[Top][All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[Qemu-devel] [RFC] [PATCH 0/2] Sandboxing Qemu guests with Libseccomp
|
From: |
Eduardo Otubo |
|
Subject: |
[Qemu-devel] [RFC] [PATCH 0/2] Sandboxing Qemu guests with Libseccomp |
|
Date: |
Fri, 4 May 2012 16:08:36 -0300 |
Hello all,
This is the first effort to sandboxing Qemu guests using Libseccomp[0]. The
patches that follows are pretty simple and straightforward. I added the correct
options and checks to the configure script and the basic calls to libseccomp in
the main loop at vl.c. Details of each one are in the emails of the patch set.
This support limits the system call footprint of the entire QEMU process to a
limited set of syscalls, those that we know QEMU uses. The idea is to limit
the allowable syscalls, therefore limiting the impact that an attacked guest
could have on the host system.
It's important to note that the libseccomp itself needs the seccomp mode 2
feature in the kernel, which is pretty close to get to the mainline since it's
already been accepted to the linux-next branch[1].
As always, comments are more than welcome.
Regards,
[0] - http://sourceforge.net/projects/libseccomp/
[1] -
http://git.kernel.org/?p=linux/kernel/git/next/linux-next.git;a=commit;h=e2cfabdfd075648216f99c2c03821cf3f47c1727
Eduardo Otubo (2):
Adding support for libseccomp in configure
Adding basic calls to libseccomp in vl.c
configure | 23 ++++++++++++++++++
vl.c | 81 +++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
2 files changed, 104 insertions(+)
--
1.7.9.5
- [Qemu-devel] [RFC] [PATCH 0/2] Sandboxing Qemu guests with Libseccomp,
Eduardo Otubo <=
Re: [Qemu-devel] [RFC] [PATCH 0/2] Sandboxing Qemu guests with Libseccomp, Daniel P. Berrange, 2012/05/08