aboutsummaryrefslogtreecommitdiff
diff options
context:
space:
mode:
authorEduardo Otubo <otubo@linux.vnet.ibm.com>2013-09-24 14:50:44 -0300
committerEduardo Otubo <otubo@linux.vnet.ibm.com>2013-09-24 15:15:16 -0300
commitc236f4519c9838801798f3705c17dce9ab9e3b9d (patch)
tree782159364b90d9ddfab0efeafe04e5d65ecc74d0
parentf828a4c8faa118e0ebab3e353ac6840f3b2a0318 (diff)
seccomp: fine tuning whitelist by adding times()
This was causing Qemu process to hang when using -sandbox on as discribed on RHBZ: https://bugzilla.redhat.com/show_bug.cgi?id=1004175 Signed-off-by: Eduardo Otubo <otubo@linux.vnet.ibm.com> Tested-by: Paul Moore <pmoore@redhat.com> Acked-by: Paul Moore <pmoore@redhat.com>
-rw-r--r--qemu-seccomp.c1
1 files changed, 1 insertions, 0 deletions
diff --git a/qemu-seccomp.c b/qemu-seccomp.c
index 37d38f881c..69cee443af 100644
--- a/qemu-seccomp.c
+++ b/qemu-seccomp.c
@@ -90,6 +90,7 @@ static const struct QemuSeccompSyscall seccomp_whitelist[] = {
{ SCMP_SYS(getuid), 245 },
{ SCMP_SYS(geteuid), 245 },
{ SCMP_SYS(timer_create), 245 },
+ { SCMP_SYS(times), 245 },
{ SCMP_SYS(exit), 245 },
{ SCMP_SYS(clock_gettime), 245 },
{ SCMP_SYS(time), 245 },