seccomp: add three more seccomp groups

@aio → asynchronous IO calls @sync → msync/fsync/... and friends @chown → changing file ownership (Also, change @privileged to reference @chown now, instead of the individual syscalls it contains)
author: Lennart Poettering <lennart@poettering.net> 2017-09-30 14:34:50 +0200
committer: Lennart Poettering <lennart@poettering.net> 2017-10-05 15:42:48 +0200
commit: 44898c535889ce31257f895c5fbcdfcfb6817bc6 (patch)
tree: 51fe242f8c3eb9124b650cfbf1fe0ea61fa9f0a6 /NEWS
parent: Update mailmap and contributor list (#7006) (diff)
download: systemd-44898c535889ce31257f895c5fbcdfcfb6817bc6.tar.xz
systemd-44898c535889ce31257f895c5fbcdfcfb6817bc6.zip
1 files changed, 2 insertions, 2 deletions
diff --git a/NEWS b/NEWS
index ac6f23c37d..61feb4b5c3 100644
--- a/NEWS
+++ b/NEWS
@@ -115,8 +115,8 @@ CHANGES WITH 235:
           each time the service is restarted due to Restart=, and may be
           queried using "systemctl show -p NRestarts …".
 
-        * New system call filter groups @setuid, @memlock, @signal and
-          @timer have been added, for usage with SystemCallFilter=
+        * New system call filter groups @aio, @sync, @chown, @setuid, @memlock,
+          @signal and @timer have been added, for usage with SystemCallFilter=
           in unit files and the new --system-call-filter= command line option
           of systemd-nspawn (see above).
author	Lennart Poettering <lennart@poettering.net>	2017-09-30 14:34:50 +0200
committer	Lennart Poettering <lennart@poettering.net>	2017-10-05 15:42:48 +0200
commit	44898c535889ce31257f895c5fbcdfcfb6817bc6 (patch)
tree	51fe242f8c3eb9124b650cfbf1fe0ea61fa9f0a6 /NEWS
parent	Update mailmap and contributor list (#7006) (diff)
download	systemd-44898c535889ce31257f895c5fbcdfcfb6817bc6.tar.xz systemd-44898c535889ce31257f895c5fbcdfcfb6817bc6.zip