sys_linux: allow setting IP_FREEBIND option in seccomp filter

This is needed when chronyd is started with no allow directive, but the NTP server socket is opened by the allow command later.
2015-09-09 16:36:48 +02:00 · 2015-09-09 16:36:48 +02:00 · 1619453b2b
commit 1619453b2b
parent 5a40950ffd
1 changed files with 1 additions and 1 deletions
--- a/sys_linux.c
+++ b/sys_linux.c
@ -478,7 +478,7 @@ SYS_Linux_EnableSystemCallFilter(int level)
  };

  const static int socket_options[][2] = {
-    { SOL_IP, IP_PKTINFO },
+    { SOL_IP, IP_PKTINFO }, { SOL_IP, IP_FREEBIND },
 #ifdef FEAT_IPV6
    { SOL_IPV6, IPV6_V6ONLY }, { SOL_IPV6, IPV6_RECVPKTINFO },
 #endif