From 33b69061f73aa4c921ecb0d3ac371484f76620b7 Mon Sep 17 00:00:00 2001
From: "Anthony G. Basile" <blueness@gentoo.org>
Date: Wed, 28 Feb 2018 08:23:16 -0500
Subject: net-misc/ntpsec: backport fix for seccomp + early-droproot

See: https://gitlab.com/NTPsec/ntpsec/issues/460
Package-Manager: Portage-2.3.19, Repoman-2.3.6
---
 net-misc/ntpsec/files/ntpsec-1.0.0-fix-seccomp.patch | 16 ++++++++++++++++
 1 file changed, 16 insertions(+)
 create mode 100644 net-misc/ntpsec/files/ntpsec-1.0.0-fix-seccomp.patch

(limited to 'net-misc/ntpsec/files')

diff --git a/net-misc/ntpsec/files/ntpsec-1.0.0-fix-seccomp.patch b/net-misc/ntpsec/files/ntpsec-1.0.0-fix-seccomp.patch
new file mode 100644
index 000000000000..b9716569f631
--- /dev/null
+++ b/net-misc/ntpsec/files/ntpsec-1.0.0-fix-seccomp.patch
@@ -0,0 +1,16 @@
+This is a backport of https://gitlab.com/NTPsec/ntpsec/commit/eef92d6217da03ad2ae41e298d110bdb05031381
+
+diff -Naur ntpsec-1.0.0.orig/ntpd/ntp_sandbox.c ntpsec-1.0.0/ntpd/ntp_sandbox.c
+--- ntpsec-1.0.0.orig/ntpd/ntp_sandbox.c	2017-10-09 23:54:39.000000000 -0400
++++ ntpsec-1.0.0/ntpd/ntp_sandbox.c	2018-02-28 07:31:28.381406881 -0500
+@@ -354,6 +354,10 @@
+ 	SCMP_SYS(write),
+         SCMP_SYS(unlink),
+ 
++#ifdef ENABLE_EARLY_DROPROOT
++	SCMP_SYS(getdents),
++#endif
++
+ #ifdef ENABLE_DNS_LOOKUP
+ /* Don't comment out this block for testing.
+  * pthread_create blocks signals so it will crash
-- 
cgit v1.2.3-65-gdbad