cronekorkn/left4me
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
left4me/deploy/files/etc
History
mwiegand 55b013833b
deploy/hardening: allow x86 syscalls on web drop-in (steamcmd is 32-bit) 
The web service handles install jobs by fork-exec'ing steamcmd_linux,
a 32-bit binary. With SystemCallArchitectures=native (x86_64 only) the
kernel SIGSYS-kills it on its first i386 syscall — surfaced as bash
exit 159 (= 128 + SIGSYS) in job logs. Mirror the server drop-in's
`native x86` so the install path works again; the server unit already
needed the same allowance for srcds_linux.

Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
2026-05-15 20:14:26 +02:00
..
left4me refactor: move privileged scripts to scripts/{libexec,sbin}/; deploy/ is reference 2026-05-15 12:05:30 +02:00
sudoers.d feat(deploy): left4me-script-sandbox helper + sudoers fragment 2026-05-08 15:53:21 +02:00
sysctl.d deploy/sysctl: absorb kernel.yama.ptrace_scope into the drop-in 2026-05-15 19:00:35 +02:00
systemd/system deploy/hardening: allow x86 syscalls on web drop-in (steamcmd is 32-bit) 2026-05-15 20:14:26 +02:00