Merge pull request #32965 from ijc25/setarch-2.6

seccomp: Allow personality with UNAME26 bit set.
This commit is contained in:
Sebastiaan van Stijn 2017-05-03 13:44:21 -07:00 коммит произвёл GitHub
Родитель fa4b377bbc cd456433ea
Коммит bf5cf84534
2 изменённых файлов: 56 добавлений и 0 удалений

Просмотреть файл

@ -398,6 +398,40 @@
"includes": {},
"excludes": {}
},
{
"names": [
"personality"
],
"action": "SCMP_ACT_ALLOW",
"args": [
{
"index": 0,
"value": 131072,
"valueTwo": 0,
"op": "SCMP_CMP_EQ"
}
],
"comment": "",
"includes": {},
"excludes": {}
},
{
"names": [
"personality"
],
"action": "SCMP_ACT_ALLOW",
"args": [
{
"index": 0,
"value": 131080,
"valueTwo": 0,
"op": "SCMP_CMP_EQ"
}
],
"comment": "",
"includes": {},
"excludes": {}
},
{
"names": [
"personality"

Просмотреть файл

@ -377,6 +377,28 @@ func DefaultProfile() *types.Seccomp {
},
},
},
{
Names: []string{"personality"},
Action: types.ActAllow,
Args: []*types.Arg{
{
Index: 0,
Value: 0x20000,
Op: types.OpEqualTo,
},
},
},
{
Names: []string{"personality"},
Action: types.ActAllow,
Args: []*types.Arg{
{
Index: 0,
Value: 0x20008,
Op: types.OpEqualTo,
},
},
},
{
Names: []string{"personality"},
Action: types.ActAllow,