diff options
author | netblue30 <netblue30@protonmail.com> | 2022-05-09 10:23:52 -0400 |
---|---|---|
committer | netblue30 <netblue30@protonmail.com> | 2022-05-09 10:23:52 -0400 |
commit | a3f00edb32aca7516d690db046dd1ed3eb186bdd (patch) | |
tree | 18ade02a399fa244f5aa899d9c3d2ab9bbc48d32 /src/libpostexecseccomp | |
parent | configure*: remove ultimately unused INSTALL and RANLIB check macros (diff) | |
download | firejail-a3f00edb32aca7516d690db046dd1ed3eb186bdd.tar.gz firejail-a3f00edb32aca7516d690db046dd1ed3eb186bdd.tar.zst firejail-a3f00edb32aca7516d690db046dd1ed3eb186bdd.zip |
always log seccomp errors (#5110)
Diffstat (limited to 'src/libpostexecseccomp')
-rw-r--r-- | src/libpostexecseccomp/libpostexecseccomp.c | 4 |
1 files changed, 4 insertions, 0 deletions
diff --git a/src/libpostexecseccomp/libpostexecseccomp.c b/src/libpostexecseccomp/libpostexecseccomp.c index e2339547e..c8f1fb3fb 100644 --- a/src/libpostexecseccomp/libpostexecseccomp.c +++ b/src/libpostexecseccomp/libpostexecseccomp.c | |||
@@ -55,6 +55,10 @@ static void load_seccomp(void) { | |||
55 | }; | 55 | }; |
56 | 56 | ||
57 | prctl(PR_SET_NO_NEW_PRIVS, 1, 0, 0, 0); | 57 | prctl(PR_SET_NO_NEW_PRIVS, 1, 0, 0, 0); |
58 | #ifdef SECCOMP_FILTER_FLAG_LOG | ||
59 | syscall(SYS_seccomp, SECCOMP_SET_MODE_FILTER, SECCOMP_FILTER_FLAG_LOG, &prog); | ||
60 | #else | ||
58 | prctl(PR_SET_SECCOMP, SECCOMP_MODE_FILTER, &prog); | 61 | prctl(PR_SET_SECCOMP, SECCOMP_MODE_FILTER, &prog); |
62 | #endif | ||
59 | munmap(filter, size); | 63 | munmap(filter, size); |
60 | } | 64 | } |