]> git.ipfire.org Git - thirdparty/systemd.git/commit
projects / thirdparty / systemd.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: de4503c) | patch
core: Restrict mmap and mprotect with PAGE_WRITE|PAGE_EXEC (#3319) (#3379)
authorTopi Miettinen <topimiettinen@users.noreply.github.com>
Fri, 3 Jun 2016 15:58:18 +0000 (15:58 +0000)
committerLennart Poettering <lennart@poettering.net>
Fri, 3 Jun 2016 15:58:18 +0000 (17:58 +0200)
commitf3e43635932c14f8f0aea078adf3bfe09a9ba683
tree33371a308779fe106a49449cab1841ea1b4ec407tree | snapshot
parentde4503c8d9ea9799437695c988296cc532530a14commit | diff
core: Restrict mmap and mprotect with PAGE_WRITE|PAGE_EXEC (#3319) (#3379)

New exec boolean MemoryDenyWriteExecute, when set, installs
a seccomp filter to reject mmap(2) with PAGE_WRITE|PAGE_EXEC
and mprotect(2) with PAGE_EXEC.
man/systemd.exec.xml diff | blob | blame | history
src/core/dbus-execute.c diff | blob | blame | history
src/core/execute.c diff | blob | blame | history
src/core/execute.h diff | blob | blame | history
src/core/load-fragment-gperf.gperf.m4 diff | blob | blame | history
src/shared/bus-unit-util.c diff | blob | blame | history
Unnamed repository; edit this file 'description' to name the repository.