1 files changed, 15 insertions, 0 deletions
diff --git a/include/linux/prctl.h b/include/linux/prctl.h
index e0cfec2490aa..78b76e24cc7e 100644
--- a/include/linux/prctl.h
+++ b/include/linux/prctl.h
@@ -124,4 +124,19 @@
 #define PR_SET_CHILD_SUBREAPER 36
 #define PR_GET_CHILD_SUBREAPER 37
+/*
+ * If no_new_privs is set, then operations that grant new privileges (i.e.
+ * execve) will either fail or not grant them.  This affects suid/sgid,
+ * file capabilities, and LSMs.
+ *
+ * Operations that merely manipulate or drop existing privileges (setresuid,
+ * capset, etc.) will still work.  Drop those privileges if you want them gone.
+ *
+ * Changing LSM security domain is considered a new privilege.  So, for example,
+ * asking selinux for a specific new context (e.g. with runcon) will result
+ * in execve returning -EPERM.
+ */
+#define PR_SET_NO_NEW_PRIVS 38
+#define PR_GET_NO_NEW_PRIVS 39
 #endif /* _LINUX_PRCTL_H */

diff --git a/include/linux/prctl.h b/include/linux/prctl.h index e0cfec2490aa..78b76e24cc7e 100644 --- a/include/linux/prctl.h +++ b/include/linux/prctl.h
@@ -124,4 +124,19 @@
124	#define PR_SET_CHILD_SUBREAPER 36	124	#define PR_SET_CHILD_SUBREAPER 36
125	#define PR_GET_CHILD_SUBREAPER 37	125	#define PR_GET_CHILD_SUBREAPER 37
126		126
		127	/*
		128	* If no_new_privs is set, then operations that grant new privileges (i.e.
		129	* execve) will either fail or not grant them. This affects suid/sgid,
		130	* file capabilities, and LSMs.
		131	*
		132	* Operations that merely manipulate or drop existing privileges (setresuid,
		133	* capset, etc.) will still work. Drop those privileges if you want them gone.
		134	*
		135	* Changing LSM security domain is considered a new privilege. So, for example,
		136	* asking selinux for a specific new context (e.g. with runcon) will result
		137	* in execve returning -EPERM.
		138	*/
		139	#define PR_SET_NO_NEW_PRIVS 38
		140	#define PR_GET_NO_NEW_PRIVS 39
		141
127	#endif /* _LINUX_PRCTL_H */	142	#endif /* _LINUX_PRCTL_H */