From b33cd6b3eec52fc50c6c34d6f07a41cc6254c27f Mon Sep 17 00:00:00 2001
From: Luca Boccassi <luca.boccassi@microsoft.com>
Date: Thu, 25 Feb 2021 18:49:53 +0000
Subject: [PATCH] core: do not set noexec on sysfs/procfs

It causes a regression in certain running environments (networkd under LXC),
so avoid enabling for now.

Fixes #18795

Suggested-by: Topi Miettinen <toiwoton@gmail.com>
---
 src/core/namespace.c | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/core/namespace.c b/src/core/namespace.c
index f9a33e16bc9..829fa61738b 100644
--- a/src/core/namespace.c
+++ b/src/core/namespace.c
@@ -272,7 +272,7 @@ static bool mount_entry_read_only(const MountEntry *p) {
 static bool mount_entry_noexec(const MountEntry *p) {
         assert(p);
 
-        return p->noexec || IN_SET(p->mode, NOEXEC, INACCESSIBLE, SYSFS, PROCFS);
+        return p->noexec || IN_SET(p->mode, NOEXEC, INACCESSIBLE);
 }
 
 static bool mount_entry_exec(const MountEntry *p) {
-- 
2.47.3