[systemd-commits] src/nspawn
Lennart Poettering
lennart at kemper.freedesktop.org
Tue Feb 18 22:28:19 CET 2014
src/nspawn/nspawn.c | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
New commits:
commit 3302da4667640ac130956d8d90be7c39fb39222f
Author: Lennart Poettering <lennart at poettering.net>
Date: Tue Feb 18 22:27:46 2014 +0100
nspawn: x86 is special with its socketcall() semantics, be permissive in the seccomp setup
diff --git a/src/nspawn/nspawn.c b/src/nspawn/nspawn.c
index 54f7187..379ea92 100644
--- a/src/nspawn/nspawn.c
+++ b/src/nspawn/nspawn.c
@@ -1531,7 +1531,7 @@ static int audit_still_doesnt_work_in_containers(void) {
goto finish;
}
- r = seccomp_rule_add_exact(
+ r = seccomp_rule_add(
seccomp,
SCMP_ACT_ERRNO(EAFNOSUPPORT),
SCMP_SYS(socket),
More information about the systemd-commits
mailing list