]> git.ipfire.org Git - thirdparty/systemd.git/commit - man/systemd.exec.xml
projects / thirdparty / systemd.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 150c430) | patch
exec: Add kill action to system call filters
authorTopi Miettinen <toiwoton@gmail.com>
Wed, 5 Aug 2020 13:31:26 +0000 (16:31 +0300)
committerTopi Miettinen <toiwoton@gmail.com>
Tue, 15 Sep 2020 09:54:17 +0000 (12:54 +0300)
commit005bfaf11876e261de6b99d597b69f664b53e7c5
tree7aa214e69fad5ff0d0ac245529707dbf2dbbd44dtree | snapshot
parent150c430fd499082164b6ddbd2f501e2333261a78commit | diff
exec: Add kill action to system call filters

Define explicit action "kill" for SystemCallErrorNumber=.

In addition to errno code, allow specifying "kill" as action for
SystemCallFilter=.

---
v7: seccomp_parse_errno_or_action() returns -EINVAL if !HAVE_SECCOMP
v6: use streq_ptr(), let errno_to_name() handle bad values, kill processes,
 init syscall_errno
v5: actually use seccomp_errno_or_action_to_string(), don't fail bus unit
parsing without seccomp
v4: fix build without seccomp
v3: drop log action
v2: action -> number
13 files changed:
man/systemd.exec.xml diff | blob | blame | history
src/basic/parse-util.c diff | blob | blame | history
src/basic/parse-util.h diff | blob | blame | history
src/core/dbus-execute.c diff | blob | blame | history
src/core/execute.c diff | blob | blame | history
src/core/load-fragment.c diff | blob | blame | history
src/shared/bus-unit-util.c diff | blob | blame | history
src/shared/seccomp-util.c diff | blob | blame | history
src/shared/seccomp-util.h diff | blob | blame | history
src/test/test-execute.c diff | blob | blame | history
src/test/test-parse-util.c diff | blob | blame | history
test/test-execute/exec-systemcallfilter-override-error-action.service [new file with mode: 0644] blob
test/test-execute/exec-systemcallfilter-override-error-action2.service [new file with mode: 0644] blob
Unnamed repository; edit this file 'description' to name the repository.