summaryrefslogtreecommitdiffstats
path: root/src/shared/seccomp-util.h
diff options
context:
space:
mode:
authorLennart Poettering <lennart@poettering.net>2019-03-20 19:00:28 +0100
committerLennart Poettering <lennart@poettering.net>2019-04-02 16:56:48 +0200
commit3c27973b13724ede05a06a5d346a569794cda433 (patch)
treedefb5b572c45f0b5cd4ac32b51bb4c6c51ca4b85 /src/shared/seccomp-util.h
parentseccomp: add debug messages to seccomp_protect_hostname() (diff)
downloadsystemd-3c27973b13724ede05a06a5d346a569794cda433.tar.xz
systemd-3c27973b13724ede05a06a5d346a569794cda433.zip
seccomp: introduce seccomp_restrict_suid_sgid() for blocking chmod() for suid/sgid files
Diffstat (limited to 'src/shared/seccomp-util.h')
-rw-r--r--src/shared/seccomp-util.h1
1 files changed, 1 insertions, 0 deletions
diff --git a/src/shared/seccomp-util.h b/src/shared/seccomp-util.h
index 477400237b..31c6c211fd 100644
--- a/src/shared/seccomp-util.h
+++ b/src/shared/seccomp-util.h
@@ -86,6 +86,7 @@ int seccomp_restrict_realtime(void);
int seccomp_memory_deny_write_execute(void);
int seccomp_lock_personality(unsigned long personality);
int seccomp_protect_hostname(void);
+int seccomp_restrict_suid_sgid(void);
extern const uint32_t seccomp_local_archs[];
generated by cgit v1.2.3 (git 2.39.1) at 2024-12-01 20:34:16 +0100