pool/atop
SHA256
17
0
Fork 2
Code Issues Pull Requests Activity
Files
factory
atop/harden_atopgpu.service.patch
Michael Vetter 0d75a527de Accepting request 1136989 from home:jubalh:branches:utilities 
- Update to 2.10.0:
  * Additional memory statistics on system level: amount of available
    memory, amount of memory used for Transparant Huge Pages, amount
    of memory used by two categories of static huge pages (usually
    2MiB and 1GiB), and the number of pages transferred to/from zswap.
  * Additional counters for the number of idle threads on system
    level and process level.
  * Refined view of memory bar graph, including free static huge pages.
  * Generic way to determine the container id or pod name for
    containerized processes.
  * Support for a BPF-based alternative[1] for the netatop kernel
    module to gather network statistics per process/thread.
  * Use the -z flag followed by a regex to prepend matching environment
    variables to the full command line that is shown per process (with key 'c').
  * Various bugfixes (like memory leak when switching to bar graph mode)
    and minor improvements.
  * Bugfix: failing malloc while starting atopsar (unprivileged) for a live measurement.
  * The program atophide can be used to make an extraction from an input
    raw log to an output raw log, optionally specifying a begin time and/or an
    end time. The output raw log can be anonymized, i.e. the hostname
    will be replaced, command names of non-standard commands will be
    replaced, all command arguments will be wiped, logical volume names
    will be replaced and NFS mounted volume names will be replaced.
  * The format of the raw file is incompatible with previous versions.
    Raw files from previous versions can be converted to the new layout
    with the atopconvert command.

OBS-URL: https://build.opensuse.org/request/show/1136989
OBS-URL: https://build.opensuse.org/package/show/utilities/atop?expand=0&rev=23
2024-01-08 08:37:01 +00:00

25 lines
694 B
Diff
Raw Permalink Blame History

Index: atop-2.10.0/atopgpu.service
===================================================================
--- atop-2.10.0.orig/atopgpu.service
+++ atop-2.10.0/atopgpu.service
@@ -5,6 +5,19 @@ After=syslog.target
Before=atop.service
[Service]
+# added automatically, for details please see
+# https://en.opensuse.org/openSUSE:Security_Features#Systemd_hardening_effort
+ProtectSystem=full
+ProtectHome=true
+PrivateDevices=true
+ProtectHostname=true
+ProtectClock=true
+ProtectKernelTunables=true
+ProtectKernelModules=true
+ProtectKernelLogs=true
+ProtectControlGroups=true
+RestrictRealtime=true
+# end of automatic additions
ExecStart=/usr/sbin/atopgpud
Type=oneshot
RemainAfterExit=yes
Reference in New Issue View Git Blame Copy Permalink