From b54e100943117254c35aa3b2f98b64b4c58c814b Mon Sep 17 00:00:00 2001
From: Karol Lewandowski <k.lewandowsk@samsung.com>
Date: Thu, 24 Mar 2022 17:03:56 +0100
Subject: [PATCH] tizen: mount /run/user/UID with noexec

There is no point in having /run/user/UID mounted with exec, especially
that /run itself is mounted with noexec.

Change-Id: I16d46c3f3103205edf81764ca479ee0a569f90f7
---
 src/login/user-runtime-dir.c | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/login/user-runtime-dir.c b/src/login/user-runtime-dir.c
index 049999a..558f569 100644
--- a/src/login/user-runtime-dir.c
+++ b/src/login/user-runtime-dir.c
@@ -102,7 +102,7 @@ static int user_mkdir_runtime_path(
 
                 (void) mkdir_label(runtime_path, 0700);
 
-                r = mount("tmpfs", runtime_path, "tmpfs", MS_NODEV|MS_NOSUID, options);
+                r = mount("tmpfs", runtime_path, "tmpfs", MS_NODEV|MS_NOSUID|MS_NOEXEC, options);
                 if (r < 0) {
                         if (!IN_SET(errno, EPERM, EACCES)) {
                                 r = log_error_errno(errno, "Failed to mount per-user tmpfs directory %s: %m", runtime_path);
-- 
2.7.4