Nick Mathewson <nickm@torproject.org>	2014-05-27 19:28:12 -0400
committer	Nick Mathewson <nickm@torproject.org>	2014-05-27 19:28:12 -0400
commit	a056ffabbbdc76598830331c6550740a24fadeb8 (patch)
tree	4d5a6374789e17f8e3f981329df68f8cf73d15b8
parent	14842de9a731b6bbb348583645a31a3f3ab68af8 (diff)
download	tor-a056ffabbbdc76598830331c6550740a24fadeb8.tar tor-a056ffabbbdc76598830331c6550740a24fadeb8.tar.gz