]> git.ipfire.org Git - thirdparty/systemd.git/commit
projects / thirdparty / systemd.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 35f2c0b) | patch
seccomp: drop mincore() from @system-service syscall filter group
authorLennart Poettering <lennart@poettering.net>
Wed, 16 Jan 2019 11:13:37 +0000 (12:13 +0100)
committerZbigniew Jędrzejewski-Szmek <zbyszek@in.waw.pl>
Wed, 16 Jan 2019 17:08:35 +0000 (18:08 +0100)
commit57c03b1e6e0e5b4f6b53c76a49aa1486176df901
treeb2acc8fd83532b8d15985a77f8174bdca0a26b88tree | snapshot
parent35f2c0ba6afd70c4a1f74865d9231b85f4a01380commit | diff
seccomp: drop mincore() from @system-service syscall filter group

Previously, this system call was included in @system-service since it is
a "getter" only, i.e. only queries information, and doesn't change
anything, and hence was considered not risky.

However, as it turns out, mincore() is actually security sensitive, see
the discussion here:

https://lwn.net/Articles/776034/

Hence, let's adjust the system call filter and drop mincore() from it.

This constitues a compatibility break to some level, however I presume
we can get away with this as the systemcall is pretty exotic. The fact
that it is pretty exotic is also reflected by the fact that the kernel
intends to majorly change behaviour of the system call soon (see the
linked LWN article)
NEWS diff | blob | blame | history
src/shared/seccomp-util.c diff | blob | blame | history
Unnamed repository; edit this file 'description' to name the repository.