From: Lennart Poettering <lennart@poettering.net>
Date: Thu, 8 Nov 2018 19:13:54 +0000 (+0100)
Subject: seccomp-util: drop process_vm_readv from @debug group
X-Git-Tag: v240~167^2~19
X-Git-Url: http://git.ipfire.org/gitweb.cgi?a=commitdiff_plain;h=ad5ffe3716e76469d2d595b648b8e13c86a0c94b;p=thirdparty%2Fsystemd.git

seccomp-util: drop process_vm_readv from @debug group

it's already part of @ipc, no need to have it in both. Given that @ipc
is much more popular (as it is part of @system-service for example),
let's not define it a second time.
---

diff --git a/src/shared/seccomp-util.c b/src/shared/seccomp-util.c
index 67ccd43c3f0..42d6dd2a943 100644
--- a/src/shared/seccomp-util.c
+++ b/src/shared/seccomp-util.c
@@ -371,8 +371,6 @@ const SyscallFilterSet syscall_filter_sets[_SYSCALL_FILTER_SET_MAX] = {
                 .value =
                 "lookup_dcookie\0"
                 "perf_event_open\0"
-                "process_vm_readv\0"
-                "process_vm_writev\0"
                 "ptrace\0"
                 "rtas\0"
 #ifdef __NR_s390_runtime_instr