1 |
commit: 33b69061f73aa4c921ecb0d3ac371484f76620b7 |
2 |
Author: Anthony G. Basile <blueness <AT> gentoo <DOT> org> |
3 |
AuthorDate: Wed Feb 28 13:23:16 2018 +0000 |
4 |
Commit: Anthony G. Basile <blueness <AT> gentoo <DOT> org> |
5 |
CommitDate: Wed Feb 28 13:23:36 2018 +0000 |
6 |
URL: https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=33b69061 |
7 |
|
8 |
net-misc/ntpsec: backport fix for seccomp + early-droproot |
9 |
|
10 |
See: https://gitlab.com/NTPsec/ntpsec/issues/460 |
11 |
Package-Manager: Portage-2.3.19, Repoman-2.3.6 |
12 |
|
13 |
net-misc/ntpsec/files/ntpsec-1.0.0-fix-seccomp.patch | 16 ++++++++++++++++ |
14 |
.../{ntpsec-1.0.0-r5.ebuild => ntpsec-1.0.0-r6.ebuild} | 4 ++++ |
15 |
2 files changed, 20 insertions(+) |
16 |
|
17 |
diff --git a/net-misc/ntpsec/files/ntpsec-1.0.0-fix-seccomp.patch b/net-misc/ntpsec/files/ntpsec-1.0.0-fix-seccomp.patch |
18 |
new file mode 100644 |
19 |
index 00000000000..b9716569f63 |
20 |
--- /dev/null |
21 |
+++ b/net-misc/ntpsec/files/ntpsec-1.0.0-fix-seccomp.patch |
22 |
@@ -0,0 +1,16 @@ |
23 |
+This is a backport of https://gitlab.com/NTPsec/ntpsec/commit/eef92d6217da03ad2ae41e298d110bdb05031381 |
24 |
+ |
25 |
+diff -Naur ntpsec-1.0.0.orig/ntpd/ntp_sandbox.c ntpsec-1.0.0/ntpd/ntp_sandbox.c |
26 |
+--- ntpsec-1.0.0.orig/ntpd/ntp_sandbox.c 2017-10-09 23:54:39.000000000 -0400 |
27 |
++++ ntpsec-1.0.0/ntpd/ntp_sandbox.c 2018-02-28 07:31:28.381406881 -0500 |
28 |
+@@ -354,6 +354,10 @@ |
29 |
+ SCMP_SYS(write), |
30 |
+ SCMP_SYS(unlink), |
31 |
+ |
32 |
++#ifdef ENABLE_EARLY_DROPROOT |
33 |
++ SCMP_SYS(getdents), |
34 |
++#endif |
35 |
++ |
36 |
+ #ifdef ENABLE_DNS_LOOKUP |
37 |
+ /* Don't comment out this block for testing. |
38 |
+ * pthread_create blocks signals so it will crash |
39 |
|
40 |
diff --git a/net-misc/ntpsec/ntpsec-1.0.0-r5.ebuild b/net-misc/ntpsec/ntpsec-1.0.0-r6.ebuild |
41 |
similarity index 97% |
42 |
rename from net-misc/ntpsec/ntpsec-1.0.0-r5.ebuild |
43 |
rename to net-misc/ntpsec/ntpsec-1.0.0-r6.ebuild |
44 |
index 5ab45707dee..890ec4f7ebf 100644 |
45 |
--- a/net-misc/ntpsec/ntpsec-1.0.0-r5.ebuild |
46 |
+++ b/net-misc/ntpsec/ntpsec-1.0.0-r6.ebuild |
47 |
@@ -66,6 +66,10 @@ pkg_setup() { |
48 |
|
49 |
src_prepare() { |
50 |
default |
51 |
+ |
52 |
+ # See https://gitlab.com/NTPsec/ntpsec/issues/460 |
53 |
+ eapply "${FILESDIR}"/${P}-fix-seccomp.patch |
54 |
+ |
55 |
python_copy_sources |
56 |
} |