diff options
| author | Lennart Poettering <lennart@poettering.net> | 2021-06-09 11:56:00 +0200 |
|---|---|---|
| committer | Zbigniew Jędrzejewski-Szmek <zbyszek@in.waw.pl> | 2021-07-09 19:08:33 +0200 |
| commit | daaf9273294f133ab9c970b3172608686de6f86a (patch) | |
| tree | e68024eb7ddc3da70b93b93deb1ad8db2dc53d7d | |
| parent | c480f705a63158538cd704d441dfbcea6556fe59 (diff) | |
| download | systemd-daaf9273294f133ab9c970b3172608686de6f86a.tar.gz | |
seccomp: add some recently added syscalls to filter groups
(cherry picked from commit 34254e599a28529bdb89f91571adeaf7c76d9f43)
| -rw-r--r-- | src/shared/seccomp-util.c | 4 |
1 files changed, 4 insertions, 0 deletions
diff --git a/src/shared/seccomp-util.c b/src/shared/seccomp-util.c index 9813d82f95..6da856872b 100644 --- a/src/shared/seccomp-util.c +++ b/src/shared/seccomp-util.c @@ -514,6 +514,7 @@ const SyscallFilterSet syscall_filter_sets[_SYSCALL_FILTER_SET_MAX] = { "epoll_ctl\0" "epoll_ctl_old\0" "epoll_pwait\0" + "epoll_pwait2\0" "epoll_wait\0" "epoll_wait_old\0" "eventfd\0" @@ -545,6 +546,7 @@ const SyscallFilterSet syscall_filter_sets[_SYSCALL_FILTER_SET_MAX] = { "msgsnd\0" "pipe\0" "pipe2\0" + "process_madvise\0" "process_vm_readv\0" "process_vm_writev\0" "semctl\0" @@ -593,6 +595,7 @@ const SyscallFilterSet syscall_filter_sets[_SYSCALL_FILTER_SET_MAX] = { "fsopen\0" "fspick\0" "mount\0" + "mount_setattr\0" "move_mount\0" "open_tree\0" "pivot_root\0" @@ -688,6 +691,7 @@ const SyscallFilterSet syscall_filter_sets[_SYSCALL_FILTER_SET_MAX] = { "open_by_handle_at\0" "pivot_root\0" "quotactl\0" + "quotactl_path\0" "setdomainname\0" "setfsuid\0" "setfsuid32\0" |