1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
|
From 310ef4a732817ce5056a69f8d817af1a639f453e Mon Sep 17 00:00:00 2001
From: Mike Gilbert <floppym@gentoo.org>
Date: Wed, 6 Nov 2024 13:53:51 -0500
Subject: [PATCH] Allow the readlinkat syscall when socket_wrapper is in use
On arm64, the realpath function calls readlinkat instead of readlink.
Fixes: #627
Signed-off-by: Mike Gilbert <floppym@gentoo.org>
---
src/worker-privs.c | 1 +
1 file changed, 1 insertion(+)
diff --git a/src/worker-privs.c b/src/worker-privs.c
index 54985999..6e076278 100644
--- a/src/worker-privs.c
+++ b/src/worker-privs.c
@@ -105,6 +105,7 @@ int disable_system_calls(struct worker_st *ws)
* them when socket wrapper is active */
if (getenv("SOCKET_WRAPPER_DIR") != NULL) {
ADD_SYSCALL(readlink, 0);
+ ADD_SYSCALL(readlinkat, 0);
}
/* we use quite some system calls here, and in the end
--
2.39.5
|
