Allow the rt_sigprocmask syscall (RHEL-72083)

This is required by the getrandom function in glibc-2.39-29.el10 and later. Resolves: RHEL-72083
2025-01-02 12:07:49 +01:00 · 2025-01-02 12:07:49 +01:00 · 9435d1ee90
commit 9435d1ee90
parent c2951c2f04
2 changed files with 24 additions and 0 deletions
--- a/dhcpcd-RHEL-72083.patch
+++ b/dhcpcd-RHEL-72083.patch
@ -0,0 +1,23 @@
+commit e9e40400003db2e4f12dba85acabbaf2212a520f
+Author: Scott Shambarger <devel@shambarger.net>
+Date:   Sat Dec 7 16:37:28 2024 +0000
+
+    linux: Allow the __NR_rt_sigprocmask syscall
+    
+    Fixes recent glibc changes to getrandom() used by arc4random().
+    Fixes #421.
+
+diff --git a/src/privsep-linux.c b/src/privsep-linux.c
+index a40f2979238ee127..36a85c8d47a77674 100644
+--- a/src/privsep-linux.c
+++ b/src/privsep-linux.c
+@@ -409,6 +409,9 @@ static struct sock_filter ps_seccomp_filter[] = {
+ #ifdef __NR_recvmsg
+ 	SECCOMP_ALLOW(__NR_recvmsg),
+ #endif
+#ifdef __NR_rt_sigprocmask
+	SECCOMP_ALLOW(__NR_rt_sigprocmask),
+#endif
+ #ifdef __NR_rt_sigreturn
+ 	SECCOMP_ALLOW(__NR_rt_sigreturn),
+ #endif
--- a/dhcpcd.spec
+++ b/dhcpcd.spec
@ -14,6 +14,7 @@ Source2: https://keyserver.ubuntu.com/pks/lookup?op=get&search=0xa785ed2755955d9
 Source3: %{name}.service
 Source4: %{name}@.service
 Source5: systemd-sysusers.conf
+Patch1: dhcpcd-RHEL-72083.patch

 BuildRequires: gcc
 BuildRequires: systemd-rpm-macros