packages/tracker3-miners
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Fix the SIGSYS coredump issue that occurs when executing the /usr/libexec/tracker-extract-3 command

Browse Source 
(cherry picked from commit 9223b4a750de02f5a1e93aa14ebede495e6a8699)
This commit is contained in:
wangshuo 2025-01-13 15:02:02 +08:00 committed by openeuler-sync-bot
parent 8d600c5b6c
commit 7ea11d33e9
2 changed files with 49 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

40
libtracker-miners-common-Add-more-seccomp-rules.patch Normal file
View File

@ -0,0 +1,40 @@
From cf68500238be78599e5ada480345af47e3359abf Mon Sep 17 00:00:00 2001
From: wangshuo <wangshuo@kylinos.cn>
Date: Mon, 13 Jan 2025 14:35:41 +0800
Subject: [PATCH] libtracker-miners-common: Add more seccomp rules
Fix the SIGSYS coredump issue that occurs when executing the /usr/libexec/tracker-extract-3 command:
__GI___access (file=0xffffb936fc78 "/.flatpak-info", type=type@entry=0) at ../sysdeps/unix/sysv/linux/access.c:29
__GI___mkdir (path=path@entry=0xaaaaaab37980 "/root/.cache/tracker3/files/errors", mode=mode@entry=448) at ../sysdeps/unix/sysv/linux/generic/mkdir.c:31
See also:
https://gitlab.gnome.org/GNOME/localsearch/-/commit/30b24e9d379458b66f2465422821a66bec3a749b
https://gitlab.gnome.org/GNOME/localsearch/-/commit/2c45c7024b96dd9f989b0dd0258574e323ce032c
https://gitlab.gnome.org/GNOME/localsearch/-/issues/128
---
src/libtracker-miners-common/tracker-seccomp.c | 2 ++
1 file changed, 2 insertions(+)
diff --git a/src/libtracker-miners-common/tracker-seccomp.c b/src/libtracker-miners-common/tracker-seccomp.c
index a2b7ed9..32c24e2 100644
--- a/src/libtracker-miners-common/tracker-seccomp.c
+++ b/src/libtracker-miners-common/tracker-seccomp.c
@@ -102,6 +102,7 @@ tracker_seccomp_init (void)
ALLOW_RULE (statx);
ALLOW_RULE (fstatfs);
ALLOW_RULE (access);
+ ALLOW_RULE (faccessat);
ALLOW_RULE (getdents);
ALLOW_RULE (getdents64);
ALLOW_RULE (readlink);
@@ -173,6 +174,7 @@ tracker_seccomp_init (void)
ERROR_RULE (inotify_init, EINVAL);
ERROR_RULE (mkdir, EPERM);
+ ERROR_RULE (mkdirat, EPERM);
ERROR_RULE (rename, EPERM);
ERROR_RULE (unlink, EPERM);
ERROR_RULE (ioctl, EBADF);
--
2.27.0

10
tracker3-miners.spec
View File

@ -2,7 +2,7 @@
Name: tracker3-miners
Version: 3.0.5
Release: 5
Release: 6
Summary: One of two parts of tracker mainly contains the indexer daemon and tools.
License: GPLv2+ and LGPLv2+
@ -11,6 +11,7 @@ Source0: https://download.gnome.org/sources/tracker-miners/3.0/tracker-mi
Source1: tracker3-miners.conf
Patch1: tracker-miners-3.0.5-sw.patch
Patch2: CVE-2023-5557.patch
Patch3: libtracker-miners-common-Add-more-seccomp-rules.patch
BuildRequires: asciidoc libxslt coreutils glib2 glib2-devel gcc giflib-devel meson systemd
BuildRequires: pkgconfig(tracker-sparql-3.0) pkgconfig(tracker-testutils-3.0)
@ -91,6 +92,13 @@ sed -i 's/lib64/lib/g' %{buildroot}%{_sysconfdir}/ld.so.conf.d/%{name}-%{_arch}.
%changelog
* Mon Jan 13 2025 wangshuo <wangshuo@kylinos.cn> - 3.0.5-6
- Type:bugfix
- ID:NA
- SUG:NA
- DESC:Fix the SIGSYS coredump issue that occurs when executing
- the /usr/libexec/tracker-extract-3 command
* Mon May 20 2024 technology208 <technology@208suo.com> - 3.0.5-5
- fix CVE-2023-5557