mirror/waydroid
1
0
Fork 0
mirror of https://github.com/waydroid/waydroid.git synced 2026-04-24 17:08:19 -04:00
Code Issues Packages Projects Releases Wiki Activity

Remove CAP_SYS_MODULE from the capability bounding set.

Browse Source
This commit is contained in:
Азалия Смарагдова
2022-10-11 19:39:44 +05:00
committed by Alessandro Astone
parent 6b89a1c822
commit 883fc4edf9
1 changed files with 1 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
data/configs/config_base
View File

@@ -5,7 +5,7 @@ lxc.arch = LXCARCH
lxc.autodev = 0
# lxc.autodev.tmpfs.size = 25000000
lxc.cap.keep = audit_control sys_nice wake_alarm setpcap setgid setuid sys_ptrace sys_admin wake_alarm block_suspend sys_time net_admin net_raw net_bind_service kill dac_override dac_read_search fsetid mknod syslog chown sys_resource fowner sys_module ipc_lock sys_chroot
lxc.cap.keep = audit_control sys_nice wake_alarm setpcap setgid setuid sys_ptrace sys_admin wake_alarm block_suspend sys_time net_admin net_raw net_bind_service kill dac_override dac_read_search fsetid mknod syslog chown sys_resource fowner ipc_lock sys_chroot
lxc.mount.auto = cgroup:ro sys:ro proc