We use cookies to ensure you get the best experience on our website
Home Explore Help
Register Sign In
0ct0pu5
/
moby
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Browse Source

Merge pull request #45835 from neersighted/backport/45766/20.10

[20.10 backport] seccomp: always allow name_to_handle_at(2)
Bjorn Neergaard 2 years ago
parent
cf806e4436 a480b37621
commit
a3debeefd7
2 changed files with 2 additions and 2 deletions
Split View Show Diff Stats
  1. 1 1
      profiles/seccomp/default.json
  2. 1 1
      profiles/seccomp/default_linux.go

+ 1 - 1
profiles/seccomp/default.json
View File 

@@ -232,6 +232,7 @@
 
 				"munlock",
 
 				"munlockall",
 
 				"munmap",
 
+				"name_to_handle_at",
 
 				"nanosleep",
 
 				"newfstatat",
 
 				"_newselect",
 
@@ -607,7 +608,6 @@
 
 				"mount",
 
 				"mount_setattr",
 
 				"move_mount",
 
-				"name_to_handle_at",
 
 				"open_tree",
 
 				"perf_event_open",
 
 				"quotactl",

+ 1 - 1
profiles/seccomp/default_linux.go
View File 

@@ -227,6 +227,7 @@ func DefaultProfile() *Seccomp {
 
 				"munlock",
 
 				"munlockall",
 
 				"munmap",
 
+				"name_to_handle_at",
 
 				"nanosleep",
 
 				"newfstatat",
 
 				"_newselect",
 
@@ -540,7 +541,6 @@ func DefaultProfile() *Seccomp {
 
 				"mount",
 
 				"mount_setattr",
 
 				"move_mount",
 
-				"name_to_handle_at",
 
 				"open_tree",
 
 				"perf_event_open",
 
 				"quotactl",

Contact | Legal | Takedown | Status
Self-hosted public services - About
NibbleSpot by 0ct0pu5