]> git.ipfire.org Git - thirdparty/systemd.git/commitdiff
projects / thirdparty / systemd.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: cdf6258)
seccomp: add some missing syscalls to filter sets
authorLennart Poettering <lennart@poettering.net>
Wed, 14 Nov 2018 18:53:49 +0000 (19:53 +0100)
committerLennart Poettering <lennart@poettering.net>
Fri, 16 Nov 2018 15:10:57 +0000 (16:10 +0100)
src/shared/seccomp-util.c patch | blob | blame | history

diff --git a/src/shared/seccomp-util.c b/src/shared/seccomp-util.c
index 54280f59169a36c244ec79e20e828ea503084a16..e00001288da198e1ad6f7c6dd003d2e7d4d20dad 100644 (file)
--- a/src/shared/seccomp-util.c
+++ b/src/shared/seccomp-util.c
@@ -308,6 +308,7 @@ const SyscallFilterSet syscall_filter_sets[_SYSCALL_FILTER_SET_MAX] = {
                 "io_cancel\0"
                 "io_destroy\0"
                 "io_getevents\0"
+                "io_pgetevents\0"
                 "io_setup\0"
                 "io_submit\0"
         },
@@ -619,7 +620,9 @@ const SyscallFilterSet syscall_filter_sets[_SYSCALL_FILTER_SET_MAX] = {
                 "bpf\0"
                 "capset\0"
                 "chroot\0"
+                "fanotify_init\0"
                 "nfsservctl\0"
+                "open_by_handle_at\0"
                 "pivot_root\0"
                 "quotactl\0"
                 "setdomainname\0"
Unnamed repository; edit this file 'description' to name the repository.