1
0
Fork 0
mirror of https://github.com/moby/moby.git synced 2022-11-09 12:21:53 -05:00

Merge pull request #42083 from clubby789/enable_process_vm

Enable `process_vm_readv` and `process_vm_writev` for kernel >= 4.8
This commit is contained in:
Sebastiaan van Stijn 2021-03-09 12:07:47 +01:00 committed by GitHub
commit 4bbc52c04b
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23
2 changed files with 7 additions and 1 deletions

View file

@ -401,6 +401,8 @@
}, },
{ {
"names": [ "names": [
"process_vm_readv",
"process_vm_writev",
"ptrace" "ptrace"
], ],
"action": "SCMP_ACT_ALLOW", "action": "SCMP_ACT_ALLOW",

View file

@ -390,7 +390,11 @@ func DefaultProfile() *Seccomp {
Args: []*specs.LinuxSeccompArg{}, Args: []*specs.LinuxSeccompArg{},
}, },
{ {
Names: []string{"ptrace"}, Names: []string{
"process_vm_readv",
"process_vm_writev",
"ptrace",
},
Action: specs.ActAllow, Action: specs.ActAllow,
Includes: Filter{ Includes: Filter{
MinKernel: &KernelVersion{4, 8}, MinKernel: &KernelVersion{4, 8},