From 04ed59202bca28f5658a6c51cce46b57c05c78f3 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Reynir=20Bj=C3=B6rnsson?= <reynir@reynir.dk>
Date: Wed, 18 Nov 2020 21:30:29 +0100
Subject: [PATCH] Set FD_CLOEXEC in sd_listen_fds

---
 src/vmm_unix.ml | 5 ++++-
 1 file changed, 4 insertions(+), 1 deletion(-)

diff --git a/src/vmm_unix.ml b/src/vmm_unix.ml
index 6e55161..50cedb3 100644
--- a/src/vmm_unix.ml
+++ b/src/vmm_unix.ml
@@ -39,7 +39,10 @@ let sd_listen_fds () =
     | Some listen_pid, Some listen_fds ->
       if listen_pid = Unix.getpid ()
       then Some (List.init listen_fds
-                   (fun i -> fd_of_int (sd_listen_fds_start + i)))
+                   (fun i ->
+                      let fd = fd_of_int (sd_listen_fds_start + i) in
+                      let () = Unix.set_close_on_exec fd in
+                      fd))
       else None