From 8289d19ea5d9935883f71a32e2f8f82ba7a283fb Mon Sep 17 00:00:00 2001 From: "W. J. van der Laan" Date: Tue, 5 Oct 2021 00:07:44 +0200 Subject: [PATCH] util: Define SECCOMP_RET_KILL_PROCESS if not provided by the headers Define `SECCOMP_RET_KILL_PROCESS` as it isn't defined in the headers, as is the case for the GUIX build on this platform. --- src/util/syscall_sandbox.cpp | 4 ++++ 1 file changed, 4 insertions(+) diff --git a/src/util/syscall_sandbox.cpp b/src/util/syscall_sandbox.cpp index c4006cbd3cc..c6957be09c2 100644 --- a/src/util/syscall_sandbox.cpp +++ b/src/util/syscall_sandbox.cpp @@ -40,6 +40,10 @@ bool g_syscall_sandbox_log_violation_before_terminating{false}; #error Syscall sandbox is an experimental feature currently available only under Linux x86-64. #endif // defined(__x86_64__) +#ifndef SECCOMP_RET_KILL_PROCESS +#define SECCOMP_RET_KILL_PROCESS 0x80000000U +#endif + // This list of syscalls in LINUX_SYSCALLS is only used to map syscall numbers to syscall names in // order to be able to print user friendly error messages which include the syscall name in addition // to the syscall number.