diff options
| -rw-r--r-- | src/core/main.c | 6 |
1 files changed, 6 insertions, 0 deletions
diff --git a/src/core/main.c b/src/core/main.c index ed64dd167b..b5bb3f6805 100644 --- a/src/core/main.c +++ b/src/core/main.c @@ -1191,6 +1191,12 @@ static int enforce_syscall_archs(Set *archs) { } } + r = seccomp_attr_set(seccomp, SCMP_FLTATR_CTL_NNP, 0); + if (r < 0) { + log_error("Failed to unset NO_NEW_PRIVS: %s", strerror(-r)); + goto finish; + } + r = seccomp_load(seccomp); if (r < 0) log_error("Failed to add install architecture seccomp: %s", strerror(-r)); |