Skip to content

Commit 1329ea3

Browse files
AkihiroSudaAkihiroSuda
committed
seccomp: kernel 5.12 (mount_setattr)
Allow `mount_setattr` when `CAP_SYS_ADMIN` is granted. See https://man7.org/linux/man-pages/man2/mount_setattr.2.html Signed-off-by: Akihiro Suda <akihiro.suda.cz@hco.ntt.co.jp>
1 parent 52b8ca5 commit 1329ea3

File tree

1 file changed

+1
-0
lines changed

1 file changed

+1
-0
lines changed

contrib/seccomp/seccomp_default.go

Lines changed: 1 addition & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -537,6 +537,7 @@ func DefaultProfile(sp *specs.Spec) *specs.LinuxSeccomp {
537537
"fspick",
538538
"lookup_dcookie",
539539
"mount",
540+
"mount_setattr",
540541
"move_mount",
541542
"name_to_handle_at",
542543
"open_tree",

0 commit comments

Comments
 (0)