DWS/chrony
1
0
Fork 0
mirror of https://gitlab.com/chrony/chrony.git synced 2025-12-03 16:35:06 -05:00
Code Issues Packages Projects Releases Wiki Activity

sys_linux: add syscall filter context for NTS-KE

Browse Source 
The NTS-KE helper process will use a more restrictive filter than the
main process.
This commit is contained in:
Miroslav Lichvar
2019-11-26 14:16:47 +01:00
parent e6848b1e3f
commit 1d4690eb64
2 changed files with 40 additions and 35 deletions
Download Patch File Download Diff File Expand all files Collapse all files

1
sys.h
View File

@@ -40,6 +40,7 @@ extern void SYS_DropRoot(uid_t uid, gid_t gid);
typedef enum {
SYS_MAIN_PROCESS,
SYS_NTSKE_HELPER,
} SYS_SystemCallContext;
/* Enable a system call filter to allow only system calls