diff options
author | graysky | 2023-09-24 07:21:09 -0400 |
---|---|---|
committer | graysky | 2023-09-24 07:21:09 -0400 |
commit | e44a9ba53318bf428625812c228c34cb792480e4 (patch) | |
tree | bebb0738ba90d63335dd2376965ac9753e002c10 /0001-ZEN-Add-sysctl-and-CONFIG-to-disallow-unprivileged-C.patch | |
parent | 6832ee85ff309cd12f099d7e106fe0655e909f11 (diff) | |
download | aur-e44a9ba53318bf428625812c228c34cb792480e4.tar.gz |
Update to 6.5.5-1
Diffstat (limited to '0001-ZEN-Add-sysctl-and-CONFIG-to-disallow-unprivileged-C.patch')
-rw-r--r-- | 0001-ZEN-Add-sysctl-and-CONFIG-to-disallow-unprivileged-C.patch | 10 |
1 files changed, 5 insertions, 5 deletions
diff --git a/0001-ZEN-Add-sysctl-and-CONFIG-to-disallow-unprivileged-C.patch b/0001-ZEN-Add-sysctl-and-CONFIG-to-disallow-unprivileged-C.patch index 5e543ce18b22..fa1ec075fed3 100644 --- a/0001-ZEN-Add-sysctl-and-CONFIG-to-disallow-unprivileged-C.patch +++ b/0001-ZEN-Add-sysctl-and-CONFIG-to-disallow-unprivileged-C.patch @@ -1,7 +1,7 @@ -From 5681f5c2be9f5c088cafcd014edd21814771435c Mon Sep 17 00:00:00 2001 +From f9fd190932aac4c6fd677adf726d3402ee8cab02 Mon Sep 17 00:00:00 2001 From: "Jan Alexander Steffens (heftig)" <jan.steffens@gmail.com> Date: Mon, 16 Sep 2019 04:53:20 +0200 -Subject: [PATCH 01/12] ZEN: Add sysctl and CONFIG to disallow unprivileged +Subject: [PATCH 01/11] ZEN: Add sysctl and CONFIG to disallow unprivileged CLONE_NEWUSER Our default behavior continues to match the vanilla kernel. @@ -63,7 +63,7 @@ index 5e7d4885d1bf..13ad93775237 100644 bool "PID Namespaces" default y diff --git a/kernel/fork.c b/kernel/fork.c -index d2e12b6d2b18..95ca80492a37 100644 +index f81149739eb9..36fb0b711541 100644 --- a/kernel/fork.c +++ b/kernel/fork.c @@ -100,6 +100,10 @@ @@ -77,7 +77,7 @@ index d2e12b6d2b18..95ca80492a37 100644 #include <asm/pgalloc.h> #include <linux/uaccess.h> #include <asm/mmu_context.h> -@@ -2263,6 +2267,10 @@ __latent_entropy struct task_struct *copy_process( +@@ -2271,6 +2275,10 @@ __latent_entropy struct task_struct *copy_process( if ((clone_flags & (CLONE_NEWUSER|CLONE_FS)) == (CLONE_NEWUSER|CLONE_FS)) return ERR_PTR(-EINVAL); @@ -88,7 +88,7 @@ index d2e12b6d2b18..95ca80492a37 100644 /* * Thread groups must share signals as well, and detached threads * can only be started up within the thread group. -@@ -3416,6 +3424,12 @@ int ksys_unshare(unsigned long unshare_flags) +@@ -3424,6 +3432,12 @@ int ksys_unshare(unsigned long unshare_flags) if (unshare_flags & CLONE_NEWNS) unshare_flags |= CLONE_FS; |