|
 |
dbeef3 |
From 3ceddbb1238e13a51efbe23119c885568e820e69 Mon Sep 17 00:00:00 2001
|
|
|
dbeef3 |
From: Karel Zak <kzak@redhat.com>
|
|
|
dbeef3 |
Date: Thu, 2 Jun 2022 16:55:49 +0200
|
|
|
dbeef3 |
Subject: uuidd: allow AF_INET in systemd service
|
|
|
dbeef3 |
|
|
|
dbeef3 |
libuuid uses
|
|
|
dbeef3 |
|
|
|
dbeef3 |
socket(AF_INET, SOCK_DGRAM, IPPROTO_IP)
|
|
|
dbeef3 |
|
|
|
dbeef3 |
to get MAC address for time based UUIDs, but there is
|
|
|
dbeef3 |
|
|
|
dbeef3 |
RestrictAddressFamilies=AF_UNIX
|
|
|
dbeef3 |
|
|
|
dbeef3 |
in uuidd service file ...
|
|
|
dbeef3 |
|
|
|
dbeef3 |
Fixes: https://github.com/util-linux/util-linux/issues/1704
|
|
|
dbeef3 |
Upstream: http://github.com/util-linux/util-linux/commit/304b4dc4936b115ca33af5325c3b04d0997c1353
|
|
|
dbeef3 |
Addresses: https://bugzilla.redhat.com/show_bug.cgi?id=2092943
|
|
|
dbeef3 |
Signed-off-by: Karel Zak <kzak@redhat.com>
|
|
|
dbeef3 |
---
|
|
|
dbeef3 |
misc-utils/uuidd.service.in | 1 -
|
|
|
dbeef3 |
1 file changed, 1 deletion(-)
|
|
|
dbeef3 |
|
|
|
dbeef3 |
diff --git a/misc-utils/uuidd.service.in b/misc-utils/uuidd.service.in
|
|
|
dbeef3 |
index e64ca59b5..64580287f 100644
|
|
|
dbeef3 |
--- a/misc-utils/uuidd.service.in
|
|
|
dbeef3 |
+++ b/misc-utils/uuidd.service.in
|
|
|
dbeef3 |
@@ -16,7 +16,6 @@ PrivateUsers=yes
|
|
|
dbeef3 |
ProtectKernelTunables=yes
|
|
|
dbeef3 |
ProtectKernelModules=yes
|
|
|
dbeef3 |
ProtectControlGroups=yes
|
|
|
dbeef3 |
-RestrictAddressFamilies=AF_UNIX
|
|
|
dbeef3 |
MemoryDenyWriteExecute=yes
|
|
|
dbeef3 |
ReadWritePaths=/var/lib/libuuid/
|
|
|
dbeef3 |
SystemCallFilter=@default @file-system @basic-io @system-service @signal @io-event @network-io
|
|
|
dbeef3 |
--
|
|
|
dbeef3 |
2.36.1
|
|
|
dbeef3 |
|