]> git.ipfire.org Git - thirdparty/systemd.git/commit
projects / thirdparty / systemd.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: c9905d4) | patch
seccomp: include prlimit64 and ugetrlimit in @default
authorLennart Poettering <lennart@poettering.net>
Sat, 30 Sep 2017 12:08:26 +0000 (14:08 +0200)
committerLennart Poettering <lennart@poettering.net>
Thu, 5 Oct 2017 09:27:34 +0000 (11:27 +0200)
commit4c3a917617260956faeb4eceb606c316f6bea407
tree4a0f3fb53da5ba19c4e9bfc9eedd9c023b6518adtree | snapshot
parentc9905d4dd291c1525dc1a075651aade26498b204commit | diff
seccomp: include prlimit64 and ugetrlimit in @default

Also, move prlimit64() out of @resources.

prlimit64() may be used both for getting and setting resource limits, and
is implicitly called by glibc at various places, on some archs, the same
was as getrlimit(). SImilar, igetrlimit() is an arch-specific
replacement for getrlimit(), and hence should be whitelisted at the same
place as getrlimit() and prlimit64().

Also see: https://lists.freedesktop.org/archives/systemd-devel/2017-September/039543.html
src/nspawn/nspawn-seccomp.c diff | blob | blame | history
src/shared/seccomp-util.c diff | blob | blame | history
Unnamed repository; edit this file 'description' to name the repository.