From 7d73b3ffa0bf13ba78debfb7f099758b0d0fbef3 Mon Sep 17 00:00:00 2001
From: Patrick Schleizer <adrelanos@whonix.org>
Date: Tue, 17 Aug 2021 15:21:26 -0400
Subject: [PATCH] add hardened malloc compatibility for haveged workaround

`/lib/systemd/system/haveged.service.d/30_security-misc.conf`

`SystemCallFilter=getrandom`

Otherwise haveged will exit with a core dump.
---
 lib/systemd/system/haveged.service.d/30_security-misc.conf | 7 +++++++
 1 file changed, 7 insertions(+)
 create mode 100644 lib/systemd/system/haveged.service.d/30_security-misc.conf

diff --git a/lib/systemd/system/haveged.service.d/30_security-misc.conf b/lib/systemd/system/haveged.service.d/30_security-misc.conf
new file mode 100644
index 0000000..7193a02
--- /dev/null
+++ b/lib/systemd/system/haveged.service.d/30_security-misc.conf
@@ -0,0 +1,7 @@
+## Copyright (C) 2021 - 2021 ENCRYPTED SUPPORT LP <adrelanos@whonix.org>
+## See the file COPYING for copying conditions.
+
+[Service]
+## hardened malloc compatibility
+## Otherwise haveged will exit with a core dump.
+SystemCallFilter=getrandom