Pārlūkot izejas kodu

Merge pull request #34445 from pmoust/f-seccomp-quotacl

seccomp: whitelist quotactl with CAP_SYS_ADMIN
Yong Tang 8 gadi atpakaļ
vecāks
revīzija
bbb401de87

+ 1 - 0
profiles/seccomp/default.json

@@ -557,6 +557,7 @@
 				"mount",
 				"name_to_handle_at",
 				"perf_event_open",
+				"quotactl",
 				"setdomainname",
 				"sethostname",
 				"setns",

+ 1 - 0
profiles/seccomp/seccomp_default.go

@@ -488,6 +488,7 @@ func DefaultProfile() *types.Seccomp {
 				"mount",
 				"name_to_handle_at",
 				"perf_event_open",
+				"quotactl",
 				"setdomainname",
 				"sethostname",
 				"setns",