diff options
author | Lennart Poettering <lennart@poettering.net> | 2012-07-17 04:17:53 +0200 |
---|---|---|
committer | Lennart Poettering <lennart@poettering.net> | 2012-07-17 04:17:53 +0200 |
commit | 8351ceaea9480d9c2979aa2ff0f4982cfdfef58d (patch) | |
tree | fc1f94e5a17679960774da386a54d145255e4ef1 /src/core/execute.h | |
parent | cd96b3b86abb4a88cac2722bdfb6e5d4413f6831 (diff) |
execute: support syscall filtering using seccomp filters
Diffstat (limited to 'src/core/execute.h')
-rw-r--r-- | src/core/execute.h | 4 |
1 files changed, 4 insertions, 0 deletions
diff --git a/src/core/execute.h b/src/core/execute.h index 2083c2971b..187165cdc2 100644 --- a/src/core/execute.h +++ b/src/core/execute.h @@ -164,6 +164,8 @@ struct ExecContext { bool private_tmp; bool private_network; + bool no_new_privileges; + bool control_group_modify; int control_group_persistent; @@ -174,6 +176,8 @@ struct ExecContext { * don't enter a trigger loop. */ bool same_pgrp; + uint32_t *syscall_filter; + bool oom_score_adjust_set:1; bool nice_set:1; bool ioprio_set:1; |