diff options
author | Eduardo Otubo <otubo@linux.vnet.ibm.com> | 2013-09-24 14:50:44 -0300 |
---|---|---|
committer | Eduardo Otubo <otubo@linux.vnet.ibm.com> | 2013-09-24 15:15:16 -0300 |
commit | c236f4519c9838801798f3705c17dce9ab9e3b9d (patch) | |
tree | 782159364b90d9ddfab0efeafe04e5d65ecc74d0 | |
parent | f828a4c8faa118e0ebab3e353ac6840f3b2a0318 (diff) |
seccomp: fine tuning whitelist by adding times()
This was causing Qemu process to hang when using -sandbox on as
discribed on RHBZ: https://bugzilla.redhat.com/show_bug.cgi?id=1004175
Signed-off-by: Eduardo Otubo <otubo@linux.vnet.ibm.com>
Tested-by: Paul Moore <pmoore@redhat.com>
Acked-by: Paul Moore <pmoore@redhat.com>
-rw-r--r-- | qemu-seccomp.c | 1 |
1 files changed, 1 insertions, 0 deletions
diff --git a/qemu-seccomp.c b/qemu-seccomp.c index 37d38f881c..69cee443af 100644 --- a/qemu-seccomp.c +++ b/qemu-seccomp.c @@ -90,6 +90,7 @@ static const struct QemuSeccompSyscall seccomp_whitelist[] = { { SCMP_SYS(getuid), 245 }, { SCMP_SYS(geteuid), 245 }, { SCMP_SYS(timer_create), 245 }, + { SCMP_SYS(times), 245 }, { SCMP_SYS(exit), 245 }, { SCMP_SYS(clock_gettime), 245 }, { SCMP_SYS(time), 245 }, |