setuidgid seccomp profile - mrrl - Minimal Reliable Reproducible Linux

commit 21e9b33235da5c31f8375a984e2106ada471c2ba
parent a653136587bae0ca3b41e2af628865616a09b270
Author: Jan Pobrislo <ccx@te2000.cz>
Date:   Mon, 19 May 2025 11:34:12 +0000

setuidgid seccomp profile

Diffstat:
M templates/pkg/container-bin-image  | 1 +

1 file changed, 1 insertion(+), 0 deletions(-)
diff --git a/templates/pkg/container-bin-image b/templates/pkg/container-bin-image
@@ -16,6 +16,7 @@ easyseccomp -i default-policy.easyseccomp -o "$img/seccomp-default.bpf"
 easyseccomp -i default-policy.easyseccomp -d ALLOW_PTRACE -o "$img/seccomp-ptrace.bpf"
 easyseccomp -i default-policy.easyseccomp -d ALLOW_SECCOMP -d ALLOW_LANDLOCK -o "$img/seccomp-build.bpf"
 easyseccomp -i default-policy.easyseccomp -d ALLOW_PTRACE -d ALLOW_SETUID_SETGID -o "$img/seccomp-xpra.bpf"
+easyseccomp -i default-policy.easyseccomp -d ALLOW_SETUID_SETGID -o "$img/seccomp-setuidgid.bpf"
 cd "$img"
 
 # first commands without argv0 aliases

	mrrl Minimal Reliable Reproducible Linux
	git clone https://ccx.te2000.cz/git/mrrl
	Log \| Files \| Refs \| Submodules \| README