[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [Qemu-devel] [PATCH] Whitelist sysinfo call
From: |
Miroslav Rezanina |
Subject: |
Re: [Qemu-devel] [PATCH] Whitelist sysinfo call |
Date: |
Tue, 12 Apr 2016 08:03:13 -0400 (EDT) |
----- 元のメッセージ -----
> 差出人: "Eduardo Otubo" <address@hidden>
> 宛先: "Serge Hallyn" <address@hidden>
> Cc: address@hidden, address@hidden, address@hidden
> 送信済み: 2016年4月12日, 火曜日 午後 1:53:47
> 件名: Re: Re: [Qemu-devel] [PATCH] Whitelist sysinfo call
>
> On Mon, Apr 11, 2016 at 08=19=52PM +0000, Serge Hallyn wrote:
> > Quoting address@hidden (address@hidden):
> > > From: Miroslav Rezanina <address@hidden>
> > >
> > > Newer version of nss-softokn libraries (> 3.16.2.3) use sysinfo call
> > > so qemu using rbd image hang after start when run in sandbox mode.
> > >
> > > To allow using rbd images in sandbox mode we have to whitelist it.
> > >
> > > Signed-off-by: Miroslav Rezanina <address@hidden>
> >
> > Thanks.
> >
> > Acked-by: Serge E. Hallyn <address@hidden>
>
> Also: I'll change the subject of this email a little bit for a cleaner
> and more explicit commit.
>
> Thanks.
Ok, thanks.
Mirek
>
> >
> > > ---
> > > qemu-seccomp.c | 1 +
> > > 1 file changed, 1 insertion(+)
> > >
> > > diff --git a/qemu-seccomp.c b/qemu-seccomp.c
> > > index 2866e3c..e29fca1 100644
> > > --- a/qemu-seccomp.c
> > > +++ b/qemu-seccomp.c
> > > @@ -250,6 +250,7 @@ static const struct QemuSeccompSyscall
> > > seccomp_whitelist[] = {
> > > #ifdef HAVE_CACHEFLUSH
> > > { SCMP_SYS(cacheflush), 240 },
> > > #endif
> > > + { SCMP_SYS(sysinfo), 240 },
> > > };
> > >
> > > int seccomp_start(void)
> > > --
> > > 2.5.0
> > >
> > >
> >
>
> --
> Eduardo Otubo
> ProfitBricks GmbH
>
--
Miroslav Rezanina
Software Engineer - Virtualization Team