From 32ce4b065911ef73f584691506698a1b1d6de23a Mon Sep 17 00:00:00 2001
From: default <nobody@localhost>
Date: Thu, 11 Jan 2024 11:07:07 +0100
Subject: [PATCH] Added an unveil() call for "/tmp".

It seems that it's needed for shm_open() to succeed,
whatever the first argument points to.

No idea why.
---
 data.c | 1 +
 1 file changed, 1 insertion(+)

diff --git a/data.c b/data.c
index f2b4e0f..5e2f43d 100644
--- a/data.c
+++ b/data.c
@@ -111,6 +111,7 @@ int srv_open(char *basedir, int auto_upgrade)
     else {
         srv_debug(1, xs_fmt("Calling unveil()"));
         unveil(basedir,                "rwc");
+        unveil("/tmp",                 "rwc");
         unveil("/usr/sbin/sendmail",   "x");
         unveil("/etc/resolv.conf",     "r");
         unveil("/etc/hosts",           "r");