|
| From: | Eduardo Otubo |
| Subject: | Re: [Qemu-devel] [PATCH] seccomp: adding times() to the whitelist |
| Date: | Mon, 23 Sep 2013 16:56:49 -0300 |
| User-agent: | Mozilla/5.0 (X11; Linux x86_64; rv:17.0) Gecko/20130806 Thunderbird/17.0.8 |
On 09/23/2013 04:53 PM, Paul Moore wrote:
On Wednesday, September 04, 2013 10:11:10 AM Paul Moore wrote:On Wednesday, September 04, 2013 09:25:08 AM Eduardo Otubo wrote:This was causing Qemu process to hang when using -sandbox on. Related RHBZ: https://bugzilla.redhat.com/show_bug.cgi?id=1004175 Signed-off-by: Eduardo Otubo <address@hidden>Works for me. Tested-by: Paul Moore <address@hidden>Eduardo, perhaps you should just merge this into your tree and send a pull request? This fix should also go into -stable.
OH you're absolutely right, I'll just do it! Thanks for the heads up, forgot I have special powers now.
Acked-by: Paul Moore <address@hidden>--- qemu-seccomp.c | 1 + 1 files changed, 1 insertions(+), 0 deletions(-) diff --git a/qemu-seccomp.c b/qemu-seccomp.c index 37d38f8..69cee44 100644 --- a/qemu-seccomp.c +++ b/qemu-seccomp.c @@ -90,6 +90,7 @@ static const struct QemuSeccompSyscall seccomp_whitelist[] = { { SCMP_SYS(getuid), 245 }, { SCMP_SYS(geteuid), 245 }, { SCMP_SYS(timer_create), 245 }, + { SCMP_SYS(times), 245 }, { SCMP_SYS(exit), 245 }, { SCMP_SYS(clock_gettime), 245 }, { SCMP_SYS(time), 245 },
-- Eduardo Otubo IBM Linux Technology Center
| [Prev in Thread] | Current Thread | [Next in Thread] |