emo/ndhc
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

ifch doesn't need chmod or unlink whitelisted for seccomp-filter.

Browse Source
This commit is contained in:
Nicholas J. Kain 2014-03-22 23:39:50 -04:00
parent 71db577ed5
commit 4b92b10f32
1 changed files with 0 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
ndhc/seccomp.c
View File

@ -145,8 +145,6 @@ int enforce_seccomp_ifch(void)
ALLOW_SYSCALL(lseek), ALLOW_SYSCALL(lseek),
ALLOW_SYSCALL(truncate), ALLOW_SYSCALL(truncate),
ALLOW_SYSCALL(fcntl), ALLOW_SYSCALL(fcntl),
ALLOW_SYSCALL(unlink),
ALLOW_SYSCALL(chmod),
ALLOW_SYSCALL(rt_sigreturn), ALLOW_SYSCALL(rt_sigreturn),
#ifdef __NR_sigreturn #ifdef __NR_sigreturn