File openssh-7.2p2-seccomp_geteuid.patch of Package openssh.29886

From 9ec6aec248cad4e7d466062fd1a915e1fe89b28d Mon Sep 17 00:00:00 2001
From: Old openssh patches <pcerny@suse.com>
Date: Tue, 25 Oct 2022 18:53:23 +0200
Subject: [PATCH] openssh-7.2p2-seccomp_geteuid

# HG changeset patch
# Parent  b07f00d5d805c043f5bdc7b8cf6701d924879fa6
Add the 'geteuid' syscall to allowed list, since it may becalled on the
mainframes when OpenSSL is using hardware crypto accelerator via libica
(via ibmica)

bsc#1004258
---
 sandbox-seccomp-filter.c | 6 ++++++
 1 file changed, 6 insertions(+)

diff --git a/sandbox-seccomp-filter.c b/sandbox-seccomp-filter.c
index a11ba973..95ce2568 100644
--- a/sandbox-seccomp-filter.c
+++ b/sandbox-seccomp-filter.c
@@ -153,6 +153,12 @@ static const struct sock_filter preauth_insns[] = {
 #ifdef __NR_getuid32
 	SC_ALLOW(getuid32),
 #endif
+#ifdef __NR_geteuid
+	SC_ALLOW(geteuid),
+#endif
+#ifdef __NR_geteuid32
+	SC_ALLOW(geteuid32),
+#endif
 #ifdef __NR_getrandom
 	SC_ALLOW(getrandom),
 #endif
-- 
2.38.0