Package: firejail
Version: 0.9.38-1
Severity: wishlist
Tags: patch
Hi. I just tried to backport firejail to Jessie, and had to apply the
following patch as the SYS_* macros were defined to __NR_*, but these
__NR_* macros were undefined in the 3.16.7 kernel header packages.
Do you have any plans to provide firejail in the Debian backports repo?
Index: firejail-0.9.38/src/firejail/seccomp.c
===================================================================
--- firejail-0.9.38.orig/src/firejail/seccomp.c 2016-04-04 06:52:35.000000000
+0200
+++ firejail-0.9.38/src/firejail/seccomp.c 2016-04-04 07:11:24.785468992
+0200
@@ -420,7 +428,7 @@
#ifdef SYS_init_module
filter_add_blacklist(SYS_init_module, 0);
#endif
-#ifdef SYS_finit_module // introduced in 2013
+#ifdef __NR_finit_module // introduced in 2013
filter_add_blacklist(SYS_finit_module, 0);
#endif
#ifdef SYS_delete_module
@@ -478,7 +486,7 @@
#ifdef SYS_fanotify_init
filter_add_blacklist(SYS_fanotify_init, 0);
#endif
-#ifdef SYS_kcmp
+#ifdef __NR_kcmp
filter_add_blacklist(SYS_kcmp, 0);
#endif
--
Happy hacking
Petter Reinholdtsen
